PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-07 05:01:29 +00:00
Code Issues Projects Releases Wiki Activity
2,107 Commits 2 Branches 0 Tags
bb8be37ecea8d11f5093e085bd637afbe7029cc3
Commit Graph

297 Commits

Author SHA1 Message Date
david
85deff9ede Use a more straightforward return style in script rules. Instead of 
if cond then
		return true
	else
		return false
	end

just do

	return cond
 2008-11-18 16:59:09 +00:00
david
f4b970f889 Update skypev2-version.nse to match how it's shown in scripting.xml. 2008-11-18 16:47:57 +00:00
david
8247257ad0 Make the code that manipulates the filename local to a function in banner.nse. 
--script-updatedb didn't work because scripts don't have the filename variable
in their environment during that.
 2008-11-18 16:44:57 +00:00
jah
100aa9d122 Removed filename_len() from banner.nse and instead shorten var filename 
to the script name minus its extension - in response to the change
in r11111.
Changed the width of output from 80 chars to 75 which is what was
originally intended.
 2008-11-18 14:08:08 +00:00
jah
fece92c4f7 Add http-alt and https-alt to the services handled by html-title.nse 
Modified http.request() to connect using ssl for the https-alt service.
html-title.nse can now deal with a redirect which changes the url scheme
as long as a port is present in the url and it is the port being scanned.
 2008-11-17 22:06:58 +00:00
david
6bd949abb0 Add a little bit about POP3 capabilities to the pop3-capabilities.nse script. 2008-11-15 01:43:10 +00:00
david
c3ee93f056 Sort script.db entries by file name to make diffs comprehensible. Their 
previous unsorted state was due to their coming straight out of opendir.
 2008-11-15 00:58:36 +00:00
david
0d7243ad5a Add banner.nse to script.db. 2008-11-15 00:55:59 +00:00
jah
17595d5f03 Removed an erroneous argument to a print_debug statement. 2008-11-14 20:57:45 +00:00
fyodor
cdfac4d6b2 spell check: recognise -> recognize 2008-11-11 20:33:48 +00:00
jah
fbea106cc2 Added banner.nse: A simple banner grabber which connects to an open TCP port and prints out anything issued by the listening service. 2008-11-11 11:59:05 +00:00
david
a709967cdd Spell check script documentation. 2008-11-11 05:16:10 +00:00
david
dd586b90bd Remove smb-check-vulns.nse from the vuln category, leaving it in intrusive. 2008-11-11 00:48:48 +00:00
david
03c9145785 Take smb-check-vulns.nse out of discovery and put it in vuln. 2008-11-11 00:35:41 +00:00
david
8f7d2c9974 Split dns-zone-transfer usage across two lines. 2008-11-11 00:35:08 +00:00
david
40394a19cd Fix a whole bunch of script names I missed updating in @usage sections. 2008-11-11 00:23:59 +00:00
david
cb998f9af0 Rename the script arg table owned by dns-zone-transfer.nse from zoneTrans to 
dnszonetransfer.
 2008-11-11 00:19:51 +00:00
david
d293dec977 Rename the script zone-transfer.nse to dns-zone-transfer.nse. 2008-11-11 00:11:12 +00:00
david
e09dba77d1 Adjust the output of http-trace and pop3-capabilities to avoid overly long 
lines.
 2008-11-10 23:44:49 +00:00
david
5a418c9c23 Better format the output of smtp-commands.nse. 2008-11-10 23:35:31 +00:00
david
9d97468d48 Update some documenation in smb-check-vulns.nse. 2008-11-10 23:18:20 +00:00
jah
c38aa90312 Fix http.lua which ignores port.protocol and assumes it to be 'tcp' even if it is 'udp'. 
Now http.request() returns nil if port.protocol is not 'tcp'.
Changed the portrule in html-title.nse to accept only TCP ports.

Fixed a redirect rule in html-title.nse which was comparing the string url.port with
the number port.number - which would always be false.
 2008-11-10 22:55:08 +00:00
david
65348958eb Rearrange some symbolic constants in smb-check-vulns.nse so as not to confuse 
NSEDoc. Also fix a couple of typos.
 2008-11-10 21:44:35 +00:00
ron
8e89a0e217 updated scriptdb/CHANGELOG, renamed smb-checkvulns.nse to nse-check-vulns.nse for consistency with the new naming standard 2008-11-10 19:06:50 +00:00
ron
82ce5f2a92 Merge from /nmap-exp/ron/ms08-067-test 2008-11-10 16:23:12 +00:00
fyodor
ce3835a4e3 changing name from identd-owners to auth-owners to match service name in nmap-services. We can always change it back if we change nmap-services 2008-11-08 05:12:44 +00:00
fyodor
fb77d6addd changing name from identd-owners to auth-owners to match service name in nmap-services. We can always change it back if we change nmap-services 2008-11-08 05:12:22 +00:00
fyodor
35ea5808bf add output section to identd-owners nsedoc 2008-11-08 05:02:17 +00:00
david
5f166e19ec Don't use empty parentheses when referring to functions by name in NSE 
documentation.
 2008-11-07 22:49:49 +00:00
david
e8adfb9599 o http-auth.nse now properly checks for default authentication 
credentials. A bug prevented it from working before. [Vlatko
  Kosturjak]
 2008-11-07 17:16:20 +00:00
david
69d8577cb6 Little typo fix. 2008-11-07 04:40:52 +00:00
fyodor
989f48be6d mostly documentation cleanup, though I also moved ftp-anon into the safe category since I don't think it is any more intrusive than other scripts in that category 2008-11-07 04:35:22 +00:00
fyodor
43fa2ded58 add to the discovery category. I'm not certain this is a good move, but html-trace is in the category, so we presumably need to either remove it from html-trace or add it to http-title, robots.txt, etc. 2008-11-07 00:31:15 +00:00
fyodor
cd40532297 add to discovery category 2008-11-07 00:29:15 +00:00
fyodor
c73dfd173a o Renamed irc-zombie.nse to auth-spoof and improved its description 
and output a bit. [Fyodor]
 2008-11-06 21:58:29 +00:00
david
c1cc2c3dcd Change the message in ftp-anon from "FTP: Anonymous login allowed" to 
"Anonymous FTP login allowed".
 2008-11-06 05:03:21 +00:00
david
a44a66c68a Change some of the output of sniffer-detect.nse and add an @output section. 2008-11-06 03:49:39 +00:00
david
6fbc8868a9 Rename scripts (almost all of them) to make their names more consistent and 
make them look better in output. The full list of changes is
  anonFTP => ftp-anon
  ASN => asn-query
  brutePOP3 => pop3-brute
  bruteTelnet => telnet-brute
  daytimeTest => daytime
  dns-safe-recursion-port => dns-random-srcport
  dns-safe-recursion-txid => dns-random-txid
  dns-test-open-recursion => dns-recursion
  ftpbounce => ftp-bounce
  HTTPAuth => http-auth
  HTTP_open_proxy => http-open-proxy
  HTTPpasswd => http-passwd
  HTTPtrace => http-trace
  iax2Detect => iax2-version
  ircServerInfo => irc-info
  ircZombieTest => irc-zombie
  MSSQLm => ms-sql-info
  MySQLinfo => mysql-info
  popcapa => pop3-capabilities
  PPTPversion => pptp-version
  promiscuous => sniffer-detect
  RealVNC_auth_bypass => realvnc-auth-bypass
  robots => robots.txt
  showHTMLTitle => html-title
  showOwner => identd-owners
  skype_v2-version => skypev2-version
  smb-enumdomains => smb-enum-domains
  smb-enumsessions => smb-enum-sessions
  smb-enumshares => smb-enum-shares
  smb-enumusers => smb-enum-users
  smb-serverstats => smb-server-stats
  smb-systeminfo => smb-system-info
  SMTPcommands => smtp-commands
  SMTP_openrelay_test => smtp-open-relay
  SNMPcommunitybrute => snmp-brute
  SNMPsysdescr => snmp-sysdescr
  SQLInject => sql-injection
  SSH-hostkey => ssh-hostkey
  SSHv1-support => sshv1
  SSLv2-support => sslv2
  strangeSMTPport => smtp-strangeport
  UPnP-info => upnp-info
  xamppDefaultPass => xampp-default-auth
  zoneTrans => zone-transfer
 2008-11-06 02:52:59 +00:00
fyodor
ddf146cb30 o Removed ripeQuery.nse because we now have the much more robust 
whois.nse which handles all the major registries. [Fyodor]
 2008-11-06 01:09:05 +00:00
david
4863d506c1 Remove script ids. Scripts are identified by file name in output (just the 
basename without ".nse", or the full path with debugging level 2 or higher).
This includes documentation changes in scripting.xml.
 2008-11-05 00:52:55 +00:00
david
14fc84bd49 Update finger.nse in scripting.xml to match the latest version of the script. 
Also take the example script out of a sect2 and put it directly in the
enclosing sect1 (the sect1 was empty except for the sect2).
 2008-11-04 22:47:17 +00:00
david
0ed2134ea7 Include some missing or incorrect script ids in @output sections. 2008-11-04 20:46:57 +00:00
ron
7a36a20c4c Noticed the id was set in two places, removed the second 2008-11-04 17:08:15 +00:00
ron
c3ac9337cc Fixed a bug in the smb session enumeration where users wouldn't get added to the list if we couldn't look up the users' timestamps (which happens with guest accounts for sure) 2008-11-04 17:05:18 +00:00
david
12290c86cd Qualify some "I"s in script documentation to attribute them to their author, to 
reduce confusion when many scripts are presented together. Also make a few
other miscellaneous documentation cleanups.
 2008-11-04 16:41:12 +00:00
fyodor
c22c9ca885 o Removed showSSHVersion.nse. Its only real claim to fame was the 
ability to trick some SSH servers (including at least OpenSSH
  4.3p2-9etch3) into not logging the connection.  This trick doesn't
  seem to work with newer versions of OpenSSH, as my
  openssh-server-4.7p1-4.fc8 does log the connection. Without the
  stealth advantage, the script has no real benefit over version
  detection or the upcoming banner grabbing script. [Fyodor]
 2008-11-04 05:04:12 +00:00
david
ae27b48ffb Just refer to the smb module documentation for the smb* script args rather than 
duplicating it in every script. This may not be the way we keep doing it, but
it's needed for now to keep from having excessive duplication in the printed
output.
 2008-11-04 00:01:20 +00:00
david
12892ad59a Add @output to scripts/popcapa.nse. 2008-11-03 23:50:46 +00:00
david
9d1b588e4b Fix a few little formatting errors in SQLInject.nse. 2008-11-03 21:37:08 +00:00
david
e01984b2f5 Proofread and format the smb-* scripts. This was mostly done by Ron already. 2008-11-03 21:36:07 +00:00