PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-09 22:21:29 +00:00
Code Issues Projects Releases Wiki Activity
2,225 Commits 2 Branches 0 Tags
c0db2ed69bac176fc84fcd6e0c44ea2111e229b4
Commit Graph

306 Commits

Author SHA1 Message Date
kris
5725a169bf Make robots.txt.nse be silent instead of printing reports for a file with no 
disallowed entries
 2009-01-03 16:54:47 +00:00
ron
1c08d02689 Updated the output section for smb-enum-processes.nse 2008-12-24 00:58:52 +00:00
ron
773000b65a Merging changes from my experimental branch; the new versions of this scripts, which have significant changes to their core functionality, managed to hold their own against Brandon's network. More testing would be very helpful, though, especially with credentials (most of Brandon's scans were anonymous). 2008-12-24 00:53:01 +00:00
bmenrigh
c4bebb3a01 Starting in Lua 5.1, string.gfind was renamed to string.gmatch. This commit fixes a warning when gfind is used by using gmatch instead. 2008-12-17 20:43:57 +00:00
batrick
88419b0c6e Cleaned up the creation of the string payload. 2008-12-09 06:00:50 +00:00
ron
86de493a3e Changed smb-enum-shares to detect a host that returns the incorrect value for unknown shares (happened against what appears to be a EMC SANS). Also added a check to stdnse.strjoin() to ensure that the first parameter is either nil or a string, I got the parameters wrong and spent awhile trying to figure otu why. 2008-12-08 03:33:25 +00:00
ron
ea42f39faa Merged in significant changes to Microsoft RPC calls 2008-12-07 16:16:11 +00:00
david
be28828544 Add a patch by Tom Sellers to use "html-title.nse" in the debug messages of the 
script of that name, instead of the old name "showHTMLTitle."
 2008-12-06 02:48:30 +00:00
jah
9f3a5e5210 Fix the closure of a multiline comment which is not strictly legal 
http://www.lua.org/pil/1.3.html, but only impacts syntax
highlighting and not script execution.
 2008-12-02 18:30:05 +00:00
david
85deff9ede Use a more straightforward return style in script rules. Instead of 
if cond then
		return true
	else
		return false
	end

just do

	return cond
 2008-11-18 16:59:09 +00:00
david
f4b970f889 Update skypev2-version.nse to match how it's shown in scripting.xml. 2008-11-18 16:47:57 +00:00
david
8247257ad0 Make the code that manipulates the filename local to a function in banner.nse. 
--script-updatedb didn't work because scripts don't have the filename variable
in their environment during that.
 2008-11-18 16:44:57 +00:00
jah
100aa9d122 Removed filename_len() from banner.nse and instead shorten var filename 
to the script name minus its extension - in response to the change
in r11111.
Changed the width of output from 80 chars to 75 which is what was
originally intended.
 2008-11-18 14:08:08 +00:00
jah
fece92c4f7 Add http-alt and https-alt to the services handled by html-title.nse 
Modified http.request() to connect using ssl for the https-alt service.
html-title.nse can now deal with a redirect which changes the url scheme
as long as a port is present in the url and it is the port being scanned.
 2008-11-17 22:06:58 +00:00
david
6bd949abb0 Add a little bit about POP3 capabilities to the pop3-capabilities.nse script. 2008-11-15 01:43:10 +00:00
david
c3ee93f056 Sort script.db entries by file name to make diffs comprehensible. Their 
previous unsorted state was due to their coming straight out of opendir.
 2008-11-15 00:58:36 +00:00
david
0d7243ad5a Add banner.nse to script.db. 2008-11-15 00:55:59 +00:00
jah
17595d5f03 Removed an erroneous argument to a print_debug statement. 2008-11-14 20:57:45 +00:00
fyodor
cdfac4d6b2 spell check: recognise -> recognize 2008-11-11 20:33:48 +00:00
jah
fbea106cc2 Added banner.nse: A simple banner grabber which connects to an open TCP port and prints out anything issued by the listening service. 2008-11-11 11:59:05 +00:00
david
a709967cdd Spell check script documentation. 2008-11-11 05:16:10 +00:00
david
dd586b90bd Remove smb-check-vulns.nse from the vuln category, leaving it in intrusive. 2008-11-11 00:48:48 +00:00
david
03c9145785 Take smb-check-vulns.nse out of discovery and put it in vuln. 2008-11-11 00:35:41 +00:00
david
8f7d2c9974 Split dns-zone-transfer usage across two lines. 2008-11-11 00:35:08 +00:00
david
40394a19cd Fix a whole bunch of script names I missed updating in @usage sections. 2008-11-11 00:23:59 +00:00
david
cb998f9af0 Rename the script arg table owned by dns-zone-transfer.nse from zoneTrans to 
dnszonetransfer.
 2008-11-11 00:19:51 +00:00
david
d293dec977 Rename the script zone-transfer.nse to dns-zone-transfer.nse. 2008-11-11 00:11:12 +00:00
david
e09dba77d1 Adjust the output of http-trace and pop3-capabilities to avoid overly long 
lines.
 2008-11-10 23:44:49 +00:00
david
5a418c9c23 Better format the output of smtp-commands.nse. 2008-11-10 23:35:31 +00:00
david
9d97468d48 Update some documenation in smb-check-vulns.nse. 2008-11-10 23:18:20 +00:00
jah
c38aa90312 Fix http.lua which ignores port.protocol and assumes it to be 'tcp' even if it is 'udp'. 
Now http.request() returns nil if port.protocol is not 'tcp'.
Changed the portrule in html-title.nse to accept only TCP ports.

Fixed a redirect rule in html-title.nse which was comparing the string url.port with
the number port.number - which would always be false.
 2008-11-10 22:55:08 +00:00
david
65348958eb Rearrange some symbolic constants in smb-check-vulns.nse so as not to confuse 
NSEDoc. Also fix a couple of typos.
 2008-11-10 21:44:35 +00:00
ron
8e89a0e217 updated scriptdb/CHANGELOG, renamed smb-checkvulns.nse to nse-check-vulns.nse for consistency with the new naming standard 2008-11-10 19:06:50 +00:00
ron
82ce5f2a92 Merge from /nmap-exp/ron/ms08-067-test 2008-11-10 16:23:12 +00:00
fyodor
ce3835a4e3 changing name from identd-owners to auth-owners to match service name in nmap-services. We can always change it back if we change nmap-services 2008-11-08 05:12:44 +00:00
fyodor
fb77d6addd changing name from identd-owners to auth-owners to match service name in nmap-services. We can always change it back if we change nmap-services 2008-11-08 05:12:22 +00:00
fyodor
35ea5808bf add output section to identd-owners nsedoc 2008-11-08 05:02:17 +00:00
david
5f166e19ec Don't use empty parentheses when referring to functions by name in NSE 
documentation.
 2008-11-07 22:49:49 +00:00
david
e8adfb9599 o http-auth.nse now properly checks for default authentication 
credentials. A bug prevented it from working before. [Vlatko
  Kosturjak]
 2008-11-07 17:16:20 +00:00
david
69d8577cb6 Little typo fix. 2008-11-07 04:40:52 +00:00
fyodor
989f48be6d mostly documentation cleanup, though I also moved ftp-anon into the safe category since I don't think it is any more intrusive than other scripts in that category 2008-11-07 04:35:22 +00:00
fyodor
43fa2ded58 add to the discovery category. I'm not certain this is a good move, but html-trace is in the category, so we presumably need to either remove it from html-trace or add it to http-title, robots.txt, etc. 2008-11-07 00:31:15 +00:00
fyodor
cd40532297 add to discovery category 2008-11-07 00:29:15 +00:00
fyodor
c73dfd173a o Renamed irc-zombie.nse to auth-spoof and improved its description 
and output a bit. [Fyodor]
 2008-11-06 21:58:29 +00:00
david
c1cc2c3dcd Change the message in ftp-anon from "FTP: Anonymous login allowed" to 
"Anonymous FTP login allowed".
 2008-11-06 05:03:21 +00:00
david
a44a66c68a Change some of the output of sniffer-detect.nse and add an @output section. 2008-11-06 03:49:39 +00:00
david
6fbc8868a9 Rename scripts (almost all of them) to make their names more consistent and 
make them look better in output. The full list of changes is
  anonFTP => ftp-anon
  ASN => asn-query
  brutePOP3 => pop3-brute
  bruteTelnet => telnet-brute
  daytimeTest => daytime
  dns-safe-recursion-port => dns-random-srcport
  dns-safe-recursion-txid => dns-random-txid
  dns-test-open-recursion => dns-recursion
  ftpbounce => ftp-bounce
  HTTPAuth => http-auth
  HTTP_open_proxy => http-open-proxy
  HTTPpasswd => http-passwd
  HTTPtrace => http-trace
  iax2Detect => iax2-version
  ircServerInfo => irc-info
  ircZombieTest => irc-zombie
  MSSQLm => ms-sql-info
  MySQLinfo => mysql-info
  popcapa => pop3-capabilities
  PPTPversion => pptp-version
  promiscuous => sniffer-detect
  RealVNC_auth_bypass => realvnc-auth-bypass
  robots => robots.txt
  showHTMLTitle => html-title
  showOwner => identd-owners
  skype_v2-version => skypev2-version
  smb-enumdomains => smb-enum-domains
  smb-enumsessions => smb-enum-sessions
  smb-enumshares => smb-enum-shares
  smb-enumusers => smb-enum-users
  smb-serverstats => smb-server-stats
  smb-systeminfo => smb-system-info
  SMTPcommands => smtp-commands
  SMTP_openrelay_test => smtp-open-relay
  SNMPcommunitybrute => snmp-brute
  SNMPsysdescr => snmp-sysdescr
  SQLInject => sql-injection
  SSH-hostkey => ssh-hostkey
  SSHv1-support => sshv1
  SSLv2-support => sslv2
  strangeSMTPport => smtp-strangeport
  UPnP-info => upnp-info
  xamppDefaultPass => xampp-default-auth
  zoneTrans => zone-transfer
 2008-11-06 02:52:59 +00:00
fyodor
ddf146cb30 o Removed ripeQuery.nse because we now have the much more robust 
whois.nse which handles all the major registries. [Fyodor]
 2008-11-06 01:09:05 +00:00
david
4863d506c1 Remove script ids. Scripts are identified by file name in output (just the 
basename without ".nse", or the full path with debugging level 2 or higher).
This includes documentation changes in scripting.xml.
 2008-11-05 00:52:55 +00:00
david
14fc84bd49 Update finger.nse in scripting.xml to match the latest version of the script. 
Also take the example script out of a sect2 and put it directly in the
enclosing sect1 (the sect1 was empty except for the sect2).
 2008-11-04 22:47:17 +00:00