PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-09 14:11:29 +00:00
Code Issues Projects Releases Wiki Activity
7,008 Commits 2 Branches 0 Tags
c4617f8d313696a5be9667a1ff3419dea04f521c
Commit Graph

1507 Commits

Author SHA1 Message Date
patrik
c4617f8d31 Fixed a bunch of errors reported by Ron Bowes; 
http://seclists.org/nmap-dev/2012/q2/639
 2012-06-06 21:57:00 +00:00
patrik
731e8b5302 Fixed error message in redis-brute 2012-06-06 21:36:52 +00:00
batrick
2dcb08a590 Fix location of try/catch. The pcap/dnet variables were not in scope. 2012-06-06 21:36:02 +00:00
batrick
a83ed012fd Use "response" as error message. 2012-06-06 21:32:02 +00:00
batrick
1ac2728821 Correct location of rules declaration. 2012-06-06 21:29:48 +00:00
batrick
a20ea34d38 Fix error strings and remove "path" parameter that has no apparent meaning 2012-06-06 21:27:39 +00:00
fyodor
60baeb09b0 Cleaning up the descriptions for 28 scripts for consistency 2012-06-06 20:44:18 +00:00
david
31b628f994 ipOps capitalization. 
http://seclists.org/nmap-dev/2012/q2/602
 2012-06-05 21:16:23 +00:00
david
7f0c9fa9a2 Identifier typo. 
http://seclists.org/nmap-dev/2012/q2/618
 2012-06-05 20:33:09 +00:00
batrick
be0af7b304 Add some missing library requires. Patch generated by 
$ nse_check_globals --patch

with some modifications for format consistency.
 2012-06-05 15:21:54 +00:00
kris
3444074ea1 doc typo/consistency fixes 2012-06-04 21:05:36 +00:00
fyodor
1f8c689ea1 o [NSE] Changed http-brute so that it works against the root path 
("/") by default rather than always requiring the http-brute.path
  script argument.

I also upgraded it to use get_script_args function rather than access registry.args directly
 2012-06-04 19:49:21 +00:00
patrik
b683234f45 o [NSE] Applied patch from Daniel Miller that fixes bug in several scripts and 
libraries http://seclists.org/nmap-dev/2012/q2/593 [Daniel Miller]
 2012-06-04 04:37:29 +00:00
david
877e574f25 Include the error code when smb-ls fails to authenticate. 2012-06-04 03:46:14 +00:00
patrik
0372cf9e7a o [NSE] Added the script smb-ls that lists files on SMB shares and produces 
output similar to the dir command on Windows. [Patrik Karlsson]
 2012-06-03 18:10:49 +00:00
david
4f6dd097c9 Add host.name fallback for xmpp-info name selection. 2012-05-29 21:05:40 +00:00
david
37262e9232 Fix portrule of dns-client-subnet-scan. 
By Daniel Miller. http://seclists.org/nmap-dev/2012/q2/530.
 2012-05-29 21:05:39 +00:00
david
aa6717eb1f Lua 5.2 fixed from Daniel Miller. 
http://seclists.org/nmap-dev/2012/q2/525
 2012-05-29 20:11:39 +00:00
patrik
6da1b367a5 o [NSE] Added the script eppc-enum-processes that enumerates active 
applications, their PID and the UID under which they run through the Apple
  Remote Event protocol. [Patrik Karlsson]
 2012-05-29 18:25:49 +00:00
patrik
3d7250ecc4 o [NSE] Added the Internet Storage Name Service (iSNS) library and the 
isns-info script that lists information about portals and iSCSI devices.
  [Patrik Karlsson]
 2012-05-29 18:02:19 +00:00
aca
ba67aa5993 Commited rmi-vuln-classloader script 2012-05-28 18:04:28 +00:00
paulino
6404b3dca4 Adds vuln reference link and credits. 2012-05-27 21:00:08 +00:00
patrik
656f03676e Added missing second parameter for receive_buf which caused errors with new 
Lua version.
 2012-05-27 19:20:34 +00:00
paulino
cc1ba1ff3d Adds http-huawei-hg5xx-vuln. Detects Huawei modems models HG530x, HG520x, HG510x and possibly others that are vulnerable to a remote credential and information disclosure vulnerability. It also extracts the PPPoE credentials 
and other interesting configuration values.
 2012-05-27 19:18:23 +00:00
batrick
0b41f81489 remove stray getfenv 2012-05-27 08:59:35 +00:00
batrick
000f6dc4d9 Lua 5.2 upgrade [1] for NSE. 
[1] http://seclists.org/nmap-dev/2012/q2/34
 2012-05-27 08:53:32 +00:00
aca
a839e69449 Rewrote mysql-brute to use brute library 2012-05-25 17:57:04 +00:00
patrik
5368a4adea Fixed bug that would make the script fail with the error message: 
"invalid capture index" [Patrik Karlsson]
 2012-05-23 17:53:30 +00:00
kroosec
9300777ced Removed http-traceroute from default category. 2012-05-22 22:43:16 +00:00
patrik
49edb164d2 renamed distcc-CVE-2004-2687.nse to distcc-cve2004-2687.nse 2012-05-22 19:53:19 +00:00
patrik
a1c7c9d31c Added thread support to the ssl-enum-ciphers script which dramatically improves 
performance. [Patrik Karlsson]
 2012-05-22 19:44:27 +00:00
patrik
61501038d2 o [NSE] Added the script icap-info, which tries to identify common ICAP 
service names and list service and tag information. [Patrik Karlsson]
 2012-05-22 18:34:25 +00:00
fyodor
22c7faa94b move the svn version number up to 6.01 and rebuild 2012-05-22 09:51:42 +00:00
fyodor
51e01bc14a Reword the script description slightly 2012-05-22 09:49:36 +00:00
kroosec
b95ed1812e Fixed @usage for http-traceroute. 2012-05-21 14:37:45 +00:00
kroosec
fd98061754 Fixed a small typo (--script-arg ) in 5 scripts. 2012-05-20 16:05:55 +00:00
kroosec
855bdbd289 Added http-traceroute script which exploits Max-Forwards HTTP header to detect reverse proxies. 2012-05-20 15:42:33 +00:00
patrik
d9b67a884b Added missing author and licensing information. 2012-05-20 14:45:16 +00:00
patrik
322ed971a2 o Added the script distcc-CVE-2004-2687 that checks and exploits a remote 
command execution vulnerability in distcc. [Patrik Karlsson]
 2012-05-19 17:39:53 +00:00
patrik
af950450b7 o Added two new scripts mysql-query and mysql-dump-hashes, which add support 
for performing custom MySQL queries and dump MySQL password hashes. [Patrik
  Karlsson]
 2012-05-19 17:33:41 +00:00
aca
c6341d2245 Fixed a typo in the description. 2012-05-19 16:36:59 +00:00
patrik
425ced35ab o Improved the mysql library to handle multiple columns with the same name, 
added a formatResultset function to format a query response to a table
  suitable for script output. [Patrik Karlsson]
 2012-05-19 12:23:41 +00:00
fyodor
5efa8bccee Improve the nsedoc for duplicates script slightly. The attempt to make a list wasn't rendered as one by nsedoc, so I just switched it to a comma-separated list for now 2012-05-18 02:48:13 +00:00
kroosec
9d37d8bdca Added fallback to GET + body grepping for servers that return non 404 status codes for inexisting files. 2012-05-17 11:46:00 +00:00
kroosec
1e936a2eda Added http-drupal-modules.nse to script.db 2012-05-16 08:10:27 +00:00
kroosec
ced6a8cc01 o [NSE] Added the script http-drupal-modules, which enumerates the installed 
Drupal modules using drupal-modules.lst. [Hani Benhabiles]
 2012-05-16 00:14:16 +00:00
aca
85066093de Rewrite of ftp-brute.nse script 
Rewriten original ftp-brute.nse script to use 
brute library to perform password guessing.
 2012-05-14 21:53:37 +00:00
patrik
60c62a3514 o [NSE] Added the script dict-info, which retrieves information from a 
DICT server, by issuing the SHOW SERVER command. [Patrik Karlsson]
 2012-05-14 21:37:39 +00:00
patrik
b1fa1f567c o [NSE] Added the script gkrellm-info, which displays information retrieved 
from the GKRellm monitoring service. [Patrik Karlsson]
 2012-05-14 21:34:01 +00:00
patrik
2a3a2520fa o [NSE] Added the script ajp-request, which adds support for creating custom 
Apache JServer Protocol requests. [Patrik Karlsson]

o [NSE] Added the script ajp-brute, which enables password brute force auditing
  against the Apache JServ Protocol service. [Patrik Karlsson]
 2012-05-14 21:30:24 +00:00