PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-09 06:01:28 +00:00
Code Issues Projects Releases Wiki Activity
6,864 Commits 2 Branches 0 Tags
cac71422e8968a97a070fce8646bf274328e63c1
Commit Graph

1449 Commits

Author SHA1 Message Date
patrik
8d6d8ef597 Fixed some typos and did minor changes to script documentation 2012-02-03 11:56:44 +00:00
patrik
2d55f8822c Fixed a number of bugs and prepared the library to handle the new redirect 
code being added to the http-library. [Patrik]
 2012-02-02 21:23:19 +00:00
patrik
e0697de6f1 fixed bug in helper instantiation that would prevent the script from running 2012-02-01 16:27:24 +00:00
patrik
7a4ffa429e fixed undeclared variables 2012-02-01 15:49:54 +00:00
fyodor
be30624e7c remove a newline which caused whitespace problem in generated nsedoc 2012-01-31 20:41:15 +00:00
patrik
f75c3678a0 o [NSE] Added voldemort-info, that retrieves cluster and store information 
from the Voldemort distributed key-value store. [Patrik]
 2012-01-31 20:32:37 +00:00
patrik
321e63a86d o [NSE] Added http-qnap-nas-info, that retrieves the model, firware version, 
and enabled services from a QNAP Network Attached Storage (NAS) device.
  [Brendan Coles]
 2012-01-31 20:22:42 +00:00
patrik
3c986d3544 applied patch by Michael Kohl that fixes a bug in the HTTP redirect code of the 
http-generator script.
 2012-01-29 15:32:09 +00:00
patrik
46e25ee97c fixed indentation and added some missing documentation 2012-01-29 15:16:05 +00:00
patrik
dc5dfa84fc documentation updates for url-snarf and changed so 0s would make the script run 
until ctrl+break is forced.
 2012-01-29 10:56:06 +00:00
patrik
0e75bceb37 Changed default timeout to 30s for url-snarf, rather than infinite 2012-01-29 10:51:57 +00:00
patrik
3fe1a5f44f Added the broadcast category to the url-snarf script 2012-01-29 08:29:42 +00:00
patrik
5575943ea0 o [NSE] Added url-snarf. The script sniffs the network for URLs in HTTP 
traffic and prints the URL together with the originating IP. [Patrik]
 2012-01-29 08:23:30 +00:00
patrik
3633c502b6 o [NSE] Added http-auth-finder. The scripts spiders a site looking for URLs 
requiring form- or HTTP-based authentication. [Patrik]
 2012-01-29 06:23:35 +00:00
patrik
1c38198c02 Changed JSON null-check to the json.NULL constant per David's recommendation. 2012-01-29 05:52:04 +00:00
patrik
6724733817 Fixed a bunch of script errors reported by Duarte Silva: 
http://seclists.org/nmap-dev/2012/q1/246
 2012-01-28 22:03:11 +00:00
patrik
fb546789a1 Fixed bug that would make the script crash if no domain argument was specified. 2012-01-28 21:34:11 +00:00
patrik
fb3eb4c6c5 Fixed a bug in http-auth that failed to report errors properly. 2012-01-28 18:13:15 +00:00
david
22c17fa05d Add cccam-version.nse. 2012-01-27 01:13:35 +00:00
patrik
0ad978d3b8 o [NSE] Added the scripts xdmcp-discover, broadcast-xdmcp-discover and the 
X Display Manager Control Protocol (xdmcp) library. The scripts discover
  hosts either using unicast or broadcast and try to detect supported
  authentication and authorization mechanisms. [Patrik]
 2012-01-26 19:35:19 +00:00
david
fe96153a91 Remove --- from some non-NSEDoc comments. 2012-01-26 17:07:43 +00:00
patrik
5b05cbe46e o [NSE] Added script iax2-brute and supporting IAX2 library that performs 
brute-force password guessing against the Asterisk IAX2 protocol. [Patrik]
 2012-01-24 20:55:29 +00:00
patrik
5ef9f2a70d o [NSE] Added script broadcast-dhcp6-discover and supporting DHCPv6 library. 
The script retrieves and prints an IPv6 address and some of the DHCP6
  options. [Patrik]
 2012-01-24 19:54:50 +00:00
patrik
055ff59b94 Add support for adding discovered hosts as new targets. Added XMPP client-to- 
server discovery. [Patrik]
 2012-01-24 17:56:50 +00:00
henri
1f431b953f Consistent naming of the address fields between IPv4 and IPv6. 
All IP packet objects now have the following attributes:

  - ip_bin_src (binary src address)
  - ip_bin_dst (binary dst address)
  - ip_src (decimal-dotted string src address)
  - ip_dst (decimal-dotted string dst address)

The ip6_src and ip6_dst attributes have therefore been renamed (ip_bin_src and
ip_bin_dst).

This patch also updates the scripts accordingly.
 2012-01-21 14:46:00 +00:00
henri
399d2416b5 Removed declarations of unused variables. 2012-01-19 22:03:06 +00:00
patrik
1670f59210 o [NSE] Added script dns-srv-enum that enumerates DNS service records for a 
given domain. [Patrik]
 2012-01-19 00:49:48 +00:00
patrik
bf3f668223 Fixed a bug where the script would crash if the error code could not be 
determined properly.
 2012-01-19 00:38:00 +00:00
patrik
2a2f64590a o [NSE] Added script nessus-xmlrpc-brute that performs brute force password 
guessing against the Nessus web GUI. [Patrik]
 2012-01-17 11:53:23 +00:00
patrik
c579d844ba o [NSE] Added script dns-nsid by John Bond, that retrieves name server ID and 
version information.

o [NSE] Applied patch to DNS library by John Bond that adds support for the
  CHAOS class and NSID requests.
 2012-01-17 11:37:19 +00:00
patrik
ef4be879e5 o [NSE] Added broadcast-ripng-discover that discovers IPv6 RIPng routers and 
displays their routing information. [Patrik]
 2012-01-14 18:44:07 +00:00
david
fb296edeab Make hadoop-namenode-info be silent when it doesn't learn anything. 2012-01-14 01:03:21 +00:00
david
0bc0b0258e Avoid crashes in hadoop-namenode-info.nse. 2012-01-14 01:03:20 +00:00
david
69c1707648 Avoid crashes in hadoop-secondary-namenode-info.nse. 2012-01-14 01:03:20 +00:00
david
e11e1e9f22 Make hbase-master-info.nse be silent if it doesn't learn anything. 2012-01-14 01:03:19 +00:00
david
8ac8aed20d Make hbase-master-info.nse be silent if it doesn't learn anything. 2012-01-14 01:03:18 +00:00
david
de0f92ea9a Whitespace in hbase-* hadoop-*. 2012-01-14 01:03:18 +00:00
david
86c042302f Change hadoop/hbase portrules to match HTTP services. 
This is so that these scripts can run for ports that -sV detects as
http, but not when the port is a common HTTP port.
 2012-01-14 01:03:17 +00:00
david
e32c22aa22 Add path and redirects handling to http-generator.nse. 
Patch by Michael Kohl.
 2012-01-13 23:48:01 +00:00
henri
9ff8043d92 Added privilege checks to the prerules to prevent scripts from failing at 
action() time when executed unprivileged.

Removed the check which was performed by broadcast-dhcp-discover.nse in its
action() function, so that users can force execution if desired.
 2012-01-13 14:23:55 +00:00
david
541091eed1 Put http-generator in default. 2012-01-12 19:45:13 +00:00
david
1a9700019f Add http-generator.nse by Michael Kohl. 2012-01-12 19:45:11 +00:00
patrik
92cb5a3def Fixed bug that would fail to calculate a PADI host unique value in the pppoe 
library under certain circumstances. Fixed bug that would fail to terminate
script properly if no response was received from pppoe server. [Patrik]
 2012-01-10 21:08:20 +00:00
patrik
956c9ffe53 o [NSE] Added the script broadcast-pppoe-discover that discovers PPPoE servers 
on the LAN using the PPPoE Discovery Protocol. [Patrik]
 2012-01-10 18:22:39 +00:00
patrik
0267b56a27 o [NSE] Added the script membase-brute that performs password brute force 
password guessing against the Membase TAP protocol. [Patrik]

o [NSE] Added the script membase-http-info that retrieves information from the
  Couchbase distributed key-value pair server. [Patrik]
 2012-01-10 18:19:21 +00:00
david
2532c413b5 o [NSE] Fixed a race condition in broadcast-dhcp-discover.nse that 
could cause responses to be missed on fast networks. It was noticed
  by Vasiliy Kulikov. [David]
 2012-01-10 03:25:19 +00:00
henri
c55253db44 Expanded documentation. 2012-01-09 16:06:12 +00:00
henri
ed2fc828ac Added IPv6 support to firewalk.nse. 2012-01-08 15:13:35 +00:00
fyodor
8268a7f0d4 very minor nsedoc improvements 2012-01-07 03:04:18 +00:00
patrik
74d5ff04ef o [NSE] Added the script http-vuln-cve2009-3960 that detects and exploits the 
CVE 2009-3960 XML injection vulnerability in Adobe products. [Hani
  Benhabiles]
 2012-01-02 19:48:42 +00:00