david
fa0713e041
Close an open start tag before a fatal error.
...
This is part of the error handler that attempts to close open XML tags
at a fatal error. The case wasn't handled where a fatal error happened
while a start tag was still open (didn't have its '>' written yet). This
came from a bug report from David Hingos.
http://seclists.org/nmap-dev/2012/q1/514
2012-03-09 00:16:39 +00:00
david
e1576d1d14
Change alloc_sprintf to return a length.
2012-03-08 23:56:26 +00:00
david
23133dccf2
Use alloc_vsprintf in log_vwrite.
...
This avoids a failure when writing long strings on Windows. Previously
we tried only one reallocation of the write buffer, and panicked if that
failed.
http://seclists.org/nmap-dev/2012/q1/514
2012-03-08 23:56:22 +00:00
david
e28fb42ff4
Move alloc_sprintf from xml.cc to nbase.
2012-03-08 23:56:07 +00:00
fyodor
0b887548bc
add a task for improving how the host.os field is organized -- we don't want to mix human readible names, classifications, and CPE entries into a single list of strings
2012-03-08 23:13:07 +00:00
fyodor
24d8b585b2
some initial work on the CHANGELOG
2012-03-08 22:08:51 +00:00
fyodor
9dc6efdb51
Update library descriptions (mostly to add expanded names to acronym protocols), also added description and/or author fields to libraries which didn't have them
2012-03-08 21:39:42 +00:00
david
479b92ae0b
Add a comment to wp-plugins.lst with a link to the script used to make it.
2012-03-08 21:21:51 +00:00
david
a7a4c74120
Allow # comments in wp-plugins.lst.
2012-03-08 21:21:49 +00:00
david
01f3eba282
Make an iterator to read the data file in http-wordpress-plugins.
2012-03-08 21:21:48 +00:00
fyodor
aa9e024d88
Made some minor wording updates to script descriptions
2012-03-08 20:59:06 +00:00
david
1f43eed01b
Remove an unnecessary else.
2012-03-08 20:11:10 +00:00
david
adef20d1e3
Use getFlags16 for TCP flags in vectorize.
...
We use as features even the four reserved TCP flags (some of them are no
longer reserved but declared for a particular purpose by some RFCs).
getFlags only returns 8 bits, leading to garbage in the feature vector
in the higher-order positions.
This doesn't affect the integrity of fingerprint submissions, because
they copy the packet contents directly and don't go through the getFlags
accessor.
2012-03-08 20:11:08 +00:00
fyodor
a37a2d3139
fix the category typo in the script.db too
2012-03-08 19:03:03 +00:00
fyodor
e085c8084d
fix a category typo
2012-03-08 19:02:02 +00:00
patrik
542ed0bf67
o [NSE] Added the script acarsd-info that retrieves information from the acarsd
...
decoder daemon. [Brendan Coles]
2012-03-08 18:22:00 +00:00
patrik
1384a953a1
o [NSE] Added an EAP library and the script eap-info which discovers supported
...
EAP authentication methods. [Riccardo Cecolin]
2012-03-08 18:00:35 +00:00
patrik
cde380ea2c
o [NSE] Added a Versant object database library and the scripts
...
broadcast-versant-locate and versant-info. The first discovers Versant
databases on the LAN and the second queries them for information. [Patrik]
2012-03-08 17:51:48 +00:00
patrik
03dde2cc9a
Added support for returning multiple responses to the srvloc library
2012-03-08 17:34:43 +00:00
david
480784d252
Change "perfect match" test in FingerPrintResults::populateClassification.
...
We use printno < num_prefect_matches rather than accuracy[printno] ==
1.0. In IPv4 classification, the two are equivalent, but IPv6
classifications are never fully 100%. This was causing only the first OS
class and CPE to be shown for IPv6 matches.
2012-03-07 18:23:33 +00:00
david
3f0f79b1b4
Whitespace.
2012-03-07 18:23:32 +00:00
david
4a75312e83
Some OS classification changes.
2012-03-07 17:59:55 +00:00
david
4123b8a42c
Some IPv6 OS corrections.
2012-03-07 17:49:22 +00:00
david
941d609eef
Include <net/if.h> before <net/if_arp.h>.
...
This may fix some build problems on AIX 5.3.
2012-03-07 03:39:11 +00:00
david
1bcc757d28
Updated wp-plugins.lst from Ange Gutek.
2012-03-07 03:22:23 +00:00
david
98609b946c
Regen aclocal.m4.
2012-03-07 03:15:51 +00:00
david
095d5e89ac
Add http-config-backup.nse from Riccardo Cecolin.
...
This script checks for text editor backups of web configuration files.
2012-03-06 17:51:26 +00:00
patrik
344a39e3ac
Re-wrote withindomain and withinhost functions
2012-03-06 15:49:48 +00:00
david
33fa3fae76
Summarize URL tables in url.lua NSEDoc.
2012-03-05 23:00:49 +00:00
batrick
3e73b033a2
Fixed wrong variable name.
2012-03-04 10:37:37 +00:00
patrik
059007601a
removed debug code from get request.
2012-03-04 09:54:54 +00:00
batrick
7286062b88
Fix typo
2012-03-04 09:31:15 +00:00
batrick
4e7756e4de
Change hostname parameter to const char *.
2012-03-04 07:26:16 +00:00
david
c210f29b28
Expand an OS fingerprint.
2012-03-04 05:22:48 +00:00
david
894f858fd4
Include <sys/types.h> in the PCAP_IS_SUITABLE test.
...
The lack of this was causing PCAP_IS_SUITABLE to fail on Arch Linux, at
least. I think that in some cases this caused both -L../libpcap and
-lpcap to be added to the linker line, which could cause an error
because of the need to link with -lnl. (We check for -lnl when
--with-libpcap=included is used (since r23163), but the PCAP_IS_SUITABLE
failure went around this check and allowed linking with the included
libpcap without checking whether -lnl is required.)
Here are reported build failures and responses:
http://seclists.org/nmap-dev/2011/q3/449
http://seclists.org/nmap-dev/2011/q4/33
http://seclists.org/nmap-dev/2012/q1/369
2012-03-04 05:18:08 +00:00
david
d7f56c9f4c
Typo.
2012-03-03 05:57:24 +00:00
david
52f0e1b0b5
Exit http-wordpress-plugins if identify_404 fails.
...
This is what other scripts that use identify_404 do.
2012-03-03 05:56:20 +00:00
patrik
2fa4cf467f
Fixed bug in srvloc library and broadcast-novell-locate script that would make
...
the script fail to complete in cases where no url was returned as part of the
srvloc reply. [Patrik]
2012-03-02 23:27:18 +00:00
patrik
480e5ac605
o [NSE] Added the library rpcap and the scripts rpcap-brute and rpcap-info
...
which perform brute force password guessing and extract information from the
WinPcap Remote Packet Capture daemon. [Patrik]
2012-03-02 12:39:18 +00:00
patrik
43253cea53
o [NSE] Added authentication support to MongoDB library and modified existing
...
scripts to support it. Added the script mongodb-brute to perform password
brute force guessing. [Patrik]
2012-03-02 12:28:30 +00:00
david
8bd550b2fd
Remove empty doc dir.
2012-03-01 22:32:11 +00:00
henri
b1086ac340
Added a --nsock-engine option to nmap, nping and ncat to enforce use of a
...
given nsock IO engine. [Henri]
2012-03-01 09:05:02 +00:00
fyodor
ee9b9eb0a7
Finished some small tasks
2012-03-01 09:02:16 +00:00
fyodor
1623bcfa66
Update --script-args to note that many scripts qualify their arguments with the script name, and that you can pass unqualified arguments to affect every script using that name. Also updated scripting.xml to emphasize that instead of using nmap.registry.args directly, scripts should get their arguments with stdnse.get_script_args. Regenerated the nroff too after making these changes to the source XML
2012-03-01 08:56:45 +00:00
fyodor
684f42c4ad
One more adjustment to the license text. Notes that Zenmap, Ncat, and Nping use this license. Note that contributions made directly in the src repository are treated the same as those in the mailing list.
2012-03-01 06:53:35 +00:00
fyodor
e96a7b7b24
Update the headers for each code file. This updates code copyright dates to 2012, notes the awesome NSE in the list of technology, and slightly rewords the derivative works clarification
2012-03-01 06:32:23 +00:00
david
f34f783ae7
Retrain IPv6 OS model.
2012-03-01 04:49:34 +00:00
david
9723dab809
Expand a Mac OS X IPv6 class.
2012-02-28 22:17:17 +00:00
fyodor
5d45743172
note a done task and add one for the next dev release
2012-02-28 21:30:54 +00:00
tomsellers
9f4fcc4da5
[NSE] Added support to broadcast-listener for extracting address, native vlan and management IP address from CDP packets.
2012-02-25 17:18:22 +00:00
