PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-01-07 23:19:02 +00:00
Code Issues Projects Releases Wiki Activity
6,875 Commits 2 Branches 0 Tags
cc0f2e1e545d78e72002d8e56955a9f2f172e838
Commit Graph

6875 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
david
cc0f2e1e54 Don't use LIFC_UNDER_IPMP if it's not defined. 2012-05-10 20:45:30 +00:00
aca
e5b0d24607 Small patch to rdp-vuln-ms12-020.nse 
Windows resets the connection if we try to reconect too fast to the same port after doing a SYN scan and not completing the handshake. In my tests, sleep values above 0.1s prevent the connection reset so it's set to 0.2 .
 2012-05-08 20:51:16 +00:00
paulino
96c6cd7780 Adds http-vuln-cve2012-1823.nse - This script detects PHP-CGI installations that are vulnerable to CVE-2012-1823. This vulnerability is critical and it allows attackers to retrieve source code and execute code remotely. 2012-05-08 05:56:04 +00:00
david
49aafa4a38 Use LIFC_UNDER_IPMP when enumerating Solaris interfaces. 
An IPMP interface is a special kind of interface made up of other
interfaces. The other interfaces are hidden by default unless this flag
is passed to ioctl(SIOCGLIFCONF). This allows me to scan over an IPMP
interface in a simple setup.
 2012-05-07 21:41:57 +00:00
fyodor
8742d23477 add a feature creeper task idea for resolving compile warnings 2012-05-07 21:06:51 +00:00
patrik
08d35bad20 Added IP information to the returned result and added support for collecting multiple 
responses.
 2012-05-07 20:16:15 +00:00
patrik
bc7f0106a2 o [NSE] Added the script broadcast-tellstick-discover, which discovers Telldus 
Technologies TellStickNet devices on the LAN. [Patrik Karlsson]
 2012-05-07 20:01:25 +00:00
patrik
d02dafb630 o [NSE] Added the Apache JServer Protocol (AJP) library and the scripts 
ajp-methods, ajp-headers and ajp-auth. [Patrik Karlsson]
 2012-05-07 18:49:22 +00:00
patrik
cec2dd7816 Fixed a bug reported by Josh Greenwood that would incorrectly detect a host having IP 
forwarding enabled if the scanned host was the same as the probe target.
 2012-05-05 19:44:46 +00:00
david
9dbfcba8d2 extrainfo shouldn't be a <special field>. 2012-05-05 18:02:45 +00:00
david
ec027e9085 Let get_best_osmatch keep the original XML ordering. 
Ties in accuracy are broken by osmatches' relative position in the XML
file, because Nmap writes results in descending accuracy order.
 2012-05-05 18:02:43 +00:00
david
cac71422e8 Make osclasses a substructure of osmatch. 2012-05-05 18:02:41 +00:00
david
56b7063aa9 Use a header file constant for xmloutputversion. 2012-05-05 18:02:37 +00:00
david
0c8d6c9af1 Typo. 2012-05-05 18:02:34 +00:00
david
1599aa6fe8 Make osclass XML elements children of the osmatch element they belong to. 
Add the --deprecated-xml-osclass to restore the old output.
 2012-05-05 18:02:33 +00:00
david
20b56cb6a2 Factor out XML osmatch and osclass logging. 2012-05-05 18:02:30 +00:00
david
ef2987bc68 Don't print_iflist until after win_init. 2012-05-05 00:43:35 +00:00
fyodor
a83f94efcc Add a planned change to OS detection XML output, and note a done task 2012-05-04 21:20:19 +00:00
david
5067f767b7 Add the new <target> element to XML output. 
This element is intended to report information about command-line target
specifications. Now it's used with status="skipped" to indicate that a
specification was ignored.
 2012-05-04 15:04:41 +00:00
patrik
a3efccc448 Improved documentation for mmouse-exec and mmouse-brute. 2012-05-01 20:08:22 +00:00
patrik
2b2f42200e Applied patch to ip-forwarding.nse from Daniel Miller that fixes bug that would 
incorrectly detect hosts as having IP forwarding enabled, allthough they did
not. [Daniel Miller]
 2012-05-01 19:09:58 +00:00
patrik
7f12d63392 o [NSE] Added the script mmouse-exec that connects to a Mobile Mouse server, 
starts an application, and sends a sequence of keystrokes to it. [Patrik
  Karlsson]

o [NSE] Added the script mmouse-brute that performs brute force password
  auditing against the Mobile Mouse service. [Patrik Karlsson]
 2012-05-01 14:29:36 +00:00
patrik
cceb2ff10a o [NSE] Added the script cups-queue-info that lists the contents of a remote 
CUPS printer queue. [Patrik Karlsson]
 2012-05-01 14:23:40 +00:00
patrik
b4079e90ff o [NSE] Added the script ip-forwarding that detects devices that have IP 
forwarding enabled (acting as routers). [Patrik Karlsson]
 2012-05-01 14:21:00 +00:00
david
ac3773a0e4 CPE for dnsmasq. 2012-04-27 06:27:05 +00:00
david
d78d0c37e2 Add CPE for mini_httpd. 2012-04-27 06:27:04 +00:00
david
ac8b76ec81 Rework a loop to give access to the condition. 2012-04-27 06:27:03 +00:00
david
bd1b2ccf98 Make it a warning (not a fatal error) when there's a problem with an IPv4 spec. 
This is the way it worked for IPv6 (with the exception of a slash in an
IPv6 address, which has also been made into a warning)--warn about the
bogus specification and carry on with the other targets.

The main use for this is preventing the whole scan from being stopped
when a bad specification appears in a hostgroup after the first.
 2012-04-27 06:27:01 +00:00
henri
134417ea97 Moved two cleanup statements out of an 'if (debug) {}' block. The TCP version 
below seems correct, or at least different (am I fixing the wrong one? :)
 2012-04-26 20:53:50 +00:00
david
3e1248e0f4 FC task on hierarchical OS classification. 2012-04-25 06:13:46 +00:00
patrik
16ddb3c167 Fixed missing script name in @usage 2012-04-24 20:14:13 +00:00
fyodor
81069ba625 Note in a couple more places that specifying --data-length 0 will disable port/protocol payloads 2012-04-24 04:18:30 +00:00
fyodor
c0df211809 updates from chat w/David. FC tasks, some NSE tasks, and note some tasks which we actually finished a while ago 2012-04-23 23:52:10 +00:00
patrik
ab33bede2c Added ICMP echo request support to the packet library. 2012-04-22 18:42:41 +00:00
david
e819beaaae Make changes for IPv6-only interfaces on Solaris. 
First try SIOCGLIFFLAGS with an IPv4 socket, then again with an IPv6 socket if that fails. Use that same socket for the other ioctl queries.

Avoid adding an IPv6 alias address that is the same as an IPv6 primary address. This is the same as an existing check in the IPv4 case.

Fix a loop exit boundary condition check.
 2012-04-22 02:13:16 +00:00
patrik
2de40c99b4 o [NSE] Added the script samba-vuln-cve-2012-1182 which detects the SAMBA CVE 
2012-1182 vulnerability. [Aleksandar Nikolic]
 2012-04-21 22:44:23 +00:00
patrik
2e308b771f o [NSE] Added the dns-check-zone script that checks DNS configuration against 
best practices including RFC 1912. [Patrik Karlsson]
 2012-04-21 22:28:30 +00:00
patrik
86f58e1090 Add support for returning non authoritative answers as packets 2012-04-21 21:36:51 +00:00
david
7cd9a0f2d2 Make some #ifdef guards actually use the symbol they're guarding. 2012-04-20 23:57:43 +00:00
patrik
8e5bc1e26e o [NSE] Added the http-gitweb-projects-enum that queries a gitweb for a list 
of Git projects, their authors and descriptions. [riemann]
 2012-04-20 12:46:49 +00:00
robert
a9d9983fd0 Updated the hash information to include PHP/5.4.0. 2012-04-19 15:01:27 +00:00
david
f511045723 Make the two versions of target_needs_new_hostgroup the same. 
Up to data structure differences. I'm not sure why they differed to
begin with, though I remember writing the comment that explains that
they differed. This is related to a problem reported by Daniel Miller:
http://seclists.org/nmap-dev/2012/q1/675.
 2012-04-17 22:55:09 +00:00
david
89987139db Fix the check for duplicate addresses in target_needs_new_hostgroup. 2012-04-17 22:55:09 +00:00
fyodor
bdbea7be62 some updates from chat w/David 2012-04-17 21:54:29 +00:00
david
8ceb88911c Simplify some code in targets-sniffer.nse. 2012-04-17 21:47:31 +00:00
david
870aed3393 Allow targets-sniffer.nse to sniff IPv6 addresses. 
Patch by Daniel Miller.
 2012-04-17 21:47:30 +00:00
patrik
9a9cf1fa7d Updated the description of http-icloud-sendmsg 2012-04-17 20:16:07 +00:00
patrik
3386ba1e2e o [NSE] Added the script traceroute-geolocation that queries geographic 
locations of each traceroute hop and allows to export the results to KLM,
  allowing the hops to be plotted on a map. [Patrik Karlsson]
 2012-04-17 19:39:27 +00:00
patrik
15a790d490 o [NSE] Added the ipp library and the script cups-info that lists available 
printers by querying the cups network daemon. [Patrik Karlsson]
 2012-04-17 19:37:22 +00:00
patrik
8ca252235e o [NSE] Added the mobilme library and the scripts http-icloud-findmyiphone and 
http-icloud-sendmsg, that finds the location of iOS devices and provides
  functionality to send them messages. [Patrik Karlsson]
 2012-04-17 19:35:44 +00:00