PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-22 07:29:01 +00:00
Code Issues Projects Releases Wiki Activity
7,705 Commits 2 Branches 0 Tags
cdfa6e711d92e294d76a6c36a73011b51b55c096
Commit Graph

466 Commits

Author SHA1 Message Date
kris
f72667fe44 Syncing the service names between nmap-service-probes and nmap-services 
$ svn diff | grep '^+[^+#]' | wc -l
101

nmap-service-probes

backupexecra    => backupexec-remote
bitdefender-ctl => bitdefender-ctrl
bittorent       => bittorrent
chat-ctl        => chat-ctrl
dantzretrospect => retrospect
directconenct   => directconnect
fw1-topo        => fw1-topology
icecreamd       => icecream
issrealsecure   => iss-realsecure
landesk         => landesk-rc
memcached       => memcache
msactivesync    => activesync
oracle-dbsnmp   => dbsnmp
policyd         => policy
pppd            => ppp
rpc             => rpcbind
spamd           => spamassassin
ssl/imap        => imaps
ssl/pop3        => pop3s
ssl/sophos      => sophos/ssl
ssl/vmware-auth => vmware-auth/ssl
telnet-ssl      => telnets
xmailctl        => xmail-ctrl

nmap-services

afpovertcp            => afp
bittorent-tracker     => bittorrent-tracker
boinc-client          => boinc
cfingerd              => finger
dantz                 => retrospect
FW1-mc-fwmodule       => fw1-mc-fwmodule
Fw1-mc-gui            => fw1-mc-gui
FW1-or-bgmp           => fw1-or-bgmp
FW1-secureremote      => fw1-secureremote
gkrellmd              => gkrellm
iss-realsecure-sensor => iss-realsecure
macon-{tcp,udp}       => macon
maybeFW1              => maybe-fw1
maybeveritas          => maybe-veritas
nessusd               => nessus
NetBus                => netbus
opsec_*               => opsec-*
orasrv         [udp]  => oracle
postgres              => postgresql
PowerChute            => powerchute
PowerChutePLUS        => powerchuteplus
tor-controlport       => tor-control
tor-socksport         => tor-socks
tor-transport         => tor-trans
UPnP                  => upnp
VeritasBackupExec     => backupexec
VeritasNetbackup      => netbackup
 2008-04-29 17:03:09 +00:00
kris
10899aba9b Adding a service-probes match for the Motorola WE800G bridge. I used the WR850G line directly below it as a starting point since I have both of these devices on my LAN--they are extraordinarily similar. 2008-04-14 04:25:40 +00:00
fyodor
83fe88c0f8 apply patch from Tom Sellers which modifies ms-sql-s signatures; I made minor changes 2008-04-05 23:44:30 +00:00
doug
507e720217 vsftpd 00PS->OOPS patch from Kris 
and
citrix metafrme -> metaframe from James Beers
 2008-03-31 22:56:33 +00:00
bmenrigh
6dc4888538 Round two of UCSD services. This bunch was our most common set and 
represents a significant portion of our total returned fingerprints.

I especially liked adding the X-ray machine...

Here is the "changelog":

* Added Tolis BRU (Backup and Restore Utility)
* Added HP Digital Sender Service client
* Added Apple iChat Server file transfer proxy
* Added PBS/Maui Roll Rocks Cluster service
* Added CommVault Galaxy data backup
* Added Ad-Aware SE Enterprise
* Added Pharos Notify printing client
* Added Apple Remote Events
* Added Novell Groupwise SSL match so the SSL tunneling works
* Added Novell Groupwise HTTP services (holy crap there are a lot!)
* Changed "Compaq Diagnostis httpd" to correct spelling and removed o/Windows/
* Changed winshell to include i/**BACKDOOR**/
* Added Bruker AXS X-ray controller status (I was tempted to set d// to death-ray :-p)
 2008-03-25 01:19:43 +00:00
bmenrigh
8391686eff Adding my first round of changes for UCSD services. This is really 
just the tip of the iceberg so there is lots more to come as I work
through everything.

Here is the list of changes:

* Added XML softmatch (commented out for the time being)
* Added Juniper Junoscript XML interface match
* Changed "ROOT SHELL" match to include i/**BACKDOOR**/
* Added FreeBSD rshd match
* Added IQinVision IQeye3 service matches (telnetd, fingerd, httpd, 
logind rtspd)
* Added d/cluster/ as a new device type
* Added Ganglia XML Grid monitor detection
* Added Barracuda Networks Spam Firewall smtpd (default banner only)
* Added Serv-U SSL required banner (error 431)
* Changed Safenet to SafeNet in all locations
* Added SafeNet Sentinel Keys License Monitor httpd
* Changed "vsftpd or WU-FTPD" to a softmatch because much more than just 
vsftpd and WU-FTPD match it
* Added Treck Embedded ftpd
* Changed Sony PCS-G70 telnet banner to be more generic so it can match 
G50, etc
* Changed SubEthaEdit service to BEEP
* Added Apple Xgrid Controller (BEEP/ANTP protocol)
* Added dCache distribute storage node
* Changed the nessus match lines to anchor to the start of a line and 
upped their rarity to cut down on false positives
* Added two matches for Dell OpenManage (one GetRequest, one HELP)
* Added HighPoint RAID Raidman web server
* Added Ruckus Media Player (Ruckus music service client)
 2008-03-20 02:22:05 +00:00
bmenrigh
dc21a22aca Dropping stray '*' on previous Tandberg MXP match line. Tom may be able 
to shed more light on what he meant by it.
 2008-03-19 23:50:52 +00:00
bmenrigh
5394e1eb01 Tandberg MXP Video Conference appliance telnetd. Thanks to Tom Sellers 
for the patch.
 2008-03-19 23:29:49 +00:00
doug
4b1398933c AXIS webcam ftpd standardisation. Thanks to Lionel Cons 2008-03-19 02:36:08 +00:00
doug
749749558e New match line for another version of VxWorks FTPd 
From Lionel Cons
 2008-03-17 22:08:35 +00:00
doug
4179a7d524 Sophos Message Router match lines from Brandon Enright 2008-03-08 05:40:13 +00:00
doug
1af9e3fa14 Firebird RDBMS probe from Brandon Enright 2008-03-08 05:35:30 +00:00
doug
cfcfe163d5 Beast trojan probe from Brandon Enright 2008-03-08 05:28:24 +00:00
doug
5ca15a1dab New probe for memcached 2008-02-22 06:54:59 +00:00
fyodor
f7628775ab applied patch from William Stearns which moves hyphens to the beginning of character classes ([]) when they appear in other positions. This doesn't matter for our regex engine (PCRE), but is important for the python parser he is writing. His way is cleaner, anyway. 2008-02-21 06:29:44 +00:00
fyodor
11cbdfb24a trivial -- just changed a url 2008-02-10 23:20:42 +00:00
fyodor
e56071dc47 add a couple match lines from Thomas Buchanan 2008-02-08 18:29:17 +00:00
fyodor
3511ce0a27 improve the ms-sql service matching scripts. The service name was also changed to ms-sql-s to match the name in nmap-services. [Thomas Buchanan] 2008-02-08 00:25:24 +00:00
fyodor
6a0379d4e6 canonicalize a bunch of service names (for example capitalizing D-Link and Netgear in consistent way). Patch from Brandon Enright 2008-02-07 07:20:57 +00:00
doug
79c5a24d59 Spelling fix from James Beers 2008-02-05 20:19:55 +00:00
fyodor
5220e7382a add dnsmasq DNS server matchlines (was previously detected as bind). Patch by Sven Klemm 2008-01-31 05:48:16 +00:00
doug
23774e5719 STOMP probe from Lionel Cons 2008-01-17 23:31:19 +00:00
doug
d30912e149 Service corrections for Q4'07 2008-01-17 20:46:32 +00:00
fyodor
29c912f394 URL change from http://insecure.org/nmap/* to http://nmap.org/* 2008-01-17 07:22:03 +00:00
doug
5b8b97e88c Q4 2007 Service Fingerprint update (a few more to come still) 2008-01-17 00:36:16 +00:00
fyodor
bee7421e19 new openssh match line from Lionel Cons 2008-01-15 18:55:44 +00:00
doug
77445b81b1 Changed the MSSQL catch-all to a softmatch as per Fyodor's suggestion. 2008-01-14 02:20:17 +00:00
doug
09eac45476 Added new MSSQL probe from Tom Sellers. 2008-01-13 23:00:16 +00:00
fyodor
aae2fdc61f add an radmin softmatch 2008-01-13 03:52:02 +00:00
fyodor
0190aa1443 more improvements to new radmin signatures 2008-01-13 03:45:07 +00:00
fyodor
7ebc1027a1 modify new radmin sigs a bit -- add vendor famatech 2008-01-13 03:36:39 +00:00
fyodor
1feef872b2 o Add Radmin remote control software probe and signatures to the Nmap 
version detection DB. [Tom Sellers, Fyodor]
 2008-01-13 03:33:50 +00:00
fyodor
7a7f415586 applied an nginx http proxy signature patch from Sven Klemm 2008-01-05 07:15:41 +00:00
doug
296e841e13 New OfficeScan probe from Tom Sellers 2007-12-30 08:01:52 +00:00
fyodor
c00b3ce6d7 add _ to the allowed workgroup name regex for netbios-ssn matchlines. Thanks to Bill Jaeger for the suggestion and partial patch 2007-12-30 07:46:01 +00:00
doug
a7ebc33b1b Moved BIND match line above a "catch all" line. 
Thanks to Kris for spotting this.
 2007-12-23 21:23:09 +00:00
fyodor
aa496f2016 improve nginx detection. patch from Sven Klemm. See http://seclists.org/nmap-dev/2007/q4/0682.html 2007-12-21 01:18:17 +00:00
fyodor
fba58f15e8 improve a mysql signature (suggested by Lionel Cons) 2007-12-19 17:29:10 +00:00
doug
c7e7cb38b2 I've seen "OpenBSD identd" on a linux box so I 
removed the o/OpenBSD/
 2007-12-16 00:14:07 +00:00
doug
edb0e218ec s modifiers added to many match lines. 
Suggested by Lionel Cons.
 2007-12-16 00:11:53 +00:00
doug
48f70dab55 Changed some protocol names to remove trailing 
d's where it could be confusing. Thanks to Lionel Cons
for the suggestion.
 2007-12-15 23:34:47 +00:00
doug
2bebb8a1f4 Small bug in Polycom ViewStation match line 2007-12-12 21:02:13 +00:00
doug
bdbf7b1cd1 Updated the time match lines as suggested by Lionel Cons 2007-12-10 19:49:18 +00:00
doug
07b0422183 Bug in Transarc AFS match line found by Lionel Cons 2007-12-10 19:42:10 +00:00
fyodor
943ff9cae2 some globus gridftpd signature improvements from Lionel Cons 2007-12-07 04:28:02 +00:00
doug
eec66c8d47 Q4 '07 Service Submission Update 2007-12-05 17:54:38 +00:00
fyodor
2c02714e3f enhance radmind service detection signature and add to nmap-services; patch from Matt Selsky 2007-11-29 06:05:20 +00:00
fyodor
69bc1886c9 gmail imapd patch from Matt Selsky 2007-11-01 05:38:13 +00:00
doug
e52b86d3ea Fixed HP-UX false positives 2007-10-30 17:41:51 +00:00
doug
eceea7ea95 Removed the Amazon httpd match line because it is too specific 2007-10-13 00:26:57 +00:00