PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-19 22:19:02 +00:00
Code Issues Projects Releases Wiki Activity
7,705 Commits 2 Branches 0 Tags
cdfa6e711d92e294d76a6c36a73011b51b55c096
Commit Graph

7705 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
david
aca56d8f6e Handle the special case of an empty services list. 
There should be better error handling here in general, but an empty
string is something that Nmap can legitimately emit.
http://seclists.org/nmap-dev/2012/q2/876
 2012-06-21 00:56:54 +00:00
david
6eb37db01b Simplify output_rangelist_given_ports. 2012-06-20 23:08:33 +00:00
david
42f71759c2 Use one, not two, spaces after "WARNING:". 
There were more cases of one space than two.
 2012-06-20 20:13:51 +00:00
kroosec
d6015faec5 Added intensive mode and Naxsi fingerprints to http-waf-fingerprint. 2012-06-20 20:04:08 +00:00
david
360ba052e9 AUTH_UNIX support for rpc.lua. 
http://seclists.org/nmap-dev/2012/q2/54

This patch is from Daniel Miller. He writes:

I've just finished enhancing the nfs-ls, nfs-statfs, and nfs-showmount
scripts so that they can run based on version detection information,
for cases where the portmapper is firewalled. For nfs-ls and
nfs-statfs, this required making a hostrule to check that both a
mountd service and a nfs service were detected. In the process, I
ended up adding the AUTH_UNIX flavor to rpc.lua, since the RFC states
that AUTH_NULL can only be used for the NULL procedure (and my Linux
nfs-kernel-server was enforcing that).

Other minor changes:

* If running privileged, attempt to bind to a reserved port. Many NFS
servers refuse to talk to source ports >1024, as a "security measure"
* handle an odd case in nfs-ls where READDIRPLUS does not return file
attributes. Chose to use all ?'s, but in the future maybe a direct
GETATTR call?
* remove reference to nfs.dirlist argument from nfs-ls doc, since it is unused
 2012-06-20 02:12:58 +00:00
david
be24e6d5c4 Catch exceptions when running a sub-Nmap in the profile editor. 2012-06-19 17:10:58 +00:00
david
8e5bfd5fa7 Remove unused member. 2012-06-19 17:10:57 +00:00
david
373d00fcee Also handle subclasses of OSError when running an executable. 
We checked for OSError so that we could give a useful custom error
message on ENOENT. But on Windows, it is a WindowsError, which is a
subclass of OSError.
 2012-06-19 16:43:42 +00:00
david
7f5d53184c Uniform handling of makefile.dep in makefiles. 
"make clean" keeps makefile.dep and "make distclean" deletes it. This
patch is by Michael McTiernan.

http://seclists.org/nmap-dev/2012/q2/827
 2012-06-19 14:06:49 +00:00
sean
e3dc67a44d Added error handling code for the loopret variable that was causing this warning"EchoServer.cc: In member function ‘int EchoServer::start()’: 
EchoServer.cc:1403:25: warning: variable ‘loopret’ set but not used [-Wunused-but-set-variable]", by simply mimicing the other error handling around nsock_loop elsewhere.
 2012-06-19 03:38:04 +00:00
david
f7d8aa212f Remove Recvfrom wrapper. 2012-06-19 02:53:01 +00:00
david
c5b818fdce Remove Recv wrapper. 2012-06-19 02:53:00 +00:00
david
04e0503135 recv and send error checking in ncat_listen_dgram. 2012-06-19 02:52:58 +00:00
david
a9a621f5bd Make ncat --output logging work in UDP mode. 2012-06-19 02:52:57 +00:00
david
9e553a2203 Add test for --output logging. 
Fails for UDP, as reported at http://seclists.org/nmap-dev/2012/q2/805.
 2012-06-19 02:52:56 +00:00
david
a7bc517df2 Sean is looking at script results sorting. 2012-06-19 02:52:53 +00:00
sean
e53b573688 Added -Wno-deprecated-declarations to the make file to supress the warning 
"nmap-update.c: In function ‘checkout_svn’:
nmap-update.c:894:2: warning: ‘svn_client_checkout2’ is deprecated (declared at /usr/include/subversion-1/svn_client.h:1072) [-Wdeprecated-declarations]" 
Because as was pointed out in http://seclists.org/nmap-dev/2012/q2/818 the SDK for OSX doesn't yet support SVN3
 2012-06-19 02:37:51 +00:00
sean
957c035603 Added a patch to correct the warning 
"test/test-wildcard.c: In function ‘test’:
test/test-wildcard.c:159:5: warning: value computed is not used [-Wunused-value]
I simpily voided the BIO_destroy_bio_pair return value which was a long wrapped value from OPENSSL.
 2012-06-19 02:13:08 +00:00
david
bc72a02afa Update http-title @output. 2012-06-19 01:55:15 +00:00
david
607b209fd4 Whitespace. 
indent -kr -i4 -nut -l0 -ss -T size_t *.c
with manual adjustments.
 2012-06-19 00:21:27 +00:00
aca
7e47c6507d Added pcanywhere-brute script 2012-06-18 18:16:50 +00:00
aca
5c2db9d06f Few variables were not declared as locals. This fixes it. 2012-06-18 14:44:55 +00:00
kroosec
1bfc65312a Small @usage fix in sip-enum-users. 2012-06-17 22:56:30 +00:00
patrik
fefb5f8445 fixed parsing failure resulting in empty results due to additional whitespace 
issue in regex of http-robtex-shared-ns.nse.
 2012-06-17 18:10:34 +00:00
robert
33e9bf8d7b Updated the hash information in http-php-version to include PHP/5.4.4 and 5.3.14. 2012-06-16 21:41:46 +00:00
patrik
7d01a00cfc bug fix in db2-das-info for error in replacement string; 
invalid use of '%' in replacement string
 2012-06-16 19:58:45 +00:00
fyodor
b70e4f71cf Bump the Nmap version number in SVN up to 6.02 2012-06-16 19:44:58 +00:00
fyodor
5fc6887c01 Regenerate configure. This regenerated version seems to include more of the Lua 5.2 changes than appear in trunk 2012-06-16 19:44:25 +00:00
fyodor
1d64004a6d note some finished items 2012-06-16 19:41:18 +00:00
fyodor
5fd8b52973 Just made the Nmap 6.01 release -- note the changes which made it into the release (we cherry picked the most important) 2012-06-16 19:39:41 +00:00
batrick
9a0e881b2b Upgrading to Lua 5.2.1. (Should be harmless upgrade, bug-fix only.) 2012-06-16 06:02:57 +00:00
aca
8ad2c789b9 Added missing library requirements to dns-nsec3-enum 2012-06-15 23:37:29 +00:00
perdo
b10119bd9f Added http-rfi-spider script that spiders webservers in search of RFI vulnerabilities. 2012-06-15 22:37:33 +00:00
patrik
be0ebe8859 Fixed a bug that would make the smb-system-info script fail, due to a trailing 
zero terminator in the processor count, resulting in a failure to convert the
string to a number.
 2012-06-15 21:43:41 +00:00
patrik
c80a28f5f2 Add netbios name lookup caching code in order to avoid multiple lookups for 
the same host.ip.
 2012-06-15 21:26:26 +00:00
david
c9c80ffc63 Pass -Wno-uninitialized in liblinear build to suppress a warning. 2012-06-15 19:36:41 +00:00
patrik
bb359adaa1 Played a round of nse_check_globals and fixed a bunch of reported problems. 2012-06-15 19:32:36 +00:00
patrik
38b26d0ccc fixed a bug in the pop3-capabilities script that would fail parsing the 
response from some servers.
 2012-06-15 18:32:40 +00:00
david
65c4f0f6d7 Capitalization of pcAnywhere. 2012-06-15 16:33:47 +00:00
david
250520ed17 Add CPE for pcanywheredata. 2012-06-15 16:22:24 +00:00
kroosec
f73e6665a1 Renamed Packet:ip6_set_len into Packet:ip6_set_plen for consistency. 2012-06-15 16:09:16 +00:00
kroosec
6f29a6a1d4 Fixed a bug in packet.lua library that caused tcp_data_length to have an incorrect size in IPv6 packets due to IPv4 packet length and IPv6 payload length fields being used the same way to calculate tcp_data_length. 2012-06-15 16:08:00 +00:00
kroosec
08e2f98ebe Added Packet:ip6_set_len(plen) function to set IPv6 payload length field. 2012-06-15 15:13:20 +00:00
patrik
a0a50e9f47 Commited a patch to dns-zone-transfer by Dan Miller with a slight change. 
Unhandled records are returned as hex strings, rather than being url escaped;
http://seclists.org/nmap-dev/2012/q2/558
 2012-06-15 14:58:32 +00:00
david
8bc789855e TODO for Ncat proxy name resolution. 
http://seclists.org/nmap-dev/2012/q2/768
 2012-06-15 13:44:00 +00:00
aca
14e9c1b66d Wrong @usage descriptions fix 2012-06-15 13:24:51 +00:00
patrik
cfdf67f8c7 Applied patch from Dan Miller that adds new suffixes and cleans up the 
blacklisting code of the httpspider; http://seclists.org/nmap-dev/2012/q2/737
 2012-06-15 10:17:09 +00:00
patrik
709fce67b1 Applied patches from Dan Miller to fix bugs in http and sslcert libraries; 
http://seclists.org/nmap-dev/2012/q2/696
 2012-06-15 10:07:32 +00:00
aca
2564f0bf03 added Daniel's patch 2012-06-14 17:19:03 +00:00
kroosec
00f48c547f http-waf-fingerprint: small change to ouput syntax. 2012-06-14 11:42:49 +00:00