PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-24 00:19:01 +00:00
Code Issues Projects Releases Wiki Activity
5,872 Commits 2 Branches 0 Tags
d2bce72beeefea796e264aa46fd38c9db359e45c
Commit Graph

5872 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
david
58e9346684 Split apart the calls to inet_ntoa from r22818; we can't call it twice 
in the same statement or the static buffer is overwritten.
 2011-03-30 21:07:37 +00:00
david
61e8dfc660 Improve the message "WARNING: Unable to find appropriate interface for 
system route to..." to include the destination and netmask, not only the
gateway.
 2011-03-30 20:53:30 +00:00
djalal
fea17448d3 Adjust the output sample of the nsedoc. 2011-03-30 10:52:41 +00:00
fyodor
c4f133158b Add a real-life postrule example now that we have one 2011-03-29 00:01:58 +00:00
david
cd462ade8f Whitespace in dns.lua: Expand tabs, remove trailing space, change from 
3-space to 4-space indents.
 2011-03-28 22:52:37 +00:00
david
7453ec34d0 Change o.TimeSinceStartMS returning milliseconds to o.TimeSinceStart 
returning floating-point seconds. Everywhere o.TimeSinceStartMS was
called, the return value was being divided by 1000.0, which had the same
effect but would overflow when the difference exceeded about 25 days
(2^31 milliseconds). This patch is by Daniel Miller.
 2011-03-28 20:34:32 +00:00
david
0fb893af03 CHANGELOG typo, thanks Djala. 2011-03-27 22:21:24 +00:00
david
9449ead98e Oops, I got confused in my inbox and put Toni's name in place of Henri's 
for the ssh-hostkey postrule. Sorry Henri!
 2011-03-27 22:05:28 +00:00
david
2b898d61f7 o [NSE] ssh-hostkey now additionally has a postrule that prints hosts 
that have the same hostkey. [Toni Ruottu]
 2011-03-27 22:04:13 +00:00
david
0805e9d62e Add dns-nsec-enum to CHANGELOG. 2011-03-27 05:10:44 +00:00
david
03a42edfe5 Parse more than one type bitmap block in an NSEC record if present. 2011-03-27 05:07:26 +00:00
david
6d90b593b7 Change the "name" member of a decoded NSEC record to be called 
"next_dname" instead.
 2011-03-27 05:07:16 +00:00
david
4f054a058e Remove intermediate calculations from a decoded NSEC table: WinBlockNo, 
bmplength, and bin. Factor out a function to read the type bitmap.
 2011-03-27 05:07:03 +00:00
david
477bd66fc9 Merge r22369:22777 from /nmap-exp/david/nmap-nsec. This adds the 
dns-nsec-enum script, originally by John Bond and improved by him and
me.

Changes in dns.lua:
  Add dnssec option to dns.query that adds an OPT RR with the DO (DNSSEC
    okay) flag set.
  Add answer fetcher for NSEC records (unused currently).
  Add decoder for NSEC records.
  Add rudimentary handling of the additional section in dns.encode.
  Add a check that a decoder exists before trying to call it.
 
Also added a copy of the simplified BSD license that the new script is
under.
 2011-03-27 04:24:43 +00:00
david
e1e50c819d CHANGELOG: 
o Nmap no longer searches for data files (like nmap-services) in the
  current directory as a last resort. This is to reduce the chance of
  accessing an unexpected file in case the system-installed data files
  are not found. The main reason for searching the current directory
  was to support running ./nmap from a source directory. This is now
  supported by searching the directory containing the Nmap executable
  for data files. On non-Windows platforms, the executable directory
  followed by "../share/nmap" is also searched. Thanks to Solar
  Designed for implementation advice. [David]
 2011-03-26 06:48:36 +00:00
david
b9ffdfb9d0 Document new search path procedure in refguide.xml. 2011-03-26 06:48:34 +00:00
david
aed108fc8f Add a same_file function and use it before warning about data files in 
the current directory, to avoid warnings like

Warning: File ./nmap-services exists, but Nmap is using /home/david/nmap/nmap-services for security and consistency reasons.

when . and /home/david/nmap are the same directory.
 2011-03-26 06:48:31 +00:00
david
a9a84873f9 Add a new cnse.fetchscript, which first checks for an absolute path, 
then looks in the scripts subdirectory, then in the current directory.
cnse.fetchfile_absolute now checks for an absolute path, then calls
nmap_fetchfile if that fails (and no longer looks in scripts/). Use
cnse.fetchscript when accessing files that should be in the scripts
subdirectory.
 2011-03-26 06:48:29 +00:00
david
c8f79b8afe Remove the current directory from nmap_fetchfile. 2011-03-26 06:48:27 +00:00
david
85762f952f On non-Windows, search the binary path + "../share/nmap" too. 2011-03-26 06:48:25 +00:00
david
dc9c81fe16 Search the binary directory on every platform in nmap_fetchfile, not 
just on Windows.
 2011-03-26 06:48:23 +00:00
david
f3aca36534 Fix comment typo. 2011-03-26 06:48:21 +00:00
david
45814927a9 Add set_program_name and get_program_name functions to cache argv[0]. 2011-03-26 06:48:19 +00:00
david
02669cbfd8 Defer the calculation of the default XSL stylesheet until it's needed. 
This is going to depend on argv[0], so it can't happen in the NmapOps
constructor, which runs even before main.
 2011-03-26 06:48:17 +00:00
jah
5a32f584d4 Modified regex used to parse the 'last modified' line of whois assignments files 
to allow for the absence of the etag on that line.
 2011-03-24 12:49:00 +00:00
david
017bdb9f51 Regenerate (and manually merge) nmap-rpc from the master file at 
http://www.iana.org/assignments/rpc-program-numbers/rpc-program-numbers.xml.
Daniel Miller submitted this originally; I adapted his program to
generate this version of the file.
 2011-03-24 02:57:02 +00:00
david
73d6b82388 Canoncalize whitespace in nmap-rpc. 2011-03-24 02:57:01 +00:00
david
5de42aa6fb Add http-wp-plugins to NSE TODO. 2011-03-23 19:54:43 +00:00
david
c15f30736f Add new NSE TODO. 2011-03-23 01:28:57 +00:00
david
ae11175ad8 Put ssl-known-key in {"safe", "discovery", "vuln"} (was {"discovery"}). 2011-03-22 19:44:46 +00:00
david
6142158b43 Updates to ssl-known-key by Mak Kolybabi, 
http://seclists.org/nmap-dev/2011/q1/934. Change the database format.
Change the output.
 2011-03-22 19:44:45 +00:00
david
0e970b4bc6 ssl-known-key.nse: Use shortport.ssl. Rename ssl-fingerprints.txt to 
ssl-fingerprints; no extension appears to be the prevailing convention
in nselib/data. Allow comments and blank lines in ssl-fingerprints. Add
Little Black Box copyright and attribution to ssl-fingerprints. Boost
some print_debug thresholds.
 2011-03-22 19:44:42 +00:00
david
47557a108b o [NSE] Added ssl-known-key.nse, which checks SSL certificates against a 
list of certificates with known keys that have been extracted from
  firmware files. [Mak Kolybabi]
 2011-03-22 19:44:40 +00:00
david
ce23a35715 o [Ndiff] The Nmap banner (with the version number and date of the scan) 
is not printed unless there were other differences. This makes Nidff
  produce no output when there wre no differences other than the version
  number and date. Dr. Jesus contributed an initial patch. [David]
 2011-03-22 18:59:02 +00:00
david
93aa8e052b More names for http-vhosts from Carlos Pantelides. 2011-03-21 23:19:36 +00:00
david
e48a60248d o [Zenmap] Fixed a bug in the option parser: -sN (null scan) was 
interpreted as -sn (no port scan). This was reported by
  shitaneddine. [David]
 2011-03-20 08:37:39 +00:00
patrik
4528f52188 Deleted the ms-sql-discover script per the following discussion: 
http://seclists.org/nmap-dev/2011/q1/725 [Patrik]
 2011-03-19 20:09:43 +00:00
fyodor
0e68420cc6 Oops, I forgot to add the comment symbols to my nsedoc @output changes to this script. 2011-03-19 18:58:31 +00:00
fyodor
8e9ef47bff Add a header line to rpcinfo program listing. I also updated the @usage docs to include results against 58.224.52.156 2011-03-19 08:57:17 +00:00
patrik
b62cebc7b3 o [NSE] Fixed a problem in oracle-brute that would fail due to connection 
exhaustion. Fixed some debugging messages in the brute library [Patrik]
 2011-03-19 08:26:33 +00:00
fyodor
e896e27e8a Put rpcinfo in the default category and also improve the NSEDoc documentation for it slightly 2011-03-19 08:06:34 +00:00
robert
7b27940ada Updated the hash information to include PHP/5.3.6 (released today). 2011-03-17 15:42:56 +00:00
fyodor
1d836ec35c Change link -- we're now using Nmap subdir for Nmap pages on secwiki 2011-03-16 22:46:17 +00:00
fyodor
31eedf7cb3 Note that Windows releases earlier than Windows XP SP1 are no longer supported. Remove most information about support on those systems, but link to a new wiki page with that information instead: https://secwiki.org/w/Nmap_On_Old_Windows_Releases 2011-03-16 08:22:28 +00:00
david
5aa0e137b3 o [Ndiff] Fixed the Mac OS X packages to use the correct path for 
Python: /usr/bin/python instead of /opt/local/bin/python. The bug
  was reported by Wellington Castello. [David]
 2011-03-15 22:09:10 +00:00
patrik
b844caa6cd Changed the way cookie table fields are created in http.lua. This change 
ensures that attribute names are always treated as lower case. [Patrik]
 2011-03-15 21:42:49 +00:00
fyodor
b5a8cbfd02 Note a couple done tasks, add a new Zenmap task 2011-03-15 20:48:42 +00:00
david
4fc1ea786b Remove redundant "Result:" label from dns-brute.nse output. Use the 
"name" feature of format_output instead of inserting putative data rows
for labels.
 2011-03-15 17:12:45 +00:00
david
72415c63c2 Remove Vim modeline from mssql.lua; was interfering with NSEDoc parsing. 2011-03-13 04:33:31 +00:00
david
656109a31f Add a link to Nping Echo Mode documentation. 2011-03-13 02:02:29 +00:00