PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-01-20 21:29:06 +00:00
Code Issues Projects Releases Wiki Activity
9,190 Commits 2 Branches 0 Tags
d4cf544df6c80098d9b8dda92ee312e24d02c1db
Commit Graph

1692 Commits

Author SHA1 Message Date
paulino
d98fd9c909 Adds mikrotik-routeros-brute to the CHANGELOG. 2014-07-30 03:51:56 +00:00
dmiller
b822aa9785 Fix Ncat's SOCKS5 password auth 
See http://seclists.org/nmap-dev/2014/q3/4
 2014-07-25 15:07:44 +00:00
dmiller
ec9074f718 Correct "it's" to "its" where necessary 
it's = it is
its = belonging to it
 2014-06-19 04:58:46 +00:00
dmiller
e69325c0f8 Add s7-info script, for more SCADA/ICS enumeration 2014-06-18 02:53:29 +00:00
jay
36f15bdfb9 Add some CHANGELOG entries for recent changes 2014-06-15 16:55:39 +00:00
dmiller
635495a018 Modify libpcap configure script to disable unused features 
bluetooth, usb, usb-can, and dbus sniffing. Dbus support caused a build
problem on CentOS 6.5. Would have preferred to pass these configurations
from our own configure script, but AC_CONFIG_SUBDIRS does not allow for
it.
 2014-06-11 18:19:25 +00:00
dmiller
8c82e5e3fe New option --noscript turns off script scanning 
I often need something like this when creating and testing new service
probes. It's handier than modifying script.db every time to remove
the "version" category.
 2014-06-08 02:49:50 +00:00
dmiller
415e2671ab New NSE script for SCADA/ICS, bacnet-info 2014-05-28 13:54:05 +00:00
patrik
c950dcb154 Squashed commit of the following: 
commit a78b6142449b71ccd1cd7061b5363f6882b2e00b
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun May 25 21:19:22 2014 -0400

    fix indentation

commit 5e61eba30f98343fb172687bd377acae6cb9e242
Merge: d446fa7 9696dd5
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun May 25 21:15:50 2014 -0400

    Merge branch 'master' into anyconnect

commit d446fa76181d97287604b48719dd3f714987b775
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun May 25 21:15:09 2014 -0400

    Update CHANGELOG

commit 1590b8a8598bfd06c767c31312dc56c8e306c556
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun May 25 21:13:27 2014 -0400

    update script.db

commit 93eb927e21d3e3702da36668628b70c42f14f0db
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sun May 25 21:09:51 2014 -0400

    update anyconnect library to better capture version
    add missing libraries http-cisco-anyconnect.nse
    add new scripts to detect vulnerabilities cve2014-2126 through 2129

commit 92fecad07d340e60abbe502a4541d6e4f71af224
Author: Patrik Karlsson <patrik@cqure.net>
Date:   Sat May 24 09:09:14 2014 -0400

    initial commit
 2014-05-26 01:28:38 +00:00
dmiller
ed22166b3f Add enip-info NSE script for EtherNet/IP 
A contribution from the folks at Digital Bond
(http://www.digitalbond.com/), part of their Redpoint Project
(https://github.com/digitalbond/Redpoint/).
 2014-05-22 18:25:09 +00:00
jay
f2e162d224 Fixed a bug which caused Nmap to be unable to have any runtime interaction when called from sudo or from a shell script 2014-05-21 17:01:00 +00:00
jah
c4fc2529a8 Update the way queries to ARIN are formed: from "+ <IP>" to "n + <IP>". 
Update CHANGELOG with recent improvements to whois-ip.nse.
 2014-04-21 14:20:36 +00:00
fyodor
ac092cc153 Update CHANGELOG for upcoming 6.46 bugfix release 2014-04-18 04:34:49 +00:00
tomsellers
cacf764754 Change to citrixxml.lua to improve performance of citrixlua library when handling large XML responses containing application lists. Large responses were causing the script to consume 100% CPU for extended periods of time. 
Reference:
http://seclists.org/nmap-dev/2014/q2/74
 2014-04-16 11:56:21 +00:00
fyodor
9bbf495448 Update 6.45 release date to today 2014-04-11 19:34:34 +00:00
fyodor
6bf513b42a Update Nmap version number from 6.41SVN to 6.45 and rebuild docs 2014-04-11 02:59:07 +00:00
patrik
20eb77d6d2 o [NSE] Add ssl-heartbleed script to detect the Heartbleed bug in OpenSSL 
CVE-2014-0160 [Patrik Karlsson]
 2014-04-09 01:49:29 +00:00
dmiller
1332949c3d Fix bug in socks-open-proxy, TIMEOUT or EOF when SOCKS5 not supported 2014-04-04 21:46:21 +00:00
fyodor
8661c8a519 Improved ntp-info script to handle underscores in returned data. [nnposter] 2014-03-27 05:49:14 +00:00
dmiller
944200e5dc Note unicode.lua in the Changelog 2014-03-07 19:16:37 +00:00
dmiller
fa391e1b02 New quake1-info script from Ulrik Haugen 
Also added a version probe and match line.
http://seclists.org/nmap-dev/2014/q1/210
 2014-03-07 17:28:40 +00:00
dmiller
d67464dda2 -sn -v --open will now hide down hosts 
http://seclists.org/nmap-dev/2014/q1/158
 2014-02-12 18:47:40 +00:00
henri
21b7e3818d [Ncat] Added support for socks5 and corresponding regression tests. 
[Marek Lucaszuk, Petr Stodulka]
 2014-02-09 14:10:04 +00:00
dmiller
a95788c783 [NSE] New script http-ntlm-info from Justin Cacak 
http://seclists.org/nmap-dev/2014/q1/129
 2014-02-07 18:24:17 +00:00
dmiller
972d799143 Add TCP support to dns.lua 
Slightly modified from patch from John Bond:
http://seclists.org/nmap-dev/2014/q1/118
 2014-01-31 15:14:31 +00:00
henri
64fb5b3482 Added safe fd_set operations. 
Only FD_SET and FD_CLR were available. Added a FD_ISSET equivalent.
Implemented them as static inline instead of macros for consistency.

These functions abort() if the FD number is higher than FD_SETSIZE
(except on windows where no check is performed).
 2014-01-30 19:02:57 +00:00
dmiller
a6b79f9976 Add CHANGELOG entry for tls library 2014-01-16 21:50:26 +00:00
dmiller
a998d97216 Add sstp-discover NSE script from Niklaus Schiess 2014-01-16 19:07:43 +00:00
dmiller
351054de12 Add some CHANGELOG entries for recent changes 2014-01-06 20:19:23 +00:00
fyodor
7b5ec8d43d o Added version detection signatures and probes for a bunch of Android 
remote mouse/keyboard servers, including AndroMouse, AirHID,
  Wifi-mouse, and RemoteMouse. [Paul Hemberger]
 2013-12-14 22:23:29 +00:00
fyodor
0dafd86d22 Add AllSeeingEye (a protocol for querying status of certain games) script and service probe 2013-12-01 22:09:16 +00:00
fyodor
e6a0762764 o [NSE] Add freelancer-info to gather information about the Freelancer 
game server. Also added a related version detection probe and UDP
  protocol payload for detecting the service. [Marin Maržić]
 2013-11-20 04:31:31 +00:00
fyodor
65309b5c20 Fixed compilation when --without-liblua is specified 2013-11-10 02:04:17 +00:00
dmiller
3e54536dab Add http-server-header as a last-ditch means to get httpd version 
See http://seclists.org/nmap-dev/2013/q3/599 for justification.
 2013-11-08 21:19:36 +00:00
dmiller
847354e266 Add CHANGELOG entries for a couple new scripts 2013-11-08 19:12:02 +00:00
dmiller
795ca1b64f Fix assert fail on FreeBSD in libdnet 2013-11-07 19:32:33 +00:00
dmiller
77f1429a56 Fix UDP checksum generation (0 -> 0xffff) 
See changelog and http://seclists.org/nmap-dev/2013/q4/122
 2013-11-06 02:46:20 +00:00
jah
25be882377 Make a CHANGELOG entry less vague. 2013-11-03 23:31:48 +00:00
jah
b1cd867212 Remove a fixed value (28428) which was being set for the Request ID in 
snmpWalk; a value based on nmap.clock_ms will now be set instead.
 2013-11-03 23:27:38 +00:00
paulino
6a655cdc10 Adds http-iis-short-name-brute.nse. The script detects Microsoft IIS servers vulnerable to a filename disclosure and denial of service vulnerability. 2013-10-31 04:06:00 +00:00
david
3c25938d89 CHANGELOG for IPv6 idle scan. 2013-10-27 06:33:58 +00:00
patrik
e97a5b9d5a Add http-dlink-backdoor script that detects DLink routers with firmware 
backdoor allowing admin access over HTTP interface.
 2013-10-17 23:41:12 +00:00
fyodor
9a4d5de988 Update --proxies docs 2013-08-17 20:09:03 +00:00
fyodor
f6fb3a7773 Update CHANGELOG for Nmap 6.40. I didn't realize just how many great improvements were in this release until I had to write them all down :) 2013-08-17 05:46:26 +00:00
david
f372e17877 CHANGELOG for ICMP ID matching. 2013-08-17 02:18:13 +00:00
david
3728ece727 New revision of telnet-brute by nnposter. 
http://seclists.org/nmap-dev/2013/q3/249

- Multi-threaded (thanks to nselib/brute.lua)

- Can automatically reduce number of threads if it senses that the
  target supports less than what brute.lua wants to use. Without this
  feature the script tends to bail out because brute.lua default of 10
  threads is too much for a lot of telnet targets. This saves the user
  the trouble of finding out how much the target can take before
  launching the script.

- Uses connection pooling for sending multiple login attempts across
  the same connection. This significantly improves performance.

- Supports password-only logins.

Other changes:

- Fixed support for Windows telnet service.
  Added support for Netgear RM356.

- Improved accuracy of target state detection.

Tested on:

- Cisco IOS
- Linux telnetd
- Windows telnet service
- Digital Sprite 2
- Nortel Contivity
- Netgear RM356
- Hummingbird telnetd
 2013-08-15 07:11:08 +00:00
david
1154495aa3 Add a "key" element to the result of ssh1.fetch_host_key. 
ssh-hostkey.nse wanted this element to be present, but it was missing
from SSH1 keys. This caused a crash that was reported by Dan Farmer and
Florian Pelgrim.
http://seclists.org/nmap-dev/2013/q3/151
http://seclists.org/nmap-dev/2013/q3/155
 2013-08-11 05:36:48 +00:00
henri
853aaff586 Manage expiration times via a heap queue. 
This prevents nsock from iterating over the whole list of events at
each runloop, thus improving performance.

It made it necessary to have pointers from the msevents to the event
lists they belong to. The patch therefore also changes gh_list from
autonomous containers to embedded structures.

Added unit tests accordingly and cosmetic changes to make things look
more consistent.
 2013-08-10 23:59:30 +00:00
fyodor
71033d2812 o [NSE] Update dns-cache-snoop script to use a new list of top 50 
domains rather than a 2010 list. [Nicolle Neulist]
 2013-08-09 04:02:41 +00:00
david
4773f745d8 Add qconn-exec script by Brendan Coles. 
http://seclists.org/nmap-dev/2013/q3/153
 2013-08-09 03:23:40 +00:00