PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-01-01 20:39:02 +00:00
Code Issues Projects Releases Wiki Activity
7,339 Commits 2 Branches 0 Tags
d80183edab94ea7bd2ea0bf2fa6984b19a25985a
Commit Graph

7339 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
aca
d80183edab Small refactorization to sslcert.lua, split specialized functions into two, with and without calling reconnect_ssl 2012-08-03 16:11:50 +00:00
patrik
e7cb28619e fixed a bug where any url would be treated as withinhost due to a lacking 
return statement in the removewww function
 2012-08-03 06:13:57 +00:00
david
21ba9f7b4a Undocument nmap.sleep and undeprecate stdnse.sleep. 
There are various functions in the internal nmap.socket and nmap.dnet
libraries that are there for technical reasons:
	http://seclists.org/nmap-dev/2012/q1/318
The sleep function is exposed through the stdnse namespace because it
fits that library better.

Some code comments said that names such as nmap.new_socket were
deprecated in favor of e.g. nmap.socket.new, but the old names were
never formally deprecated, so I removed those comments.
 2012-08-03 02:08:44 +00:00
david
77fbcc8bc5 Get rid of ndiff.py symlink. 
This existed only to allow importing the ndiff program as a module for
the ndifftest.py program. I found another way to do that.
 2012-08-02 18:35:36 +00:00
david
3f415ef38a Factor out XML script result writing. 2012-08-02 06:21:01 +00:00
david
54fa9ec345 Use shortport.http in http-title. 2012-08-02 05:28:02 +00:00
david
33998a1ab9 Simplify http-title output code. 2012-08-02 05:28:01 +00:00
david
6970ba6af2 Remove redirect code from http-title. 
Use the implicit redirects inside http.lua.
 2012-08-02 05:27:59 +00:00
patrik
37e9cadc3c nse_check_globals cleanup 2012-08-02 05:25:15 +00:00
patrik
1d2f6906f5 Modified http-vhosts to use multiple worker threads and to completely bypass 
caching in order to increase performance.
 2012-08-02 05:19:07 +00:00
david
bf69c6b5b9 port is part of a url table. 2012-08-02 04:29:56 +00:00
sean
ff9e6e52b9 Updated the windows install icons. Added new sizes and resolutions following theinstructions here http://msdn.microsoft.com/en-us/library/windows/desktop/aa511280.aspx 2012-08-02 01:30:01 +00:00
david
87e3c861aa Put a comment on L_NSE. 2012-08-01 19:44:31 +00:00
dmiller
762207f02e Handle empty snmpcommunity correctly 2012-08-01 17:50:00 +00:00
david
7fc0f3ee6d Add new matchlines for Sybase Backup. 2012-08-01 17:00:14 +00:00
kroosec
17d27f76b0 Updated documentation for rpc.lua latest changes. 2012-08-01 10:02:22 +00:00
kroosec
3cd7f8865d Added ability to disable for program and version support checking in rpc.lua. Authentication now defaults to NULL. 2012-08-01 09:58:48 +00:00
henri
d0e684735a Typo (identfy_404 -> identify_404). 2012-08-01 07:53:16 +00:00
henri
3c3b936391 Indentation fix. 2012-08-01 07:03:53 +00:00
david
d5e5d8c5bd Remove "Server time" from ssl-date output. 
This makes it match http-date more closely.
 2012-07-31 20:57:30 +00:00
david
7cb7cbe163 Docs and output in ssl-date.nse. 2012-07-31 19:18:10 +00:00
aca
fc102a5ef4 Added ssl-date script 2012-07-31 19:11:10 +00:00
henri
dfdaadccb1 Style changes: 
- Consistent variable naming
  - Default parameters cleanup
  - removed unused variables (like "local t = nmap.timing_level()")
  - renamed functions consistently
  - removed typo from function name ("worker_schedluer")
  - consistent debug messages format
 2012-07-31 18:12:28 +00:00
dmiller
92008abcfa Fix assertion error on pcap nsock_iod reuse 
Discussion: http://seclists.org/nmap-dev/2012/q3/458
 2012-07-31 16:20:43 +00:00
david
60d1720d4c Expand a fingerprint to include Windows Embedded Standard 2009. 2012-07-31 01:20:10 +00:00
henri
89537773ce Removed extra '\n', another one being added by the function. 2012-07-30 19:54:11 +00:00
david
a2c2863531 Remove "hardmatched" argument from calls to nmap.set_port_version. 
This is the default and can be omitted. Seeing as the value of this
argument was "hardmatched" in 100% of cases, we're better off pretending
the parameter doesn't exist.
 2012-07-30 18:58:32 +00:00
david
453131b820 set_port_version in servicetags.nse. 
The name, servicetags, is the same one as for the TCP port, but it
doesn't have enough popularity in nmap-services-all to appear in
nmap-services.
 2012-07-30 18:58:25 +00:00
kroosec
8c20c04d99 Documentation fixes. Changed host.name and host.targetname by host.ip and host.name 2012-07-30 13:33:05 +00:00
aca
4c4ce195df Added smb-vuln-ms10-061 script from my dev branch 2012-07-30 09:48:03 +00:00
aca
68b2efd3db Merged msrpc changes from my branch, including spoolss functionality 2012-07-30 09:39:23 +00:00
ron
e4823340d8 Fixed http-exif-spider - it used to be a symbolic link, by mistake - also updated script.db. 2012-07-29 21:49:32 +00:00
ron
4bd886cd9f Removing http-exif-spider temporarily 2012-07-29 21:48:51 +00:00
patrik
bca0025032 nse_check_global cleanup 2012-07-29 09:26:23 +00:00
david
1441aea655 Reduce the number of names tried by http-vhosts by default. 
Vlatko reported that this script was taking an inordinate amount of time
even in typical scans. This patch reduces the number of domains tried by
default. The new http-vhosts.filelist script argument allows
substituting the original list or another of your choosing.

Patch by Vlatko.
http://seclists.org/nmap-dev/2012/q3/432
 2012-07-29 03:39:11 +00:00
dmiller
b868e7f3ce Move caching code to datafiles lib 
Scripts no longer need to implement caching of datafiles tables in the
registry, since the datafiles.lua library keeps its own cache in the
registry. A side-effect is that scripts should not change the tables
returned by datafiles.parse_{protocols,rpc,services,mac_prefixes}(), as
doing so will affect all other scripts that use those functions.
 2012-07-27 20:07:38 +00:00
ron
959d9a67d3 Adding a new script - http-exif-spider.nse. It spiders a Web site looking for .jpeg images, and displays the image metadata (camera information, date, and geotag data). 2012-07-27 19:38:51 +00:00
henri
d1d1c7a6f4 Re-enabled connection attempts to RPC services when running in non-privileged 
mode. This also fixes a bug in the privileged port binding loop, don't always try to
bind() to port 1000 but use the current resvport instead.
 2012-07-27 17:23:03 +00:00
patrik
4b77d989e2 added newtarget support to snmp-netstat script, allowing it to identify and 
add new targets to the scan queue.
 2012-07-26 13:49:03 +00:00
patrik
6dc6b95377 fixed a bug in whitelisting code 2012-07-26 13:37:04 +00:00
david
5e588b53da More direct printing of remotes in http-git. 
Show the uninterpreted remote URLs in every case. When matching specific
services, show the guesses about where the source might be hosted, but
remove verbose interpretation like "accessed over SSH".

Before:
|   Remote: git@github.com:skullspace/breachdb.git
|   GitHub remote: skullspace/breachdb (accessed over SSH)
|_   -> Source might be at https://github.com/skullspace/breachdb

After:
|   Remote: git@github.com:skullspace/breachdb.git
|_   -> Source might be at https://github.com/skullspace/breachdb
 2012-07-26 06:00:48 +00:00
david
c367d03916 Extract raw remote URLs in http-git. 2012-07-26 06:00:47 +00:00
david
8f907ae853 Local variable. 2012-07-26 06:00:45 +00:00
ron
ea5e4e07ae Updated http-git - bugfixes, and also handles multiple roots with script-args 2012-07-25 01:47:43 +00:00
patrik
d397ac4076 Fixed bug that would result in the stun-version script incorrectly reporting 
the stun port as open when the stun service would not respond to the service
probe and the port was reported as open|filtered.
 2012-07-24 18:41:42 +00:00
kroosec
f536b34805 Added missing service name for Inter-Language Unification in nmap-rpc. 2012-07-24 12:32:31 +00:00
patrik
7880043ee2 minor fix in stun-version to remove a warning from ipOps.fromdword 
indentation fix in stun-version
 2012-07-24 12:05:57 +00:00
patrik
be858f4a7d further improoved http-google-malware.nse malware detection by adding response 
code checks.
 2012-07-24 10:33:39 +00:00
patrik
b0c8a758a0 fixed bug where script would return "Host is safe to browse.", when an invalid 
API key was being used.
 2012-07-24 10:11:09 +00:00
patrik
217b27bace nse_check_globals cleanup 2012-07-24 10:08:43 +00:00