PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-07 21:21:31 +00:00
Code Issues Projects Releases Wiki Activity
10,109 Commits 2 Branches 0 Tags
dd503ae2e568896eebedf9f9991ee4a78912d86d
Commit Graph

22 Commits

Author SHA1 Message Date
dmiller
f4619edece Update http urls for nmap.org to https 2015-11-05 20:41:05 +00:00
dmiller
7852fa3c18 Remove many ERROR outputs from non-debug NSE output 2015-08-27 20:43:55 +00:00
gyani
3f1a71fbec http-brute now uses the new http.lua to support NTLM authentication. 
This script also acts as a showcase script for the new NTLM authentication
added.
 2015-07-04 08:19:26 +00:00
paulino
4a95d8f9b2 Removes duplicate credential structure in favor of NSE library creds. Patch submitted by nnposter fixes #58 2015-04-16 18:51:45 +00:00
dmiller
f37ac44380 Move brute.Account to creds.Account 
In addition to fitting better (brute library is the verb, creds library
is the noun), this will allow creds.lua to use creds.Account internally
where necessary (see subsequent commits)

Also change old references to string argument "OPEN" into
creds.State.VALID.
 2014-09-23 05:23:13 +00:00
dmiller
1b71f75aad Spelling fixes for Lua files 
Mostly in documentation/comments, but a couple code bugs were caught,
including a call to stdnse.pirnt_debug and a mis-declared variable.
 2014-02-19 04:15:46 +00:00
dmiller
298be5bfaa Re-indent some scripts. Whitespace-only commit 
https://secwiki.org/w/Nmap/Code_Standards
 2014-01-31 17:36:09 +00:00
dmiller
620f9fdb34 Remove trailing whitespace in lua files 
Whitespace is not significant, so this should not be a problem.
https://secwiki.org/w/Nmap/Code_Standards
 2014-01-23 21:51:58 +00:00
perdo
ba049718b0 Add digest auth support to http-brute (and to http library). Also fix whitespace in sasl.lua. 2012-08-05 22:23:54 +00:00
kris
3444074ea1 doc typo/consistency fixes 2012-06-04 21:05:36 +00:00
fyodor
1f8c689ea1 o [NSE] Changed http-brute so that it works against the root path 
("/") by default rather than always requiring the http-brute.path
  script argument.

I also upgraded it to use get_script_args function rather than access registry.args directly
 2012-06-04 19:49:21 +00:00
batrick
000f6dc4d9 Lua 5.2 upgrade [1] for NSE. 
[1] http://seclists.org/nmap-dev/2012/q2/34
 2012-05-27 08:53:32 +00:00
fyodor
c9d610ccea Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either) 2011-09-30 06:18:55 +00:00
tomsellers
035ae9e9b1 Updated account status text in brute force password discovery scripts in an effort to make the reporting more consistent across all scripts. This will have an impact on any code that parses these values. 
In the case of a few of these scripts the only thing that was updated was the example text as the scripts relied on the creds library which handles the strings internally.
 2011-09-11 12:13:13 +00:00
gorjan
4ca48ea450 FIX: Added require 'creds' where it was missing; Mostly where creds.State.<some_state> was used. 2011-07-07 16:22:57 +00:00
patrik
f4bf440b14 o [NSE] Added credential storage library (creds.lua) and modified the brute 
library and scripts to make use of it. [Patrik]
 2011-06-19 17:18:29 +00:00
david
de9d0362e0 Treat 5xx errors as success (guessed password) in http-brute. 
This was suggested by Toni Ruottu in
http://seclists.org/nmap-dev/2011/q1/940.
 2011-04-28 04:14:54 +00:00
fyodor
a84c2e4498 Did some NSEDoc cleanup on many of the 45 NSE scripts which are new since the 5.35DC1 Nmap release. Emphasis was on the first paragraph of the description, since that is shown on the front page of http://nmap.org/nsedoc and I'm planning to use that description verbatim (except for removing tags like <code>) for the CHANGELOG 2011-01-14 10:20:51 +00:00
david
fffe597ece Typo fix. 2010-12-13 18:16:06 +00:00
david
52d1590c84 Add the script argument http-brute.method. This is so you can do 
http-brute.method=POST instead of having GET hardcoded in the script.
 2010-09-27 01:23:37 +00:00
david
ed48818666 Remove the restriction to one thread in http-brute.lua, as the worker thread 
bug that required it has been fixed.
 2010-09-23 16:33:02 +00:00
patrik
a2c2a3f84c o [NSE] Added two new scripts http-brute.nse and http-form-brute that attempt 
to perform password guessing against web servers and applications. [Patrik]
 2010-08-19 20:53:40 +00:00