PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-18 13:39:02 +00:00
Code Issues Projects Releases Wiki Activity
13,050 Commits 2 Branches 0 Tags
e263e648207995e491b6ffe3a94e24c3fbd4faba
Commit Graph

93 Commits

Author SHA1 Message Date
ron
210d3c29f4 Add new fingerprint to http-fingerprints.lua (/api/ and /api-docs/) 2021-09-10 17:13:24 +00:00
ron
b0bd2776a7 Add new fingerprint to http-fingerprints.lua (/error.html) 2021-09-09 18:13:32 +00:00
ron
61f17067a3 Add new fingerprint to http-fingerprints.lua (BitWarden) 2021-06-04 19:10:23 +00:00
ron
056b63833a Add new fingerprints to http-fingerprints.lua (Wordpress, Health) 2021-02-19 20:21:09 +00:00
nnposter
d4f4124c91 Clarify the expected format of the Nikto database 2021-02-17 04:13:20 +00:00
nnposter
6d1c3f091e Fix Nikto db path resolution 2021-02-17 03:42:33 +00:00
paulino
0af31da502 Adds Atlassian products submitted by Mark Adams. Closes PR #1649 2020-03-22 03:20:40 +00:00
paulino
571340dcdd Fixes nested table in ArangoDB signature breaking the database 2020-03-22 02:45:29 +00:00
dmiller
81f0818d9e http-enum: Fingerprint for ArangoDB 2020-01-06 18:24:34 +00:00
nnposter
a520bf8f23 Removes OSVDB references from scripts. Closes #1534 
Code specific to OSVDB in vulns.lua is retained for historical reasons
 2019-04-02 16:51:36 +00:00
david
8d43706208 Add a semicolon for uniformity in http-fingerprints.lua. 2019-02-05 20:54:24 +00:00
paulino
55a8441924 Adds attack signature for CVE-2014-0683. Closes #1448 2019-01-31 21:23:28 +00:00
paulino
c89f4892bf Adds attack signature for CVE-2019-1653. Closes #1446 2019-01-31 21:06:59 +00:00
paulino
b5b2a5dc78 Adds attack signature for CVE-2018-10824. Closes #1378 2019-01-31 21:02:37 +00:00
paulino
ffe8dd418f Adds attack signature for CVE-2018-10822. Closes #1376 2019-01-31 20:55:52 +00:00
paulino
a0418c0b89 Makes the signature for OSGi management consoles more generic. Closes #1240 2018-06-23 20:22:02 +00:00
dmiller
d0566d1807 Fingerprint for Telerik CVE-2017-9248. Closes #954 2017-09-26 19:02:45 +00:00
rewanth
29b46159f8 Updates version detection methods. Closes #767. 2017-08-23 10:54:31 +00:00
paulino
98c9005b42 Fixes method for detecting spring endpoints 2017-06-07 03:39:58 +00:00
paulino
be40d55552 Adds interesting endpoints that reveal sensitive information in Spring applications 2017-06-07 03:38:33 +00:00
nnposter
dcac460ad6 Belkin and Arris share this code so the detected device can be either one of them. 2017-03-06 03:44:46 +00:00
nnposter
fe622e182d Adds 8 new http-enum fingerprints for Hadoop infrastructure components. 
Originally submitted as NSE scripts by Thomas Debize. (Closes #620)
Refactored as entries for http-fingerprints by Varunram Ganesh. (Closes #715)
 2017-03-03 23:41:12 +00:00
dmiller
4a8df9a9d7 Add options to http-enum fingerprints format. Patch based on work by Josh Amishav-Zlatin 2016-09-28 13:22:42 +00:00
paulino
7db0072047 Adds JBoss Seam Debug page. This page leaks critical information sometimes. 2016-09-19 21:32:10 +00:00
paulino
ae7fe28936 Adds JMX Invoker interface 2016-08-19 19:40:03 +00:00
dmiller
97163a3052 Fingerprint for WebSphere console by Vlatko Kosturjak 2016-01-14 21:08:28 +00:00
dmiller
bb507ac7bf Add RomPager CVE-2014-4019 check to http-fingerprints 2016-01-06 20:47:06 +00:00
dmiller
f4619edece Update http urls for nmap.org to https 2015-11-05 20:41:05 +00:00
gyani
3ef7d71863 Merge branch 'fingerprints' 2015-06-20 17:27:22 +00:00
dmiller
6ba9936d24 NSE support for Adobe LiveCycle 
http-fingerprints and default account additions by rvrsh3ll.
Closes #61
 2015-02-20 15:54:13 +00:00
paulino
f160b590aa Adds a popular FrontPage extension file to http-enum 2015-02-08 19:15:11 +00:00
dmiller
e985053c6d Add check for Cisco ASA version disclosure, CVE-2014-3398 2015-02-02 18:25:53 +00:00
paulino
f819655677 Adds fingerprint to detect the administration console of Oracle WebLogic Servers 2014-12-19 00:21:15 +00:00
batrick
ee6622aea4 nselib stdnse.print_debug -> stdnse.debug 
$ f() { find -name \*.lua -exec /bin/echo sed -i "$1" {} \; ; }
$ f 's/stdnse.print_debug( *\([0-9]*\) *, */stdnse.debug\1(/'
$ f 's/stdnse.print_debug( *"\(.*\))/stdnse.debug1("\1)/'
 2014-08-03 00:56:45 +00:00
dmiller
0e24910267 New http-enum fingerprint for Metasploit's reverse_hop_http stager 2014-07-30 13:33:21 +00:00
dmiller
7dd47ec3a3 Re-indent the Lua files in nselib/data/ 
https://secwiki.org/w/Nmap/Code_Standards
 2014-02-05 17:58:36 +00:00
dmiller
620f9fdb34 Remove trailing whitespace in lua files 
Whitespace is not significant, so this should not be a problem.
https://secwiki.org/w/Nmap/Code_Standards
 2014-01-23 21:51:58 +00:00
dmiller
db1d82ad1f Fixed global assignments with nse_check_globals 
All fixes made by hand. A couple real bugs/errors fixed, due to
copy-paste of code from other scripts without changing variable names.
 2014-01-22 17:45:00 +00:00
fyodor
8418f18274 Minor updates to comments. For example, wanted to clarify that the Nikto http-enum integration was done with cooperation/encouragement from Nikto folks 2013-12-27 03:45:53 +00:00
sophron
55e066c0e6 [NSE] Added a feature that integrates Nikto's large db to our http-fingerprint file on runtime. http://seclists.org/nmap-dev/2013/q4/292 2013-12-23 15:50:19 +00:00
paulino
fc431f8df5 -Adds an administration password reset vulnerability in Seagate BlackArmor 110, 220 and 440. 2013-04-26 23:59:28 +00:00
paulino
666cda3048 Adds entry to detect several vulnerable versions of JCE Joomla extension. (Remote command exec) 
Fingerprint taken from http://www.bugreport.ir/78/exploit.htm
 2013-02-21 04:53:49 +00:00
paulino
913fbac6d1 Adds entry to detect SCADA SIMATIC S7. Signature taken from Jose Ramon Palanco's script https://github.com/drainware/nmap-scada/blob/master/SIEMENS-Simatic-HMI-miniweb.nse 2013-01-31 18:04:40 +00:00
paulino
b3d3553330 Adds entry to detect SCADA Siemens PCS7. Signature taken from Jose Ramon Palanco's script https://github.com/drainware/nmap-scada/blob/master/Siemens-PCS7.nse 2013-01-31 18:00:11 +00:00
paulino
76d4889eea Adds entry for Oracle GlassFish 2013-01-15 07:06:24 +00:00
david
ec53dc049a Update with new mailing list addresses. 2012-12-06 02:23:34 +00:00
david
b15d8825a3 Whitespace in http-fingerprints. 2012-11-21 00:47:30 +00:00
david
4c6253d544 New http-fingerprints. 
Contributed by Jesper Kückelhahn.
Sitecore, Moodle, typo3, SquirrelMail, RoundCube.
http://seclists.org/nmap-dev/2012/q4/287
 2012-11-21 00:47:29 +00:00
kroosec
ca43a6d59f Added http fingerprints by Jesper Kückelhahn for Sitecore CMS. 2012-09-12 21:57:49 +00:00
perdo
09f7b93949 Modify http-enum and http-fingerprints file so they work with http pipeline better. 2012-07-23 21:55:13 +00:00