PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-31 11:59:03 +00:00
Code Issues Projects Releases Wiki Activity
13,050 Commits 2 Branches 0 Tags
e263e648207995e491b6ffe3a94e24c3fbd4faba
Commit Graph

349 Commits

Author SHA1 Message Date
nnposter
cc996985f8 Adds a more meaningful target_check to the fingerprint for Apache Axis2 2016-08-19 18:50:23 +00:00
nnposter
0aefe63c2b Generalizes the fingerprint for Adobe LiveCycle Management Console 2016-08-19 18:33:57 +00:00
nnposter
37a9142101 Updates the listed http-default-accounts fingerprints to take advantage of 
probe result sharing across fingerprints. (This feature has been implemented
in r36134 and described in issue 516.)

- Cacti
- Cisco IOS
- Cisco WAP200
- Cisco WAP55AG
- ASUS RT-N10U
- Motorola RF Switch
- Nortel VPN Router
- F5 BIG-IP
- Zebra Printer
- RICOH Web Image Monitor
- Lantronix SLC
 2016-08-19 18:06:10 +00:00
nnposter
7d9994597e Updates auth realm extraction pattern to accommodate extraneous spaces in the HTTP response header 2016-08-16 02:00:17 +00:00
nnposter
2804d04d36 Fixes Xplico fingerprint to account for non-default base path 2016-08-15 15:56:54 +00:00
dmiller
cb4b46bd53 Canonicalize authors as tables instead of comma-separated strings 2016-06-09 22:46:42 +00:00
dmiller
50e9080ef1 Grab latest enterprise numbers assignments from IANA 2016-05-11 14:55:45 +00:00
dmiller
fe0e0db1ba Grab latest multicast address assignments from IANA 2016-05-11 14:55:44 +00:00
dmiller
0dd8757e70 Add needed requires to mysql-cis.audit. Closes #371 2016-05-11 14:55:43 +00:00
dmiller
b5f5690bb0 New default accounts from nnposter. Closes #301 2016-02-14 14:42:18 +00:00
dmiller
97163a3052 Fingerprint for WebSphere console by Vlatko Kosturjak 2016-01-14 21:08:28 +00:00
dmiller
bb507ac7bf Add RomPager CVE-2014-4019 check to http-fingerprints 2016-01-06 20:47:06 +00:00
dmiller
f4619edece Update http urls for nmap.org to https 2015-11-05 20:41:05 +00:00
gyani
ba873c28c0 http-drupal-enum replaces http-drupal-modules. 
The script now supports drupal theme listing as well.
Updated drupal-modules.lst and added drupal-themes.lst.
 2015-08-13 11:58:44 +00:00
gyani
3ef7d71863 Merge branch 'fingerprints' 2015-06-20 17:27:22 +00:00
dmiller
9c99b80d73 New RTSP urls for Logitech WiLife cameras [Dustin Miller] 2015-06-19 21:36:52 +00:00
dmiller
9781830ece Check for system files and directory traversal in tftp-enum.nse 2015-05-15 19:35:17 +00:00
dmiller
0e74dd7a35 Replace some string.char and bin.pack calls with literals 2015-02-27 19:42:56 +00:00
dmiller
6ba9936d24 NSE support for Adobe LiveCycle 
http-fingerprints and default account additions by rvrsh3ll.
Closes #61
 2015-02-20 15:54:13 +00:00
dmiller
ca3d838b1b Fix some globals in nselib/data/http-*.lua 2015-02-20 15:54:12 +00:00
paulino
588d744bd6 Adds Zebra printer fingerprints to http-default-accounts 2015-02-17 23:38:40 +00:00
paulino
617be2ea28 Renames the original http-wordpress-enum to http-wordpress-users and adds the new version of http-wordpress-enum which detects plugins and themes of Wordpress installations 2015-02-09 07:14:55 +00:00
paulino
f160b590aa Adds a popular FrontPage extension file to http-enum 2015-02-08 19:15:11 +00:00
dmiller
e985053c6d Add check for Cisco ASA version disclosure, CVE-2014-3398 2015-02-02 18:25:53 +00:00
paulino
f819655677 Adds fingerprint to detect the administration console of Oracle WebLogic Servers 2014-12-19 00:21:15 +00:00
dmiller
711f6d97c9 New script, snmp-info for querying snmpv3 services 2014-12-18 00:22:48 +00:00
dmiller
c3579c8b76 Another Raul Fuentes script: targets-ipv6-wordlist 2014-12-03 16:20:22 +00:00
dmiller
ea31702b2d Updated tftp-enum file list 
New filenames credit Chris McNab.

Also converted some into templates that can be filled with the target's
MAC address when known.
 2014-11-29 03:50:08 +00:00
fyodor
e806585cdd o [NSE] Updated our Wordpress plugin list to improve the 
http-wordpress-plugins NSE script. We can now detect 34,077 plugins,
  up from 18,570. [Danila Poyarkov]
 2014-11-10 05:37:39 +00:00
dmiller
8101fa65e0 Remove ssl-ciphers data file 2014-11-07 18:05:10 +00:00
sophron
52589ae6d1 [NSE] Added sanity check in data/http-devframework-fingerprints.lua 2014-11-02 11:49:56 +00:00
paulino
97c56e3e57 Adds fingerprints for ASUS RT-N10U and motorola RF switch 2014-10-18 04:09:05 +00:00
paulino
64b40b7a93 Adds signature for Lantronix SLC (http://www.lantronix.com/it-management/console-servers/slc.html) to http-default-accounts 2014-08-25 01:12:59 +00:00
batrick
ee6622aea4 nselib stdnse.print_debug -> stdnse.debug 
$ f() { find -name \*.lua -exec /bin/echo sed -i "$1" {} \; ; }
$ f 's/stdnse.print_debug( *\([0-9]*\) *, */stdnse.debug\1(/'
$ f 's/stdnse.print_debug( *"\(.*\))/stdnse.debug1("\1)/'
 2014-08-03 00:56:45 +00:00
dmiller
0e24910267 New http-enum fingerprint for Metasploit's reverse_hop_http stager 2014-07-30 13:33:21 +00:00
paulino
34691d779d * Applies patch to Cacti fingerprint. 
* Adds Xplico (http://www.xplico.org/) fingerprint.
 2014-06-11 19:44:24 +00:00
fyodor
91645f1aee Change a couple files to unix line endings 2014-04-23 09:37:37 +00:00
dmiller
6bd9462dd6 Fix some CRLF line endings to LF 2014-04-17 19:50:24 +00:00
sophron
a673b79aa6 Added an entry to http-default-accounts-fingerprints that detects F5 BIG-IP router. Patch by nnposter. 2014-03-02 17:46:06 +00:00
sophron
a4a648a56b Added an entry to http-devframework-fingerprints that detects SPIP framework. Patch by Paul AMAR. 2014-03-02 17:38:57 +00:00
dmiller
ac5a89a8e1 Remove unused NSE library requires 
for lib in nselib/*.lua*; do l=${lib#*/}; l=${l%.lua*}; find . -name \
  \*.lua -o -name \*.nse | xargs grep -l "require .$l\>" | xargs grep \
  -c "\<$l\." | grep ':0$' | awk -F: '{print "'$l'", $1}'; done

Did not remove calls to stdnse.silent_require since these can be used to
abort script execution if OpenSSL is not included, even if the script
does not directly call openssl.* (perhaps it uses comm.tryssl instead,
for instance).

Also did not remove require "strict", since that library is special and
modifies the environment.
 2014-02-13 16:39:17 +00:00
dmiller
7dd47ec3a3 Re-indent the Lua files in nselib/data/ 
https://secwiki.org/w/Nmap/Code_Standards
 2014-02-05 17:58:36 +00:00
dmiller
620f9fdb34 Remove trailing whitespace in lua files 
Whitespace is not significant, so this should not be a problem.
https://secwiki.org/w/Nmap/Code_Standards
 2014-01-23 21:51:58 +00:00
dmiller
86ac3c0a19 Whitespace fixing on packetdecoders.lua 
Changed indentation to 2 spaces, converted \r\n line endings to \n,
changed line-internal tabs to single space, removed whitespace at line
endings, reindented entire file with vim.
https://secwiki.org/w/Nmap/Code_Standards
 2014-01-22 18:26:02 +00:00
dmiller
db1d82ad1f Fixed global assignments with nse_check_globals 
All fixes made by hand. A couple real bugs/errors fixed, due to
copy-paste of code from other scripts without changing variable names.
 2014-01-22 17:45:00 +00:00
fyodor
8418f18274 Minor updates to comments. For example, wanted to clarify that the Nikto http-enum integration was done with cooperation/encouragement from Nikto folks 2013-12-27 03:45:53 +00:00
sophron
55e066c0e6 [NSE] Added a feature that integrates Nikto's large db to our http-fingerprint file on runtime. http://seclists.org/nmap-dev/2013/q4/292 2013-12-23 15:50:19 +00:00
dmiller
771a6a0793 Fix more Lua patterns with '-', see r32566 2013-12-19 20:34:46 +00:00
dmiller
83e0ee1e70 Add ChaCha20-Poly1305 TLS cipher suites to ssl-ciphers 2013-11-14 20:41:09 +00:00
dmiller
4332ade1d6 New data file: dns-srv-names, common DNS SRV records 2013-11-01 22:10:35 +00:00