PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-15 20:29:03 +00:00
Code Issues Projects Releases Wiki Activity
5,629 Commits 2 Branches 0 Tags
e91c17f7a98e26041853173f0b3f487884531fdf
Commit Graph

355 Commits

Author SHA1 Message Date
fyodor
b189bc31ec slightly enhance a couple sip softmatches by allowing parenthesis in the Server header value. Patch sent by Rainer Giedat 2011-06-23 06:19:48 +00:00
david
010c8200e8 Standardize on the name rmiregistry for port 1099/tcp. 
This is the name used in nmap-services. It affects nmap-service-probes
and rmi-dumpregistry.nse. The inconsistency was noted by Gabriel
Lawrence.
 2011-06-15 19:14:46 +00:00
fyodor
8a561e9ae3 Reduce the rarity value of the SSLSessionReq so that it is tried even with --version-light 2011-06-14 06:55:38 +00:00
tomsellers
20a0a6b440 2011-06-12 04:12:09 +00:00
tomsellers
42fd1be9e8 Added matchlines for the following: 
Tandberg Television httpd
Oracle Web httpd standard and Advanced Editions
Packeteer SkyX Accelerator
 2011-06-11 23:52:18 +00:00
tomsellers
a89fff8c47 Version detection updates: 
Adjusted an Apache Stronghold matchline
Generated a softmatch for when Apache Stronghold does not present a version string.

Tweaked version detection for IdeaWebServer httpd to work against 302s and various 
response configurations.  Added matchline to grab X-Powered-By.

Added detection for IdeaPop3Server, IdeaSMTPServer, IdeaImapServer

Consolidated BIG-IP http / http-proxy related matchlines in a http-proxy matchline 
that takes into account various responses (302,404, etc).  Changed all instances 
of the name to be "BIG-IP" in order to be consistent with F5's documentation. 
The consolidated matchline is in the HTTP Options probe section as it appears to
be the most likely to generate a response from various versions of the platform.
 2011-06-11 18:00:40 +00:00
tomsellers
7bf769d654 Adding an Apache related softmatch line to catch service banners such as: 
Server: Apache mod_fcgid/2.3.5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635

It's a softmatch as it would match lines like 

Server: Apache Tomcat 1.2.3 (blah blah blah)
 2011-06-11 14:56:05 +00:00
tomsellers
c38f890cf4 Matchline addition for MoxaHTTP web config found on specialized devices such as cellular to IP gateways. 2011-05-30 17:08:34 +00:00
tomsellers
c86bd3d88d Added service match line for Quick 'N Easy pop3d 2011-05-29 16:38:48 +00:00
patrik
8ef0de3011 Commited nmap-service-probes patches for Novell Open Enterprise Server 
http://seclists.org/nmap-dev/2011/q2/369
 2011-05-09 18:04:53 +00:00
david
78b7948324 Typo. 2011-05-04 23:24:14 +00:00
david
f1a9fdd165 Add a GKrellM service probe from Toni Ruotto. 2011-04-28 02:40:11 +00:00
david
381ac05b7f Add HTTP fingerprint for server that was tripped in the dominoconsole 
match.
 2011-04-25 21:06:35 +00:00
david
9e0c58b55e Make a dominoconsole match more specific. It was matching an HTTP 
response that happened to have some '/' and ':' in it. This was reported
by Chris Clements.
 2011-04-25 21:06:30 +00:00
david
715338f9cb Add a distinguishing byte (\x01 for PING reply) to the BackOrifice 
probe.
 2011-04-23 00:23:49 +00:00
david
0a0de6eb8b Add missing "s" qualifier from BackOrifice match line. 2011-04-19 02:30:12 +00:00
david
dd22e26f43 Add a BackOrifice service probe from Gorjan Petrovski. 2011-04-19 02:25:10 +00:00
david
f00142f439 o Added a service probe for Zend Java Bridge, which is vulnerable if 
exposed to an untrusted network. It was contributed by Michael
  Schierl.
 2011-04-18 19:32:11 +00:00
david
7c613a7469 Revert r22905. Some of these "jabber" services are xmpp-server, some are 
xmpp-client, and for some others it's not clear. I'm putting it back
until we can look at them some more.
 2011-04-18 19:03:26 +00:00
david
0f4be2ccb6 Change the "jabber" service in nmap-service-probes to "xmpp-server" to 
match nmap-services.
 2011-04-18 18:33:48 +00:00
david
e73605e40a Add missing version fields to a gpsd match line. 2011-03-01 16:41:19 +00:00
patrik
d6bbc6da8f o [NSE] Added probe for Apple iPhoto (DPAP) and the dpap-brute script that 
performs password guessing against a shared iPhoto library. [Patrik]
 2011-02-26 16:24:54 +00:00
david
6d65382a24 Fix a double ^^ at the beginning of a match line. 2011-02-23 17:15:10 +00:00
david
38acaa80e5 Change a literal hostname in an ftp service match into a pattern. This 
was probably accidentally left in during integration.
 2011-02-19 00:38:55 +00:00
tomsellers
4d3a2ecef9 Consolidated and grouped matchlines related to the FTP service on 
Lexmark (and rebranded) laser printers.  There was a near perfect
matchline that was being skipped due to an extra \d in the capture
pattern.  I moved it down with some others, removed some lines that
had included in the hostname and model in the discrete text and 
expanded the hostname match character set.

The format for the banner is:

220 <hostname> Lexmark <model> FTP Server <firmware revision> ready.
 2011-02-19 00:24:37 +00:00
tomsellers
73a4a10769 Consistency change - edited all Apache TomCat related matchlines 
to return "Apache Tomcat" as opposed to being split between "Apache Tomcat"
and "Apache Tomcat httpd".  Tomcat can run on top of Apache HTTPD, Microsoft
IIS, and Apache Coyote. - Tom
 2011-02-19 00:01:32 +00:00
tomsellers
916ddc73f8 Adding three match lines for two embedded device httpd: 
Tridium Niagara httpd - embedded control systems, HVAC, etc
   http://www.tridium.com/

Knoplerfish - various devices, included printers
   http://www.knopflerfish.org/
 2011-02-18 23:55:04 +00:00
tomsellers
abeaffea33 Minor changes to nmap-service-probes to improve consistency with naming 
Trend Micro products.
 2011-02-18 23:47:47 +00:00
tomsellers
972a72e130 Add a softmatch line for SMTP returning a 550 code as well as a 
x.x.x format error code.  Discovered on Cisco gear but other SMTP
services may use the format as well. - Tom
 2011-02-15 23:44:47 +00:00
tomsellers
21ee742ca3 Addition Tomcat/Coyote match line to capture Tomcat version data 
when the server provides it.
 2011-02-09 11:55:02 +00:00
fyodor
dd9ae71020 Add a service signature I created for Nping echo 2011-01-20 10:09:04 +00:00
david
1ef55b81d1 Add a Quake3_master_getservers service probe from Toni Ruotto. 2011-01-08 05:03:44 +00:00
david
12b762517d Canonicalize some nmap-service-probes entries using the 
nmap-service-probes-report.py script.
 2010-12-28 20:58:33 +00:00
david
c77761b0b1 All 10 service corrections. 2010-12-28 18:52:31 +00:00
david
84fb8f2bb3 A few miscellaneous service probe changes. 2010-12-28 18:52:30 +00:00
david
016bea6276 Rearrange the ssh match lines so that the uncategorized ones are towards 
the bottom of the file. This is how other blocks of matches are
arranged.
 2010-12-28 18:52:28 +00:00
tomsellers
54657f0fc4 Added IBM HTTP Server match line, improved consistency among the 
match output for this product.
 2010-12-28 18:36:53 +00:00
david
68f14b9f5a The last 100 service submissions. 2010-12-28 05:52:02 +00:00
david
da6ed2d39a 100 service submissions. 2010-12-28 03:16:00 +00:00
david
4b14ccf8f8 100 service submissions. 2010-12-27 17:41:05 +00:00
david
c6721aae80 100 service submissions. 2010-12-21 16:59:46 +00:00
david
0b21a33414 100 more miscellaneous service submissions. 2010-12-21 05:04:45 +00:00
david
e36fe37c87 A bunch of miscellaneous service submissions. 2010-12-21 00:51:45 +00:00
david
3b849d64e1 upnp service submissions; also reclassify some "http" as "upnp". 2010-12-19 18:57:02 +00:00
david
f448f62b82 The last of the http service submissions. 2010-12-18 15:20:47 +00:00
david
bb55769fb4 More http submissions. 2010-12-18 05:02:37 +00:00
david
1a2a892610 This is about 75% of the http service submissions. 2010-12-17 05:25:40 +00:00
david
dd7f04aebc Service submissions for 
bittorrent pop3 afp imap time backupexec-remote backupexec beremote.exe
domain vnc-http vnc teamviewer mysql irc irc-proxy skype rtorrent nessus
bitcoin printer icecast 3dm-http.
 2010-12-16 06:00:39 +00:00
david
4e018f1638 unknown and ssl service submissions. 2010-12-15 20:13:40 +00:00
david
3af5da503f sip service submissions. 2010-12-15 02:16:17 +00:00