PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-21 15:09:02 +00:00
Code Issues Projects Releases Wiki Activity
3,954 Commits 2 Branches 0 Tags
ea1e95aea6b3a4ab964d55bce25b80dfc36b2bcc
Commit Graph

3954 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
fyodor
cc0081340a update script.db now that apache-userdir-enum has been renamed to http-userdir-enum 2009-08-22 22:31:40 +00:00
ron
393110baf1 Fixed a bug where http.pipeline() would print a cryptic error if no requests were passed for it to perform. Changed it to print a warning if debugging is turned on, and return an empty set. 2009-08-22 22:23:03 +00:00
jah
e0572ea362 Renamed apache-userdir-enum.nse to http-userdir-enum.nse to better indicate its 
function which is to test http services - not only apache ones.
 2009-08-22 22:04:32 +00:00
fyodor
4d04d37ab5 add some FD_SETSIZE research from David 2009-08-22 21:34:16 +00:00
ron
08073b43b8 Fix two bugs in the http libraries: 
1) Re-add 443 to the common ssl ports (it was accidentally removed in an earlier patch)
2) If the header doesn't return the number of pipelined requests to perform, default to 40 instead of leaving it nil
 2009-08-21 23:42:07 +00:00
david
b64134be14 Make the TraceGroup::consolidateHops method const. 2009-08-21 01:06:49 +00:00
david
a4ea6d2f7c The previous method of calculating the true hop distance from traceroute 
was incorrect; the hopDistance member can be much higher than the actual
number of hops recorded. It was 33 when the real distance was 17.
Instead, enumerate and count all the probes that got a response.
 2009-08-21 01:05:41 +00:00
david
5d29abaf05 Change a confusing design in traceroute. The TraceProbes map is a 
mapping from source port number to probes. Upon output, the map was
transformed in place to a map of TTL values to probes. Operations that
worked before output wouldn't work after output and vice versa. Now the
TTL-to-probe map is kept separate in a local variable.
 2009-08-21 01:01:34 +00:00
david
5c1168c024 After a successful traceroute, set the distance to the host in question 
so it appears in OS fingerprints.
 2009-08-20 20:57:35 +00:00
david
0ffa072a6b Fix an off-by-one error in traceroute consolidation. In debugging mode, 
the list of consolidated hops (the ones that match the reference trace)
was printed out one hop further than it should have been. So if a trace
diverged from the reference trace at the sixth hop, it would print out
the first six hops of the reference trace when it should have done only
five. This extra row, as well as being incorrect, could cause an
assertion failure by making the output table one row bigger than its
preallocated capacity.
 2009-08-20 19:52:17 +00:00
david
c3b5c08941 Temporarily increase the size of the traceroute output table by 1 until 
I can find the bug that causes too many rows to be printed in debugging
mode in some cases. I get an assertion failure when running
	nmap scanme.nmap.org/26 --top-ports 10 --traceroute -n -d
With this change, the bug manifests itself as some peculiar output:

4   --        66.54.149.185
5   --        63.211.250.17
5   39.17 ms  63.211.250.17
6   47.12 ms  4.68.107.190
7   39.72 ms  4.69.132.37

(Note the doubled 5 with the same IP address.)

10  --        207.88.13.122
11  --        207.88.12.46
12  --        207.88.12.61
13  --        65.106.1.57
13  100.77 ms 65.106.1.65
14  91.75 ms  65.106.5.162

(Note the doubled 13 with a different IP address.)

4   --       66.54.149.185
5   --       63.211.250.17
5   ...
6   39.32 ms 4.68.107.190

(Note the doubled 5 with a timeout.)
 2009-08-20 18:22:31 +00:00
david
09ba9eda1f Add a Russian Zenmap translation from Alexander Khodyrev. 2009-08-20 15:38:30 +00:00
fyodor
978b8fc3ae Applied a configure.in patch from Petr Salinger in Debian bug #542388 which apparently fixes the libdnet build on GNU/kFreeBSD 2009-08-20 08:46:00 +00:00
joao
2264838cf8 Fixed bug where socket error messages (like EOF) were appended to the HTTP pipeline response 2009-08-20 03:12:54 +00:00
batrick
34b30d9b7f [NSE] Patch to nse_main.lua to print out all active scripts (running & waiting) 
at debugging level 2 or higher and when a key is pressed. This is especially
useful when we have a rare deadlock and we want to know which scripts are
involved and where (a traceback is also printed).
 2009-08-20 00:36:49 +00:00
david
745d016000 Fix an incorrect comment. 2009-08-20 00:07:46 +00:00
david
9cff9beb20 Remove the G_ALIVE_TTL traceroute probe state. It was mostly synonymous 
with G_DEAD_TTL. I couldn't figure out that the difference was supposed
to be.
 2009-08-19 23:07:43 +00:00
david
86b0100dc3 Fix a bug I just introduced in tracerotue.cc: I moved a loop 
initialization into the loop header but messed it up so the loop
variable wasn't initialized.
 2009-08-19 21:57:58 +00:00
david
c6be484bdf Some more whitespace fixes in traceroute.cc. 2009-08-19 21:37:43 +00:00
david
295b4142e9 Use the dnet.h defiens for ICMP types and codes instead of having ad-hoc 
defines in traceroute.h.
 2009-08-19 21:26:53 +00:00
david
6c28e9aab8 Normalize whitespace in traceroute.h. 2009-08-19 21:11:47 +00:00
david
fb5610089b Remove a stray trailing space from nmap-header-template.cc. 2009-08-19 21:05:21 +00:00
david
5371550a75 Move some functions from traceroute.h into traceroute.cc so they can be 
easily referenced while looking at the code that uses them.
 2009-08-19 21:04:40 +00:00
david
43acb0eab8 Normalize whitespace in traceroute.cc. 2009-08-19 20:14:54 +00:00
david
fec2cc40d0 Allow doing --data-length 0. That's the documented way to turn off UDP 
payloads.
 2009-08-19 17:52:23 +00:00
david
ab09f1974f Adjust indentation and expand tabs in option parsing code. 2009-08-19 17:47:49 +00:00
david
8741504f67 Document what UDP payload probes we have in CHANGELOG. 2009-08-19 17:05:59 +00:00
david
dd51ad05f2 Make some minor whitespace and documentation changes in payload.cc. 2009-08-19 17:00:45 +00:00
david
de19fcda82 Add a UDP payload for port 10080/amanda. 2009-08-19 16:53:28 +00:00
david
7d87fe7aa5 Remove the const qualifier from the SSL pointer returned from 
nse_nsock_get_ssl. In older versions of OpenSSL (I don't know how old)
the argument to SSL_get_peer_certificate is not const and it caused a
compiler error reported by Ron Bowes.
 2009-08-19 16:33:11 +00:00
david
b904a3864d Update config.sub and config.guess from 
http://git.savannah.gnu.org/gitweb/?p=config.git
 2009-08-19 01:16:21 +00:00
david
25cfb510e3 Add a missing #include <string.h> to nse_ssl_cert.cc. 2009-08-18 22:58:44 +00:00
fyodor
167e654519 changes from discussion w/David 2009-08-18 22:56:00 +00:00
fyodor
7e6d183799 Increase the default concurrency level for version scanning from 10-20 based on timing level to 20-40 based on results from Patrick's testing 2009-08-18 21:39:27 +00:00
david
3932139e40 Use an unsigned int instead of size_t in the argument to X509_digest. 
Compilation was broken on 64-bit platforms where the size of unsigned
int and size_t differed.
 2009-08-18 21:36:09 +00:00
fyodor
27e7273c49 2009-08-18 19:25:23 +00:00
david
f6463017db Add a service probe for DNS-based service discovery (DNS-SD). See 
http://seclists.org/nmap-dev/2009/q3/0610.html.
 2009-08-18 19:00:59 +00:00
david
b27a9ce439 For some reason I thought that hexadecimal escapes in strings were not 
ANSI C. They are, so use them to define UDP payloads in preference to
octal.
 2009-08-18 05:47:30 +00:00
fyodor
ed6695b6a2 note that we may want to update config.sub/guess 2009-08-18 02:37:02 +00:00
ron
f2ed53ebfc Removed an undeclared variable in http.lua. 2009-08-18 02:20:33 +00:00
david
2204f79d57 Add a UDP payload for 2049/nfs. This payload, taken from unicornscan, is 
a call to the NFSPROC_NULL procedure, which is explicitly documented to
do nothing.
 2009-08-18 01:43:46 +00:00
ron
6aee1ce91c Fixed a spelling mistake in http.lua. 2009-08-18 01:40:33 +00:00
david
5f8ac9a9db Add the RPCCheck payload for UDP port 111/sunrpc. 2009-08-18 01:27:49 +00:00
david
1ffb2f6ec6 Add a UDP payload for ports 1645 and 1812, radius. It is an 
Access-Request packet containing no username or password, intended to
get an Access-Reject in response.
 2009-08-18 00:46:31 +00:00
jah
4830a3ea29 Removed the restriction in the portrule that would prevent this script from 
running against non-Apache (or non-Apache based) services.  Updated the comments
to reflect this change.
 2009-08-17 22:50:19 +00:00
david
537e938378 Fix a typo in smb-system-info.nse. 2009-08-17 20:31:26 +00:00
batrick
5e362ac43d Changed a global variable to a local to avoid an error from the strict 
module.
 2009-08-15 14:57:52 +00:00
batrick
d5748b1d83 If the response is already a table (from an error in http.request) then do not 
try to parse a result, instead return nil.  This fixes an error where we try to
index match as though response is a string.
 2009-08-15 14:53:28 +00:00
joao
a2dcbb7cd5 Fixing a bug where getPipelineMax was not returning any value, when it sould, at least, return 1. 2009-08-15 14:32:17 +00:00
david
c5576e5a1e Add another thing to consider for UDP payloads: Some protocols can 
benefit from variable payloads.
 2009-08-14 23:42:52 +00:00