PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-20 22:49:01 +00:00
Code Issues Projects Releases Wiki Activity
6,102 Commits 2 Branches 0 Tags
f181470fac0f70e64b077bb87ac75f4d002cde9c
Commit Graph

6102 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
shinnok
62f509aee0 Update my todo file. 2011-06-17 21:04:17 +00:00
colin
5774cd5997 Updated Changelog 2011-06-17 20:01:52 +00:00
colin
221d8db694 Merging from nmap-exp/colin/nmap-addrset and /nmap-exp/colin/ncat-addrset 
Ported addrset from ncat to libnetutil. Made --exclude and --exclude-file options use addrset. As a side effect IPv6 Excludes work.
 2011-06-17 19:58:03 +00:00
patrik
0a3bf95897 o [NSE] Added a MySQL audit script and a rulebase that supports auditing a 
subset of the MySQL CIS 1.0.2 Benchmark. [Patrik]
 2011-06-17 06:12:01 +00:00
david
092772e1b5 Use ipv6_get_data_any and ip_get_data_any when parsing -sO packets. 
Restore error checking.
 2011-06-17 05:47:34 +00:00
david
e748e46d9e Add ipv6_get_data_any and ip_get_data_any. 
These version allow returning an extension header or other
non–upper-layer protocol if it is the final header before the end of the
packet. This is used to parse the broken packets sent as part of
protocol scan.
 2011-06-17 05:47:33 +00:00
david
332c93ea07 Correctly update datalen when getting IP data. 
We were instead updating the value of an unused temporary variable. This
caused encapsulated data to appear longer than it was.
 2011-06-17 05:47:32 +00:00
david
e4498838b7 Allow splitting up hostgroups on different interfaces for IPv6. 2011-06-17 05:47:31 +00:00
david
08faad4ca5 Remove [-Wunused-but-set-variable] warnings from scan_engine.cc. 2011-06-17 03:21:54 +00:00
david
2c3bf07b60 Whitespace and formatting in build_protoscan_packet. 2011-06-17 02:47:07 +00:00
david
1f58263afa Factor out build_protoscan_packet. 
This removes some inline complexity from sendIPScanProbe.
 2011-06-17 02:47:07 +00:00
ron
c9a964d8a3 Added some updated http-fingerprints checks from Ange Gutek 2011-06-16 22:38:54 +00:00
patrik
1d7b0c0d98 o [NSE] Added ipv6 support to the wsdd, dnssd and upnp libraries. Applied 
patch from Dan Miller that fixes errors in processing and sorting ipv6
  addresses in scripts using these libraries. [Daniel Miller, Patrik]
 2011-06-16 05:29:42 +00:00
david
78e5fc6ec8 Add a comment explaining why T1 appears in sendT1_7Probe, even though it 
is normally represented by the first (of six) probes sent by
sendTSeqProbe.
 2011-06-15 21:02:21 +00:00
david
010c8200e8 Standardize on the name rmiregistry for port 1099/tcp. 
This is the name used in nmap-services. It affects nmap-service-probes
and rmi-dumpregistry.nse. The inconsistency was noted by Gabriel
Lawrence.
 2011-06-15 19:14:46 +00:00
david
b0a49d2ad1 Move get/set_program_name from main.cc to nmap.cc. 
This is for technical reasons; nmap-private-dev programs need to link
against objects files but they can't link against main.o because that
results in a duplicate definition of main.
 2011-06-15 18:12:33 +00:00
david
c32e8c5513 Fix socket leak in intf_name. This was reported by Brandon. 2011-06-15 08:34:33 +00:00
patrik
cf873707cd o [NSE] Added minimal Service Location Protocol (SLP) library and the script 
broadcast-novell-locate that detects servers running eDirectory. [Patrik]
 2011-06-15 06:23:30 +00:00
david
d1aae42962 Whitespace in ippackethdrinfo. 2011-06-15 00:22:59 +00:00
david
8737c0ab72 Remove unused local. 2011-06-15 00:22:58 +00:00
david
3382faa75e Update a comment. 2011-06-14 21:06:35 +00:00
david
87a2b31796 Add IPv6 -sO to CHANGELOG. 2011-06-14 20:17:29 +00:00
david
a31a41e770 Interpret ICMPv6 Parameter Problem responses. 2011-06-14 19:46:53 +00:00
david
223d45c435 Isolate the test for valid encapsulated ICMPv6 data to those protocols 
that need it.

We need to accept invalid encapsulated data for protocol scan responses.
 2011-06-14 19:46:51 +00:00
david
51c82aaccf Add ICMPv6 Parameter Problem reason code. 2011-06-14 19:46:50 +00:00
david
5f8b19c700 Add ICMPv6 Parameter Problem defines. 2011-06-14 19:46:49 +00:00
david
a67eca0555 Allow sending -6 -sO probes. 2011-06-14 19:46:48 +00:00
david
af7da5f72d Don't consider any more probes after finding one of our own to localhost. 
There is a special test that uses IP IDs to check if a presumed reply
from localhost is actually one of our own probes. However the test
didn't bail out ofter finding one of these matches, so a retransmission
(with a different IP ID) could match and look like a protocol reply from
localhost.
 2011-06-14 19:46:47 +00:00
david
bbf70e7f69 Fix printing of UDP and SCTP IPv6 packets. 
Unlike other protocols, these assumed an IP header length of
sizeof(struct ip).
 2011-06-14 19:46:46 +00:00
david
257fe7bd84 Fix the singular for ER_PROTOUNREACH. 2011-06-14 19:46:45 +00:00
david
0793852c90 Fix the setting of ipid in setIP. 2011-06-14 19:46:44 +00:00
david
d42ef0edbc Comment typo. 2011-06-14 19:46:43 +00:00
fyodor
8a561e9ae3 Reduce the rarity value of the SSLSessionReq so that it is tried even with --version-light 2011-06-14 06:55:38 +00:00
paulino
2d8cbfc90a Paulino TODO update following meeting with Fyodor 2011-06-14 06:37:27 +00:00
david
23d33d9bc3 Properly make some methods const. 
These had const at the beginning of the declaration, so it applied to
the return value rather than the object the method was being called on.
 2011-06-14 02:29:41 +00:00
david
17a57e186b Actually honor the append parameter to log_open. 
It was looking at o.append_output instead. It didn't matter, because it
was always called with o.append_output in that place anyway.
 2011-06-14 02:29:40 +00:00
david
87d9c4ba69 Remove some unused function parameters. 2011-06-14 02:29:39 +00:00
david
36af9da175 Make abstract_ip_hdr.ipid 16 bits, not 8. 
This was a mistake that was cauding later IP ID comparisons to be false
because of truncation. In particular, it could make all protocols appear
to be open when doing a -sO scan against localhost because the outgoing
packets looked like protocol replies.
 2011-06-14 02:29:38 +00:00
colin
d7a3040644 Changelog Update 2011-06-14 01:03:14 +00:00
david
35d920cda9 Rename do_arp_cache to do_mac_cache. 
It is no longer specific to ARP; it also caches IPv6 ND results.
 2011-06-14 00:42:39 +00:00
david
fdef8d7663 Remove IPv4-only comments from do_arp_cache. 2011-06-14 00:42:38 +00:00
batrick
dc9a35bc9d New system for silent require errors. Use the new function 
stdnse.silent_require. The Lua require function is back in its usual spot
(_G.require).
 2011-06-13 23:38:35 +00:00
batrick
e37cfc5d0e moved some debug output where it made more sense 
fixed some formatting
 2011-06-13 22:59:30 +00:00
djalal
c9e955a756 Update my TODO file. 2011-06-13 21:51:31 +00:00
fyodor
adb60da983 Note a bunch of finished tasks 2011-06-13 21:34:39 +00:00
djalal
14a4031b94 Added a CHANGELOG entry about the SMTP library. 2011-06-13 13:25:49 +00:00
djalal
caadf952e3 o [NSE] Updated the SMTP scripts to use the new SMTP Lua library. 2011-06-13 13:19:26 +00:00
djalal
e7c6bf55f0 Added the SMTP library. 2011-06-13 13:14:08 +00:00
luis
540ee62611 Revert r23288 as it seems to crash Nmap. More info: http://seclists.org/nmap-dev/2011/q2/926 2011-06-13 10:04:20 +00:00
patrik
5f00edd310 Re-worked the http-form-brute script, the changes include: 
- autodetecting form fields is now a bit more robust
- only the password field is mandatory
- HTTP re-directs are followed in case they're detected
- the detection of incorrect login attempts has been changed and supports
  two new arguments (onsucces, onfailure)
[Patrik]
 2011-06-12 18:52:51 +00:00