PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-01-19 04:39:01 +00:00
Code Issues Projects Releases Wiki Activity
5,384 Commits 2 Branches 0 Tags
fc3fbd6fbd0b82cd97f00a46e86602234d8494f7
Commit Graph

605 Commits

Author SHA1 Message Date
patrik
873cf47611 o [NSE] Added the Netware Core Protocol (NCP) library and the scripts 
ncp-serverinfo and ncp-enum-users. [Patrik]
 2011-05-28 09:01:31 +00:00
batrick
a26f606ecd Just use srand on NSE startup in nse_main.cc. This removes the need 
for a binding which will probably not be useful for script writers
when they have OpenSSL's PRNG already available.
 2011-05-24 02:48:39 +00:00
batrick
5fc587c20c nsedoc for nmap.get_random_uint. 2011-05-24 00:18:06 +00:00
batrick
5a68e5f04a Set the math.randomseed value in nse_main.lua on behalf of scripts. 
Since Lua uses the C rand and srand functions, which have a static
seed for the entire program, we don't want scripts doing this themselves.
 2011-05-23 21:43:46 +00:00
patrik
8ff4e89019 Added new error messages for error codes 
Added the 8A tagdecoder
Modified the output of error messages slightly
[Patrik]
 2011-05-22 14:43:08 +00:00
gorjan
c16b036f4f Small NSEDoc fix for nselib/json.lua 2011-05-21 07:24:11 +00:00
paulino
7e2e4bc591 Added information to fingerprint versions of CakePHP applications. 2011-05-20 09:26:31 +00:00
fyodor
de57b85a47 Typo fix: LUA -> Lua 2011-05-18 23:15:58 +00:00
gorjan
3d249dbb4b Adding in_port_range function to nselib/stdnse.lua 2011-05-12 22:36:45 +00:00
batrick
4444071f03 use # length operator instead of string.len (canonicalize) 
Used this perl command:

$ # perl -pi -e 's/string\.len\((.*?)\)/#\1/g' *.lua

Also fixed one instance where the above command didn't correctly
translate the intended code (string.len(a .. b .. c)).
 2011-05-11 15:08:55 +00:00
batrick
e700497f6c canonicalize more code 2011-05-11 14:50:38 +00:00
batrick
186cb2d6a3 canonicalize some code 2011-05-11 14:38:52 +00:00
henri
a433cc08ed Fixed typo 2011-05-11 14:21:07 +00:00
patrik
e8c5640dda o [NSE] Added a SIP library and two new scripts sip-brute.nse and 
sip-user-enum.nse providing brute and user enumeration support for the SIP
  protocol. [Patrik]
 2011-05-09 18:00:52 +00:00
patrik
19da29942c Applied Sebastian Dragomir's patch for the "Unbounded memory use" bug reported 
by David Fifield http://seclists.org/nmap-dev/2011/q2/451
 2011-05-09 17:46:25 +00:00
batrick
7f66646636 Patch to make require errors silent and removed evil workarounds. 
Added new stdnse function stdnse.print_verbose (similar to print_debug).
 2011-05-04 21:06:53 +00:00
gorjan
1d01038a1e Small fix in nmap NSE library documentation 2011-05-02 23:23:13 +00:00
henri
7e2a85cab9 Added the http-wp-plugins script by Ange Gutek. 2011-04-29 07:43:41 +00:00
ron
01f5e7cf51 Added a patch from Chris Woodbury that fixes a serious bug in the SMB Authentication library, where multiple concurrent scripts with valid credentials would fail to log in. 2011-04-28 23:00:01 +00:00
david
832fae4c11 Restore working DNS updates in dns.encode. 
This was broken in the merge in r22778. Patrick Donnelly noticed this
with nse_check_globals.
 2011-04-27 20:33:04 +00:00
djalal
e91c3505be o [NSE] Removed the nmap.get_interface_link function, which was 
deprecated by the new nmap.get_interface_info function.
 2011-04-22 22:47:28 +00:00
david
fef214063a Add omp2-brute and omp2-enum-targets from Henri Doreau. 2011-04-20 23:44:16 +00:00
david
3447e2a6a2 Use get_script_args to handle smb-related flag options, to use our 
common true/false logic and not hardcode "1" and "true" in places. Patch
by Chris Woodbury.
 2011-04-20 21:35:10 +00:00
david
95bca0d2c7 Add port 9001, tor-orport, to LIKELY_SSL_PORTS and LIKELY_SSL_SERVICES. 2011-04-19 00:51:10 +00:00
david
7a2b7781f7 Add an http-enum fingerprint for /crossdomain.xml, which is used to 
grant permission to Adobe Flash players to make connections.
 2011-04-17 18:32:37 +00:00
david
c36cf833e6 Add the nmap.get_interface and nmap.get_interface_info functions by 
Djalal Harouni.
 2011-04-05 06:11:58 +00:00
patrik
0ee33e4cb7 o Moved afp.username and afp.password arguments to afp-library. 
o Add support for getting file-dates, acls and sizes
[Patrik]
 2011-04-03 12:53:12 +00:00
david
4d1b301f43 Enable NSEDoc for json.generate; this should be a public function. 2011-04-02 16:28:14 +00:00
david
cd462ade8f Whitespace in dns.lua: Expand tabs, remove trailing space, change from 
3-space to 4-space indents.
 2011-03-28 22:52:37 +00:00
david
03a42edfe5 Parse more than one type bitmap block in an NSEC record if present. 2011-03-27 05:07:26 +00:00
david
6d90b593b7 Change the "name" member of a decoded NSEC record to be called 
"next_dname" instead.
 2011-03-27 05:07:16 +00:00
david
4f054a058e Remove intermediate calculations from a decoded NSEC table: WinBlockNo, 
bmplength, and bin. Factor out a function to read the type bitmap.
 2011-03-27 05:07:03 +00:00
david
477bd66fc9 Merge r22369:22777 from /nmap-exp/david/nmap-nsec. This adds the 
dns-nsec-enum script, originally by John Bond and improved by him and
me.

Changes in dns.lua:
  Add dnssec option to dns.query that adds an OPT RR with the DO (DNSSEC
    okay) flag set.
  Add answer fetcher for NSEC records (unused currently).
  Add decoder for NSEC records.
  Add rudimentary handling of the additional section in dns.encode.
  Add a check that a decoder exists before trying to call it.
 
Also added a copy of the simplified BSD license that the new script is
under.
 2011-03-27 04:24:43 +00:00
david
6142158b43 Updates to ssl-known-key by Mak Kolybabi, 
http://seclists.org/nmap-dev/2011/q1/934. Change the database format.
Change the output.
 2011-03-22 19:44:45 +00:00
david
0e970b4bc6 ssl-known-key.nse: Use shortport.ssl. Rename ssl-fingerprints.txt to 
ssl-fingerprints; no extension appears to be the prevailing convention
in nselib/data. Allow comments and blank lines in ssl-fingerprints. Add
Little Black Box copyright and attribution to ssl-fingerprints. Boost
some print_debug thresholds.
 2011-03-22 19:44:42 +00:00
david
47557a108b o [NSE] Added ssl-known-key.nse, which checks SSL certificates against a 
list of certificates with known keys that have been extracted from
  firmware files. [Mak Kolybabi]
 2011-03-22 19:44:40 +00:00
patrik
b62cebc7b3 o [NSE] Fixed a problem in oracle-brute that would fail due to connection 
exhaustion. Fixed some debugging messages in the brute library [Patrik]
 2011-03-19 08:26:33 +00:00
patrik
b844caa6cd Changed the way cookie table fields are created in http.lua. This change 
ensures that attribute names are always treated as lower case. [Patrik]
 2011-03-15 21:42:49 +00:00
david
72415c63c2 Remove Vim modeline from mssql.lua; was interfering with NSEDoc parsing. 2011-03-13 04:33:31 +00:00
patrik
eaf01310e7 Replaced an empty password with <empty> in a debug message. 2011-03-13 01:22:32 +00:00
david
5d07bded42 Typo fix. 2011-03-12 23:56:43 +00:00
patrik
72b7fcc299 Fixed bug so that empty passwords are printed as <empty> in script results. 
Bug reported by Toni Ruottu http://seclists.org/nmap-dev/2011/q1/789
 2011-03-12 23:50:57 +00:00
robert
e7e40bb43a Added some extra Microsoft fingerprints for FrontPage and Remote Desktop Web. 2011-03-09 09:34:02 +00:00
patrik
58edddaedb o [NSE] Merged the ms-sql branch with several improvements and changes to the 
ms-sql scripts and library:
  - Improved version detection
  - Improved server discovery
  - Add support for named pipes
  - Add support for integrated authentication
  - Add support for connecting to instances by name or port
  - Improved script and library stability
  - Improved script and library documentation
 [Patrik Karlsson, Chris Woodbury]
 2011-02-26 22:41:10 +00:00
david
61543b681e Fix to http.validate_options from Sebastian Prengel: The cookies table 
was being iterated over incorrectly.

Also from Sebastian: add "expires" to the list of handled keys in
validate_options.
 2011-02-24 20:16:06 +00:00
david
ddaf29c3e4 Fix two bugs in the new shortport.ssl portrule, reported by Tom Sellers. 
The first is that "sctp" was being treated as a list of port states,
when it should have been put in the same table as "tcp". The second is
the same bug that we've seen before, which is that it was returning a
function value instead of the result of calling the function.
 2011-02-22 20:16:34 +00:00
patrik
e50d65755b * Add a new script snmp-ios-config that pulls the config from a Cisco devices 
using SNMP and tftp. The script was created by Vikas Singhal.
* Add tftp library, used by the snmp-ios-config script, that acts as a server
  and receives the config file from the device. [Patrik]
 2011-02-22 09:13:03 +00:00
david
c3ab2d5ea4 Create a shortport.ssl function like shortport.http. Use it in ssl 
scripts.
 2011-02-22 00:46:28 +00:00
ron
d33c79c65f Removed some duplicate shares for bruteforcing, alphabetized the list, and added TEMP and SHARE - all thanks to Chris Woodbury's suggestions 2011-02-09 04:22:15 +00:00
patrik
a139a26fd7 Fix for bug that would make Nmap fail to run when compile without SSL support. 
The wsdd library incorrectly assumed OpenSSL to always be available and the
ssh-hostkey used the undeclared SCRIPT_NAME in message when evaluating SSL
support. The bug was reported by Michael Pattrick on nmap-dev:
http://seclists.org/nmap-dev/2011/q1/312

[Patrik]
 2011-01-30 10:39:17 +00:00