PenTest/nmap - nmap - Ols Gitea: How about a cup of tea while we code?

mirror of https://github.com/nmap/nmap.git synced 2025-12-27 18:09:01 +00:00

Go to file

david 0674925f73 Skip over entire ifreq struct in NEXTIFR.

On platforms supporting sa_len, NEXTIFR would skip over sa_len bytes
starting at the beginning of ifr_addr, and assume that was the end of
the struct. (The idea being that a large address such as a sockaddr_in6
could overflow the nominal struct boundary.) This logic was wrong when
there was something else in the union bigger than sa_len; we would
increment into somewhere in the middle of the same struct.

This exhibited itself on NetBSD, where struct ifreq has a
sockaddr_storage member in its internal union:
struct	ifreq {
	char	ifr_name[IFNAMSIZ];		/* if name, e.g. "en0" */
	union {
		struct	sockaddr ifru_addr;
		struct	sockaddr ifru_dstaddr;
		struct	sockaddr ifru_broadaddr;
		struct	sockaddr_storage ifru_space;

No, we skip over sa_len bytes, or to the nominal end of the struct,
whichever is larger.

Unix Network Programming gets this wrong too; in figure 17.8 they do
ptr += sizeof(ifr->ifr_name) + max(sizeof(struct sockaddr), ifr->ifr_addr.sa_len);

2012-09-10 01:17:28 +00:00

docs

Key digest output convention.

2012-09-08 16:22:23 +00:00

libdnet-stripped

Skip over entire ifreq struct in NEXTIFR.

2012-09-10 01:17:28 +00:00

liblinear

Changed the active(release) compile setting from MT to MD to bring it in line with all of the other Nmap projects to fix the '

2012-06-21 05:06:34 +00:00

liblua

Fixed the LNK4006 warning from http://seclists.org/nmap-dev/2006/q3/22

2012-06-21 04:33:09 +00:00

libnetutil

Ignore RTN_UNREACHABLE routes in route_dst_netlink.

2012-07-24 00:24:11 +00:00

libpcap

Rearrange libpcap patch files for AIX compatibility.

2012-04-13 15:50:15 +00:00

libpcre

Merge from /nmap-exp/luis/nmap-os6.

2011-09-19 18:31:46 +00:00

macosx

Our Zenmap packages don't run on PowerPC Macs anymore (since 5.61TEST4).

2012-05-22 20:13:15 +00:00

mswin32

Removed nmap_rpc imports from windows vc++ build file.

2012-08-17 18:47:23 +00:00

nbase

Don't use exit in APR_CHECK_WORKING_GETADDRINFO.

2012-09-08 19:45:38 +00:00

ncat

Don't use exit in PCAP_IS_SUITABLE.

2012-09-08 19:44:24 +00:00

ndiff

Get rid of ndiff.py symlink.

2012-08-02 18:35:36 +00:00

nmap-update

Uniform handling of makefile.dep in makefiles.

2012-06-19 14:06:49 +00:00

nping

Don't use exit in PCAP_IS_SUITABLE.

2012-09-08 19:44:24 +00:00

nselib

Give sample return values for smb.get_os.

2012-09-08 17:05:33 +00:00

nsock

Recognize WSAEADDRINUSE in handle_connect_result.

2012-09-06 20:11:08 +00:00

scripts

Better break down structured output in smb-os-discovery.

2012-09-08 17:05:39 +00:00

todo

Some updates from discussion w/David

2012-08-13 19:53:38 +00:00

zenmap

Use the -c option in kdesu commands.

2012-08-19 20:11:06 +00:00

acinclude.m4

Don't use exit in PCAP_IS_SUITABLE.

2012-09-08 19:44:24 +00:00

aclocal.m4

Regen aclocal.m4.

2012-03-07 03:15:51 +00:00

BSDmakefile

Merged -r13793:HEAD from nmap-exp/dev/nmap branch now that we're opening up trunk development

2009-06-29 23:48:19 +00:00

CHANGELOG

Skip over entire ifreq struct in NEXTIFR.

2012-09-10 01:17:28 +00:00

charpool.cc

One more adjustment to the license text. Notes that Zenmap, Ncat, and Nping use this license. Note that contributions made directly in the src repository are treated the same as those in the mailing list.

2012-03-01 06:53:35 +00:00

charpool.h

2012-03-01 06:53:35 +00:00

config.guess

Update to the latest config.guess and config.sub from

2010-09-29 04:31:24 +00:00

config.sub

Update to the latest config.guess and config.sub from

2010-09-29 04:31:24 +00:00

configure

Don't use exit in PCAP_IS_SUITABLE.

2012-09-08 19:44:24 +00:00

configure.ac

Lua 5.2 upgrade [1] for NSE.

2012-05-27 08:53:32 +00:00

COPYING

2012-03-01 06:53:35 +00:00

depcomp

Delete auxiliary scripts config.guess, config.sub, depcomp, install-sh,

2007-11-27 06:22:46 +00:00

FingerPrintResults.cc

Change "perfect match" test in FingerPrintResults::populateClassification.

2012-03-07 18:23:33 +00:00

FingerPrintResults.h

2012-03-01 06:53:35 +00:00

FPEngine.cc

Don't allow matching probes that haven't been sent.

2012-03-22 01:30:47 +00:00

FPEngine.h

Fixed the compile time warning of warning: deleting object of polymorphic class type ‘FPHost6’ which has non-virtual destructor might cause undefined behaviour by making the destructor virtual.

2012-07-21 00:56:13 +00:00

FPModel.cc

Some OS classification changes.

2012-03-07 17:59:55 +00:00

global_structures.h

First commit from rpc-grind branch.

2012-08-17 18:30:11 +00:00

HACKING

Updated information and procedures from the project's HACKING file.

2012-07-09 22:53:46 +00:00

idle_scan.cc

More style in idle_scan.cc.

2012-08-28 08:20:31 +00:00

idle_scan.h

Style in idle_scan.{cc,h}.

2012-08-28 07:50:09 +00:00

INSTALL

URL change from http://insecure.org/nmap/* to http://nmap.org/*

2008-01-17 07:22:03 +00:00

ltmain.sh

Update ltmain.sh to version 2.2.6 for libdnet.

2009-08-07 17:42:12 +00:00

MACLookup.cc

2012-03-01 06:53:35 +00:00

MACLookup.h

2012-03-01 06:53:35 +00:00

main.cc

Moved the setuid check from main.cc to nmap.cc after option parsing so that I can use error() and have it write to output file with --log-errors, etc. I did receive a complaint that the setuid warning isn't converted to script kiddie mode when -oS is enabled. If we decide that we want script kiddify error messages, we'll have to add that support to error()

2012-06-02 18:08:39 +00:00

Makefile.in

First commit from rpc-grind branch.

2012-08-17 18:30:11 +00:00

missing

Delete auxiliary scripts config.guess, config.sub, depcomp, install-sh,

2007-11-27 06:22:46 +00:00

nmap_amigaos.h

2012-03-01 06:53:35 +00:00

nmap_config.h.in

Define SOLARIS_BPF_PCAP_CAPTURE for Solaris 11.

2012-04-07 08:07:41 +00:00

nmap_dns.cc

2012-03-01 06:53:35 +00:00

nmap_dns.h

2012-03-01 06:53:35 +00:00

nmap_error.cc

Remove some redundant code now that --log-errors is gone.

2012-06-30 01:51:30 +00:00

nmap_error.h

2012-03-01 06:53:35 +00:00

nmap_tty.cc

2012-03-01 06:53:35 +00:00

nmap_tty.h

2012-03-01 06:53:35 +00:00

nmap_winconfig.h

2012-03-01 06:53:35 +00:00

nmap-header-template.cc

2012-03-01 06:53:35 +00:00

nmap-mac-prefixes

Update to the latest MAC prefixes from IEEE as of right now

2012-03-09 00:45:55 +00:00

nmap-os-db

Add a new Linux OS fingerprint.

2012-08-03 23:46:06 +00:00

nmap-payloads

Turn the 6481/udp probe from servicetags.nse into a UDP payload.

2011-02-22 04:32:59 +00:00

nmap-protocols

URL change from http://insecure.org/nmap/* to http://nmap.org/*

2008-01-17 07:22:03 +00:00

nmap-rpc

Added missing service name for Inter-Language Unification in nmap-rpc.

2012-07-24 12:32:31 +00:00

nmap-service-probes

Add CPE for Minix services.

2012-08-28 14:30:20 +00:00

nmap-services

rebuilt nmap-services to include memcachedb on 21201/tcp

2012-06-26 23:59:19 +00:00

nmap.cc

Make magic_port_set a bool.

2012-08-28 13:07:19 +00:00

nmap.h

Added an extra level of indirection to let the compiler properly expand the macro.

2012-09-03 13:39:43 +00:00

nmap.spec.in

Split nmap-update into its own RPM.

2012-02-25 02:23:55 +00:00

NmapOps.cc

Make magic_port_set a bool.

2012-08-28 13:07:19 +00:00

NmapOps.h

Use an unsigned int for --max-retries and related values.

2012-08-28 14:29:11 +00:00

NmapOutputTable.cc

2012-03-01 06:53:35 +00:00

NmapOutputTable.h

2012-03-01 06:53:35 +00:00

nse_binlib.cc

Lua 5.2 upgrade [1] for NSE.

2012-05-27 08:53:32 +00:00

nse_binlib.h

added nse_binlib.h

2008-07-31 14:18:21 +00:00

nse_bit.cc

Lua 5.2 upgrade [1] for NSE.

2012-05-27 08:53:32 +00:00

nse_bit.h

Corrected many #includes for header files (where they are included).

2009-03-10 05:56:10 +00:00

nse_debug.cc

Lua 5.2 upgrade [1] for NSE.

2012-05-27 08:53:32 +00:00

nse_debug.h

Corrected many #includes for header files (where they are included).

2009-03-10 05:56:10 +00:00

nse_dnet.cc

Get the closure from the library, don't make a new one.

2012-05-28 21:48:54 +00:00

nse_dnet.h

Lua 5.2 upgrade [1] for NSE.

2012-05-27 08:53:32 +00:00

nse_fs.cc

Applied a patch provided by jah that solves a problem with includes on windows.

2012-07-21 13:08:34 +00:00

nse_fs.h

Add parts of LuaFileSystem to NSE (support for mkdir, rmdir, link).

2012-07-17 18:07:28 +00:00

nse_main.cc

Handle NSE-returned strings with null characters

2012-08-17 20:14:44 +00:00

nse_main.h

Handle NSE-returned strings with null characters

2012-08-17 20:14:44 +00:00

nse_main.lua

Provide a default {} value for script categories.

2012-08-28 12:17:36 +00:00

nse_nmaplib.cc

Index nmap.list_intefaces return value from 1, not 0.

2012-09-01 03:19:00 +00:00

nse_nmaplib.h

Remove references to obsolete stdnse.c library.

2012-08-08 19:21:44 +00:00

nse_nsock.cc

Fixed memory leak.

2012-08-04 16:05:24 +00:00

nse_nsock.h

Lua 5.2 upgrade [1] for NSE.

2012-05-27 08:53:32 +00:00

nse_openssl.cc

RC4 cipher for work Ron is doing.

2012-07-19 02:47:01 +00:00

nse_openssl.h

Corrected many #includes for header files (where they are included).

2009-03-10 05:56:10 +00:00

nse_pcrelib.cc

Don't strdup (and fail to free) pattern passed to pcre_compile.

2012-06-05 21:09:01 +00:00

nse_pcrelib.h

Revert r5485. This changes the pcre Lua module back to statically linked

2007-10-23 00:45:00 +00:00

nse_ssl_cert.cc

Lua 5.2 upgrade [1] for NSE.

2012-05-27 08:53:32 +00:00

nse_ssl_cert.h

2012-03-01 06:53:35 +00:00

nse_utility.cc

Lua 5.2 upgrade [1] for NSE.

2012-05-27 08:53:32 +00:00

nse_utility.h

Lua 5.2 upgrade [1] for NSE.

2012-05-27 08:53:32 +00:00

osscan2.cc

Remove some dead commented code.

2012-08-28 07:50:30 +00:00

osscan2.h

Get rid of "using namespace std".

2012-03-19 16:48:27 +00:00

osscan.cc

2012-03-01 06:53:35 +00:00

osscan.h

2012-03-01 06:53:35 +00:00

output.cc

Second commit from rpc-grind branch. Removing old implementation from output and portlist.

2012-08-17 18:31:50 +00:00

output.h

Structured script output.

2012-08-14 16:36:25 +00:00

payload.cc

2012-03-01 06:53:35 +00:00

payload.h

2012-03-01 06:53:35 +00:00

portlist.cc

Second commit from rpc-grind branch. Removing old implementation from output and portlist.

2012-08-17 18:31:50 +00:00

portlist.h

Second commit from rpc-grind branch. Removing old implementation from output and portlist.

2012-08-17 18:31:50 +00:00

portreasons.cc

Use less memory for ip_addr in port_reason.

2012-06-26 03:23:14 +00:00

portreasons.h

Use less memory for ip_addr in port_reason.

2012-06-26 03:23:14 +00:00

protocols.cc

2012-03-01 06:53:35 +00:00

protocols.h

2012-03-01 06:53:35 +00:00

README-WIN32

URL change from http://insecure.org/nmap/* to http://nmap.org/*

2008-01-17 07:22:03 +00:00

scan_engine.cc

Use smartly chosen destination ports instead of o.magic_port in -sO.

2012-09-02 22:47:45 +00:00

scan_engine.h

Removing pos_scan from scan engine as it is not used anymore.

2012-08-17 18:33:07 +00:00

service_scan.cc

Added handling for WSAENETRESET (same as ENETRESET). Currently we just catch it and send the next probe. I wrapped the catch for ENETRESET in the #ifdef WIN32 incase we later want to different handling for WASENETREST and ENETRESET

2012-07-01 17:32:07 +00:00

service_scan.h

2012-03-01 06:53:35 +00:00

services.cc

2012-03-01 06:53:35 +00:00

services.h

2012-03-01 06:53:35 +00:00

shtool

Upgrade shtool to version 2.0.8. This is supposed to fix NLS problems with

2008-08-19 17:49:47 +00:00

struct_ip.h

More attempted header rearrangement for AIX compatibility.

2012-03-19 16:26:39 +00:00

Target.cc

Structured script output.

2012-08-14 16:36:25 +00:00

Target.h

2012-03-01 06:53:35 +00:00

TargetGroup.cc

Make it a warning (not a fatal error) when there's a problem with an IPv4 spec.

2012-04-27 06:27:01 +00:00

TargetGroup.h

2012-03-01 06:53:35 +00:00

targets.cc

Do ARP/ND scan with -PR --disable-arp-ping.

2012-07-16 18:26:39 +00:00

targets.h

2012-03-01 06:53:35 +00:00

tcpip.cc

Make -e assign IPv6 scope ids for everything, not only route_dst.

2012-03-27 21:48:53 +00:00

tcpip.h

Change hostname parameter to const char *.

2012-03-04 07:26:16 +00:00

timing.cc

Don't set max parallelism when only --min-paralellism is given.

2012-04-07 08:07:38 +00:00

timing.h

2012-03-01 06:53:35 +00:00

traceroute.cc

Use an unsigned int for --max-retries and related values.

2012-08-28 14:29:11 +00:00

traceroute.h

2012-03-01 06:53:35 +00:00

utils.cc

2012-03-01 06:53:35 +00:00

utils.h

2012-03-01 06:53:35 +00:00

xml.cc

Typo.

2012-05-05 18:02:34 +00:00

xml.h

Close an open start tag before a fatal error.

2012-03-09 00:16:39 +00:00

zenmap.spec.in

Cope with not having the pysqlite2 or sqlite3 modules in Zenmap by

2009-06-12 22:34:50 +00:00

docs/README

Here is some documentation for Nmap, but these files are much less
comprehensive than what you'll find at the actual Nmap documentation
site ( http://nmap.org ).

Languages

C 37.8%

Lua 28.1%

C++ 16.7%

Shell 5.8%

Python 4.2%

Other 7.2%