PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-07 13:11:28 +00:00
Code Issues Projects Releases Wiki Activity
Files
4b64da4f14f88c97bfe63b96a3e65c530b85d1f7
nmap/scripts
History
patrik 4b64da4f14 o [NSE] Added http-vuln-cve2011-3368 a script that attempts to detect whether 
the remote web server is vulnerable to the Apache reverse proxy bypass
  vulnerability CVE-2011-3368. [Ange Gutek, Patrik]
2011-11-17 19:33:19 +00:00
..
address-info.nse
Add missing datafiles import to address-info.
2011-10-04 19:40:04 +00:00
afp-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
afp-ls.nse
o [NSE] Added the afp-ls script that lists files accessible on remote
2011-04-05 08:31:34 +00:00
afp-path-vuln.nse
Updated some of the vulnerability scripts to use the new vulnerability library.
2011-11-09 10:08:19 +00:00
afp-serverinfo.nse
o [NSE] Made the following scripts in the default category:
2011-07-18 09:50:18 +00:00
afp-showmount.nse
o Moved afp.username and afp.password arguments to afp-library.
2011-04-03 12:53:12 +00:00
amqp-info.nse
Update and canonicalize a bunch of script descriptions
2011-11-07 04:08:29 +00:00
asn-query.nse
Fix a bug in dns.lua: ensure that dns.query() always return two values (status and response).
2011-09-22 18:00:44 +00:00
auth-owners.nse
Change calls in these forms:
2010-08-16 18:59:30 +00:00
auth-spoof.nse
Do copyediting of NSEDoc. This is a first pass up to ms-sql-xp-cmdshell.
2010-07-09 23:32:18 +00:00
backorifice-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
backorifice-info.nse
Adding a dependency for backorifice-brute to backorifice-info
2011-06-30 15:47:32 +00:00
banner.nse
Merge r18689:r19511 from /nmap-exp/djalal/nse-rules.
2010-08-06 16:40:03 +00:00
bitcoin-getaddr.nse
Added missing usage and output documentation [Patrik]
2011-11-09 19:15:17 +00:00
bitcoin-info.nse
o [NSE] Added the scripts bitcoin-info, bitcoin-getaddr and a supporting
2011-11-09 18:56:16 +00:00
bitcoinrpc-info.nse
Minor rewording
2011-11-07 06:00:07 +00:00
bittorrent-discovery.nse
o [NSE] check script arguments in the prerule to avoid running the script if they are missing.
2011-11-09 12:31:48 +00:00
broadcast-avahi-dos.nse
o [NSE] Added broadcast-avahi-dos.nse, which tries to detect if the
2011-05-02 23:38:18 +00:00
broadcast-db2-discover.nse
o [NSE] Split script db2-discover into two scripts, adding a new
2011-07-10 08:01:26 +00:00
broadcast-dhcp-discover.nse
o [NSE] Added the script broadcast-dhcp-discover that sends a DHCP discover
2011-07-21 11:56:15 +00:00
broadcast-dns-service-discovery.nse
Remove "-p 5353 <target>" from the @usage of
2011-04-03 21:00:37 +00:00
broadcast-dropbox-listener.nse
maxn is deprecated
2011-05-11 15:13:46 +00:00
broadcast-listener.nse
o [NSE] Added the missing broadcast category to the broadcast-listener script.
2011-10-24 16:21:59 +00:00
broadcast-ms-sql-discover.nse
o [NSE] Updated the categories of the following scripts:
2011-07-11 22:03:17 +00:00
broadcast-netbios-master-browser.nse
o [NSE] Added two new scripts broadcast-netbios-master-browser and smb-mbenum:
2011-06-19 18:47:19 +00:00
broadcast-novell-locate.nse
trivial nsedoc change
2011-06-30 08:59:30 +00:00
broadcast-ping.nse
Be more explicit about how to enable newtargets.
2011-10-07 07:51:51 +00:00
broadcast-rip-discover.nse
o [NSE] Added broadcast-rip-discover which gets RIPv2 routers and their routing
2011-11-02 10:23:50 +00:00
broadcast-upnp-info.nse
Did some NSEDoc cleanup on many of the 45 NSE scripts which are new since the 5.35DC1 Nmap release. Emphasis was on the first paragraph of the description, since that is shown on the front page of http://nmap.org/nsedoc and I'm planning to use that description verbatim (except for removing tags like <code>) for the CHANGELOG
2011-01-14 10:20:51 +00:00
broadcast-wsdd-discover.nse
Did some NSEDoc cleanup on many of the 45 NSE scripts which are new since the 5.35DC1 Nmap release. Emphasis was on the first paragraph of the description, since that is shown on the front page of http://nmap.org/nsedoc and I'm planning to use that description verbatim (except for removing tags like <code>) for the CHANGELOG
2011-01-14 10:20:51 +00:00
citrix-brute-xml.nse
Change " \n" to just "\n" where appropriate in NSE. Leading newlines are
2010-09-30 05:03:39 +00:00
citrix-enum-apps-xml.nse
Spell-check NSEDoc.
2010-07-19 16:29:48 +00:00
citrix-enum-apps.nse
Change calls in these forms:
2010-08-16 18:59:30 +00:00
citrix-enum-servers-xml.nse
Do copyediting of NSEDoc. This is a first pass up to ms-sql-xp-cmdshell.
2010-07-09 23:32:18 +00:00
citrix-enum-servers.nse
Change calls in these forms:
2010-08-16 18:59:30 +00:00
couchdb-databases.nse
Edit some script descriptions for better line breaks when rendered as
2010-07-17 16:47:31 +00:00
couchdb-stats.nse
Edit some script descriptions for better line breaks when rendered as
2010-07-17 16:47:31 +00:00
creds-summary.nse
Went through all the new (since 5.51) scripts and improved (I hope) the nsedoc descriptions a bit and made some other very minor cleanups
2011-06-29 01:29:14 +00:00
cvs-brute-repository.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
cvs-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
daap-get-library.nse
Change " \n" to just "\n" where appropriate in NSE. Leading newlines are
2010-09-30 05:03:39 +00:00
daytime.nse
Add @output sections to these scripts:
2010-03-31 21:45:21 +00:00
db2-das-info.nse
Addressed a condition in db2-das-info.nse where the script would crash
2011-02-16 00:13:38 +00:00
db2-discover.nse
Fix a typo in category name
2011-07-21 05:12:33 +00:00
dhcp-discover.nse
Set the math.randomseed value in nse_main.lua on behalf of scripts.
2011-05-23 21:43:46 +00:00
dns-brute.nse
o [NSE] added a debug message in the prerule to show that some arguments are missing.
2011-11-09 12:39:01 +00:00
dns-cache-snoop.nse
Do copyediting of NSEDoc. This is a first pass up to ms-sql-xp-cmdshell.
2010-07-09 23:32:18 +00:00
dns-fuzz.nse
Update some script nsedoc descriptions for consistency. The description should almost always start with an active verb and never with the script name or 'this script'. Admittedly that makes the first sentence a fragment. The first sentence should be capitalized
2011-09-11 20:50:56 +00:00
dns-nsec-enum.nse
Change the "name" member of a decoded NSEC record to be called
2011-03-27 05:07:16 +00:00
dns-random-srcport.nse
use # length operator instead of string.len (canonicalize)
2011-05-11 15:12:47 +00:00
dns-random-txid.nse
use # length operator instead of string.len (canonicalize)
2011-05-11 15:12:47 +00:00
dns-recursion.nse
Make the set of script "default and intrusive" empty.
2011-04-30 19:21:38 +00:00
dns-service-discovery.nse
Went through all the new (since 5.51) scripts and improved (I hope) the nsedoc descriptions a bit and made some other very minor cleanups
2011-06-29 01:29:14 +00:00
dns-update.nse
I've been putting periods at the end of these single sentence fragment descriptions for consistency, although I don't really know which way is best. When there are multiple setences in that first paragraph, we obviously need the paragraph even after an initial fragment. So I figured that we might as well include it when the fragment is all there is. But maybe when there is just one fragment, it looks better without a period. Who knows, and I guess it's not a particularly critical decision. But dns-update.nse now has a period in any case :)
2011-01-14 21:06:28 +00:00
dns-zeustracker.nse
Update and canonicalize a bunch of script descriptions
2011-11-07 04:08:29 +00:00
dns-zone-transfer.nse
use # length operator instead of string.len (canonicalize)
2011-05-11 15:12:47 +00:00
domcon-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
domcon-cmd.nse
Gets arguments with stdnse.get_script_args instead of reading them from nmap.registry
2011-07-27 03:28:13 +00:00
domino-enum-users.nse
Gets arguments with stdnse.get_script_args instead of reading them from nmap.registry
2011-07-27 03:28:13 +00:00
dpap-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
drda-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
drda-info.nse
changed portrule to include both ibm-db2 and drda
2010-08-14 11:52:18 +00:00
epmd-info.nse
Add epmd-info script from Toni Ruottu.
2011-04-04 18:28:33 +00:00
finger.nse
Add @output to finger.nse and telnet-brute.nse thanks to Gutek.
2010-03-31 23:25:39 +00:00
firewalk.nse
Cosmetic fix: consistently return 'false' in the hostrule
2011-09-14 10:03:41 +00:00
ftp-anon.nse
Gets arguments with stdnse.get_script_args instead of reading them from nmap.registry
2011-07-27 03:28:13 +00:00
ftp-bounce.nse
Make the set of script "default and intrusive" empty.
2011-04-30 19:21:38 +00:00
ftp-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
ftp-libopie.nse
Updated some of the vulnerability scripts to use the new vulnerability library.
2011-11-09 10:08:19 +00:00
ftp-proftpd-backdoor.nse
o [NSE] Updated the categories of the following scripts:
2011-07-11 22:03:17 +00:00
ftp-vsftpd-backdoor.nse
Updated some of the vulnerability scripts to use the new vulnerability library.
2011-11-09 10:08:19 +00:00
ftp-vuln-cve2010-4221.nse
Updated some of the vulnerability scripts to use the new vulnerability library.
2011-11-09 10:08:19 +00:00
ganglia-info.nse
Update and canonicalize a bunch of script descriptions
2011-11-07 04:08:29 +00:00
giop-info.nse
o [NSE] Made the following scripts in the default category:
2011-07-18 09:50:18 +00:00
gopher-ls.nse
Gets arguments with stdnse.get_script_args instead of reading them from nmap.registry
2011-07-27 03:28:13 +00:00
hadoop-datanode-info.nse
New Hadoop and HBase scripts by John Bond:
2011-11-08 16:00:16 +00:00
hadoop-jobtracker-info.nse
New Hadoop and HBase scripts by John Bond:
2011-11-08 16:00:16 +00:00
hadoop-namenode-info.nse
New Hadoop and HBase scripts by John Bond:
2011-11-08 16:00:16 +00:00
hadoop-secondary-namenode-info.nse
New Hadoop and HBase scripts by John Bond:
2011-11-08 16:00:16 +00:00
hadoop-tasktracker-info.nse
New Hadoop and HBase scripts by John Bond:
2011-11-08 16:00:16 +00:00
hbase-master-info.nse
New Hadoop and HBase scripts by John Bond:
2011-11-08 16:00:16 +00:00
hbase-region-info.nse
New Hadoop and HBase scripts by John Bond:
2011-11-08 16:00:16 +00:00
hddtemp-info.nse
Add gopher-ls and hddtemp-info @usage, adapted from Toni Ruotto.
2011-01-15 16:33:06 +00:00
hostmap.nse
Did some NSEDoc cleanup on many of the 45 NSE scripts which are new since the 5.35DC1 Nmap release. Emphasis was on the first paragraph of the description, since that is shown on the front page of http://nmap.org/nsedoc and I'm planning to use that description verbatim (except for removing tags like <code>) for the CHANGELOG
2011-01-14 10:20:51 +00:00
http-affiliate-id.nse
Went through all the new (since 5.51) scripts and improved (I hope) the nsedoc descriptions a bit and made some other very minor cleanups
2011-06-29 01:29:14 +00:00
http-auth.nse
Put http-auth in "safe" now that it is not in "default".
2011-04-30 19:23:19 +00:00
http-awstatstotals-exec.nse
Improve some NSEDoc descriptions
2011-09-11 20:44:07 +00:00
http-axis2-dir-traversal.nse
Update some script nsedoc descriptions for consistency. The description should almost always start with an active verb and never with the script name or 'this script'. Admittedly that makes the first sentence a fragment. The first sentence should be capitalized
2011-09-11 20:50:56 +00:00
http-barracuda-dir-traversal.nse
Went through all the new (since 5.51) scripts and improved (I hope) the nsedoc descriptions a bit and made some other very minor cleanups
2011-06-29 01:29:14 +00:00
http-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
http-cakephp-version.nse
Went through all the new (since 5.51) scripts and improved (I hope) the nsedoc descriptions a bit and made some other very minor cleanups
2011-06-29 01:29:14 +00:00
http-cors.nse
Update and canonicalize a bunch of script descriptions
2011-11-07 04:08:29 +00:00
http-date.nse
Whitespace.
2011-07-25 23:33:16 +00:00
http-default-accounts.nse
Update some script nsedoc descriptions for consistency. The description should almost always start with an active verb and never with the script name or 'this script'. Admittedly that makes the first sentence a fragment. The first sentence should be capitalized
2011-09-11 20:50:56 +00:00
http-domino-enum-passwords.nse
Gets arguments with stdnse.get_script_args instead of reading them from nmap.registry
2011-07-27 03:28:13 +00:00
http-enum.nse
added documentation for new script-arg
2011-01-03 03:51:11 +00:00
http-favicon.nse
Gets arguments with stdnse.get_script_args instead of reading them from nmap.registry
2011-07-27 03:28:13 +00:00
http-form-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
http-google-malware.nse
Update some script nsedoc descriptions for consistency. The description should almost always start with an active verb and never with the script name or 'this script'. Admittedly that makes the first sentence a fragment. The first sentence should be capitalized
2011-09-11 20:50:56 +00:00
http-headers.nse
Updates the script to use stdnse.get_script_args() instead of reading the arguments from the registry and removes extra commented lines.
2011-10-07 07:01:08 +00:00
http-iis-webdav-vuln.nse
Bring in changes from my experimental brange, nmap-http
2010-10-27 03:08:08 +00:00
http-joomla-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
http-litespeed-sourcecode-download.nse
Update some script nsedoc descriptions for consistency. The description should almost always start with an active verb and never with the script name or 'this script'. Admittedly that makes the first sentence a fragment. The first sentence should be capitalized
2011-09-11 20:50:56 +00:00
http-majordomo2-dir-traversal.nse
Gets arguments with stdnse.get_script_args instead of reading them from nmap.registry
2011-07-27 03:28:13 +00:00
http-malware-host.nse
Use shortport.http where appropriate.
2010-08-09 22:30:50 +00:00
http-method-tamper.nse
Fix the vulnerability CVE ID in the documentation.
2011-11-09 10:21:08 +00:00
http-methods.nse
Gets arguments with stdnse.get_script_args instead of reading them from nmap.registry
2011-07-27 03:28:13 +00:00
http-open-proxy.nse
Make the set of script "default and intrusive" empty.
2011-04-30 19:21:38 +00:00
http-passwd.nse
Add more http-passwd payloads from Ange Gutek.
2010-11-11 19:02:17 +00:00
http-php-version.nse
Added the new hash for PHP 5.3.7 and 5.3.8 credits and extended the elephant logo hash to include the new versions. PHP 5.3.7 contained a nasty bug (https://bugs.php.net/bug.php?id=55439) and was quickly replaced by 5.3.8 after a couple of days.
2011-09-04 14:41:53 +00:00
http-put.nse
Updated code style, and changed categories of http-put [Patrik]
2011-10-20 11:18:24 +00:00
http-robots.txt.nse
Rename a couple http scripts to make it more clear that they use the http protocol and for consistency with other script names
2010-11-20 04:22:51 +00:00
http-robtex-reverse-ip.nse
Update and canonicalize a bunch of script descriptions
2011-11-07 04:08:29 +00:00
http-title.nse
use # length operator instead of string.len (canonicalize)
2011-05-11 15:12:47 +00:00
http-trace.nse
Gets arguments with stdnse.get_script_args instead of reading them from nmap.registry
2011-07-27 03:28:13 +00:00
http-userdir-enum.nse
o [NSE] Made changes to the categories of the following scripts. Their new
2011-10-22 19:00:33 +00:00
http-vhosts.nse
Fix an indexing bug in http-vhosts.nse. Found by Daniel Miller.
2011-07-18 20:44:22 +00:00
http-vmware-path-vuln.nse
Remove 3 vuln scripts from default category as discussed at http://seclists.org/nmap-dev/2011/q3/732
2011-09-07 20:40:51 +00:00
http-vuln-cve2011-3192.nse
Updated some of the vulnerability scripts to use the new vulnerability library.
2011-11-09 10:08:19 +00:00
http-vuln-cve2011-3368.nse
o [NSE] Added http-vuln-cve2011-3368 a script that attempts to detect whether
2011-11-17 19:33:19 +00:00
http-waf-detect.nse
Improve some NSEDoc descriptions
2011-09-11 20:44:07 +00:00
http-wordpress-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
http-wordpress-enum.nse
o [NSE] Made changes to the categories of the following scripts. Their new
2011-10-22 19:00:33 +00:00
http-wordpress-plugins.nse
renamed http-wp-enum and http-wp-plugins to http-wordpress-* for consistency with the naming of http-wordpress-brute
2011-09-30 05:49:53 +00:00
iax2-version.nse
use # length operator instead of string.len (canonicalize)
2011-05-11 15:12:47 +00:00
imap-brute.nse
minor updates to the nsedoc descriptions for some scripts
2011-09-11 18:26:37 +00:00
imap-capabilities.nse
o [NSE] Added the script imap-brute that performs brute force password
2011-07-21 06:14:02 +00:00
informix-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
informix-query.nse
Gets arguments with stdnse.get_script_args instead of reading them from nmap.registry
2011-07-27 03:28:13 +00:00
informix-tables.nse
Gets arguments with stdnse.get_script_args instead of reading them from nmap.registry
2011-07-27 03:28:13 +00:00
ip-geolocation-geobytes.nse
Change CRLF line endings to LF in ip-geolocation-*.nse.
2011-11-02 16:50:38 +00:00
ip-geolocation-geoplugin.nse
Change CRLF line endings to LF in ip-geolocation-*.nse.
2011-11-02 16:50:38 +00:00
ip-geolocation-ipinfodb.nse
Change CRLF line endings to LF in ip-geolocation-*.nse.
2011-11-02 16:50:38 +00:00
ip-geolocation-maxmind.nse
Change CRLF line endings to LF in ip-geolocation-*.nse.
2011-11-02 16:50:38 +00:00
ipidseq.nse
Avoid bloating the registry by using variables to transfer information from
2011-06-20 21:06:14 +00:00
ipv6-node-info.nse
Update and canonicalize a bunch of script descriptions
2011-11-07 04:08:29 +00:00
irc-botnet-channels.nse
Add irc-botnet-channels.nse.
2011-11-09 01:42:03 +00:00
irc-brute.nse
Removed e-mail address from author variable in rtsp-methods and irc-brute
2011-11-11 15:31:50 +00:00
irc-info.nse
o [NSE] Made irc-info.nse handle the case where the MOTD is missing.
2011-09-21 05:09:26 +00:00
irc-unrealircd-backdoor.nse
Gets arguments with stdnse.get_script_args instead of reading them from nmap.registry
2011-07-27 03:28:13 +00:00
iscsi-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
iscsi-info.nse
o [NSE] Updated the categories of the following scripts:
2011-07-11 22:03:17 +00:00
jdwp-version.nse
Small patch to jdwp-version.nse to address a corner case false positive.
2011-10-02 22:44:21 +00:00
krb5-enum-users.nse
Update and canonicalize a bunch of script descriptions
2011-11-07 04:08:29 +00:00
ldap-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
ldap-novell-getpass.nse
Went through all the new (since 5.51) scripts and improved (I hope) the nsedoc descriptions a bit and made some other very minor cleanups
2011-06-29 01:29:14 +00:00
ldap-rootdse.nse
Change calls in these forms:
2010-08-16 18:59:30 +00:00
ldap-search.nse
Added support for the LDAP extensibleMatch filter to ldap.lua. LDAP searches using this take the following format:
2011-10-31 00:27:03 +00:00
lexmark-config.nse
Whitespace in lexmark-config.nse.
2010-12-15 18:57:22 +00:00
lltd-discovery.nse
lltd-discovery bug fix
2011-10-04 00:07:10 +00:00
metasploit-xmlrpc-brute.nse
o [NSE] Re-enabled support for guessing the username in addition to password
2011-11-11 05:52:52 +00:00
modbus-discover.nse
Minor NSEDoc summary cleanup
2011-01-21 08:28:38 +00:00
mongodb-databases.nse
Change calls in these forms:
2010-08-16 18:59:30 +00:00
mongodb-info.nse
Change calls in these forms:
2010-08-16 18:59:30 +00:00
ms-sql-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
ms-sql-config.nse
o [NSE] Merged the ms-sql branch with several improvements and changes to the
2011-02-26 22:41:10 +00:00
ms-sql-dump-hashes.nse
Update and canonicalize a bunch of script descriptions
2011-11-07 04:08:29 +00:00
ms-sql-empty-password.nse
removed usage of deprecated table.getn
2011-05-11 14:41:06 +00:00
ms-sql-hasdbaccess.nse
o [NSE] Merged the ms-sql branch with several improvements and changes to the
2011-02-26 22:41:10 +00:00
ms-sql-info.nse
In ms-sql-info, change the hostrule conditions
2011-09-12 16:36:06 +00:00
ms-sql-query.nse
o [NSE] Merged the ms-sql branch with several improvements and changes to the
2011-02-26 22:41:10 +00:00
ms-sql-tables.nse
o [NSE] Merged the ms-sql branch with several improvements and changes to the
2011-02-26 22:41:10 +00:00
ms-sql-xp-cmdshell.nse
o [NSE] Merged the ms-sql branch with several improvements and changes to the
2011-02-26 22:41:10 +00:00
mysql-audit.nse
Went through all the new (since 5.51) scripts and improved (I hope) the nsedoc descriptions a bit and made some other very minor cleanups
2011-06-29 01:29:14 +00:00
mysql-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
mysql-databases.nse
New system for silent require errors. Use the new function
2011-06-13 23:38:35 +00:00
mysql-empty-password.nse
Fixed a number of incorrect receives and replaced them with receive_bytes.
2010-08-24 20:25:46 +00:00
mysql-info.nse
Do copyediting of NSEDoc up through pgsql-brute.
2010-07-12 06:21:03 +00:00
mysql-users.nse
o [NSE] Made changes to the categories of the following scripts. Their new
2011-10-22 19:00:33 +00:00
mysql-variables.nse
New system for silent require errors. Use the new function
2011-06-13 23:38:35 +00:00
nat-pmp-info.nse
Did some NSEDoc cleanup on many of the 45 NSE scripts which are new since the 5.35DC1 Nmap release. Emphasis was on the first paragraph of the description, since that is shown on the front page of http://nmap.org/nsedoc and I'm planning to use that description verbatim (except for removing tags like <code>) for the CHANGELOG
2011-01-14 10:20:51 +00:00
nbstat.nse
use # length operator instead of string.len (canonicalize)
2011-05-11 15:12:47 +00:00
ncp-enum-users.nse
o [NSE] Made changes to the categories of the following scripts. Their new
2011-10-22 19:00:33 +00:00
ncp-serverinfo.nse
o [NSE] Made the following scripts in the default category:
2011-07-18 09:50:18 +00:00
nessus-brute.nse
Update and canonicalize a bunch of script descriptions
2011-11-07 04:08:29 +00:00
netbus-auth-bypass.nse
Minor typo fixes
2011-06-03 09:24:51 +00:00
netbus-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
netbus-info.nse
Apply a patch from Toni Ruottu with some small misc. improvements to the netbus-* scripts. Also I changed netbus-auth-bypass to the safe category as recommended by Toni
2011-01-15 21:28:45 +00:00
netbus-version.nse
Apply a patch from Toni Ruottu with some small misc. improvements to the netbus-* scripts. Also I changed netbus-auth-bypass to the safe category as recommended by Toni
2011-01-15 21:28:45 +00:00
nfs-ls.nse
Fix a typo in a comment.
2011-04-22 22:21:43 +00:00
nfs-showmount.nse
Use the new get_script_args() function to parse script arguments and clean some whitespaces.
2010-08-17 01:58:47 +00:00
nfs-statfs.nse
Normalize tab.lua usage so that a call to tab.nextrow comes after (not
2010-12-30 21:08:25 +00:00
nping-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
nrpe-enum.nse
Fix the nrpe-enum portrule. It was returning a function, thus always
2011-02-01 21:25:46 +00:00
ntp-info.nse
Add a default timeout of 5000 ms to the ntp-info script, and don't try
2009-12-21 20:24:45 +00:00
ntp-monlist.nse
o [NSE] Added ipv6 support to the wsdd, dnssd and upnp libraries. Applied
2011-06-16 05:29:42 +00:00
omp2-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
omp2-enum-targets.nse
Don't add a blank line at the top of the report. Other scripts don't.
2011-07-09 16:39:12 +00:00
openlookup-info.nse
Update and canonicalize a bunch of script descriptions
2011-11-07 04:08:29 +00:00
openvas-otp-brute.nse
o [NSE] Added the script openvas-otp-brute that performs password auditing
2011-11-10 20:50:04 +00:00
oracle-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
oracle-enum-users.nse
New system for silent require errors. Use the new function
2011-06-13 23:38:35 +00:00
oracle-sid-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
ovs-agent-version.nse
Update ovs-agent-version.nse with a signature from version 3.0.1.
2011-09-23 21:42:06 +00:00
p2p-conficker.nse
Fix incorrect (broken) return value in p2p-conficker.nse. Spotted by
2011-07-18 20:40:47 +00:00
path-mtu.nse
fix whitespace inconsistencies from copy-and-pastes
2011-05-06 23:48:41 +00:00
pgsql-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
pjl-ready-message.nse
Change calls in these forms:
2010-08-16 18:59:30 +00:00
pop3-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
pop3-capabilities.nse
Merge r18689:r19511 from /nmap-exp/djalal/nse-rules.
2010-08-06 16:40:03 +00:00
pptp-version.nse
use # length operator instead of string.len (canonicalize)
2011-05-11 15:12:47 +00:00
qscan.nse
Avoid bloating the registry by using variables to transfer information from
2011-06-20 21:06:14 +00:00
quake3-info.nse
Add version detection to quake3-info.nse, from Toni Ruottu.
2011-09-26 20:56:45 +00:00
quake3-master-getservers.nse
Went through all the new (since 5.51) scripts and improved (I hope) the nsedoc descriptions a bit and made some other very minor cleanups
2011-06-29 01:29:14 +00:00
realvnc-auth-bypass.nse
Remove 3 vuln scripts from default category as discussed at http://seclists.org/nmap-dev/2011/q3/732
2011-09-07 20:40:51 +00:00
resolveall.nse
o [NSE] Add a final note in the output about the 'newtargets' usage.
2011-11-09 12:29:14 +00:00
rexec-brute.nse
o [NSE] Added brute scripts rlogin-brute and rexec-brute for the rlogin and
2011-11-04 21:17:33 +00:00
rlogin-brute.nse
Whitespace fixes: removed trailing whitespaces, always use tabs for indentation.
2011-11-07 21:32:43 +00:00
rmi-dumpregistry.nse
Use java-rmi for the the Java RMI service name. Suggested by martin
2011-06-21 00:03:16 +00:00
rpcinfo.nse
Oops, I forgot to add the comment symbols to my nsedoc @output changes to this script.
2011-03-19 18:58:31 +00:00
rtsp-methods.nse
Removed e-mail address from author variable in rtsp-methods and irc-brute
2011-11-11 15:31:50 +00:00
rtsp-url-brute.nse
Update and canonicalize a bunch of script descriptions
2011-11-07 04:08:29 +00:00
script.db
o [NSE] Added http-vuln-cve2011-3368 a script that attempts to detect whether
2011-11-17 19:33:19 +00:00
servicetags.nse
just added a word to the description
2011-06-29 01:36:34 +00:00
sip-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
sip-enum-users.nse
Went through all the new (since 5.51) scripts and improved (I hope) the nsedoc descriptions a bit and made some other very minor cleanups
2011-06-29 01:29:14 +00:00
skypev2-version.nse
Merge r18160:18278 from nmap-exp/djalal/nmap-nse/ to fix NSE not honoring the exclude directive bug.
2010-06-29 21:56:59 +00:00
smb-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
smb-check-vulns.nse
Change calls in these forms:
2010-08-16 18:59:30 +00:00
smb-enum-domains.nse
Fixed a bug where a ternary operator meant to prevent a nil pointer exception was outside of a math.floor() call, making it totally worthless. I moved the math.floor() outside the operation, fixing it.
2010-09-24 01:33:01 +00:00
smb-enum-groups.nse
First-pass copyediting on the remaining scripts.
2010-07-12 17:19:26 +00:00
smb-enum-processes.nse
Change " \n" to just "\n" where appropriate in NSE. Leading newlines are
2010-09-30 05:03:39 +00:00
smb-enum-sessions.nse
Lots of little bugfixes throughout several smb scripts, mostly related to bad use of global variables
2010-09-24 00:31:12 +00:00
smb-enum-shares.nse
Merge from Dependencies branch (nmap-exp/patrick/dependencies)
2009-12-30 02:34:05 +00:00
smb-enum-users.nse
o [NSE] Made changes to the categories of the following scripts. Their new
2011-10-22 19:00:33 +00:00
smb-flood.nse
Minor NSEDoc summary cleanup
2011-01-21 08:28:38 +00:00
smb-mbenum.nse
Removed prerule from script [Patrik]
2011-06-23 11:28:14 +00:00
smb-os-discovery.nse
o [NSE] Applied patch from Chris Woodbury that adds the following additional
2011-07-12 06:08:43 +00:00
smb-psexec.nse
Update some script nsedoc descriptions for consistency. The description should almost always start with an active verb and never with the script name or 'this script'. Admittedly that makes the first sentence a fragment. The first sentence should be capitalized
2011-09-11 20:50:56 +00:00
smb-security-mode.nse
o [NSE] Make smb-security-mode run by default.
2011-07-25 21:40:31 +00:00
smb-server-stats.nse
Merge from Dependencies branch (nmap-exp/patrick/dependencies)
2009-12-30 02:34:05 +00:00
smb-system-info.nse
Lots of little bugfixes throughout several smb scripts, mostly related to bad use of global variables
2010-09-24 00:31:12 +00:00
smbv2-enabled.nse
Fixed the same small bug in smbv2-enabled.nse (was still using the wrong variable for an error message)
2010-08-13 20:39:20 +00:00
smtp-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
smtp-commands.nse
o [NSE] Updated the SMTP scripts to use the new SMTP Lua library.
2011-06-13 13:19:26 +00:00
smtp-enum-users.nse
o [NSE] Made changes to the categories of the following scripts. Their new
2011-10-22 19:00:33 +00:00
smtp-open-relay.nse
Duarte Silva asked that his email address be updated in these scripts.
2011-08-22 00:58:19 +00:00
smtp-strangeport.nse
Remove email addresses from scripts as discussed in this thread: http://seclists.org/nmap-dev/2009/q4/466
2009-11-24 08:49:02 +00:00
smtp-vuln-cve2010-4344.nse
Removed an extra unused string.format argument :)
2011-07-11 15:33:52 +00:00
smtp-vuln-cve2011-1720.nse
Updated some of the vulnerability scripts to use the new vulnerability library.
2011-11-09 10:08:19 +00:00
smtp-vuln-cve2011-1764.nse
Updated some of the vulnerability scripts to use the new vulnerability library.
2011-11-09 10:08:19 +00:00
sniffer-detect.nse
o [NSE] Call the new nmap.get_interface_info() function instead of
2011-04-22 22:19:08 +00:00
snmp-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
snmp-interfaces.nse
snmp-interfaces patch for interaction with mac-geolocation through nmap.registry[host.ip][mac-geolocation]
2011-05-31 00:13:12 +00:00
snmp-ios-config.nse
Went through all the new (since 5.51) scripts and improved (I hope) the nsedoc descriptions a bit and made some other very minor cleanups
2011-06-29 01:29:14 +00:00
snmp-netstat.nse
Added missing error handling for connection timeouts
2010-08-31 13:38:50 +00:00
snmp-processes.nse
Change calls in these forms:
2010-08-16 18:59:30 +00:00
snmp-sysdescr.nse
Add @usage to snmp-sysdescr.
2011-09-20 16:12:07 +00:00
snmp-win32-services.nse
Change calls in these forms:
2010-08-16 18:59:30 +00:00
snmp-win32-shares.nse
Change calls in these forms:
2010-08-16 18:59:30 +00:00
snmp-win32-software.nse
Change calls in these forms:
2010-08-16 18:59:30 +00:00
snmp-win32-users.nse
o [NSE] Made changes to the categories of the following scripts. Their new
2011-10-22 19:00:33 +00:00
socks-open-proxy.nse
Formatting.
2011-07-18 16:29:38 +00:00
sql-injection.nse
Gets arguments with stdnse.get_script_args instead of reading them from nmap.registry
2011-07-27 03:28:13 +00:00
ssh2-enum-algos.nse
Fixed a bug that would prevent the script from displaying any output unless
2011-07-26 06:46:12 +00:00
ssh-hostkey.nse
New system for silent require errors. Use the new function
2011-06-13 23:38:35 +00:00
sshv1.nse
Change calls in these forms:
2010-08-16 18:59:30 +00:00
ssl-cert.nse
Add XMPP support to ssl-cert by Vasiliy Kulikov.
2011-10-04 19:32:45 +00:00
ssl-enum-ciphers.nse
Don't redundantly list the NULL compressor in ssl-num-ciphers.nse.
2011-09-14 18:21:23 +00:00
ssl-google-cert-catalog.nse
Some (mostly minor rewording) NSEDoc updates
2011-09-29 22:06:23 +00:00
ssl-known-key.nse
trivial nsedoc change
2011-06-30 09:11:57 +00:00
sslv2.nse
use # length operator instead of string.len (canonicalize)
2011-05-11 15:12:47 +00:00
stuxnet-detect.nse
Did some NSEDoc cleanup on many of the 45 NSE scripts which are new since the 5.35DC1 Nmap release. Emphasis was on the first paragraph of the description, since that is shown on the front page of http://nmap.org/nsedoc and I'm planning to use that description verbatim (except for removing tags like <code>) for the CHANGELOG
2011-01-14 10:20:51 +00:00
svn-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
targets-ipv6-multicast-echo.nse
Check target.ALLOW_NEW_TARGETS.
2011-10-07 09:51:10 +00:00
targets-ipv6-multicast-invalid-dst.nse
Standardize on ip6_nhdr in packet.lua.
2011-10-29 19:40:14 +00:00
targets-ipv6-multicast-slaac.nse
Check target.ALLOW_NEW_TARGETS.
2011-10-07 09:51:10 +00:00
targets-sniffer.nse
Use promiscuous mode in targets-sniffer.nse.
2011-11-08 16:10:35 +00:00
targets-traceroute.nse
Did some NSEDoc cleanup on many of the 45 NSE scripts which are new since the 5.35DC1 Nmap release. Emphasis was on the first paragraph of the description, since that is shown on the front page of http://nmap.org/nsedoc and I'm planning to use that description verbatim (except for removing tags like <code>) for the CHANGELOG
2011-01-14 10:20:51 +00:00
telnet-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
tftp-enum.nse
Update and canonicalize a bunch of script descriptions
2011-11-07 04:08:29 +00:00
upnp-info.nse
applied patch from Thomas Buchanan containing bugfixes and some re-factoring
2010-11-19 19:31:50 +00:00
vnc-brute.nse
Create a new brute category for brute forcing scripts, move the *-brute scripts from auth category to brute. document it. I don't know what to do with dns-brute so I left it alone (it wasn't in auth category either)
2011-09-30 06:18:55 +00:00
vnc-info.nse
o [NSE] Made the following scripts in the default category:
2011-07-18 09:50:18 +00:00
wdb-version.nse
o [NSE] Updated the categories of the following scripts:
2011-07-11 22:03:17 +00:00
whois.nse
Corrected defective handling of etag header which prevented conditional HTTP
2011-09-28 13:02:43 +00:00
wsdd-discover.nse
Did some NSEDoc cleanup on many of the 45 NSE scripts which are new since the 5.35DC1 Nmap release. Emphasis was on the first paragraph of the description, since that is shown on the front page of http://nmap.org/nsedoc and I'm planning to use that description verbatim (except for removing tags like <code>) for the CHANGELOG
2011-01-14 10:20:51 +00:00
x11-access.nse
Change calls in these forms:
2010-08-16 18:59:30 +00:00
xmpp-brute.nse
Fixed small NSEDOC error in xmpp-brute.nse [Patrik]
2011-11-02 19:20:19 +00:00
xmpp-info.nse
Added xmpp-info.nse as a replacement for xmpp.nse (script from Vasily Kulikov).
2011-09-04 19:18:22 +00:00