mirror of
https://github.com/nmap/nmap.git
synced 2026-01-03 05:09:14 +00:00
7b83ec9370
Accomplishments: * Added 117 new signatures to http-enum for a new total of 223! These new signatures are all from vulnerable web applications taken from exploit-db.com's archives from July 1 2009 until May 30 2011. I only checked advisories with more than 300 views to focus on the most popular apps and also did a quick Google search to make sure there are enough installations out there. * Researched about malware detection methods in HTTP servers. * Submitted http-default-accounts.nse to nmap-dev * Fixed a bug in http.lua. The argument 'http.pipeline' was not being read correctly. * Submitted http-unsafe-host.nse to nmap-dev * Added more signatures to http-default-accounts * Submitted http-wp-enum to nmap-dev Priorities: * Work on more NSE scripts * Polish documentation in all my scripts * Add more signatures to http-default-accounts
35 lines
1.3 KiB
Plaintext
35 lines
1.3 KiB
Plaintext
PENDING:
|
|
-Write more signatures for http-default-accounts
|
|
-Select new scripts from queue and work on them
|
|
-Improve my documentation
|
|
|
|
COMPLETED:
|
|
-Write http-wp-enum
|
|
-Write http-malware-host
|
|
-Write more signatures for http-default-accounts
|
|
-Research more about spidering
|
|
-Add more signatures for http-default-accounts
|
|
-Select new scripts to work on
|
|
-Completed http-default-accounts
|
|
-Added new signatures to http-enum
|
|
-Work on the http-waf-detect
|
|
-Wrote new http-trace
|
|
-Patched shortport.lua and http-form-brute
|
|
-Work on the majordomo2 traversal http exploit (Finished http-majordomo2-dir-traversal)
|
|
-Finished http-wordpress-brute, http-joomla-brute, http-tomcat-brute
|
|
-Added bing search results to hostmap.nse
|
|
-Research new http exploits
|
|
-Add support to relative links in http-phpself-xss
|
|
-Add support to redirects in http-phpself-xss
|
|
-Write draft proposal for http-spider
|
|
-Wait for feedback to complete/close project http-cakephp-version
|
|
-Define list of required functions for http-crawler (Library renamed to httpspider)
|
|
-Write draft for the http-crawler library
|
|
-Read again the NSE documentation
|
|
-Fingerprint more cakephp 1.1.x installations
|
|
|
|
INCOMPLETE TASKS:
|
|
-Work on HTTP URI Fuzzing script (Delayed)
|
|
-Write http-sitemap-dumper (Delayed)
|
|
-Work on draft for http-spider (Delayed)
|