CERBERUS/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-05-13 08:46:45 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
13506 commits 2 branches 0 tags 564 MiB
Commit graph

2399 commits

Author SHA1 Message Date
nnposter
0f3a8a7e0d * Cryptographic numbers should be output as such, 
not as userdata pointers to opaque data structures. Fixes #1876
 2020-01-02 23:31:16 +00:00
dmiller
17304bf825 Remove debug to file from OS X launcher. Closes #1777 2019-12-30 04:48:49 +00:00
dmiller
ea4e2d6657 Avoid 'using namespace std' causing name conflicts. Fixes #1363, fixes #1867 2019-12-30 04:03:03 +00:00
dmiller
866dc375e4 Correctly print VM socket address. Closes #1868 2019-12-30 00:53:23 +00:00
nnposter
6998bfca49 Refactors function smb.find_files() 
- Replaces its coroutine design to avoid sharing sockets across threads
    (Fixes #1837)
  - Corrects conversion of file attributes into bitmask
  - Removes side effect of modifying parameter "options" by populating
    member "srch_attrs"
  - Implements options.maxfiles to take advantage of script arg ls.maxfiles,
    reducing file requests that would be ultimately ignored anyway
  - Improves performace by supporting larger SMB block sizes
  - Implements rudimentary support for Trans2_Data by smb.send_transaction2()
  - Adds standard definitions for SMB file attributes
 2019-12-19 20:13:16 +00:00
dmiller
6995af0743 Note the fix to #1723 in changelog 2019-12-15 05:05:56 +00:00
david
5cc813f394 Fix an off-by-one error in stun.lua. 
https://seclists.org/nmap-dev/2019/q4/8
 2019-12-13 23:12:45 +00:00
david
112fc96c50 Add UDP payload for STUN. 2019-12-06 23:16:43 +00:00
nnposter
e7e7e9e8c7 Fingerprint for Tomcat Host Manager. Closes #1755 2019-12-03 02:28:41 +00:00
dmiller
1a510d0940 Document Nmap modifications to libpcap 1.9.1. 2019-11-19 17:53:41 +00:00
nnposter
67fe6bb0fb MongoDB wire protocol is using signed int32. Fixes #1802 
Unlike the old bin library, Lua string.pack does not support silent conversions:
Negative integers cannot be "I" packed and 0xFFFFFFFF cannot be packed with "i4"
 2019-11-17 03:05:30 +00:00
dmiller
45994bf3e4 Note an important fixed bug in Nmap 7.80 changelog 2019-11-15 22:11:42 +00:00
nnposter
08a6d8db4b Fix for two RTSP request assembly defects introduced in r37474: 
* Adds missing header-terminating empty line to the request string
* Rectifies a code crash when the header table is empty
Fixes #1781, closes #1796
 2019-11-06 22:15:32 +00:00
dmiller
1ae88d2620 Upgrade libssh2 to 1.9.0 2019-09-25 04:42:40 +00:00
nnposter
845bed4c2b Avoid unintentional passing of insert position from string.unpack 
Fixes #1706
 2019-09-08 01:25:39 +00:00
nnposter
c491143358 Do not trust SMB challenge length field with Extended Security in use 
Some Samba servers fail to zero it out. See
https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-smb/d883d0a5-5a0a-4626-8e3e-87b0b66b79aa
Fixes #1707, closes #1476
 2019-09-08 00:40:27 +00:00
nnposter
ce28753b89 Rectify error "bad argument #2 to 'format'" in SMB scripts 
Fixes #1713, closes #1714, closes #1480
 2019-09-06 04:13:07 +00:00
nnposter
9e8852a7c7 Rectify undefined behavior of out-of-range shift op 
Fixes #1717, closes #1718
 2019-09-03 21:56:31 +00:00
dmiller
8d59507aad Support Npcap 0.9983's new loopback behavior 2019-09-03 19:13:14 +00:00
nnposter
ef2825b3bc Populate ID Authority with the correct value. See #1720 2019-09-01 03:53:04 +00:00
nnposter
e5c4f4886b Make sure that argument pos is always defined. See #1720 2019-09-01 02:57:34 +00:00
nnposter
be409657c2 Replace references to stdnse.strjoin with stringaux.strjoin. See #1720 2019-09-01 02:07:19 +00:00
dmiller
ac2e140a14 Changelog entry for #1371 [ci skip] 2019-08-23 19:52:10 +00:00
david
8712cbf9a2 Fix /author/.../feed/ capture in http-wordpress-users.nse. 
Patch by Duarte.
https://seclists.org/nmap-dev/2019/q3/17

The regular expression for the case when the server returns a 200 HTTP
status is too open, it needs to be more specific.

When there is a link similar to the feed link that occurs before the
feed link, the expression will include everything between that initial
link and the feed link.

To fix this, the group that matches/captures the author username will
only do so until it finds a forward slash.
 2019-08-22 23:08:31 +00:00
dmiller
b1d50f1951 Added a changelog entry for #1396 [ci skip] 2019-08-13 03:35:31 +00:00
dmiller
f05296d7f7 Merge changes from Nmap 7.80 release branch 2019-08-11 05:30:19 +00:00
paulino
4f5b659767 Adds new NSE library for DICOM and scripts dicom-ping and dicom-brute to discover and brute force DICOM servers 2019-08-05 06:30:36 +00:00
nnposter
f513575f5c Rectify an HTTP digest authentication crash. Fixes #1665 2019-08-05 00:14:10 +00:00
nnposter
7e9cf65489 Prevent backslash-escaping of CR characters in XML output. Fixes #1648 2019-07-21 00:44:32 +00:00
nnposter
4e6fef4a0d Increases resume command line buffer. Closes #1659 2019-07-14 16:15:45 +00:00
dmiller
b445faab35 New oops.lua library 
Loosely inspired by Rustlang's std::Result type:
https://doc.rust-lang.org/beta/std/result/index.html

This ought to be easy to use to replace uses of
`stdnse.format_output(false, ...)`
 2019-06-28 20:44:19 +00:00
dmiller
5a1b396f67 Changelog entry for vulners.nse 2019-06-26 20:13:44 +00:00
tomsellers
19c756aedf Add NSE script rdp-ntlm-info. Closes #1633 2019-06-14 12:08:28 +00:00
tomsellers
a4f3c85eb9 Add TLS support to rdp-enum-encryption Closes #1614 2019-06-04 19:38:28 +00:00
tomsellers
95f9e2cf91 Address rdp protocol parsing issues in rdp.lua and rdp-enum-ciphers.nse Closes #1611 2019-05-28 23:01:21 +00:00
nnposter
168cbfde8e Fixes a bug that prevented the script to find its resource file. Fixes #1608 2019-05-24 00:24:51 +00:00
nnposter
df2693232a Support for gzip-encoded HTTP responses and enforcement of body size limit. 2019-05-21 02:38:02 +00:00
dmiller
21f51ff822 AF_VSOCK support. Closes #1075 2019-05-20 16:21:41 +00:00
dmiller
61e2976e95 Avoid clobbering ignore_404 and severity values in http-enum. Closes #1467 2019-05-20 03:43:11 +00:00
dmiller
1cd584f4d8 CHANGELOG entry for #1077 
This was reported, with a correct patch, back in December 2017, and I
rediscovered the issue and came up with the same patch in r37532 in
November 2018. Full credit should go to Seth Randall.
 2019-05-17 18:03:15 +00:00
paulino
9ec6bd1651 Updates execution rule to include alternate ports. Closes #1565 2019-05-07 20:15:22 +00:00
dmiller
3de7a0177b Allow connections to port 0. Fixes #1560 2019-04-18 16:18:16 +00:00
dmiller
8d7a2bc004 Add clarifying parentheses to complex boolean statements as needed. 2019-04-13 21:42:56 +00:00
dmiller
7b523f0643 Don't try to reconnect SSLv2 over DTLS (UDP). Fixes #1543 2019-04-08 22:29:47 +00:00
paulino
d014a474dc Adds NSE script to extract info from HP iLO servers. Closes #1082 and #1016 2019-04-08 15:35:36 +00:00
nnposter
5104307968 Changelog entry for the previous commit 2019-04-02 19:01:45 +00:00
paulino
a6cd5a4dfb Adds lu.nse that attempts to enumerate Logical Units of TN3270E servers. Closes #1455 2019-03-21 04:15:20 +00:00
paulino
f9a08ccd2c Updates TN3270.lua and scripts. It also adds an argument to disable TN3270. Closes #1455 2019-03-21 04:07:55 +00:00
nnposter
be802e321f Incorrect status variables were checked for errors. Closes #1504 2019-03-06 04:53:23 +00:00
dmiller
f519e64b1d Avoid matching ARP/ND response with probes sent after it was received. Fixes #863 2019-02-26 19:59:34 +00:00