New function stdnse.format_mac
2014-01-16 21:50:30 +00:00
fix a typo
2012-11-16 08:52:13 +00:00
Consolidate "contains" functions into stdnse.contains
2014-01-16 22:57:33 +00:00
fix another instance of same typo
2012-11-16 08:53:05 +00:00
Add AllSeeingEye (a protocol for querying status of certain games) script and service probe
2013-12-01 22:09:16 +00:00
Update banner.nse to use script-args
2013-04-12 17:29:17 +00:00
os.date format string cleanup
2013-05-16 14:59:48 +00:00
Update timeout script-args to use standard timespec
2013-03-05 21:34:25 +00:00
Fix some more typos and spelling errors
2012-11-16 09:13:53 +00:00
New function stdnse.format_mac
2014-01-16 21:50:30 +00:00
Update timeout script-args to use standard timespec
2013-03-05 21:34:25 +00:00
Update timeout script-args to use standard timespec
2013-03-05 21:34:25 +00:00
fixed a bug in a loop where the script would wait for a condition that was
2012-08-29 05:37:56 +00:00
Fix nsedoc issues (missing ---, mostly)
2013-04-12 17:29:16 +00:00
Document some undocumented script-args
2013-03-05 22:31:39 +00:00
Update timeout script-args to use standard timespec
2013-03-05 21:34:25 +00:00
add LLMNR support and cleaned up some result output
2013-03-16 03:18:28 +00:00
Update timeout script-args to use standard timespec
2013-03-05 21:34:25 +00:00
Update timeout script-args to use standard timespec
2013-03-05 21:34:25 +00:00
Fix nsedoc issues (missing ---, mostly)
2013-04-12 17:29:16 +00:00
New function stdnse.format_mac
2014-01-16 21:50:30 +00:00
New function stdnse.format_mac
2014-01-16 21:50:30 +00:00
Update timeout script-args to use standard timespec
2013-03-05 21:34:25 +00:00
Replace print() calls with stdnse.print_debug()
2013-11-01 17:01:18 +00:00
fixed a bug in a loop where the script would wait for a condition that was
2012-08-29 05:37:56 +00:00
Update timeout script-args to use standard timespec
2013-03-05 21:34:25 +00:00
nse_check_globals cleanup
2012-10-07 12:54:31 +00:00
Fix name_confidence use (0-10, not 0-100)
2013-10-23 16:36:26 +00:00
[NSE] cccam-version.nse makes use of the new 'formulas' library.
2013-08-23 02:03:46 +00:00
Replace print() calls with stdnse.print_debug()
2013-11-01 17:01:18 +00:00
reverted bad commits
2012-10-06 19:38:15 +00:00
reverted bad commits
2012-10-06 19:38:15 +00:00
Fix name_confidence use (0-10, not 0-100)
2013-10-23 16:36:26 +00:00
Fix nsedoc issues (missing ---, mostly)
2013-04-12 17:29:16 +00:00
Let dns-brute read candidate SRV records from dns-srv-names instead of hard-coded list
2013-11-01 22:10:37 +00:00
o [NSE] Update dns-cache-snoop script to use a new list of top 50
2013-08-09 04:02:41 +00:00
Minor description updates (and sometimes just text reformatting) for some of the 85 new scripts(!) since Nmap 6.01
2012-11-15 23:05:31 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
Allow "/" netmask syntax in dns-ip6-arpa-scan.nse.
2013-06-13 03:53:40 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
Consolidate "contains" functions into stdnse.contains
2014-01-16 22:57:33 +00:00
Add xmloutput to dns-nsid.nse
2013-10-18 18:35:02 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
fixed a bug in a loop where the script would wait for a condition that was
2012-08-29 05:37:56 +00:00
Fix nsedoc issues (missing ---, mostly)
2013-04-12 17:29:16 +00:00
o [NSE] Oops, there was a vulnerability in one of our 437 NSE scripts.
2013-07-29 06:19:24 +00:00
Fix name_confidence use (0-10, not 0-100)
2013-10-23 16:36:26 +00:00
Consolidate "contains" functions into stdnse.contains
2014-01-16 22:57:33 +00:00
Update timeout script-args to use standard timespec
2013-03-05 21:34:25 +00:00
Minor description updates (and sometimes just text reformatting) for some of the 85 new scripts(!) since Nmap 6.01
2012-11-15 23:05:31 +00:00
Pass the dst argument to existing calls to nmap.ip_send.
2012-09-15 17:56:21 +00:00
Return nil, not false, from firewall-bypass.nse
2013-03-28 21:07:08 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
o [NSE] Add freelancer-info to gather information about the Freelancer
2013-11-20 04:31:31 +00:00
Update timeout script-args to use standard timespec
2013-03-05 21:34:25 +00:00
os.date format string cleanup
2013-05-16 14:59:48 +00:00
Don't set_port_version just from a 200 response.
2013-03-05 21:20:45 +00:00
Don't set_port_version just from a 200 response.
2013-03-05 21:20:45 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
Don't set_port_version just from a 200 response.
2013-03-05 21:20:45 +00:00
Don't set_port_version just from a 200 response.
2013-03-05 21:20:45 +00:00
Don't set_port_version just from a 200 response.
2013-03-05 21:20:45 +00:00
Don't set_port_version just from a 200 response.
2013-03-05 21:20:45 +00:00
o [NSE] Oops, there was a vulnerability in one of our 437 NSE scripts.
2013-07-29 06:19:24 +00:00
Minor updates to the descriptions of some new scripts
2013-08-17 00:38:27 +00:00
Consolidate "contains" functions into stdnse.contains
2014-01-16 22:57:33 +00:00
Minor updates to the descriptions of some new scripts
2013-08-17 00:38:27 +00:00
Consolidate "contains" functions into stdnse.contains
2014-01-16 22:57:33 +00:00
Add structured output to http-auth.nse.
2012-09-13 03:01:18 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
Fixes bug when reading the initial base uri. These scripts were incorrectly setting "/" as the starting point.
2012-11-25 18:38:59 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
Minor updates to the descriptions of some new scripts
2013-08-17 00:38:27 +00:00
Minor updates to the descriptions of some new scripts
2013-08-17 00:38:27 +00:00
o [NSE] Oops, there was a vulnerability in one of our 437 NSE scripts.
2013-07-29 06:19:24 +00:00
[NSE] Added http-csrf.nse that detects Cross Site Request Forgeries (CSRF) vulnerabilities in HTML forms.
2013-08-23 02:08:09 +00:00
Use stdnse.format_timestamp in scripts that output structured dates.
2012-09-08 16:09:15 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
[NSE] Added http-devframework (along with its fingerprints file) that tries to find out the technology behind the target website.
2013-09-05 19:31:40 +00:00
Fix nil value reference
2013-11-14 02:50:47 +00:00
[NSE] Added http-dombased-xss.nse.
2013-08-10 19:30:56 +00:00
o [NSE] Oops, there was a vulnerability in one of our 437 NSE scripts.
2013-07-29 06:19:24 +00:00
Updated http-drupal-modules documentation.
2012-08-25 17:31:53 +00:00
Minor updates to comments. For example, wanted to clarify that the Nikto http-enum integration was done with cooperation/encouragement from Nikto folks
2013-12-27 03:45:53 +00:00
[NSE] Added http-errors.nse that crawls through the website and returns any HTTP error pages.
2013-08-23 01:48:21 +00:00
Reindent http-favicon.
2013-03-02 01:09:59 +00:00
[NSE] Added http-feed.nse that crawls through the website and returns any rss or atom feeds.
2013-08-23 01:53:34 +00:00
[NSE] Added http-fileupload-exploiter that exploits insecure file upload forms in web applications using various techniques.
2013-06-18 00:42:59 +00:00
Document some undocumented script-args
2013-03-05 22:31:39 +00:00
Minor description updates (and sometimes just text reformatting) for some of the 85 new scripts(!) since Nmap 6.01
2012-11-15 23:05:31 +00:00
Fixed a bunch of errors related to inproper responses from webservers.
2012-08-31 15:17:14 +00:00
Fix nsedoc issues (missing ---, mostly)
2013-04-12 17:29:16 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
Fix nsedoc issues (missing ---, mostly)
2013-04-12 17:29:16 +00:00
Whitespace in http-headers.
2013-01-25 17:43:29 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
Some more minor script description updates
2012-11-16 00:51:50 +00:00
Fix some more typos and spelling errors
2012-11-16 09:13:53 +00:00
Fixes false positive.
2013-10-31 17:37:22 +00:00
Normalize author fields, changing "and" to comma-sep
2013-11-01 15:56:37 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
Consolidate "contains" functions into stdnse.contains
2014-01-16 22:57:33 +00:00
[NSE] Added http-mobileversion-checker.nse.
2013-08-10 19:32:05 +00:00
Fix nsedoc issues (missing ---, mostly)
2013-04-12 17:29:16 +00:00
Fixes bug when reading the initial base uri. These scripts were incorrectly setting "/" as the starting point.
2012-11-25 18:38:59 +00:00
Updated the hash information in http-php-version to include PHP/5.3.17, PHP/5.3.18, PHP/5.4.7 and PHP/5.4.8.
2012-10-22 20:26:43 +00:00
Minor updates to the descriptions of some new scripts
2013-08-17 00:38:27 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
change incorrect parameter http-put.file to http-url.file based on bug report
2013-11-23 22:26:33 +00:00
[NSE] Added http-referer-checker that informs about cross-domain include of scripts.
2013-07-18 14:55:16 +00:00
Minor description updates (and sometimes just text reformatting) for some of the 85 new scripts(!) since Nmap 6.01
2012-11-15 23:05:31 +00:00
[NSE] Updated Robtex scripts to make them work again. Primarily, changed the addresses to https and corrected some wrong patterns.
2013-10-31 17:15:52 +00:00
[NSE] Updated Robtex scripts to make them work again. Primarily, changed the addresses to https and corrected some wrong patterns.
2013-10-31 17:15:52 +00:00
Add .skip script-arg for http-server-header
2013-11-12 18:35:17 +00:00
Minor description updates (and sometimes just text reformatting) for some of the 85 new scripts(!) since Nmap 6.01
2012-11-15 23:05:31 +00:00
Undo previous commits as http-slowloris-check.nse doesn't do a DOS attack like http-slowloris.nse.
2012-12-16 01:58:59 +00:00
Fix some more typos and spelling errors
2012-11-16 09:13:53 +00:00
Fix usage of nmap.fetchfile in several scripts
2013-04-26 12:14:44 +00:00
Minor updates to the descriptions of some new scripts
2013-08-17 00:38:27 +00:00
Fixed a bunch of errors related to inproper responses from webservers.
2012-08-31 15:17:14 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
[NSE] Removed facebook's domain name as an example.
2013-08-10 19:47:56 +00:00
Rearrange some variables for proper NSEDoc generation.
2013-01-14 23:00:37 +00:00
Allowed absolute paths to 'hostnames' argument.
2013-07-18 13:51:11 +00:00
Fix some more typos and spelling errors
2012-11-16 09:13:53 +00:00
Renames http-method-tamper to http-vuln-cve2010-0738 and adds the new version of http-method-tamper.
2012-09-07 23:42:39 +00:00
[NSE] Added a detection method and the option to execute a payload. Patch by Paul Amar.
2013-12-09 15:54:43 +00:00
Adds http-vuln-cve2013-0156.nse: Detects Ruby on Rails servers vulnerable to object injection, remote
2013-04-25 03:15:33 +00:00
[NSE] Renamed and fixed the script that detects Zimbra LFI. Patch by Ron Bowes.
2013-12-19 20:45:49 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
Fix more Lua patterns with '-', see r32566
2013-12-19 20:34:46 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
Minor updates to the descriptions of some new scripts
2013-08-17 00:38:27 +00:00
Changed "auth" to "brute" category for imap-brute.nse and citrix-brute-xml.nse for consistency.
2012-09-21 11:46:23 +00:00
Document some undocumented script-args
2013-03-05 22:31:39 +00:00
New function stdnse.format_mac
2014-01-16 21:50:30 +00:00
Update ip-geolocation-geobytes for structured output
2012-08-31 11:46:44 +00:00
Update ip-geolocation-geoplugin.nse for a new data format.
2013-02-24 02:50:03 +00:00
Use fetchfile to look for GeoLiteCity.dat.
2013-08-01 02:01:09 +00:00
Pass the dst argument to existing calls to nmap.ip_send.
2012-09-15 17:56:21 +00:00
Pass the dst argument to existing calls to nmap.ip_send.
2012-09-15 17:56:21 +00:00
Update timeout script-args to use standard timespec
2013-03-05 21:34:25 +00:00
Fix various NSEDoc problems.
2013-01-24 18:04:42 +00:00
Structured XML output for irc-info
2013-05-06 21:40:00 +00:00
Normalize author fields, changing "and" to comma-sep
2013-11-01 15:56:37 +00:00
Update categories for jdwp-exec and jdwp-inject
2013-01-25 21:23:02 +00:00
Minor description updates (and sometimes just text reformatting) for some of the 85 new scripts(!) since Nmap 6.01
2012-11-15 23:05:31 +00:00
Fix usage of nmap.fetchfile in several scripts
2013-04-26 12:14:44 +00:00
Fix spelling in some comments.
2013-01-15 22:31:11 +00:00
fixed a bug in a loop where the script would wait for a condition that was
2012-08-29 05:37:56 +00:00
replaced try/catch with silent failure
2012-08-31 14:59:25 +00:00
Fix nsedoc issues (missing ---, mostly)
2013-04-12 17:29:16 +00:00
New function stdnse.format_mac
2014-01-16 21:50:30 +00:00
Normalize author fields, changing "and" to comma-sep
2013-11-01 15:56:37 +00:00
os.date format string cleanup
2013-05-16 14:59:48 +00:00
Fix name_confidence use (0-10, not 0-100)
2013-10-23 16:36:26 +00:00
Minor description updates (and sometimes just text reformatting) for some of the 85 new scripts(!) since Nmap 6.01
2012-11-15 23:05:31 +00:00
Update scripts with millisecond timeouts to timespec
2013-03-06 15:14:20 +00:00
Replace print() calls with stdnse.print_debug()
2013-11-01 17:01:18 +00:00
Fix name_confidence use (0-10, not 0-100)
2013-10-23 16:36:26 +00:00
Update timeout script-args to use standard timespec
2013-03-05 21:34:25 +00:00
Minor description updates (and sometimes just text reformatting) for some of the 85 new scripts(!) since Nmap 6.01
2012-11-15 23:05:31 +00:00
o [NSE] Oops, there was a vulnerability in one of our 437 NSE scripts.
2013-07-29 06:19:24 +00:00
Document some undocumented script-args
2013-03-05 22:31:39 +00:00
Consolidate "contains" functions into stdnse.contains
2014-01-16 22:57:33 +00:00
Fix nsedoc issues (missing ---, mostly)
2013-04-12 17:29:16 +00:00
Fix nsedoc issues (missing ---, mostly)
2013-04-12 17:29:16 +00:00
Run murmur-version only once for TCP and UDP.
2013-07-01 09:07:01 +00:00
Update timeout script-args to use standard timespec
2013-03-05 21:34:25 +00:00
Minor description updates (and sometimes just text reformatting) for some of the 85 new scripts(!) since Nmap 6.01
2012-11-15 23:05:31 +00:00
Minor updates to the descriptions of some new scripts
2013-08-17 00:38:27 +00:00
Document some undocumented script-args
2013-03-05 22:31:39 +00:00
Normalize script author fields
2013-09-20 18:56:22 +00:00
Update nbstat.nse to structured XML output
2013-10-17 21:57:48 +00:00
Use version_port_or_service over port_or_service.
2012-12-30 00:39:30 +00:00
Update scripts with millisecond timeouts to timespec
2013-03-06 15:14:20 +00:00
Fix Lua patterns that contain -
2013-12-19 20:05:09 +00:00
Fix Lua patterns that contain -
2013-12-19 20:05:09 +00:00
Fix Lua patterns that contain -
2013-12-19 20:05:09 +00:00
Remove redundant verbosity check
2013-10-18 18:47:01 +00:00
os.date format string cleanup
2013-05-16 14:59:48 +00:00
Fix some more typos and spelling errors
2012-11-16 09:13:53 +00:00
fixed bug "ORA-03146: Invalid buffer length for TTC field"
2012-10-07 09:10:59 +00:00
Use version_port_or_service over port_or_service.
2012-12-30 00:39:30 +00:00
reverted bad commits
2012-10-06 19:38:15 +00:00
Update timeout script-args to use standard timespec
2013-03-05 21:34:25 +00:00
Add qconn-exec script by Brendan Coles.
2013-08-09 03:23:40 +00:00
Pass the dst argument to existing calls to nmap.ip_send.
2012-09-15 17:56:21 +00:00
Minor description updates (and sometimes just text reformatting) for some of the 85 new scripts(!) since Nmap 6.01
2012-11-15 23:05:31 +00:00
Redis (at least v2.9.9) returns -NOAUTH to unauthenticated commands.
2013-05-06 21:00:45 +00:00
Fixes (tested against redis v2.9.9)
2013-05-06 21:11:44 +00:00
Update timeout script-args to use standard timespec
2013-03-05 21:34:25 +00:00
Add rfc868-time.nse, queries a Time protocol server
2013-10-23 17:45:48 +00:00
Update timeout script-args to use standard timespec
2013-03-05 21:34:25 +00:00
Minor description updates (and sometimes just text reformatting) for some of the 85 new scripts(!) since Nmap 6.01
2012-11-15 23:05:31 +00:00
Actually show the error message from ReceivePacket failure.
2013-06-19 23:53:37 +00:00
XML output for rpcinfo.nse
2013-05-04 23:12:36 +00:00
fixed a bug in a loop where the script would wait for a condition that was
2012-08-29 05:37:56 +00:00
Replace print() calls with stdnse.print_debug()
2013-11-01 17:01:18 +00:00
Update script.db
2014-01-16 19:09:13 +00:00
Replace print() calls with stdnse.print_debug()
2013-11-01 17:01:18 +00:00
Update timeout script-args to use standard timespec
2013-03-05 21:34:25 +00:00
Fix usage of nmap.fetchfile in several scripts
2013-04-26 12:14:44 +00:00
Minor description updates (and sometimes just text reformatting) for some of the 85 new scripts(!) since Nmap 6.01
2012-11-15 23:05:31 +00:00
Fix the test for an unmatched service in skypev2-version.nse.
2013-08-05 23:52:57 +00:00
Update the status code name in smb-check-vulns.
2012-10-18 04:28:11 +00:00
Fix more Lua patterns with '-', see r32566
2013-12-19 20:34:46 +00:00
Minor rewording for clarity that someone suggested
2013-10-22 00:51:58 +00:00
Minor description updates (and sometimes just text reformatting) for some of the 85 new scripts(!) since Nmap 6.01
2012-11-15 23:05:31 +00:00
Add CPE to smb-os-discovery output.
2012-11-29 05:36:50 +00:00
Minor description updates (and sometimes just text reformatting) for some of the 85 new scripts(!) since Nmap 6.01
2012-11-15 23:05:31 +00:00
Fix usage of nmap.fetchfile in several scripts
2013-04-26 12:14:44 +00:00
Minor description updates (and sometimes just text reformatting) for some of the 85 new scripts(!) since Nmap 6.01
2012-11-15 23:05:31 +00:00
Minor description updates (and sometimes just text reformatting) for some of the 85 new scripts(!) since Nmap 6.01
2012-11-15 23:05:31 +00:00
Add xmloutput to smbv2-enabled.nse
2013-10-18 16:05:46 +00:00
nse_check_globals cleanup
2012-11-12 03:49:35 +00:00
New function stdnse.format_mac
2014-01-16 21:50:30 +00:00
o [NSE] Oops, there was a vulnerability in one of our 437 NSE scripts.
2013-07-29 06:19:24 +00:00
Add xmloutput to socks-auth-info.nse
2013-10-18 18:34:55 +00:00
XML output for socks-open-proxy
2013-05-04 21:26:49 +00:00
Consolidate "contains" functions into stdnse.contains
2014-01-16 22:57:33 +00:00
Add xmloutput for ssh2-enum-algos
2013-11-08 17:46:07 +00:00
Add xmloutput to sshv1.nse
2013-10-18 16:05:44 +00:00
Retab ssl-cert.nse.
2013-06-18 03:58:47 +00:00
Update ssl-date to use tls lib
2014-01-16 18:10:04 +00:00
Update ssl-enum-ciphers to use tls.lua
2014-01-16 18:09:59 +00:00
Add some fingerprints of problematic keys reportedly belonging to APT1. Contributed by Mariusz Ziulek. http://seclists.org/nmap-dev/2013/q3/638
2013-09-28 03:13:07 +00:00
Structured output for sslv2, s/cypher/cipher/
2013-05-07 02:01:27 +00:00
Add sstp-discover NSE script from Niklaus Schiess
2014-01-16 19:07:43 +00:00
Use version_port_or_service over port_or_service.
2012-12-30 00:39:30 +00:00
o [NSE] Oops, there was a vulnerability in one of our 437 NSE scripts.
2013-07-29 06:19:24 +00:00
Fix @output nsedoc for targets-asn
2014-01-03 21:09:57 +00:00
New function stdnse.format_mac
2014-01-16 21:50:30 +00:00
New function stdnse.format_mac
2014-01-16 21:50:30 +00:00
New function stdnse.format_mac
2014-01-16 21:50:30 +00:00
New function stdnse.format_mac
2014-01-16 21:50:30 +00:00
Update timeout script-args to use standard timespec
2013-03-05 21:34:25 +00:00
Minor updates to the descriptions of some new scripts
2013-08-17 00:38:27 +00:00
Performance improvement in telnet-brute.
2013-08-30 16:04:19 +00:00
Prevent tftp-enum from incorrectly setting the port as closed when an error occurred (e.g. timeout when port is filtered).
2012-09-12 09:27:51 +00:00
Update ssl-date to use tls lib
2014-01-16 18:10:04 +00:00
Update traceroute-geolocation for new geoplugin.net API
2013-09-02 11:36:24 +00:00
New unittest library and driver script for NSE testing
2014-01-03 21:10:01 +00:00
Update timeout script-args to use standard timespec
2013-03-05 21:34:25 +00:00
Minor updates to the descriptions of some new scripts
2013-08-17 00:38:27 +00:00
Add xmloutput to vnc-info.nse
2013-10-18 16:05:48 +00:00
@xmloutput NSEdoc sections for wdb-version and xmpp-info
2013-05-06 21:40:02 +00:00
Normalize author fields, changing "and" to comma-sep
2013-11-01 15:56:37 +00:00
Added documentation and comments.
2013-07-25 15:42:16 +00:00
[NSE] Added whois-domain.nse and renamed whois.nse to whois-ip.nse
2013-07-25 00:57:28 +00:00
Fix various NSEDoc problems.
2013-01-24 18:04:42 +00:00
Add xmloutput to x11-access.nse
2013-10-18 16:05:45 +00:00
Fix name_confidence use (0-10, not 0-100)
2013-10-23 16:36:26 +00:00
