Nmap Development mailing list archives
George's status report - #1 of 16
From: George Chatzisofroniou <sophron () latthi com>
Date: Mon, 10 Jun 2013 18:57:44 +0300
Hi all, Here's my first GSoC report. Accomplishments: * Compiled nmap from source and set up SVN. * Started reading NSE documentation, Fyodor's book, LUA tutorials, list's archives and existing NSE scripts. * Had a meeting with Patrick. We discussed some of my proposed ideas and he gave me a good first idea on the things i could work on this summer. He also gave me some feedback on my http-comments-displayer script and suggested some guides to read. * Subscribed to the mailing lists Fyodor suggested and signed the copyright assignments. * Sent all the required paperwork to Google. * Made some improvements on my current NSE scripts and wrote the first version of a new one (http-referer-checker). http-fileupload-expoit: - After uploading the payloads, this script will try to find them on common directories like "/upload" or "/files". The user has the oppurtunity to change / add this list of directories. - The script will now try to fill every field found in an upload form with some sample data. That may fail due to fields' restrictions, so the user can manually fill those fields by passing a dictionary to the 'fieldvalues' argument. - The script now (by default) crawls the webpage to find any upload forms and tests them using various techniques. Of'course the user can pass paths of forms to test as an argument. http-comments-displayer: - This scripts now displays comments for all the HTML files on a website using a crawler. Of'course the user can turn this off and grep only a specific page of his choice by using the 'page' argument. http-referer-checker: - This script informs about cross-domain include of scripts using a big pattern to check all links in the HTTP response and prints those that src attributes point to a different domain. * Emailed my scripts to Patrick for a review. Priorities: (I'm starting my exams this week, so development may be a little slow for a while.) * I still use Github for development. I should switch to nmap's SVN repo. * Fix mistakes and make improvements on my current scripts. * Start writing a new script. I'm thinking of http-stored-xss. This won't be much different from my fileupload-exploit script. The logic should be the same: POST data and check if payload was executed. Cheers, -- George Chatzisofroniou http://sophron.latthi.com
Attachment:
signature.asc
Description: Digital signature
_______________________________________________ Sent through the dev mailing list http://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- George's status report - #1 of 16 George Chatzisofroniou (Jun 10)