Nmap Development mailing list archives

Re: [NSE] DB2 library and scripts

From: Patrik Karlsson <patrik () cqure net>
Date: Mon, 10 May 2010 17:03:50 +0200

Hi again,

Here's an updated threaded version of the db2-brute script. It seems to run well and quickly against my test systems.
I failed to get condvar("signal") to work, as in the example, and had to switch to condvar("broadcast") instead.
Can someone provide some insight into why this happens and to what I'm doing wrong?
Also, the mutex I'm using to create and add to the nmap.registry.db2users table, is it necessary, and if it is, is it 
implemented correctly?

Testing, feedback, suggestions and comments are welcome as always.

//Patrik

Attachment: db2-brute.nse
Description:



On 9 maj 2010, at 01.43, Patrick Donnelly wrote:

Hi Patrik,

On Sat, May 8, 2010 at 6:25 PM, Patrik Karlsson <patrik () cqure net> wrote:

Hi,

I'm attaching a DB2 library I've been working on for a while.
It provides basic functionality and is currently used by the following two new scripts:
- db2-brute - password guessing against db2
- db2-info - a re-writen version of Tom Sellers script that uses the new library

The library is designed similar to the other ones I've written in the past and provides both a low- and high-level 
interface.
I'm interested in getting help testing it as I've currently only been able to run it against 9.7 on Windows and 
Linux.
Suggestions, corrections or any other feedback is always very welcome.


Your db2-brute script should be extremely easy to parallelize [1].
Just make a new thread for every username/pwd combination. Mind giving
it a shot?

[1] http://nmap.org/book/nse-parallelism.html#nse-parallelism-threads

-- 
- Patrick Donnelly
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/


--
Patrik Karlsson
http://www.cqure.net
http://www.twitter.com/nevdull77

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/

Current thread:

[NSE] DB2 library and scripts Patrik Karlsson (May 08)
- Re: [NSE] DB2 library and scripts Patrick Donnelly (May 08)
  - Re: [NSE] DB2 library and scripts Patrik Karlsson (May 09)
  - Re: [NSE] DB2 library and scripts Patrik Karlsson (May 10)
    - Re: [NSE] DB2 library and scripts Djalal Harouni (May 10)
    - Re: [NSE] DB2 library and scripts Patrik Karlsson (May 10)
    - Re: [NSE] DB2 library and scripts Fyodor (May 10)
    - Re: [NSE] DB2 library and scripts Patrick Donnelly (May 10)
    - Re: [NSE] DB2 library and scripts Patrick Donnelly (May 10)
    - Re: [NSE] DB2 library and scripts Patrik Karlsson (May 11)
    - Re: [NSE] DB2 library and scripts Patrick Donnelly (May 11)
    - Re: [NSE] DB2 library and scripts Patrik Karlsson (May 11)
    - Re: [NSE] DB2 library and scripts David Fifield (May 11)
    - Re: [NSE] DB2 library and scripts Patrik Karlsson (May 12)

(Thread continues...)