[NSE] IMAP and SMTP - brute support

[Patrik Karlsson <patrik () cqure net>]

Hi list,

I've been working on two brute-scripts for the past few days: imap-brute and smtp-brute.
While doing so, I've added support for a bunch of new authentication mechanisms.
Together with Djalal I've been able to fit them in to his, now somewhat modified, SASL library.
In my opinion, I think moving the encryption SASL stuff into a separate library is great as:
a) the login code in each library is considerably reduced and simplified
b) the interface to the SASL library is more or less the same regardless of the authentication mechanism being used.

So while these changes add a dependency to both the smtp and imap library, they also add support for the following 
authentication mechanisms: 
PLAIN, CRAM-MD5, DIGEST-MD5 and NTLM, in addition to their normal plain-text login functions.

Please find the following attached:
1. The new sasl-library
2. The new imap-brute script and patches to the imap library
3. The new smtp-brute script and patches to the smtp library

Attachment: sasl.lua
Description:

Attachment: smtp-sasl.patch
Description:

Attachment: imap-sasl.patch
Description:

Attachment: imap-brute.nse
Description:

Attachment: smtp-brute.nse
Description:

Suggestions or comments are welcome!
Unless I get any strong objections I would like to commit these changes during the next few days.

//Patrik
--
Patrik Karlsson
http://www.cqure.net
http://www.twitter.com/nevdull77

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/