Nmap Development mailing list archives

[NSE] Update some scripts' categories

From: Djalal Harouni <tixxdz () opendz org>
Date: Wed, 6 Jul 2011 17:33:17 +0100

Some scripts don't have the right categories especially backdoor
detection scripts. I've attached a diff file to correct this, if you
have any suggestions please let me know.

(Some scripts are also listed here)

o irc-unrealircd-backdoor.nse
  -categories = {"vuln", "safe"}
  +categories = {"exploit", "intrusive", "malware", "vuln"}

o ftp-proftpd-backdoor.nse
  -categories = {"discovery", "intrusive"}
  +categories = {"exploit", "intrusive", "malware", "vuln"}

o ftp-vsftpd-backdoor.nse
  -categories = {"discovery", "intrusive"}
  +categories = {"exploit", "intrusive", "malware", "vuln"}

o afp-path-vuln.nse
  -categories = {"vuln", "safe"}
  +categories = {"exploit", "intrusive", "vuln"}

  The script checks/exploits a directory traversal vulnerability.

o broadcast-ms-sql-discover.nse
  -categories = {"broadcast", "safe", "discovery"} 
  +categories = {"broadcast", "safe"}

  Removed the discovery category, since it uses a prerule and the
  broadcast was already used.

o targets-sniffer.nse
  -categories = {"broadcast", "discovery"}
  +categories = {"broadcast", "discovery", "intrusive"}

  Did not remove the "discovery" but I've added the "intrusive"
  category.

o db2-discover.nse
  Perhaps we should split this one into two scripts since it uses a
  prerule for broadcast and a portrule:
  * broadcast-db2-discover with "broadcast" and "safe" categories.
  * db2-discover with "discovery", "safe" and "default" ?

o ssh2-enum-algos.nse
  -categories = {"safe", "discovery"}
  +categories = {"default", "safe", "discovery"}

o ssl-cert.nse
  -categories = { "safe", "discovery" }
  +categories = { "default", "safe", "discovery" }

o wdb-version.nse
  -categories = {"default", "version", "discovery"}
  +categories = {"default", "version", "discovery", "vuln"}

  I think that this script should not be in the 'default' category.
  Or we can split it, a script with "version" and another with "safe"
  etc.

o iscsi-info.nse
  -categories = {"discovery"}
  +categories = {"default", "safe", "discovery"}


Thanks.

-- 
tixxdz
http://opendz.org

Attachment: scripts_categories.diff
Description:

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/

Current thread:

[NSE] Update some scripts' categories Djalal Harouni (Jul 06)
- Re: [NSE] Update some scripts' categories Fyodor (Jul 09)
  - Re: [NSE] Update some scripts' categories Patrik Karlsson (Jul 10)
  - Re: [NSE] Update some scripts' categories Djalal Harouni (Jul 11)
    - Re: [NSE] Update some scripts' categories Shinnok (Jul 12)
    - Re: [NSE] Update some scripts' categories Djalal Harouni (Jul 12)
    - Re: [NSE] Update some scripts' categories Patrik Karlsson (Jul 12)
    - Re: [NSE] Update some scripts' categories Patrik Karlsson (Jul 12)
    - Re: [NSE] Round 2: Update some scripts' categories Djalal Harouni (Jul 12)
    - Re: [NSE] Round 2: Update some scripts' categories Patrik Karlsson (Jul 12)
    - Re: [NSE] Round 2: Update some scripts' categories Djalal Harouni (Jul 12)

(Thread continues...)