From felix.wolfsteller at intevation.de Thu Oct 1 09:14:11 2009 From: felix.wolfsteller at intevation.de (Felix Wolfsteller) Date: Thu, 1 Oct 2009 09:14:11 +0200 Subject: [Openvas-plugins] Version numbering strategy for NVTs In-Reply-To: <20090930134437.GA13031@komma-nix.de> References: <200909290933.32038.felix.wolfsteller@intevation.de> <20090930134437.GA13031@komma-nix.de> Message-ID: <200910010914.12045.felix.wolfsteller@intevation.de> On Wednesday 30 September 2009 15:44:37 Michael Meyer wrote: > *** Felix Wolfsteller wrote: > > I propose that we antiquate manual version numbering for NVTs that are in > > the repository. > > > > Imho the solution is simple: > > > > instead of a > > 'script_version ("1.2.0-patch2");' > > one can use > > 'script_version ("$Revision");' > > It has to be 'script_version ("$Revision$");' Oh yeah, thats correct. > > Then, by calling > > 'svn propset svn:keywords "Revision" ' > > To automate this: > > ,---[ ~/.subversion/config ] > > | [miscellany] > | enable-auto-props = yes > | > | [auto-props] > | *.nasl = svn:keywords=Id Revision; > > `---| > > > Opinions? I would go for it, but would like to hear more opinions. Also, in my eyes nothing speaks against a mixed approach as proposed by Christian Eric (e.g. script_version ("1.0-$Revision$"); ). -- felix -- Felix Wolfsteller | ++49 541 335083-783 | http://www.intevation.de/ PGP Key: 39DE0100 Intevation GmbH, Neuer Graben 17, 49074 Osnabr?ck | AG Osnabr?ck, HR B 18998 Gesch?ftsf?hrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner From bchandra at secpod.com Thu Oct 1 09:34:33 2009 From: bchandra at secpod.com (Chandrashekhar B) Date: Thu, 1 Oct 2009 13:04:33 +0530 Subject: [Openvas-plugins] Version numbering strategy for NVTs In-Reply-To: <200910010914.12045.felix.wolfsteller@intevation.de> References: <200909290933.32038.felix.wolfsteller@intevation.de><20090930134437.GA13031@komma-nix.de> <200910010914.12045.felix.wolfsteller@intevation.de> Message-ID: <9D5FC22C0D4B4C17A1B3AA1C278DF1D1@bchandra> Hello Felix, > I would go for it, but would like to hear more opinions. The like the idea. > Also, in my eyes nothing speaks against a mixed approach as proposed by > Christian Eric (e.g. script_version ("1.0-$Revision$"); ). This may be a good approach as well. This way we'll have proper versioning (1.x form) as well as help to map the versions with svn revision. Thanks, Chandra. From goran.licina at lss.hr Sat Oct 3 11:50:20 2009 From: goran.licina at lss.hr (=?iso-8859-2?Q?Goran_Li=E8ina?=) Date: Sat, 3 Oct 2009 11:50:20 +0200 Subject: [Openvas-plugins] Work on missing deps References: <8A02A3DF683DEE42BE73187F4CA4444C0EE345@vlasta.lss-net.lss.hr> <8A02A3DF683DEE42BE73187F4CA4444C0EE764@vlasta.lss-net.lss.hr> <78CDD4EAB5134BFAB0E706C14BCC4AA1@bchandra> Message-ID: <8A02A3DF683DEE42BE73187F4CA4444C0EECF2@vlasta.lss-net.lss.hr> Hi Chandra! > -----Original Message----- > From: Chandrashekhar B [mailto:bchandra at secpod.com] > Sent: Friday, September 18, 2009 4:04 PM > To: Goran Li?ina; openvas-plugins at wald.intevation.org > Subject: RE: [Openvas-plugins] Work on missing deps > > Hi Goran! > > Sorry, couldn't get to this. > > Both look good, am committing now. > > smb_nativelanman.nasl: If NTLMv2 is enforced, this may not work but for > now, > it is limited by lack of support in smb_nt.inc for v2 support, this > could be > enhanced later when we support NTLMv2. Sure thing. We'll have that in mind. In attachment are some new plugins we made. Please take a look and commit if they are ok. Regards, Goran Licina -- Laboratory for Systems and Signals Department of Electronic Systems and Information Processing Faculty of Electrical Engineering and Computing University of Zagreb -------------- next part -------------- A non-text attachment was scrubbed... Name: ms_telnet_overflow.nasl Type: application/octet-stream Size: 2307 bytes Desc: ms_telnet_overflow.nasl Url : http://lists.wald.intevation.org/pipermail/openvas-plugins/attachments/20091003/a1c985ef/ms_telnet_overflow.obj -------------- next part -------------- A non-text attachment was scrubbed... Name: sympa_detect.nasl Type: application/octet-stream Size: 3338 bytes Desc: sympa_detect.nasl Url : http://lists.wald.intevation.org/pipermail/openvas-plugins/attachments/20091003/a1c985ef/sympa_detect.obj From goran.licina at lss.hr Sat Oct 3 11:55:14 2009 From: goran.licina at lss.hr (=?iso-8859-2?Q?Goran_Li=E8ina?=) Date: Sat, 3 Oct 2009 11:55:14 +0200 Subject: [Openvas-plugins] Work on missing deps References: <8A02A3DF683DEE42BE73187F4CA4444C0EE345@vlasta.lss-net.lss.hr><8A02A3DF683DEE42BE73187F4CA4444C0EE764@vlasta.lss-net.lss.hr><78CDD4EAB5134BFAB0E706C14BCC4AA1@bchandra> <8A02A3DF683DEE42BE73187F4CA4444C0EECF2@vlasta.lss-net.lss.hr> Message-ID: <8A02A3DF683DEE42BE73187F4CA4444C0EECF4@vlasta.lss-net.lss.hr> Also, FYI we started working on these: smb_enum_services.nasl msrpc_dcom2.nasl showmount.nasl Regards, Goran > -----Original Message----- > From: openvas-plugins-bounces at wald.intevation.org [mailto:openvas- > plugins-bounces at wald.intevation.org] On Behalf Of Goran Li?ina > Sent: Saturday, October 03, 2009 11:50 AM > To: Chandrashekhar B > Cc: openvas-plugins at wald.intevation.org > Subject: Re: [Openvas-plugins] Work on missing deps > > Hi Chandra! > > > -----Original Message----- > > From: Chandrashekhar B [mailto:bchandra at secpod.com] > > Sent: Friday, September 18, 2009 4:04 PM > > To: Goran Li?ina; openvas-plugins at wald.intevation.org > > Subject: RE: [Openvas-plugins] Work on missing deps > > > > Hi Goran! > > > > Sorry, couldn't get to this. > > > > Both look good, am committing now. > > > > smb_nativelanman.nasl: If NTLMv2 is enforced, this may not work but > for > > now, > > it is limited by lack of support in smb_nt.inc for v2 support, this > > could be > > enhanced later when we support NTLMv2. > > Sure thing. We'll have that in mind. > > In attachment are some new plugins we made. > > Please take a look and commit if they are ok. > > Regards, > > Goran Licina > -- > Laboratory for Systems and Signals > Department of Electronic Systems and Information Processing > Faculty of Electrical Engineering and Computing > University of Zagreb > From michael.meyer at intevation.de Sat Oct 3 15:35:33 2009 From: michael.meyer at intevation.de (Michael Meyer) Date: Sat, 3 Oct 2009 15:35:33 +0200 Subject: [Openvas-plugins] Work on missing deps In-Reply-To: <8A02A3DF683DEE42BE73187F4CA4444C0EECF2@vlasta.lss-net.lss.hr> References: <8A02A3DF683DEE42BE73187F4CA4444C0EE345@vlasta.lss-net.lss.hr> <8A02A3DF683DEE42BE73187F4CA4444C0EE764@vlasta.lss-net.lss.hr> <78CDD4EAB5134BFAB0E706C14BCC4AA1@bchandra> <8A02A3DF683DEE42BE73187F4CA4444C0EECF2@vlasta.lss-net.lss.hr> Message-ID: <20091003133533.GA5685@komma-nix.de> Hi Goran, *** Goran Li?ina wrote: > In attachment are some new plugins we made. ,---[ sympa_detect.nasl ] | [...] | script_require_ports("Services/www", 80); | script_require_ports("Services/www", 443); | [...] `---| Both are required? The Plugin will not run if one of these ports are not open and 'Optimize the test' is checked in client. I'm not sure if it is ok to have script_require_ports twice in a plugin. You can use the following if needed. 'script_require_ports("Services/www", 80, 443);' ,---[ sympa_detect.nasl ] | [...] | security_note(port:port, extra:info); | [...] `---| There exist no option 'extra' for security_* in OpenVAS. 'info' will never be displayed. Maybe this is worth a feature request. Micha -- Michael Meyer OpenPGP Key: 76E050B9 http://www.intevation.de Intevation GmbH, Neuer Graben 17, 49074 Osnabr?ck; AG Osnabr?ck, HR B 18998 Gesch?ftsf?hrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner From goran.licina at lss.hr Sat Oct 3 16:33:59 2009 From: goran.licina at lss.hr (=?iso-8859-2?Q?Goran_Li=E8ina?=) Date: Sat, 3 Oct 2009 16:33:59 +0200 Subject: [Openvas-plugins] Work on missing deps References: <8A02A3DF683DEE42BE73187F4CA4444C0EE345@vlasta.lss-net.lss.hr><8A02A3DF683DEE42BE73187F4CA4444C0EE764@vlasta.lss-net.lss.hr><78CDD4EAB5134BFAB0E706C14BCC4AA1@bchandra><8A02A3DF683DEE42BE73187F4CA4444C0EECF2@vlasta.lss-net.lss.hr> <20091003133533.GA5685@komma-nix.de> Message-ID: <8A02A3DF683DEE42BE73187F4CA4444C0EECF8@vlasta.lss-net.lss.hr> Hey Micha! > -----Original Message----- > From: openvas-plugins-bounces at wald.intevation.org [mailto:openvas- > plugins-bounces at wald.intevation.org] On Behalf Of Michael Meyer > Sent: Saturday, October 03, 2009 3:36 PM > To: openvas-plugins at wald.intevation.org > Subject: Re: [Openvas-plugins] Work on missing deps > > Hi Goran, > > *** Goran Li?ina wrote: > > > In attachment are some new plugins we made. > > ,---[ sympa_detect.nasl ] > | [...] > | script_require_ports("Services/www", 80); > | script_require_ports("Services/www", 443); > | [...] > `---| > > Both are required? The Plugin will not run if one of these ports are > not open and 'Optimize the test' is checked in client. > I'm not sure if it is ok to have script_require_ports twice in a > plugin. You can use the following if needed. > > 'script_require_ports("Services/www", 80, 443);' > > ,---[ sympa_detect.nasl ] > | [...] > | security_note(port:port, extra:info); > | [...] > `---| > > There exist no option 'extra' for security_* in OpenVAS. 'info' will > never be > displayed. Maybe this is worth a feature request. Bah, don't know how I slipped that :) But 'extra' might be a good idea ;) Thanks for your comments, fixed version is in attachment. Best, Goran -------------- next part -------------- A non-text attachment was scrubbed... Name: sympa_detect.nasl Type: application/octet-stream Size: 3309 bytes Desc: sympa_detect.nasl Url : http://lists.wald.intevation.org/pipermail/openvas-plugins/attachments/20091003/b3b7d489/sympa_detect.obj From christian.edjenguele at owasp.org Sat Oct 3 16:37:55 2009 From: christian.edjenguele at owasp.org (Christian Eric Edjenguele) Date: Sat, 03 Oct 2009 16:37:55 +0200 Subject: [Openvas-plugins] Work on missing deps In-Reply-To: <8A02A3DF683DEE42BE73187F4CA4444C0EECF8@vlasta.lss-net.lss.hr> References: <8A02A3DF683DEE42BE73187F4CA4444C0EE345@vlasta.lss-net.lss.hr><8A02A3DF683DEE42BE73187F4CA4444C0EE764@vlasta.lss-net.lss.hr><78CDD4EAB5134BFAB0E706C14BCC4AA1@bchandra><8A02A3DF683DEE42BE73187F4CA4444C0EECF2@vlasta.lss-net.lss.hr> <20091003133533.GA5685@komma-nix.de> <8A02A3DF683DEE42BE73187F4CA4444C0EECF8@vlasta.lss-net.lss.hr> Message-ID: <4AC761C3.4090900@owasp.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Goran Li?ina wrote: > Hey Micha! > >> -----Original Message----- >> From: openvas-plugins-bounces at wald.intevation.org [mailto:openvas- >> plugins-bounces at wald.intevation.org] On Behalf Of Michael Meyer >> Sent: Saturday, October 03, 2009 3:36 PM >> To: openvas-plugins at wald.intevation.org >> Subject: Re: [Openvas-plugins] Work on missing deps >> >> Hi Goran, >> >> *** Goran Li?ina wrote: >> >>> In attachment are some new plugins we made. >> ,---[ sympa_detect.nasl ] >> | [...] >> | script_require_ports("Services/www", 80); >> | script_require_ports("Services/www", 443); >> | [...] >> `---| >> >> Both are required? The Plugin will not run if one of these ports are >> not open and 'Optimize the test' is checked in client. >> I'm not sure if it is ok to have script_require_ports twice in a >> plugin. You can use the following if needed. >> >> 'script_require_ports("Services/www", 80, 443);' >> >> ,---[ sympa_detect.nasl ] >> | [...] >> | security_note(port:port, extra:info); >> | [...] >> `---| >> >> There exist no option 'extra' for security_* in OpenVAS. 'info' will >> never be >> displayed. Maybe this is worth a feature request. > > Bah, don't know how I slipped that :) But 'extra' might be a good idea ;) I think there is already a syntax for displaying those informations: security_*(port:port, data:info); > > Thanks for your comments, fixed version is in attachment. > > Best, > > Goran > > > ------------------------------------------------------------------------ > > _______________________________________________ > Openvas-plugins mailing list > Openvas-plugins at wald.intevation.org > http://lists.wald.intevation.org/mailman/listinfo/openvas-plugins - -- Christian Eric Edjenguele IT Security Engineer PGP KeyID: 0xB1654498 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEcBAEBAgAGBQJKx2G/AAoJENETScWxZUSYl3UH/1ROAC79xEO1wTe33/bMuwO3 Ung9aPXlRzAgrctEzOG9SD/ZNajwS+DEDaRP6mxr47M0YYl+gkTPMaTih6WVcMDB 3zZy++MfVxmz8fkoVhehJjPKFyyvXgNHLJJINHVUKdPIll/SaCHlozmbS7WpFTNh 1B+KX1oT0WsM0EATgE4yGpUhX6ZMFJGesrZm7H8IwHi+RZxJxOqnzdrORpzGZnHp ptZj2QWddODjINpOQ5EjLFvLcOvtxPN4q3fsLyDYgUioGkx5wyUKYQ1IXkK88Rqs 7ZYXXvp3YtTJEF+bus+abD1WkNmXq5ezKf+QO5IySEGr8oHWGg1HTJqXDP1Sq9c= =h9VA -----END PGP SIGNATURE----- From goran.licina at lss.hr Sat Oct 3 16:53:26 2009 From: goran.licina at lss.hr (=?iso-8859-2?Q?Goran_Li=E8ina?=) Date: Sat, 3 Oct 2009 16:53:26 +0200 Subject: [Openvas-plugins] Work on missing deps References: <8A02A3DF683DEE42BE73187F4CA4444C0EE345@vlasta.lss-net.lss.hr><8A02A3DF683DEE42BE73187F4CA4444C0EE764@vlasta.lss-net.lss.hr><78CDD4EAB5134BFAB0E706C14BCC4AA1@bchandra><8A02A3DF683DEE42BE73187F4CA4444C0EECF2@vlasta.lss-net.lss.hr> <20091003133533.GA5685@komma-nix.de> <8A02A3DF683DEE42BE73187F4CA4444C0EECF8@vlasta.lss-net.lss.hr> <4AC761C3.4090900@owasp.org> Message-ID: <8A02A3DF683DEE42BE73187F4CA4444C0EECF9@vlasta.lss-net.lss.hr> > -----Original Message----- > From: Christian Eric Edjenguele [mailto:christian.edjenguele at owasp.org] > Sent: Saturday, October 03, 2009 4:38 PM > To: Goran Li?ina > Cc: Michael Meyer; openvas-plugins at wald.intevation.org > Subject: Re: [Openvas-plugins] Work on missing deps > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Goran Li?ina wrote: > > Hey Micha! > > > >> -----Original Message----- > >> From: openvas-plugins-bounces at wald.intevation.org [mailto:openvas- > >> plugins-bounces at wald.intevation.org] On Behalf Of Michael Meyer > >> Sent: Saturday, October 03, 2009 3:36 PM > >> To: openvas-plugins at wald.intevation.org > >> Subject: Re: [Openvas-plugins] Work on missing deps > >> > >> Hi Goran, > >> > >> *** Goran Li?ina wrote: > >> > >>> In attachment are some new plugins we made. > >> ,---[ sympa_detect.nasl ] > >> | [...] > >> | script_require_ports("Services/www", 80); > >> | script_require_ports("Services/www", 443); > >> | [...] > >> `---| > >> > >> Both are required? The Plugin will not run if one of these ports are > >> not open and 'Optimize the test' is checked in client. > >> I'm not sure if it is ok to have script_require_ports twice in a > >> plugin. You can use the following if needed. > >> > >> 'script_require_ports("Services/www", 80, 443);' > >> > >> ,---[ sympa_detect.nasl ] > >> | [...] > >> | security_note(port:port, extra:info); > >> | [...] > >> `---| > >> > >> There exist no option 'extra' for security_* in OpenVAS. 'info' will > >> never be > >> displayed. Maybe this is worth a feature request. > > > > Bah, don't know how I slipped that :) But 'extra' might be a good > idea ;) > > I think there is already a syntax for displaying those informations: > security_*(port:port, data:info); I know, I was thinking for 'extra' argument as something that would append additional data plugin collects to 'script_description' part, instead of replacing it (as 'data' does) . But I don't think it is neccessary as there are other ways to of achieving this. Regards, Goran From michael.meyer at intevation.de Sat Oct 3 18:08:16 2009 From: michael.meyer at intevation.de (Michael Meyer) Date: Sat, 3 Oct 2009 18:08:16 +0200 Subject: [Openvas-plugins] Work on missing deps In-Reply-To: <8A02A3DF683DEE42BE73187F4CA4444C0EECF9@vlasta.lss-net.lss.hr> References: <8A02A3DF683DEE42BE73187F4CA4444C0EE345@vlasta.lss-net.lss.hr> <8A02A3DF683DEE42BE73187F4CA4444C0EE764@vlasta.lss-net.lss.hr> <78CDD4EAB5134BFAB0E706C14BCC4AA1@bchandra> <8A02A3DF683DEE42BE73187F4CA4444C0EECF2@vlasta.lss-net.lss.hr> <20091003133533.GA5685@komma-nix.de> <8A02A3DF683DEE42BE73187F4CA4444C0EECF8@vlasta.lss-net.lss.hr> <4AC761C3.4090900@owasp.org> <8A02A3DF683DEE42BE73187F4CA4444C0EECF9@vlasta.lss-net.lss.hr> Message-ID: <20091003160816.GA6263@komma-nix.de> *** Goran Li?ina wrote: > > From: Christian Eric Edjenguele [mailto:christian.edjenguele at owasp.org] > > I think there is already a syntax for displaying those informations: > > security_*(port:port, data:info); > > I know, I was thinking for 'extra' argument as something that would append > additional data plugin collects to 'script_description' part, instead of > replacing it (as 'data' does) . Maybe you would have a look at e.g. 'znc_detect.nasl'. There you can see what to do if you want to append some extra data to the 'script_description' part. Micha -- Michael Meyer OpenPGP Key: 76E050B9 http://www.intevation.de Intevation GmbH, Neuer Graben 17, 49074 Osnabr?ck; AG Osnabr?ck, HR B 18998 Gesch?ftsf?hrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner From michael.meyer at intevation.de Sat Oct 3 18:24:27 2009 From: michael.meyer at intevation.de (Michael Meyer) Date: Sat, 3 Oct 2009 18:24:27 +0200 Subject: [Openvas-plugins] Work on missing deps In-Reply-To: <8A02A3DF683DEE42BE73187F4CA4444C0EECF8@vlasta.lss-net.lss.hr> References: <8A02A3DF683DEE42BE73187F4CA4444C0EE345@vlasta.lss-net.lss.hr> <8A02A3DF683DEE42BE73187F4CA4444C0EE764@vlasta.lss-net.lss.hr> <78CDD4EAB5134BFAB0E706C14BCC4AA1@bchandra> <8A02A3DF683DEE42BE73187F4CA4444C0EECF2@vlasta.lss-net.lss.hr> <20091003133533.GA5685@komma-nix.de> <8A02A3DF683DEE42BE73187F4CA4444C0EECF8@vlasta.lss-net.lss.hr> Message-ID: <20091003162427.GB6263@komma-nix.de> *** Goran Li?ina wrote: > Bah, don't know how I slipped that :) ;) > But 'extra' might be a good idea ;) http://wald.intevation.org/tracker/?atid=223&group_id=29&func=browse ;) > Thanks for your comments, fixed version is in attachment. Thanks! I'll test and commit both plugins... Micha -- Michael Meyer OpenPGP Key: 76E050B9 http://www.intevation.de Intevation GmbH, Neuer Graben 17, 49074 Osnabr?ck; AG Osnabr?ck, HR B 18998 Gesch?ftsf?hrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner From michael.meyer at intevation.de Mon Oct 5 19:52:49 2009 From: michael.meyer at intevation.de (Michael Meyer) Date: Mon, 5 Oct 2009 19:52:49 +0200 Subject: [Openvas-plugins] Work on missing deps In-Reply-To: <8A02A3DF683DEE42BE73187F4CA4444C0EECF4@vlasta.lss-net.lss.hr> References: <8A02A3DF683DEE42BE73187F4CA4444C0EE345@vlasta.lss-net.lss.hr> <8A02A3DF683DEE42BE73187F4CA4444C0EE764@vlasta.lss-net.lss.hr> <78CDD4EAB5134BFAB0E706C14BCC4AA1@bchandra> <8A02A3DF683DEE42BE73187F4CA4444C0EECF2@vlasta.lss-net.lss.hr> <8A02A3DF683DEE42BE73187F4CA4444C0EECF4@vlasta.lss-net.lss.hr> Message-ID: <20091005175249.GA26915@komma-nix.de> Hi Goran, *** Goran Li?ina wrote: > Also, FYI we started working on these: > > smb_enum_services.nasl > showmount.nasl These are the last two dependencies which are not solved. ;) > msrpc_dcom2.nasl There is no (more) script which have 'msrpc_dcom2.nasl' as a dependency. Maybe it's wasted time to develop it... Micha -- Michael Meyer OpenPGP Key: 76E050B9 http://www.intevation.de Intevation GmbH, Neuer Graben 17, 49074 Osnabr?ck; AG Osnabr?ck, HR B 18998 Gesch?ftsf?hrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner From goran.licina at lss.hr Mon Oct 5 20:34:02 2009 From: goran.licina at lss.hr (=?iso-8859-2?Q?Goran_Li=E8ina?=) Date: Mon, 5 Oct 2009 20:34:02 +0200 Subject: [Openvas-plugins] Work on missing deps References: <8A02A3DF683DEE42BE73187F4CA4444C0EE345@vlasta.lss-net.lss.hr> <8A02A3DF683DEE42BE73187F4CA4444C0EE764@vlasta.lss-net.lss.hr> <78CDD4EAB5134BFAB0E706C14BCC4AA1@bchandra> <8A02A3DF683DEE42BE73187F4CA4444C0EECF2@vlasta.lss-net.lss.hr> <8A02A3DF683DEE42BE73187F4CA4444C0EECF4@vlasta.lss-net.lss.hr> <20091005175249.GA26915@komma-nix.de> Message-ID: <8A02A3DF683DEE42BE73187F4CA4444C0EED4E@vlasta.lss-net.lss.hr> > -----Original Message----- > From: Michael Meyer [mailto:michael.meyer at intevation.de] > Sent: Monday, October 05, 2009 7:53 PM > To: openvas-plugins at wald.intevation.org > Cc: Goran Li?ina > Subject: Re: [Openvas-plugins] Work on missing deps > > Hi Goran, > > *** Goran Li?ina wrote: > > > Also, FYI we started working on these: > > > > smb_enum_services.nasl > > showmount.nasl > > These are the last two dependencies which are not solved. ;) Not sure about that, I still have couple on my list: sybase_detect.nasl apcnisd_detect.nasl However, these are pretty difficult for us to develop as we don't have these systems available for proper testing. Perhaps, these are already implemented in some other plugins? Also, I noticed that some ".inc"s are missing, e.g. snmp_func.inc. I guess developing one of these would be useful, but that should be discussed first. Any opinions? > > > msrpc_dcom2.nasl > > There is no (more) script which have 'msrpc_dcom2.nasl' as a > dependency. Maybe it's wasted time to develop it... Yeah, I noticed that, but one of our students is already working on it and no other plugin is reporting same vulnerability so it's not redundant, I guess :) Best, Goran From christian.edjenguele at owasp.org Mon Oct 5 20:48:24 2009 From: christian.edjenguele at owasp.org (Christian Eric Edjenguele) Date: Mon, 05 Oct 2009 20:48:24 +0200 Subject: [Openvas-plugins] Work on missing deps In-Reply-To: <8A02A3DF683DEE42BE73187F4CA4444C0EED4E@vlasta.lss-net.lss.hr> References: <8A02A3DF683DEE42BE73187F4CA4444C0EE345@vlasta.lss-net.lss.hr> <8A02A3DF683DEE42BE73187F4CA4444C0EE764@vlasta.lss-net.lss.hr> <78CDD4EAB5134BFAB0E706C14BCC4AA1@bchandra> <8A02A3DF683DEE42BE73187F4CA4444C0EECF2@vlasta.lss-net.lss.hr> <8A02A3DF683DEE42BE73187F4CA4444C0EECF4@vlasta.lss-net.lss.hr> <20091005175249.GA26915@komma-nix.de> <8A02A3DF683DEE42BE73187F4CA4444C0EED4E@vlasta.lss-net.lss.hr> Message-ID: <4ACA3F78.2050608@owasp.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Goran Li?ina wrote: >> -----Original Message----- >> From: Michael Meyer [mailto:michael.meyer at intevation.de] >> Sent: Monday, October 05, 2009 7:53 PM >> To: openvas-plugins at wald.intevation.org >> Cc: Goran Li?ina >> Subject: Re: [Openvas-plugins] Work on missing deps >> >> Hi Goran, >> >> *** Goran Li?ina wrote: >> >>> Also, FYI we started working on these: >>> >>> smb_enum_services.nasl >>> showmount.nasl >> These are the last two dependencies which are not solved. ;) > > Not sure about that, I still have couple on my list: > > sybase_detect.nasl hmm, maybe you're right: mssql_brute_force.nasl: script_dependencie("mssqlserver_detect.nasl", "sybase_detect.nasl"); sybase_blank_password.nasl: script_dependencies("sybase_detect.nasl"); > apcnisd_detect.nasl > > However, these are pretty difficult for us to develop as we don't have > these systems available for proper testing. > > Perhaps, these are already implemented in some other plugins? > > Also, I noticed that some ".inc"s are missing, e.g. snmp_func.inc. I > guess developing one of these would be useful, but that should be discussed > first. Any opinions? > >>> msrpc_dcom2.nasl >> There is no (more) script which have 'msrpc_dcom2.nasl' as a >> dependency. Maybe it's wasted time to develop it... > > Yeah, I noticed that, but one of our students is already working on it and no > other plugin is reporting same vulnerability so it's not redundant, I guess :) > > Best, > > Goran > _______________________________________________ > Openvas-plugins mailing list > Openvas-plugins at wald.intevation.org > http://lists.wald.intevation.org/mailman/listinfo/openvas-plugins - -- Christian Eric Edjenguele IT Security Engineer PGP KeyID: 0xB1654498 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEcBAEBAgAGBQJKyj9zAAoJENETScWxZUSYokoH/RQvN8NJTZVJbL6q5ieAAg3+ VIidbqC0WFZcmf0MUsSdFDStrkEBxPdO1CHziEtBPQk2DH/GT8lK1yS0+avVeNo7 wc3wWKb4pdt7nES8VghcO+vrovkj/w3D9URoSOKLY1TigrOQ4fuy/KGnd30cUYNd bIZX5JqvTA2AnazjRXQwXYx+fk1b5lJEccw5993bMAhavdv7jJi8J7wa2DQuoifW ywiMY7YBJ6i37I2HgN/usQkqR5SmbYnCR/OUjKMtWU4y5i5TgfMtABFudvlXfSKH gTsF5gLTTiLlllsd4qoFuFv77WAqwXVJXYCck5WK1j2Lx/KGb0EjonU1dcsLT4E= =yaTG -----END PGP SIGNATURE----- From timb at openvas.org Mon Oct 5 23:57:06 2009 From: timb at openvas.org (Tim Brown) Date: Mon, 5 Oct 2009 22:57:06 +0100 Subject: [Openvas-plugins] [Openvas-devel] [Openvas-commits] r5349 - in trunk/openvas-plugins: . scripts Message-ID: <200910052257.09290.timb@openvas.org> (moved to openvas-plugins) On Monday 05 October 2009 20:59:07 Thomas Reinke wrote: > > trunk/openvas-plugins/scripts/ms_smb2_highid.nasl > > > > + script_category(ACT_GATHER_INFO); > > > > +data = > > raw_string(0x00,0x00,0x00,0x90,0xff,0x53,0x4d,0x42,0x72,0x00,0x00,0x00,0x > >00,0x18,0x53,0xc8, + > > 0x00,0x26,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0xff,0xff,0xf > >f,0xfe, + > > 0x00,0x00,0x00,0x00,0x00,0x6d,0x00,0x02,0x50,0x43,0x20,0x4e,0x45,0x54,0x5 > >7,0x4f, + > > 0x52,0x4b,0x20,0x50,0x52,0x4f,0x47,0x52,0x41,0x4d,0x20,0x31,0x2e,0x30,0x0 > >0,0x02, + > > 0x4c,0x41,0x4e,0x4d,0x41,0x4e,0x31,0x2e,0x30,0x00,0x02,0x57,0x69,0x6e,0x6 > >4,0x6f, + > > 0x77,0x73,0x20,0x66,0x6f,0x72,0x20,0x57,0x6f,0x72,0x6b,0x67,0x72,0x6f,0x7 > >5,0x70, + > > 0x73,0x20,0x33,0x2e,0x31,0x61,0x00,0x02,0x4c,0x4d,0x31,0x2e,0x32,0x58,0x3 > >0,0x30, + > > 0x32,0x00,0x02,0x4c,0x41,0x4e,0x4d,0x41,0x4e,0x32,0x2e,0x31,0x00,0x02,0x4 > >e,0x54, + > > 0x20,0x4c,0x4d,0x20,0x30,0x2e,0x31,0x32,0x00,0x02,0x53,0x4d,0x42,0x20,0x3 > >2,0x2e, + 0x30,0x30,0x32,0x00); # Tested against 2008 > > Server. A vulnerable Server doing a reboot. I'm not happy with that, but > > a the moment i have no idea how to detect this vulnerability without > > exploiting it. + > > I suspect this script should be classified as ACT_DENIAL > rather than ACT_GATHER_INFO, given that it causes the > vulnerable server to reboot. I agree. For the record, the /safe/ version of the check would be just to check for SMBv2 support and flag it as a possible issue. It's not perfect but AFAIK it is all that can be done at the moment. You might also be able to fix up the packet so that it uses values that are unlikely to trigger the crash but I haven't investigated that in any detail. Tim -- Tim Brown From Jan-Oliver.Wagner at greenbone.net Tue Oct 6 08:32:32 2009 From: Jan-Oliver.Wagner at greenbone.net (Jan-Oliver Wagner) Date: Tue, 6 Oct 2009 08:32:32 +0200 Subject: [Openvas-plugins] r5349 - in trunk/openvas-plugins: . scripts In-Reply-To: <200910052257.09290.timb@openvas.org> References: <200910052257.09290.timb@openvas.org> Message-ID: <200910060832.34327.Jan-Oliver.Wagner@greenbone.net> On Montag, 5. Oktober 2009, Tim Brown wrote: > > >e,0x54, + > > > 0x20,0x4c,0x4d,0x20,0x30,0x2e,0x31,0x32,0x00,0x02,0x53,0x4d,0x42,0x20,0x3 > > >2,0x2e, + 0x30,0x30,0x32,0x00); # Tested against 2008 > > > Server. A vulnerable Server doing a reboot. I'm not happy with that, but > > > a the moment i have no idea how to detect this vulnerability without > > > exploiting it. + > > > > I suspect this script should be classified as ACT_DENIAL > > rather than ACT_GATHER_INFO, given that it causes the > > vulnerable server to reboot. > > I agree. For the record, the /safe/ version of the check would be just to > check for SMBv2 support and flag it as a possible issue. It's not perfect > but AFAIK it is all that can be done at the moment. You might also be able > to fix up the packet so that it uses values that are unlikely to trigger the > crash but I haven't investigated that in any detail. wouldn't it make sense to have two tests, one do the guessing as Tim describes and one that really does the "unsafe" check? Best Jan -- Dr. Jan-Oliver Wagner | ++49-541-335084-0 | http://www.greenbone.net/ Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabr?ck | AG Osnabr?ck, HR B 202460 Gesch?ftsf?hrer: Lukas Grunwald, Dr. Jan-Oliver Wagner From michael.meyer at intevation.de Tue Oct 6 09:30:54 2009 From: michael.meyer at intevation.de (Michael Meyer) Date: Tue, 6 Oct 2009 09:30:54 +0200 Subject: [Openvas-plugins] Work on missing deps In-Reply-To: <8A02A3DF683DEE42BE73187F4CA4444C0EED4E@vlasta.lss-net.lss.hr> References: <8A02A3DF683DEE42BE73187F4CA4444C0EE345@vlasta.lss-net.lss.hr> <8A02A3DF683DEE42BE73187F4CA4444C0EE764@vlasta.lss-net.lss.hr> <78CDD4EAB5134BFAB0E706C14BCC4AA1@bchandra> <8A02A3DF683DEE42BE73187F4CA4444C0EECF2@vlasta.lss-net.lss.hr> <8A02A3DF683DEE42BE73187F4CA4444C0EECF4@vlasta.lss-net.lss.hr> <20091005175249.GA26915@komma-nix.de> <8A02A3DF683DEE42BE73187F4CA4444C0EED4E@vlasta.lss-net.lss.hr> Message-ID: <20091006073054.GA2437@komma-nix.de> Hi Goran, *** Goran Li?ina wrote: > > > smb_enum_services.nasl > > > showmount.nasl > > > > These are the last two dependencies which are not solved. ;) > > Not sure about that, I still have couple on my list: > > sybase_detect.nasl I drop these dependency because both plugins (which make use of sybase_detect.nasl) do not need it to run. > apcnisd_detect.nasl This was commited by me yesterday. > However, these are pretty difficult for us to develop as we don't have > these systems available for proper testing. That's why i drop sybase_detect.nasl as a dependency for the moment. I also have no sybase available. > Perhaps, these are already implemented in some other plugins? > > Also, I noticed that some ".inc"s are missing, e.g. snmp_func.inc. I > guess developing one of these would be useful, but that should be discussed > first. Any opinions? I will have a look at all missed .inc and will check if they are all realy needed. I will drop a mail to the list if done. > > > msrpc_dcom2.nasl > > > > There is no (more) script which have 'msrpc_dcom2.nasl' as a > > dependency. Maybe it's wasted time to develop it... > > Yeah, I noticed that, but one of our students is already working on it and no > other plugin is reporting same vulnerability so it's not redundant, I guess :) Ok. ;) Micha -- Michael Meyer OpenPGP Key: 76E050B9 http://www.intevation.de Intevation GmbH, Neuer Graben 17, 49074 Osnabr?ck; AG Osnabr?ck, HR B 18998 Gesch?ftsf?hrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner From michael.meyer at intevation.de Tue Oct 6 09:53:10 2009 From: michael.meyer at intevation.de (Michael Meyer) Date: Tue, 6 Oct 2009 09:53:10 +0200 Subject: [Openvas-plugins] [Openvas-devel] [Openvas-commits] r5349 - in trunk/openvas-plugins: . scripts In-Reply-To: <200910052257.09290.timb@openvas.org> References: <200910052257.09290.timb@openvas.org> Message-ID: <20091006075310.GB2437@komma-nix.de> *** Tim Brown wrote: > On Monday 05 October 2009 20:59:07 Thomas Reinke wrote: > > > trunk/openvas-plugins/scripts/ms_smb2_highid.nasl > > > > > > + script_category(ACT_GATHER_INFO); > > > > I suspect this script should be classified as ACT_DENIAL > > rather than ACT_GATHER_INFO, given that it causes the > > vulnerable server to reboot. Yes, you are right. Maybe "ACT_KILL_HOST" is the best script_category? > I agree. For the record, the /safe/ version of the check would be just to > check for SMBv2 support and flag it as a possible issue. It's not perfect > but AFAIK it is all that can be done at the moment. This will result in some false positive as well on patched systems. And keep in mind that we can't recall such a plugin once it was synced by a user. > You might also be able to fix up the packet so that it uses values > that are unlikely to trigger the crash but I haven't investigated > that in any detail. I found no way. But i'm not very familiar with SMB. There was also a discussion at the nmap-mailinglist about that. They also found no non-destructive solution to detect this flaw. Micha -- Michael Meyer OpenPGP Key: 76E050B9 http://www.intevation.de Intevation GmbH, Neuer Graben 17, 49074 Osnabr?ck; AG Osnabr?ck, HR B 18998 Gesch?ftsf?hrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner From goran.licina at lss.hr Tue Oct 6 12:41:36 2009 From: goran.licina at lss.hr (=?iso-8859-2?Q?Goran_Li=E8ina?=) Date: Tue, 6 Oct 2009 12:41:36 +0200 Subject: [Openvas-plugins] Work on missing deps References: <8A02A3DF683DEE42BE73187F4CA4444C0EE345@vlasta.lss-net.lss.hr> <8A02A3DF683DEE42BE73187F4CA4444C0EE764@vlasta.lss-net.lss.hr> <78CDD4EAB5134BFAB0E706C14BCC4AA1@bchandra> <8A02A3DF683DEE42BE73187F4CA4444C0EECF2@vlasta.lss-net.lss.hr> <8A02A3DF683DEE42BE73187F4CA4444C0EECF4@vlasta.lss-net.lss.hr> <20091005175249.GA26915@komma-nix.de> Message-ID: <8A02A3DF683DEE42BE73187F4CA4444C0EED6E@vlasta.lss-net.lss.hr> > -----Original Message----- > From: Michael Meyer [mailto:michael.meyer at intevation.de] > Sent: Monday, October 05, 2009 7:53 PM > To: openvas-plugins at wald.intevation.org > Cc: Goran Li?ina > Subject: Re: [Openvas-plugins] Work on missing deps > > Hi Goran, > > *** Goran Li?ina wrote: > > > Also, FYI we started working on these: > > > > smb_enum_services.nasl > > showmount.nasl > Showmount is finished. Please check it and commit if ok. Regards, Goran -------------- next part -------------- A non-text attachment was scrubbed... Name: showmount.nasl Type: application/octet-stream Size: 7740 bytes Desc: showmount.nasl Url : http://lists.wald.intevation.org/pipermail/openvas-plugins/attachments/20091006/e85a2d7c/showmount.obj From michael.meyer at intevation.de Tue Oct 6 15:54:32 2009 From: michael.meyer at intevation.de (Michael Meyer) Date: Tue, 6 Oct 2009 15:54:32 +0200 Subject: [Openvas-plugins] Work on missing deps In-Reply-To: <8A02A3DF683DEE42BE73187F4CA4444C0EED6E@vlasta.lss-net.lss.hr> References: <8A02A3DF683DEE42BE73187F4CA4444C0EE345@vlasta.lss-net.lss.hr> <8A02A3DF683DEE42BE73187F4CA4444C0EE764@vlasta.lss-net.lss.hr> <78CDD4EAB5134BFAB0E706C14BCC4AA1@bchandra> <8A02A3DF683DEE42BE73187F4CA4444C0EECF2@vlasta.lss-net.lss.hr> <8A02A3DF683DEE42BE73187F4CA4444C0EECF4@vlasta.lss-net.lss.hr> <20091005175249.GA26915@komma-nix.de> <8A02A3DF683DEE42BE73187F4CA4444C0EED6E@vlasta.lss-net.lss.hr> Message-ID: <20091006135432.GA9811@komma-nix.de> Hi Goran, *** Goran Li?ina wrote: > Showmount is finished. Please check it and commit if ok. Looks good. I only had to change script_family(english: "Remote file access"); to script_family("Remote file access"); Will commit it today. Thanks! Micha -- Michael Meyer OpenPGP Key: 76E050B9 http://www.intevation.de Intevation GmbH, Neuer Graben 17, 49074 Osnabr?ck; AG Osnabr?ck, HR B 18998 Gesch?ftsf?hrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner From goran.licina at lss.hr Tue Oct 6 15:57:30 2009 From: goran.licina at lss.hr (=?iso-8859-2?Q?Goran_Li=E8ina?=) Date: Tue, 6 Oct 2009 15:57:30 +0200 Subject: [Openvas-plugins] Work on missing deps References: <8A02A3DF683DEE42BE73187F4CA4444C0EE345@vlasta.lss-net.lss.hr><8A02A3DF683DEE42BE73187F4CA4444C0EE764@vlasta.lss-net.lss.hr><78CDD4EAB5134BFAB0E706C14BCC4AA1@bchandra><8A02A3DF683DEE42BE73187F4CA4444C0EECF2@vlasta.lss-net.lss.hr><8A02A3DF683DEE42BE73187F4CA4444C0EECF4@vlasta.lss-net.lss.hr><20091005175249.GA26915@komma-nix.de><8A02A3DF683DEE42BE73187F4CA4444C0EED6E@vlasta.lss-net.lss.hr> <20091006135432.GA9811@komma-nix.de> Message-ID: <8A02A3DF683DEE42BE73187F4CA4444C0EED81@vlasta.lss-net.lss.hr> Ok, thanks. Goran > -----Original Message----- > From: openvas-plugins-bounces at wald.intevation.org [mailto:openvas- > plugins-bounces at wald.intevation.org] On Behalf Of Michael Meyer > Sent: Tuesday, October 06, 2009 3:55 PM > To: openvas-plugins at wald.intevation.org > Subject: Re: [Openvas-plugins] Work on missing deps > > Hi Goran, > > *** Goran Li?ina wrote: > > > Showmount is finished. Please check it and commit if ok. > > Looks good. I only had to change > > script_family(english: "Remote file access"); > > to > > script_family("Remote file access"); > > Will commit it today. > > Thanks! > > Micha > > -- > Michael Meyer OpenPGP Key: > 76E050B9 > http://www.intevation.de > Intevation GmbH, Neuer Graben 17, 49074 Osnabr?ck; AG Osnabr?ck, HR B > 18998 > Gesch?ftsf?hrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver > Wagner > _______________________________________________ > Openvas-plugins mailing list > Openvas-plugins at wald.intevation.org > http://lists.wald.intevation.org/mailman/listinfo/openvas-plugins From timb at openvas.org Mon Oct 12 14:40:25 2009 From: timb at openvas.org (Tim Brown) Date: Mon, 12 Oct 2009 13:40:25 +0100 Subject: [Openvas-plugins] Fwd: [framework] Metasploit Summer of Code Message-ID: <200910121340.26441.timb@openvas.org> Might be fun to work on? Tim ---------- Forwarded Message ---------- Subject: [framework] Metasploit Summer of Code Date: Monday 30 June 2008 From: Jerome Athias To: framework at spool.metasploit.com Hi there, are you all thinking about holidays? 8-) I just would like to submit a Metasploit Summer of Code project ;-p Overview: "DPE is the security-database naming scheme that provides structured enumeration of default logons and passwords of network devices, applications and Operating Systems." http://www.security-database.com/dpe.php teeny, weeny, deepy! Your mission, if you choose to accept it, is to code an MSF auxiliary module for parsing dpe.xml and launch a bruteforce attack... Main goal: "Using automated XML / XSD parser software to read and test default entries. Note, that the software should able to handle the protocol communications(HTTP, HTTPS, SNMP, SSH, TELNET, FTP..)" "Now, let the imagination comes out because it is more important than knowledge. This is my real anthem in life." ;-) /JA _______________________________________________ http://spool.metasploit.com/mailman/listinfo/framework ------------------------------------------------------- -- Tim Brown From christian.edjenguele at owasp.org Tue Oct 13 10:26:13 2009 From: christian.edjenguele at owasp.org (Christian Eric Edjenguele) Date: Tue, 13 Oct 2009 10:26:13 +0200 Subject: [Openvas-plugins] Fwd: [framework] Metasploit Summer of Code In-Reply-To: <200910121340.26441.timb@openvas.org> References: <200910121340.26441.timb@openvas.org> Message-ID: <4AD439A5.6090000@owasp.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 It should interesting to standardize OpenVAS architecture instead, by make it parse some XML file for OS fingerprint or Host enumeration as I proposed some months ago, I've also provided a python prototype. Tim Brown wrote: > Might be fun to work on? > > Tim > ---------- Forwarded Message ---------- > > Subject: [framework] Metasploit Summer of Code > Date: Monday 30 June 2008 > From: Jerome Athias > To: framework at spool.metasploit.com > > Hi there, > > are you all thinking about holidays? 8-) > > I just would like to submit a Metasploit Summer of Code project ;-p > > Overview: > "DPE is the security-database naming scheme that provides structured > enumeration of default logons and passwords of network devices, > applications and Operating Systems." > http://www.security-database.com/dpe.php > > teeny, weeny, deepy! > Your mission, if you choose to accept it, is to code an MSF auxiliary > module for parsing dpe.xml and launch a bruteforce attack... > Main goal: "Using automated XML / XSD parser software to read and test > default entries. Note, that the software should able to handle the > protocol communications(HTTP, HTTPS, SNMP, SSH, TELNET, FTP..)" > > "Now, let the imagination comes out because it is more important than > knowledge. This is my real anthem in life." ;-) > > /JA > _______________________________________________ > http://spool.metasploit.com/mailman/listinfo/framework > > ------------------------------------------------------- > - -- Christian Eric Edjenguele IT Security Engineer PGP KeyID: 0xB1654498 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEcBAEBAgAGBQJK1DmfAAoJENETScWxZUSYvy8H/3FGdinQ7ODSRRjiN25Upz8/ 6DfB+sh7nCUKmqAw1COrfXQIhcJoIUVUI2qxdxrAqHkXptXNYLeAGHL5NKMcxeuv QH9azjeE5BwzvNrJcTn6p3DhOPXfT+22xcyBTwMVgynBl/O+bW0DRWw0OdVq+cUR LsxCJApltzQQ/uCHoZZ7VHK/f5WV2V5UcJhKO2gyGMBM5wgrR7TIOQvE8L5YTUMP q9vVs3fqHoXOe0VcUDFpINs/Gk/7+SqSzF62MdAsu0wm0ZX8uD/R3fZqWUAkZlZy cY/RBg+0R2aC6wXWwAw1xr2BUTWHfBvdigpYgfkqN/oxacNOhFkxyyTMSPDd5U8= =m4X9 -----END PGP SIGNATURE----- From angelo.compagnucci at gmail.com Thu Oct 29 17:46:05 2009 From: angelo.compagnucci at gmail.com (Angelo Compagnucci) Date: Thu, 29 Oct 2009 17:46:05 +0100 Subject: [Openvas-plugins] Joomla! detection plugin Message-ID: <777f2ade0910290946p49a088cep15e727486f0a35f3@mail.gmail.com> Hello list, I wrote a plugin for Joomla detection based on the mambo one. Plugin works reasonably well and it reports correct results. I have no idea wich schema is used to assign the script id, so I wrote a fake 123456 one. I hope this plugin will be useful! Thanks! -------------- next part -------------- A non-text attachment was scrubbed... Name: joomla_detect.nasl Type: application/octet-stream Size: 5985 bytes Desc: not available Url : http://lists.wald.intevation.org/pipermail/openvas-plugins/attachments/20091029/823cedce/joomla_detect.obj From michael.meyer at intevation.de Thu Oct 29 18:39:51 2009 From: michael.meyer at intevation.de (Michael Meyer) Date: Thu, 29 Oct 2009 18:39:51 +0100 Subject: [Openvas-plugins] Joomla! detection plugin In-Reply-To: <777f2ade0910290946p49a088cep15e727486f0a35f3@mail.gmail.com> References: <777f2ade0910290946p49a088cep15e727486f0a35f3@mail.gmail.com> Message-ID: <20091029173951.GA11902@komma-nix.de> Hello Angelo, *** Angelo Compagnucci wrote: > I wrote a plugin for Joomla detection based on the mambo one. Plugin > works reasonably well and it reports correct results. Thank you very much. I will test and commit your plugin. > I have no idea wich schema is used to assign the script id, so I wrote > a fake 123456 one. http://openvas.org/openvas-oids.html I'll give your script an id from my range. Micha -- Michael Meyer OpenPGP Key: 76E050B9 http://www.intevation.de Intevation GmbH, Neuer Graben 17, 49074 Osnabr?ck; AG Osnabr?ck, HR B 18998 Gesch?ftsf?hrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner From angelo.compagnucci at gmail.com Fri Oct 30 11:50:51 2009 From: angelo.compagnucci at gmail.com (Angelo Compagnucci) Date: Fri, 30 Oct 2009 11:50:51 +0100 Subject: [Openvas-plugins] Joomla! detection plugin In-Reply-To: <20091029173951.GA11902@komma-nix.de> References: <777f2ade0910290946p49a088cep15e727486f0a35f3@mail.gmail.com> <20091029173951.GA11902@komma-nix.de> Message-ID: <777f2ade0910300350o55114c6l4cd7b8348ed68a11@mail.gmail.com> Hello Michel, I slightly modified the plugin, it shows a more correct result than before. Angelo 2009/10/29 Michael Meyer : > Hello Angelo, > > *** Angelo Compagnucci wrote: > >> I wrote a plugin for Joomla detection based on the mambo one. Plugin >> works reasonably well and it reports correct results. > > Thank you very much. I will test and commit your plugin. > >> I have no idea wich schema is used to assign the script id, so I wrote >> a fake 123456 one. > > http://openvas.org/openvas-oids.html > > I'll give your script an id from my range. > > Micha > > -- > Michael Meyer ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ? OpenPGP Key: 76E050B9 > http://www.intevation.de > Intevation GmbH, Neuer Graben 17, 49074 Osnabr?ck; AG Osnabr?ck, HR B 18998 > Gesch?ftsf?hrer: ? Frank Koormann, ?Bernhard Reiter, ?Dr. Jan-Oliver Wagner > _______________________________________________ > Openvas-plugins mailing list > Openvas-plugins at wald.intevation.org > http://lists.wald.intevation.org/mailman/listinfo/openvas-plugins > -------------- next part -------------- A non-text attachment was scrubbed... Name: joomla_detect.nasl Type: application/octet-stream Size: 5784 bytes Desc: not available Url : http://lists.wald.intevation.org/pipermail/openvas-plugins/attachments/20091030/bdee7386/joomla_detect.obj From angelo.compagnucci at gmail.com Fri Oct 30 15:22:47 2009 From: angelo.compagnucci at gmail.com (Angelo Compagnucci) Date: Fri, 30 Oct 2009 15:22:47 +0100 Subject: [Openvas-plugins] Joomla! detection plugin In-Reply-To: <777f2ade0910300350o55114c6l4cd7b8348ed68a11@mail.gmail.com> References: <777f2ade0910290946p49a088cep15e727486f0a35f3@mail.gmail.com> <20091029173951.GA11902@komma-nix.de> <777f2ade0910300350o55114c6l4cd7b8348ed68a11@mail.gmail.com> Message-ID: <777f2ade0910300722n254495f0ka2c5df881bba8ff8@mail.gmail.com> Latest version, better than the previous one! Angelo -------------- next part -------------- A non-text attachment was scrubbed... Name: joomla_detect.nasl Type: application/octet-stream Size: 7539 bytes Desc: not available Url : http://lists.wald.intevation.org/pipermail/openvas-plugins/attachments/20091030/649539d7/joomla_detect.obj