Gh0st
/
Nettacker
mirror of https://github.com/OWASP/Nettacker.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,363 Commits 14 Branches 13 Tags 27 MiB
Commit Graph

2363 Commits

Author SHA1 Message Date
Sam Stepanyan 625b507aef
Merge pull request #788 from OWASP/securestep9-patch-v0.3.3-1 
Update version.txt
 2024-01-20 22:08:16 +00:00
Sam Stepanyan 9e1dbca293
Merge branch 'master' into securestep9-patch-v0.3.3-1 2024-01-20 21:58:44 +00:00
Sam Stepanyan 1ac1462a70
Merge pull request #795 from OWASP/securestep9-ivanti_epmm_lastpatcheddate-patch-1 
New Module: Ivanti EPMM Last Patched Date Scan
 2024-01-20 21:47:31 +00:00
Sam Stepanyan bf45746350
Update ivanti_epmm_lastpatcheddate.yaml 
Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2024-01-20 21:24:40 +00:00
Sam Stepanyan 93d05aff28
New Module: Ivanti EPMM Last Patched Date Scan 
Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2024-01-20 21:15:12 +00:00
Sam Stepanyan a2a8bc5d3e
Merge pull request #794 from OWASP/securestep9-patch-ivanti_ics_lastpatcheddate-1 
New Module: Ivanti ICS Last Patched Date Scan
 2024-01-20 21:10:12 +00:00
Sam Stepanyan c5956ba9df
Update ivanti_ics_lastpatcheddate.yaml 
Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2024-01-20 20:50:45 +00:00
Sam Stepanyan 07cc9945c7
New Module: Ivanti ICS Last Patched Date scan 
Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2024-01-20 20:22:25 +00:00
Sam Stepanyan dadc22c1cf
Merge pull request #793 from OWASP/securestep9-ivanti_epmm_cve_2023_35082-1 
New Module: Ivanti EPMM CVE-2023-35082
 2024-01-20 20:16:50 +00:00
Sam Stepanyan 3111921383
New Module: Ivanti EPMM CVE-2023-35082 
detect Ivanti EPMM CVE-2023-35082 vulnerability 

Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2024-01-20 19:59:02 +00:00
Sam Stepanyan 468bcf60fc
Merge pull request #792 from OWASP/securestep9-patch-ivanti-module-ua-fix 
Ivanti ICS module fix: replaced hardcoded User-Agent with variable
 2024-01-20 15:41:12 +00:00
Sam Stepanyan 39964d8ce8
Update ivanti_ics_cve_2023_46805.yaml UA fix 
replaced hardcoded UserAgent with variable

Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2024-01-20 15:26:56 +00:00
Sam Stepanyan d7db43eca0
Merge branch 'master' into securestep9-patch-v0.3.3-1 2024-01-20 02:06:01 +00:00
Sam Stepanyan a71a1acda9
Merge pull request #789 from OWASP/dependabot/pip/flask-3.0.1 
Bump flask from 3.0.0 to 3.0.1
 2024-01-20 02:05:31 +00:00
Sam Stepanyan 41300bf88d
Merge branch 'master' into dependabot/pip/flask-3.0.1 2024-01-20 01:53:32 +00:00
Sam Stepanyan a8e9274503
Merge pull request #791 from OWASP/securestep9-patch-http-html-title-module-1 
New Module: HTML Title scan
 2024-01-20 01:42:40 +00:00
Sam Stepanyan 4acfac0570
Update http_html_title.yaml 
Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2024-01-20 01:29:37 +00:00
Sam Stepanyan f8a7f60b8f
New Module: HTML Title scan 
extract TITLE from the scan target as it can help identify what application is running on the server

Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2024-01-20 01:18:41 +00:00
Sam Stepanyan 5b3ace3ed4
Merge pull request #790 from OWASP/securestep9-citrix-lastpatcheddate_module-1 
New Module: Citrix Gateway Last Patched Date Scan
 2024-01-20 00:48:17 +00:00
Sam Stepanyan d2ea491b80
New Module: Citrix Gateway Last Patched Date Scan 
Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2024-01-19 23:58:14 +00:00
dependabot[bot] af3a371122
Bump flask from 3.0.0 to 3.0.1 
Bumps [flask](https://github.com/pallets/flask) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/pallets/flask/releases)
- [Changelog](https://github.com/pallets/flask/blob/main/CHANGES.rst)
- [Commits](https://github.com/pallets/flask/compare/3.0.0...3.0.1)

---
updated-dependencies:
- dependency-name: flask
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-01-19 22:35:54 +00:00
Sam Stepanyan e9d0ca07fd
Update version.txt 
bumping version to 0.3.3 for new release

Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2024-01-19 01:45:38 +00:00
Sam Stepanyan b7d3648aa0
Merge pull request #787 from OWASP/securestep9-patch-post-smtp-1 
Update wp_plugin_small.txt
 2024-01-19 01:34:10 +00:00
Sam Stepanyan ae518acaf2
Update wp_plugin_small.txt 
Added post-smtp (CVE-2023-6875)

Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2024-01-19 01:22:01 +00:00
Sam Stepanyan 0517f51736
Merge pull request #778 from OWASP/snyk-fix-45537895660e2c31d984f2042b819b69 
[Snyk] Security upgrade paramiko from 3.3.1 to 3.4.0
 2024-01-19 01:08:03 +00:00
Sam Stepanyan 74c8ce94d5
Merge branch 'master' into snyk-fix-45537895660e2c31d984f2042b819b69 2024-01-19 00:56:33 +00:00
Sam Stepanyan d170db99e7
Merge pull request #785 from Captain-T2004/master 
Added new module, CVE_2023_6875
 2024-01-18 23:57:43 +00:00
Sam Stepanyan a000a235a5
Merge branch 'master' into master 2024-01-18 23:45:32 +00:00
Sam Stepanyan cfa711f400
Merge pull request #786 from jimmy-ly00/master 
New Module: Added Ivanti ICS CVE-2023-46805 Vuln
 2024-01-18 23:02:48 +00:00
Sam Stepanyan 121bdf8da6
Merge branch 'master' into master 2024-01-18 22:27:33 +00:00
Jimmy d32ce138ae
Update and rename ivanti_ics_cve_2023_46805_and_cve_2024_21887.yaml to ivanti_ics_cve_2023_46805.yaml 2024-01-18 15:00:24 +00:00
Jimmy 826405c4af Create ivanti_ics_cve_2023_46805_and_cve_2024_21887.yaml 2024-01-16 19:53:39 +00:00
Captain-T2004 f80ac79451 Added new module, CVE_2023_6875 2024-01-17 00:26:54 +05:30
snyk-bot 62c5899f9b
fix: requirements.txt to reduce vulnerabilities 
The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PARAMIKO-6130887
 2023-12-19 16:05:29 +00:00
Ali Razmjoo 90af15d583
Merge pull request #764 from OWASP/dependabot/pip/numpy-1.26.2 
Bump numpy from 1.26.0 to 1.26.2
 2023-12-15 03:20:11 +01:00
Ali Razmjoo 3a4ed268b7
Merge pull request #772 from OWASP/dependabot/pip/ipython-8.18.1 
Bump ipython from 8.16.1 to 8.18.1
 2023-12-15 03:19:54 +01:00
Ali Razmjoo 14ddc70adc
Merge pull request #775 from OWASP/dependabot/github_actions/github/codeql-action-3 
Bump github/codeql-action from 2 to 3
 2023-12-15 03:19:25 +01:00
dependabot[bot] 2d5e9285de
Bump github/codeql-action from 2 to 3 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2 to 3.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v2...v3)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-12-13 22:53:33 +00:00
dependabot[bot] 458465ac9c
Bump ipython from 8.16.1 to 8.18.1 
Bumps [ipython](https://github.com/ipython/ipython) from 8.16.1 to 8.18.1.
- [Release notes](https://github.com/ipython/ipython/releases)
- [Commits](https://github.com/ipython/ipython/commits/8.18.1)

---
updated-dependencies:
- dependency-name: ipython
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-11-30 22:48:48 +00:00
Ali Razmjoo 57ea702764
Merge branch 'master' into dependabot/pip/numpy-1.26.2 2023-11-30 08:28:32 +01:00
Ali Razmjoo d005c662d3
Merge pull request #769 from OWASP/dependabot/pip/aiohttp-3.9.1 
Bump aiohttp from 3.8.5 to 3.9.1
 2023-11-30 08:28:20 +01:00
Ali Razmjoo 71d3f9d78b
Merge branch 'master' into dependabot/pip/aiohttp-3.9.1 
Signed-off-by: Ali Razmjoo <ali.razmjoo@owasp.org>
 2023-11-30 08:27:49 +01:00
dependabot[bot] 3679ac7ec5
Bump numpy from 1.26.0 to 1.26.2 
Bumps [numpy](https://github.com/numpy/numpy) from 1.26.0 to 1.26.2.
- [Release notes](https://github.com/numpy/numpy/releases)
- [Changelog](https://github.com/numpy/numpy/blob/main/doc/RELEASE_WALKTHROUGH.rst)
- [Commits](https://github.com/numpy/numpy/compare/v1.26.0...v1.26.2)

---
updated-dependencies:
- dependency-name: numpy
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-11-30 07:27:46 +00:00
Ali Razmjoo 716e7b6a8c
Merge pull request #770 from OWASP/snyk-fix-9d3dbcac003470d5b7bf2e6f12a8e99e 
[Snyk] Security upgrade aiohttp from 3.8.5 to 3.9.0
 2023-11-30 08:27:00 +01:00
Ali Razmjoo 05db81c725
Merge pull request #771 from OWASP/update-readme 
Update README.md
 2023-11-30 08:19:42 +01:00
Ali Razmjoo bce2c8d442 Update README.md 2023-11-30 08:19:02 +01:00
snyk-bot 7423a79477
fix: requirements.txt to reduce vulnerabilities 
The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091621
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091622
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091623
 2023-11-28 14:51:50 +00:00
dependabot[bot] 2a0727200f
Bump aiohttp from 3.8.5 to 3.9.1 
Bumps [aiohttp](https://github.com/aio-libs/aiohttp) from 3.8.5 to 3.9.1.
- [Release notes](https://github.com/aio-libs/aiohttp/releases)
- [Changelog](https://github.com/aio-libs/aiohttp/blob/master/CHANGES.rst)
- [Commits](https://github.com/aio-libs/aiohttp/compare/v3.8.5...v3.9.1)

---
updated-dependencies:
- dependency-name: aiohttp
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-11-27 22:32:36 +00:00
Sam Stepanyan 7af93ebb26
Merge pull request #761 from OWASP/securestep9-0.3.2-version.txt 
Update version.txt to 0.3.2
 2023-10-31 22:59:36 +00:00
Sam Stepanyan 32ada7decc
Update version.txt 
0.3.2

Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2023-10-31 22:47:37 +00:00