Cybersec
/
Nettacker
mirror of https://github.com/OWASP/Nettacker.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,398 Commits 40 Branches 12 Tags 10 MiB
Commit Graph

2398 Commits

Author SHA1 Message Date
Sam Stepanyan facf823cc7
Merge pull request #840 from OWASP/securestep9-nettaker-docker-python-3119-update 
Update Python Docker base image to 3.11.9-slim
 2024-05-10 08:58:04 +01:00
Sam Stepanyan 4251ab4bb8
Update Dockerfile 
Update Python base image to 3.11.9-slim

Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2024-05-10 08:36:08 +01:00
Sam Stepanyan 7e960a48c3
Merge pull request #833 from OWASP/dependabot/pip/aiohttp-3.9.5 
Bump aiohttp from 3.9.3 to 3.9.5
 2024-05-10 08:33:33 +01:00
dependabot[bot] 1257ef9ed7
Bump aiohttp from 3.9.3 to 3.9.5 
Bumps [aiohttp](https://github.com/aio-libs/aiohttp) from 3.9.3 to 3.9.5.
- [Release notes](https://github.com/aio-libs/aiohttp/releases)
- [Changelog](https://github.com/aio-libs/aiohttp/blob/master/CHANGES.rst)
- [Commits](https://github.com/aio-libs/aiohttp/compare/v3.9.3...v3.9.5)

---
updated-dependencies:
- dependency-name: aiohttp
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-04-18 22:32:33 +00:00
dependabot[bot] 91f54722bb
Bump actions/checkout from 4.1.1 to 4.1.2 (#824) 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.1 to 4.1.2.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v4.1.1...v4.1.2)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-03-12 16:34:00 -07:00
Captain-T2004 81b842563b
Detecting open Dropbear server (#808) 
* Detecting open Dropbear server

* Making code more readable

After testing it rigorously i have found that without the try and except the code doesn't work, so to improve the readability i have added some comments, also added is finally block to close the connection.

* Replaced try/except with if/else

As per the suggestions i have replaced try/except with if/else and i have ran multiple tests on my localhost to test and it is working.

* Made the code concise

I have made the suggested changes to the code to make it more concise and easy to read. I have taken time to test it and make sure it works( it does ).
 2024-03-11 16:23:45 -07:00
dependabot[bot] ecfcf42fb2
Bump flake8 from 6.0.0 to 7.0.0 (#782) 
Bumps [flake8](https://github.com/pycqa/flake8) from 6.0.0 to 7.0.0.
- [Commits](https://github.com/pycqa/flake8/compare/6.0.0...7.0.0)

---
updated-dependencies:
- dependency-name: flake8
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-03-11 15:52:03 -07:00
Sam Stepanyan 617c16d4d8
Merge pull request #822 from prbhtkumr/master 
Fixed Typo in Docstring
 2024-03-07 10:12:14 +00:00
Sam Stepanyan f4509a03af
Merge branch 'master' into master 2024-03-07 09:39:01 +00:00
Sam Stepanyan ff0900d2c8
Merge pull request #818 from Freedisch/pagination 
[Feature] Added Pagination in webUI
 2024-03-06 22:55:42 +00:00
Sam Stepanyan b18497d426
Merge branch 'master' into pagination 2024-03-06 22:38:58 +00:00
Sam Stepanyan 2615723d25
Merge pull request #821 from OWASP/securestep9-patch-cve-2024-27198 
Module to detect TeamCity CVE-2024-27198
 2024-03-06 22:16:06 +00:00
Sam Stepanyan 2d3eb7654a
Module teamcity_cve_2024_27198.yaml 
Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2024-03-06 22:00:12 +00:00
Sam Stepanyan 2b95d60dd3 New Module: JetBrains TeamCity CVE-2024-27198 Vulnerability detection 2024-03-06 19:31:27 +00:00
Prabhat Kumar 17a9751035
Merge branch 'OWASP:master' into master 2024-03-07 00:47:36 +05:30
Prabhat Kumar 13cd610e08 Fixed Docstring Typo 2024-03-06 14:59:27 +05:30
Sam Stepanyan 273ebda720
Merge pull request #815 from OWASP/snyk-fix-c42b5d4e0b442f9a2d1a7dcf51f2625d 
[Snyk] Security upgrade python from 3.11.7-slim to 3.11.8-slim
 2024-03-03 22:30:35 +00:00
freedisch 0f7e2d2e3f Added pagination feature to the crawler page 
Signed-off-by: freedisch <freeproduc@gmail.com>
 2024-03-03 19:17:21 +02:00
snyk-bot 0a34a65512
fix: Dockerfile to reduce vulnerabilities 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-DEBIAN12-GNUTLS28-6159410
- https://snyk.io/vuln/SNYK-DEBIAN12-GNUTLS28-6159418
- https://snyk.io/vuln/SNYK-DEBIAN12-SYSTEMD-6137714
- https://snyk.io/vuln/SNYK-DEBIAN12-SYSTEMD-6137714
- https://snyk.io/vuln/SNYK-DEBIAN12-TAR-3253526
 2024-03-01 05:28:33 +00:00
Sam Stepanyan 1574b6ee97
Merge pull request #807 from ab2pentest/patch-1 
Update README.md with correct docker image name
 2024-02-21 21:04:56 +00:00
Sam Stepanyan 93c0dfa2a3
Merge branch 'master' into patch-1 2024-02-21 20:33:21 +00:00
Sam Stepanyan 9ffa548872
Merge pull request #811 from 0xd4ngi/master 
ivanti_ics_name_correction Issue #802
 2024-02-14 23:07:30 +00:00
0xd4ngi b58e18dbc3 ivanti_ics_name_correction 2024-02-13 10:51:49 +05:30
AB2 a586444232
Update README.md 
rename the docker image name

Signed-off-by: AB2 <84577967+ab2pentest@users.noreply.github.com>
 2024-02-06 15:28:03 +01:00
Sam Stepanyan e71b449b90
Merge pull request #799 from OWASP/dependabot/pip/aiohttp-3.9.3 
Bump aiohttp from 3.9.1 to 3.9.3
 2024-02-05 11:18:11 +00:00
Sam Stepanyan 29844b3452
Merge branch 'master' into dependabot/pip/aiohttp-3.9.3 2024-02-05 10:14:17 +00:00
Sam Stepanyan 3e3f3fea0f
Merge pull request #804 from OWASP/securestep9-patch-nettacker-python3-11-7 
Update Dockerfile to use python 3.11.7
 2024-02-02 14:52:59 +00:00
Sam Stepanyan 1042c20c0b
Update Dockerfile to use python 3.11.7 
reducing vulnerabilities

Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2024-02-02 14:40:23 +00:00
dependabot[bot] 933906b56f
Bump aiohttp from 3.9.1 to 3.9.3 
Bumps [aiohttp](https://github.com/aio-libs/aiohttp) from 3.9.1 to 3.9.3.
- [Release notes](https://github.com/aio-libs/aiohttp/releases)
- [Changelog](https://github.com/aio-libs/aiohttp/blob/master/CHANGES.rst)
- [Commits](https://github.com/aio-libs/aiohttp/compare/v3.9.1...v3.9.3)

---
updated-dependencies:
- dependency-name: aiohttp
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-02-02 14:06:44 +00:00
Sam Stepanyan 6936844574
Merge pull request #796 from OWASP/dependabot/pip/numpy-1.26.3 
Bump numpy from 1.26.2 to 1.26.3
 2024-02-02 14:05:56 +00:00
Sam Stepanyan 87ddce04f3
Merge branch 'master' into dependabot/pip/numpy-1.26.3 2024-02-02 13:54:56 +00:00
Sam Stepanyan 31b3dc2e01
Merge pull request #797 from jimmy-ly00/master 
New Module: Added Confluence RCE CVE-2023-22527 Vuln
 2024-01-24 09:03:45 +00:00
Sam Stepanyan 4480f4eeb7
Merge branch 'master' into master 2024-01-24 00:41:45 +00:00
Jimmy c326796e4d Create confluence_cve_2023_22527.yaml 2024-01-23 02:20:37 +00:00
dependabot[bot] 8deedc465e
Bump numpy from 1.26.2 to 1.26.3 
Bumps [numpy](https://github.com/numpy/numpy) from 1.26.2 to 1.26.3.
- [Release notes](https://github.com/numpy/numpy/releases)
- [Changelog](https://github.com/numpy/numpy/blob/main/doc/RELEASE_WALKTHROUGH.rst)
- [Commits](https://github.com/numpy/numpy/compare/v1.26.2...v1.26.3)

---
updated-dependencies:
- dependency-name: numpy
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-01-22 22:31:48 +00:00
Sam Stepanyan 625b507aef
Merge pull request #788 from OWASP/securestep9-patch-v0.3.3-1 
Update version.txt
 2024-01-20 22:08:16 +00:00
Sam Stepanyan 9e1dbca293
Merge branch 'master' into securestep9-patch-v0.3.3-1 2024-01-20 21:58:44 +00:00
Sam Stepanyan 1ac1462a70
Merge pull request #795 from OWASP/securestep9-ivanti_epmm_lastpatcheddate-patch-1 
New Module: Ivanti EPMM Last Patched Date Scan
 2024-01-20 21:47:31 +00:00
Sam Stepanyan bf45746350
Update ivanti_epmm_lastpatcheddate.yaml 
Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2024-01-20 21:24:40 +00:00
Sam Stepanyan 93d05aff28
New Module: Ivanti EPMM Last Patched Date Scan 
Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2024-01-20 21:15:12 +00:00
Sam Stepanyan a2a8bc5d3e
Merge pull request #794 from OWASP/securestep9-patch-ivanti_ics_lastpatcheddate-1 
New Module: Ivanti ICS Last Patched Date Scan
 2024-01-20 21:10:12 +00:00
Sam Stepanyan c5956ba9df
Update ivanti_ics_lastpatcheddate.yaml 
Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2024-01-20 20:50:45 +00:00
Sam Stepanyan 07cc9945c7
New Module: Ivanti ICS Last Patched Date scan 
Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2024-01-20 20:22:25 +00:00
Sam Stepanyan dadc22c1cf
Merge pull request #793 from OWASP/securestep9-ivanti_epmm_cve_2023_35082-1 
New Module: Ivanti EPMM CVE-2023-35082
 2024-01-20 20:16:50 +00:00
Sam Stepanyan 3111921383
New Module: Ivanti EPMM CVE-2023-35082 
detect Ivanti EPMM CVE-2023-35082 vulnerability 

Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2024-01-20 19:59:02 +00:00
Sam Stepanyan 468bcf60fc
Merge pull request #792 from OWASP/securestep9-patch-ivanti-module-ua-fix 
Ivanti ICS module fix: replaced hardcoded User-Agent with variable
 2024-01-20 15:41:12 +00:00
Sam Stepanyan 39964d8ce8
Update ivanti_ics_cve_2023_46805.yaml UA fix 
replaced hardcoded UserAgent with variable

Signed-off-by: Sam Stepanyan <sam.stepanyan@owasp.org>
 2024-01-20 15:26:56 +00:00
Sam Stepanyan d7db43eca0
Merge branch 'master' into securestep9-patch-v0.3.3-1 2024-01-20 02:06:01 +00:00
Sam Stepanyan a71a1acda9
Merge pull request #789 from OWASP/dependabot/pip/flask-3.0.1 
Bump flask from 3.0.0 to 3.0.1
 2024-01-20 02:05:31 +00:00
Sam Stepanyan 41300bf88d
Merge branch 'master' into dependabot/pip/flask-3.0.1 2024-01-20 01:53:32 +00:00