Home page logo
/

nmap-dev logo Nmap Development mailing list archives

Re: Scripts for proxy detection
From: David Fifield <david () bamsoftware com>
Date: Tue, 9 Jun 2009 18:03:17 -0600

On Tue, Jun 09, 2009 at 06:08:25PM -0300, Joao Correa wrote:
I just would like to mention that I've finished implementing
everything David suggest on his previous e-mails.

socks-open-proxy.nse
-only awaits until the "Request granted" bytes, not asking the proxy
server to perform a get.
-now includes "socks" service at portrule

http-open-proxy.nse
-no longer does POST.
-resolve host with inner code, without using extra parameters

For both scripts, the arguments now use one extra indirection, as
mentioned, --script-args='open-proxy={url=...'
Also, comments were fixed and updated for both scripts.

Your changes look good. Please commit the scripts.

I had just one problem, while testing socks-open-proxy.nse. There was a
socket error. It only happened once in around five tests. If you see a
cause for this, please fix it, otherwise I wouldn't worry about it.

NSE: Socks5: No authentication required
NSE: TCP 127.0.0.1:50838 > 127.0.0.1:1082 | 00000000: 05 01 00 01 4a 7d 7f 63 00
 50                       J} c P

NSOCK (12.1490s) Write request for 10 bytes to IOD #3 EID 83 [127.0.0.1:1082]: ....J}.c.P
NSOCK (12.1590s) nsock_loop() started (timeout=50ms). 1 events pending
NSOCK (12.1600s) Callback: WRITE SUCCESS for EID 83 [127.0.0.1:1082]
NSOCK (12.1630s) nsock_loop() started (timeout=50ms). 0 events pending
NSOCK (12.1630s) Read request from IOD #3 [127.0.0.1:1082] (timeout: 1000ms) EID 90
NSOCK (13.1660s) Callback: READ TIMEOUT for EID 90 [127.0.0.1:1082]
NSOCK (13.1680s) nsock_loop() started (timeout=50ms). 0 events pending
NSE: TCP 127.0.0.1:50838 > 127.0.0.1:1082 | CLOSE
NSE: socks-open-proxy threw an error!
TIMEOUT
stack traceback:
        [C]: in function 'try'
        ./scripts/socks-open-proxy.nse:123: in function <./scripts/socks-open-proxy.nse:52>
        (tail call): ?

Completed NSE at 17:27, 1.69s elapsed

David Fifield

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]