📄 changes
字号:
* Added more debug modes, the more -v you put, the more you get [vH] * Added new ids (thanks to mrjoe@host.sk and yclin@ustc.edu)v3.1 June 2003 (unreleased) * Added printing of the trigger name if a match is made in verbose mode. Good idea by mstar@smoke.dope.org [vH] * Fixed compile problems (thanks to lionel.garcia@airbus.com, mstar@smoke.dope.org and vlaad@sezampro.yu) [vH] * Added new ids (thanks to mstar@smoke.dope.org, mhauke@roox.ath.cx, and vlaad@sezampro.yu) * RPC ids were not printed, fixed [vH]v3.0 June 2003 (THC alpha release) ! Completely rewritten from scratch ! [vH] Thanks go to Skyper who pointed me to the pcre library! - By this, the following small bugs in v2.x were noticed: - in task calculations, triggers to send to both udp and tcp were never counted - tasks numbers reduced for e.g. SSL mode would also apply to RPC mode - compilation without OPENSSL never worked * NEW FEATURES * * responses (appdefs.resp): * response strings are now real perl regular expressions * can hit only on a defined trigger if wished so * can have a minimum and maximum length set on the reply data * can require the ip protocol (tcp or udp) * In RPC scan mode, TCP connections are re-used * better readable data dumps, warnings and errors * safety checks on everything * a few more response ids # CHANGES # # switch the meaning of the -u and -U options # file formats for appdefs.* changed # output changed a bit (hope its better now) # README, man page, etc. are all up to date now ? so ... ? ? Please test this version as hard as you can and report ?v2.7 June 2003 (THC release candidate) * Removed the unnecessary NFS trigger which SANS wrote snort rules for :-) [DJ] >>> http://www.sans.org/resources/idfaq/amap.phpv2.6 June 2003 (THC internal test release) * Fixed a bug which sent all UDP triggers to TCP ports as well. (thanks to ath@algonet.se!) [vH] * Added -DCYGWIN compile definition to let it easily compile on cygwin (thanks to hans - posted into the THC forum) [vH] * Added/fixed a few triggers/responses (thanks to ath@algonet.se, robertj@wirehub.nl, rooot@hotpop.com) [vH] * Optimized connection handling - RPC identification wont loose responses now [vH]v2.5 May 2003 (THC release candidate 2) * Fixed a bug in -o output and rpc scanning, hope it works now. (reported by Johny ;-) [vH] * Updated man page [vH]v2.4 May 2003 (THC release candidate) * Made ports on command line default to TCP, therefore removed -sT|U option, and added the -U option to choose UDP protocol [vH] * Added a few more fingerprints (thanks to kk_qq@263.net, monchan@ngeforum.it and Jesus Munoz + Daniel Solis of KPMG Espania)v2.3 May 2003 (internal test release) * Added RPC identification mode (happy now Johnny? ;-) [vH] * Added appdefs.rpc (converted from nmap) [vH] * Added -R mode which will DISABLE RPC identifications [vH] * Rewrote code, functions and structures [vH]v2.2 May 2003 (internal test release) * lots of new application fingerprints added (thanks to nessus) * added secondary identification type in appdefs.resp: e.g. http-apache - means: http protocol, apache service and added that for the lookup function in amap. [vH] * Changed the meaning of the -S switch!!! [vH] - Removed -S mode which tried SSL connects to all ports - Added -S mode which will DISABLE an SSL connect to a port after it has successfully been identified to support SSL * added "time" detection (usually tcp port 37) * added port unreachable detection for udp in amap and amapcrapv2.1 May 2003 (THC release cadidate 2) * Now you can specify as many ports on the command line as you like, also, you can specify some on command line, and still use the -i option. [vH] * fixed a bug in the target selection engine, some ports were not tested, depending on options. [vH] * fixed a bug in the amapcrap display routine for the response [vH] * uh, -D appdefs option was never correctly implemented, fixed [vH] * added a few responses [vH]v2.0 April 2003 (THC release candidate) * big feature add: multiple identifications per response, for a more reliable identification! [vH] * added amapcrap to send random stuff to ports to illicit a response [vH] * added machine readable ouput format (-m) [vH] * implemented skip on ports which become unavailable [vH] * reversed loops. before, all triggers were sent to the same port, then to the next, etc. now a trigger is sent to every port first. By this, port crashes will become rarer (e.g. inetd's "too fast respawns" detection) [vH] * Rewrote configure script to hopefully run on Solaris. Please report! [vH] * small bug fixes [vH] * code beautification [vH] * more application fingerprints [DR, you guys out there] * optimized fingerprints due to new features [vH]v1.2.1b September 2002 (THC release candidate 2) * when only a few tasks are there, the read_response loop was only done once, before responses could come in. sleep(1) provided the answer.... [DR] * fixed -p <proto> case sensitivity bug [DR] * fixed -t <timeout> bug [DR]v1.2.1 September 2002 (THC release candidate) * Thanks to Dagobert Michelsen Solaris with DNS resolution now doesn't coredump no more, but also doesn't work :-( * updated man page etc. [DR]v1.2 August 2002 (private release) * No more fork()ing around, non-blocking sockets are the way to go! So: much greater efficiency, speed, and no more hanging(?) [DR] * around waiting for responses from dead kids etc.... [DR] * suppression of multiple secondary id's of protocols [DR] * fixed some small stuff in SSL routines [DR]v1.1 August 2002 (unreleased) * added much needed SSL support (-S switch) [DR]v0.95c August 2002 (unreleased) * added and tuned triggers and responses [DR] * fixed printing to logfile bug [DR] * fixed showstopper (vH, you used goto?????) [DR]v0.95b March 2002 (first public beta release) * added manpage [DR] * fixed a small bug [DR]v0.9 February 2002 (private release) * ported to Solaris. Compiles clean on OpenBSD. [vH] * fixed the final never-ending loop (really!) [vH] * fixed command line target/port function, seems like 3 lines were accidently deleted [vH] * cleaned up code to prevent compiler warnings and added humour :-) [vH] * fixed 3 by-one-byte overflows [vH]v0.8 February 2002 (private release) * Finally got rid of bug that stopped amap from completing. [DR] * Now, amap only sends UDP triggers to UDP ports and TCP triggers to tcp ports. It sends undefined triggers to both kind of ports. [DR]v0.7 February 2002 (unreleased) * added and reformatted some triggers and responses [DR] * added listing of unidentified ports after completion [DR]v0.6 February 2002 (private release) * scantype check for sending triggers was missing, uh [vH] * added a few responses [vH] * removed tftp check, it's too weird how it works currently [vH]v0.5b January 2002 (private release) * fixed a bug in lookup function for substrings and startstrings [DR] * added triggers and responses [DR]v0.5 January 2002 (private release) * fixed a bug in the lookup function for unknown responses [DR/vH]v0.4 January 2002 (private release) * only the first of same unknown responses for a port is printed [vH] * added search path for trigger/response files (20 directories) [vH] * fixed variable names [vH] * some beautifications [vH]v0.3 January 2002 (private release) * changed the "print unknown responses" option to be default [vH] * fixed a bug in the print_banner function [vH] * dumping responses will now also show it in printable ascii [vH] * fixed various bugs in the dump function [vH] * added check for invalid nmap input file [vH] * had to implement a work around to prevent mis-detections on ECHO port [vH] * added some responses [vH] * removed unnecessary entries from the triggers file [vH]v0.2 December 2001 (private release) * fixed numerous bugs. numerous ;-) [vH] * added new feature: -b prints the banner received [vH] * added CHANGES, TODO and LICENSE file [vH]v0.1 December 2001 (private release) * first internal release [DR]⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -