RickGray / vscan-go

golang version for nmap service and application version detection (without nmap installation)
167 stars 44 forks source link

nmap-service-probes are not parsed according to nmap specifications #3

Open chushuai opened 5 years ago

chushuai commented 5 years ago

https://github.com/nmap/nmap/blob/ec30dbab3f519f91bf6b66653b5c44187cae5a13/service_scan.cc#L415

chushuai commented 5 years ago

BUG ON

ProConOs protocol

Probe TCP proconos q|\xcc\x01\x00\x0b\x40\x02\x00\x00\x47\xee| rarity 9 ports 20547

match proconos m|^\xcc\x01...\x02\x92\0V\d+.\d+ProConOS V([\d.]+) \w\w\w +\d+ \d+\0+\0([^\0]+)\0+([^\0]+)\0+([^\0]+)\0+([^\0]+)\0|s p/ProConOS/ v/$1/ i|PLC: $2; project: $3/$4; source: $5|

*match ssl m=^\x16\x03[\0-\x03]..\x02\0\0.\x03[\0-\x03].\x16\x03[\0-\x03]\0.\x0c.....(.+?)(?:\x16\x03[\0-\x03]|$)=s p/TLS PSK/ i/PSK identity hint: $P(1)/**