/nmap

CICS Scripts additions and fixes #671

Closed
wants to merge 9 commits into
from
+826 −18

Conversation

Reviewers

@dmiller-nmap dmiller-nmap

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
2 participants
@mainframed @dmiller-nmap
@mainframed

mainframed commented Jan 31, 2017 edited

This pull request adds/fixes the following

  • cics-enum support for testing transaction IDs with a valid username/password (transaction IDs that need auth can now be discovered)

  • cics-user-enum added support for RACF messages and other fixes

  • New cics-user-brute A new script for brute forcing CICS user IDs

  • New cics-info A new script which uses the CEMT cics transaction ID to gather system information.
scripts/cics-user-brute.nse
+ self.tn3270:get_screen_debug(2)
+ end
+ -- Are we at the logon transaction?
+ if not (self.tn3270:find('SIGN ON TO CICS') or self.tn3270:find("Signon to CICS")) then
@dmiller-nmap

dmiller-nmap Mar 1, 2017

Could we expand this to fully case-insensitive pattern match like [Ss][Ii][Gg][Nn] ?[Oo][Nn] [Tt][Oo] [Cc][Ii][Cc][Ss]? Would that be overkill, or a reasonable approach?

@mainframed

mainframed Mar 1, 2017

Sure. Though, could be better as:

[Ss]ign [Oo][Nn] [T][t] CICS

(im sure I didn't get it right but I think you get the idea)

@nmap-bot nmap-bot pushed a commit that referenced this pull request Mar 1, 2017

@bonsaiviking bonsaiviking Fix a logic bug (and vs or) and extend usernames to 8 chars. See #671 36c0306

@nmap-bot nmap-bot pushed a commit that referenced this pull request Mar 1, 2017

@bonsaiviking bonsaiviking New script cics-info. See #671 bed397a

nmap-bot closed this in edcc648 Mar 1, 2017

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment