Skip to content

/ nmap

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CICS Scripts additions and fixes #671

Closed
wants to merge 9 commits into from
Closed

CICS Scripts additions and fixes #671

wants to merge 9 commits into from

Conversation

@mainframed
Copy link

@mainframed mainframed commented Jan 31, 2017
edited

This pull request adds/fixes the following

  • cics-enum support for testing transaction IDs with a valid username/password (transaction IDs that need auth can now be discovered)

  • cics-user-enum added support for RACF messages and other fixes

  • New cics-user-brute A new script for brute forcing CICS user IDs

  • New cics-info A new script which uses the CEMT cics transaction ID to gather system information.
mainframed added 9 commits Jan 30, 2017
@mainframed
Added authenticated CICS transaction enumeration and fixed typos in c…
7adec48 
…ics-user-enum
@mainframed
Adding check for DFHAC2002 message
92499e0
@mainframed
Fixed Signon screen typo in test function
ed78fce
@mainframed
Adding DFHAC2033 (unauthorized) message detection
3c6a9a1
@mainframed
Added () in authenticated transaction checking because booleans are hard
151e207
@mainframed
Adding CICS User brute forcing script
Loading status checks…
38ba3d4
@mainframed
added cics-enum.user and cics-enum.pass to the documentation
Loading status checks…
f11d814
@mainframed
adding new script cics-info used to profile the cics region based on …
Loading status checks…
0b01055 
…cicspwn.py
@mainframed
minor fixes to documentation
Loading status checks…
8f0800a
@dmiller-nmap
dmiller-nmap reviewed Mar 1, 2017
View changes
scripts/cics-user-brute.nse
self.tn3270:get_screen_debug(2)
end
-- Are we at the logon transaction?
if not (self.tn3270:find('SIGN ON TO CICS') or self.tn3270:find("Signon to CICS")) then

This comment has been minimized.

Sign in to view
@dmiller-nmap

dmiller-nmap Mar 1, 2017

Could we expand this to fully case-insensitive pattern match like [Ss][Ii][Gg][Nn] ?[Oo][Nn] [Tt][Oo] [Cc][Ii][Cc][Ss]? Would that be overkill, or a reasonable approach?

This comment has been minimized.

Sign in to view
@mainframed

mainframed Mar 1, 2017
Author

Sure. Though, could be better as:

[Ss]ign [Oo][Nn] [T][t] CICS

(im sure I didn't get it right but I think you get the idea)
nmap-bot pushed a commit that referenced this pull request Mar 1, 2017
@bonsaiviking
Fix a logic bug (and vs or) and extend usernames to 8 chars. See #671
36c0306
nmap-bot pushed a commit that referenced this pull request Mar 1, 2017
@bonsaiviking
New script cics-info. See #671
bed397a
@nmap-bot nmap-bot closed this in edcc648 Mar 1, 2017
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dmiller-nmap dmiller-nmap

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Linked issues

Successfully merging this pull request may close these issues.

None yet

2 participants
@mainframed @dmiller-nmap