recog 2.3.14 → 2.3.19
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.github/SECURITY.md +35 -0
- data/.github/workflows/ci.yml +26 -0
- data/.snyk +10 -0
- data/LICENSE +1 -1
- data/bin/recog_standardize +2 -2
- data/cpe-remap.yaml +55 -14
- data/identifiers/hw_device.txt +5 -4
- data/identifiers/hw_family.txt +12 -0
- data/identifiers/hw_product.txt +76 -6
- data/identifiers/os_architecture.txt +0 -10
- data/identifiers/os_device.txt +13 -31
- data/identifiers/os_family.txt +2 -95
- data/identifiers/os_product.txt +34 -117
- data/identifiers/service_family.txt +7 -36
- data/identifiers/service_product.txt +238 -92
- data/identifiers/vendor.txt +78 -193
- data/lib/recog/version.rb +1 -1
- data/requirements.txt +1 -1
- data/update_cpes.py +96 -48
- data/xml/dns_versionbind.xml +39 -16
- data/xml/favicons.xml +150 -17
- data/xml/ftp_banners.xml +21 -19
- data/xml/hp_pjl_id.xml +1 -1
- data/xml/html_title.xml +200 -23
- data/xml/http_cookies.xml +89 -1
- data/xml/http_servers.xml +144 -18
- data/xml/http_wwwauth.xml +28 -20
- data/xml/ldap_searchresult.xml +9 -6
- data/xml/mdns_device-info_txt.xml +308 -10
- data/xml/ntp_banners.xml +9 -1
- data/xml/operating_system.xml +1 -0
- data/xml/rtsp_servers.xml +7 -0
- data/xml/sip_banners.xml +344 -8
- data/xml/sip_user_agents.xml +320 -7
- data/xml/smb_native_lm.xml +32 -1
- data/xml/smb_native_os.xml +158 -33
- data/xml/smtp_banners.xml +7 -2
- data/xml/smtp_help.xml +2 -0
- data/xml/smtp_vrfy.xml +2 -1
- data/xml/snmp_sysdescr.xml +252 -86
- data/xml/ssh_banners.xml +118 -11
- data/xml/telnet_banners.xml +34 -9
- data/xml/tls_jarm.xml +139 -0
- data/xml/x509_issuers.xml +24 -5
- data/xml/x509_subjects.xml +97 -17
- metadata +6 -5
- data/identifiers/software_class.txt +0 -26
- data/identifiers/software_family.txt +0 -91
- data/identifiers/software_product.txt +0 -333
data/xml/x509_issuers.xml
CHANGED
@@ -14,10 +14,13 @@
|
|
14
14
|
<description>Google Chromecast Gen 1</description>
|
15
15
|
<example>CN=Eureka Gen1 ICA,OU=Google TV,O=Google Inc,L=Mountain View,ST=California,C=US</example>
|
16
16
|
<param pos="0" name="os.vendor" value="Google"/>
|
17
|
-
<param pos="0" name="os.product" value="
|
17
|
+
<param pos="0" name="os.product" value="Chrome OS"/>
|
18
|
+
<param pos="0" name="os.certainty" value="0.5"/>
|
19
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:google:chrome_os:-"/>
|
18
20
|
<param pos="0" name="hw.device" value="Media Server"/>
|
19
21
|
<param pos="0" name="hw.vendor" value="Google"/>
|
20
22
|
<param pos="0" name="hw.product" value="Chromecast"/>
|
23
|
+
<param pos="0" name="hw.certainty" value="0.5"/>
|
21
24
|
<param pos="0" name="chromecast.generation" value="1"/>
|
22
25
|
</fingerprint>
|
23
26
|
|
@@ -32,10 +35,13 @@
|
|
32
35
|
<example chromecast.generation="11" chromecast.capabilities="Video Assist">CN=Chromecast ICA 11 (Video Assist),OU=Cast,O=Google Inc,L=Mountain View,ST=California,C=US</example>
|
33
36
|
<example chromecast.generation="12">CN=Chromecast ICA 12,OU=Cast,O=Google Inc,L=Mountain View,ST=California,C=US</example>
|
34
37
|
<param pos="0" name="os.vendor" value="Google"/>
|
35
|
-
<param pos="0" name="os.product" value="
|
38
|
+
<param pos="0" name="os.product" value="Chrome OS"/>
|
39
|
+
<param pos="0" name="os.certainty" value="0.5"/>
|
40
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:google:chrome_os:-"/>
|
36
41
|
<param pos="0" name="hw.device" value="Media Server"/>
|
37
42
|
<param pos="0" name="hw.vendor" value="Google"/>
|
38
43
|
<param pos="0" name="hw.product" value="Chromecast"/>
|
44
|
+
<param pos="0" name="hw.certainty" value="0.5"/>
|
39
45
|
<param pos="1" name="chromecast.generation"/>
|
40
46
|
<param pos="2" name="chromecast.capabilities"/>
|
41
47
|
</fingerprint>
|
@@ -113,7 +119,7 @@
|
|
113
119
|
<fingerprint pattern="^CN=[a-zA-Z0-9]+,OU=Internally Generated Certificate,O=American Power Conversion Corp,L=Default Locality,ST=Default State,C=US$">
|
114
120
|
<description>APC UPS</description>
|
115
121
|
<example>CN=ZA1117619249,OU=Internally Generated Certificate,O=American Power Conversion Corp,L=Default Locality,ST=Default State,C=US</example>
|
116
|
-
<param pos="0" name="hw.device" value="Power
|
122
|
+
<param pos="0" name="hw.device" value="Power Device"/>
|
117
123
|
<param pos="0" name="hw.vendor" value="APC"/>
|
118
124
|
</fingerprint>
|
119
125
|
|
@@ -126,19 +132,21 @@
|
|
126
132
|
</fingerprint>
|
127
133
|
|
128
134
|
<fingerprint pattern="^O=VMware Installer$">
|
129
|
-
<description>
|
135
|
+
<description>VMware ESXi w/Installer</description>
|
130
136
|
<example>O=VMware Installer</example>
|
131
137
|
<param pos="0" name="os.vendor" value="VMware"/>
|
132
138
|
<param pos="0" name="os.product" value="ESXi"/>
|
133
139
|
<param pos="0" name="os.device" value="Hypervisor"/>
|
134
140
|
<param pos="0" name="os.cpe23" value="cpe:/o:vmware:esxi:-"/>
|
141
|
+
<param pos="0" name="hw.device" value="Hypervisor"/>
|
135
142
|
</fingerprint>
|
136
143
|
|
137
144
|
<fingerprint pattern="^CN=CA,OU=VMware Engineering,O=vCenter,ST=California,C=US$">
|
138
|
-
<description>
|
145
|
+
<description>VMware vCenter</description>
|
139
146
|
<example>CN=CA,OU=VMware Engineering,O=vCenter,ST=California,C=US</example>
|
140
147
|
<param pos="0" name="service.vendor" value="VMware"/>
|
141
148
|
<param pos="0" name="service.product" value="vCenter"/>
|
149
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:vmware:vcenter_server:-"/>
|
142
150
|
</fingerprint>
|
143
151
|
|
144
152
|
<fingerprint pattern="^CN=Default Issuer \(Do not trust\),OU=ISS,O=Hewlett Packard Enterprise,L=Houston,ST=Texas,C=US$">
|
@@ -155,4 +163,15 @@
|
|
155
163
|
<param pos="0" name="os.product" value="iLO"/>
|
156
164
|
</fingerprint>
|
157
165
|
|
166
|
+
<fingerprint pattern="^CN=synology.com,O=Synology Inc.,L=Taipei,C=TW$">
|
167
|
+
<description>Synology</description>
|
168
|
+
<example>CN=synology.com,O=Synology Inc.,L=Taipei,C=TW</example>
|
169
|
+
<param pos="0" name="os.device" value="NAS"/>
|
170
|
+
<param pos="0" name="os.family" value="Linux"/>
|
171
|
+
<param pos="0" name="os.product" value="DSM"/>
|
172
|
+
<param pos="0" name="os.vendor" value="Synology"/>
|
173
|
+
<param pos="0" name="hw.vendor" value="Synology"/>
|
174
|
+
<param pos="0" name="hw.device" value="NAS"/>
|
175
|
+
</fingerprint>
|
176
|
+
|
158
177
|
</fingerprints>
|
data/xml/x509_subjects.xml
CHANGED
@@ -51,7 +51,7 @@
|
|
51
51
|
<fingerprint pattern="^CN=([a-fA-F0-9:]+),OU=([^,]+),O=Cisco-Linksys\\, LLC">
|
52
52
|
<description>Cisco / Linksys Router</description>
|
53
53
|
<example host.mac="00:22:6b:ef:1e:d0" hw.product="RV042">CN=00:22:6b:ef:1e:d0,OU=RV042,O=Cisco-Linksys\, LLC,L=Irvine,C=US</example>
|
54
|
-
<param pos="0" name="hw.device" value="Broadband
|
54
|
+
<param pos="0" name="hw.device" value="Broadband Router"/>
|
55
55
|
<param pos="0" name="hw.vendor" value="Cisco"/>
|
56
56
|
<param pos="2" name="hw.product"/>
|
57
57
|
<param pos="1" name="host.mac"/>
|
@@ -61,7 +61,7 @@
|
|
61
61
|
<description>Cisco Post-Linksys Router</description>
|
62
62
|
<example host.mac="74:a2:e6:5c:99:21" hw.product="RV042G">CN=74:a2:e6:5c:99:21,OU=RV042G,O=Cisco Systems\, Inc.,L=Irvine,C=US</example>
|
63
63
|
<example host.mac="4C4E315901D0" hw.product="RV180">CN=4C4E315901D0,OU=RV180,O=Cisco Systems\, Inc.,C=US</example>
|
64
|
-
<param pos="0" name="hw.device" value="Broadband
|
64
|
+
<param pos="0" name="hw.device" value="Broadband Router"/>
|
65
65
|
<param pos="0" name="hw.vendor" value="Cisco"/>
|
66
66
|
<param pos="2" name="hw.product"/>
|
67
67
|
<param pos="1" name="host.mac"/>
|
@@ -468,24 +468,25 @@
|
|
468
468
|
</fingerprint>
|
469
469
|
|
470
470
|
<fingerprint pattern="^CN=VMware,OU=VMware,L=Palo Alto,C=US$">
|
471
|
-
<description>
|
471
|
+
<description>VMware Authentication Daemon</description>
|
472
472
|
<example>CN=VMware,OU=VMware,L=Palo Alto,C=US</example>
|
473
473
|
<param pos="0" name="service.vendor" value="VMware"/>
|
474
474
|
<param pos="0" name="service.product" value="vmauthd"/>
|
475
475
|
</fingerprint>
|
476
476
|
|
477
477
|
<fingerprint pattern="^CN=([a-zA-Z0-9\.\-\_]+),OU=VMware ESX Server Default Certificate,O=VMware\\, Inc,L=Palo Alto,ST=California,C=US$">
|
478
|
-
<description>
|
478
|
+
<description>VMware ESX</description>
|
479
479
|
<example>CN=server99.,OU=VMware ESX Server Default Certificate,O=VMware\, Inc,L=Palo Alto,ST=California,C=US</example>
|
480
480
|
<param pos="0" name="os.vendor" value="VMware"/>
|
481
481
|
<param pos="0" name="os.product" value="ESX"/>
|
482
482
|
<param pos="0" name="os.device" value="Hypervisor"/>
|
483
483
|
<param pos="0" name="os.cpe23" value="cpe:/o:vmware:esx:-"/>
|
484
484
|
<param pos="1" name="host.name"/>
|
485
|
+
<param pos="0" name="hw.device" value="Hypervisor"/>
|
485
486
|
</fingerprint>
|
486
487
|
|
487
488
|
<fingerprint pattern="^CN.*,OU=SRM,O=VMware\\, Inc\.,L=Palo Alto,ST=California,C=US$">
|
488
|
-
<description>
|
489
|
+
<description>VMware SRM</description>
|
489
490
|
<example>CN=SRM01,OU=SRM,O=VMware\, Inc.,L=Palo Alto,ST=California,C=US</example>
|
490
491
|
<param pos="0" name="os.vendor" value="VMware"/>
|
491
492
|
<param pos="0" name="os.product" value="Linux"/>
|
@@ -512,10 +513,13 @@
|
|
512
513
|
<example chromecast.serial_number="LVDZG5" host.mac_local="FA8FCA67413D">CN=LVDZG5 FA8FCA67413D,OU=Cast,O=Google Inc,L=Mountain View,ST=California,C=US</example>
|
513
514
|
<example chromecast.serial_number="YRBLE" host.mac_local="FA8FCA7DE87D">CN=YRBLE FA8FCA7DE87D,OU=Google TV,O=Google Inc,L=Mountain View,ST=California,C=US</example>
|
514
515
|
<param pos="0" name="os.vendor" value="Google"/>
|
515
|
-
<param pos="0" name="os.product" value="
|
516
|
+
<param pos="0" name="os.product" value="Chrome OS"/>
|
517
|
+
<param pos="0" name="os.certainty" value="0.5"/>
|
518
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:google:chrome_os:-"/>
|
516
519
|
<param pos="0" name="hw.device" value="Media Server"/>
|
517
520
|
<param pos="0" name="hw.vendor" value="Google"/>
|
518
521
|
<param pos="0" name="hw.product" value="Chromecast"/>
|
522
|
+
<param pos="0" name="hw.certainty" value="0.5"/>
|
519
523
|
<param pos="1" name="chromecast.serial_number"/>
|
520
524
|
<!-- This is the hotspot-mode MAC address (clear bit 2) -->
|
521
525
|
|
@@ -561,6 +565,30 @@
|
|
561
565
|
<param pos="0" name="os.device" value="Video Conferencing"/>
|
562
566
|
</fingerprint>
|
563
567
|
|
568
|
+
<fingerprint pattern="^CN=a_lifesize_system,OU=lifesize,O=lifesize,L=Austin,ST=Texas,C=US$">
|
569
|
+
<description>Lifesize TelePresence (a_lifesize variant 1)</description>
|
570
|
+
<example>CN=a_lifesize_system,OU=lifesize,O=lifesize,L=Austin,ST=Texas,C=US</example>
|
571
|
+
<param pos="0" name="hw.vendor" value="Lifesize"/>
|
572
|
+
<param pos="0" name="hw.device" value="Video Conferencing"/>
|
573
|
+
<param pos="0" name="hw.product" value="TelePresence"/>
|
574
|
+
<param pos="0" name="os.vendor" value="Lifesize"/>
|
575
|
+
<param pos="0" name="os.family" value="Linux"/>
|
576
|
+
<param pos="0" name="os.product" value="TelePresence"/>
|
577
|
+
<param pos="0" name="os.device" value="Video Conferencing"/>
|
578
|
+
</fingerprint>
|
579
|
+
|
580
|
+
<fingerprint pattern="^CN=A_LifeSize_System,OU=IT,O=LifeSize Communications\\, Inc\.,ST=Texas,C=US$">
|
581
|
+
<description>Lifesize TelePresence (a_lifesize variant 2)</description>
|
582
|
+
<example>CN=A_LifeSize_System,OU=IT,O=LifeSize Communications\, Inc.,ST=Texas,C=US</example>
|
583
|
+
<param pos="0" name="hw.vendor" value="Lifesize"/>
|
584
|
+
<param pos="0" name="hw.device" value="Video Conferencing"/>
|
585
|
+
<param pos="0" name="hw.product" value="TelePresence"/>
|
586
|
+
<param pos="0" name="os.vendor" value="Lifesize"/>
|
587
|
+
<param pos="0" name="os.family" value="Linux"/>
|
588
|
+
<param pos="0" name="os.product" value="TelePresence"/>
|
589
|
+
<param pos="0" name="os.device" value="Video Conferencing"/>
|
590
|
+
</fingerprint>
|
591
|
+
|
564
592
|
<fingerprint pattern="^CN=MERCURY-([a-fA-F0-9]{12}),OU=Engineering,O=Crestron">
|
565
593
|
<description>Crestron Mercury</description>
|
566
594
|
<example host.mac="00107F1ABAA0">CN=MERCURY-00107F1ABAA0,OU=Engineering,O=Crestron Electronics\, Inc.,L=Rockleigh,ST=NJ,C=US</example>
|
@@ -657,6 +685,9 @@
|
|
657
685
|
<fingerprint pattern="^CN=VMM APIC,OU=VMM\d+,O=Cisco,L=San Jose,ST=CA,C=US$">
|
658
686
|
<description>Cisco APIC</description>
|
659
687
|
<example>CN=VMM APIC,OU=VMM15,O=Cisco,L=San Jose,ST=CA,C=US</example>
|
688
|
+
<param pos="0" name="service.vendor" value="Cisco"/>
|
689
|
+
<param pos="0" name="service.product" value="APIC"/>
|
690
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:cisco:application_policy_infrastructure_controller:-"/>
|
660
691
|
<param pos="0" name="hw.vendor" value="Cisco"/>
|
661
692
|
<param pos="0" name="hw.product" value="APIC"/>
|
662
693
|
<param pos="0" name="hw.device" value="Network Appliance"/>
|
@@ -665,6 +696,9 @@
|
|
665
696
|
<fingerprint pattern="^CN=APIC$">
|
666
697
|
<description>Cisco APIC - bare CN</description>
|
667
698
|
<example>CN=APIC</example>
|
699
|
+
<param pos="0" name="service.vendor" value="Cisco"/>
|
700
|
+
<param pos="0" name="service.product" value="APIC"/>
|
701
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:cisco:application_policy_infrastructure_controller:-"/>
|
668
702
|
<param pos="0" name="hw.vendor" value="Cisco"/>
|
669
703
|
<param pos="0" name="hw.product" value="APIC"/>
|
670
704
|
<param pos="0" name="hw.device" value="Network Appliance"/>
|
@@ -840,18 +874,18 @@
|
|
840
874
|
<param pos="0" name="os.family" value="Linux"/>
|
841
875
|
<param pos="0" name="hw.vendor" value="Ubiquiti"/>
|
842
876
|
<param pos="0" name="hw.family" value="UniFi"/>
|
843
|
-
<param pos="0" name="hw.device" value="
|
877
|
+
<param pos="0" name="hw.device" value="IP Camera"/>
|
844
878
|
</fingerprint>
|
845
879
|
|
846
880
|
<fingerprint pattern="^CN=camera\.ubnt\.dev,">
|
847
881
|
<description>UniFi Video Camera</description>
|
848
882
|
<example>CN=camera.ubnt.dev,OU=devint,O=Ubiquiti Networks Inc.,L=Taipei,C=TW</example>
|
849
883
|
<param pos="0" name="hw.vendor" value="Ubiquiti"/>
|
850
|
-
<param pos="0" name="hw.device" value="
|
884
|
+
<param pos="0" name="hw.device" value="IP Camera"/>
|
851
885
|
<param pos="0" name="hw.product" value="Camera"/>
|
852
886
|
<param pos="0" name="os.vendor" value="Ubiquiti"/>
|
853
887
|
<param pos="0" name="os.family" value="Linux"/>
|
854
|
-
<param pos="0" name="os.device" value="
|
888
|
+
<param pos="0" name="os.device" value="IP Camera"/>
|
855
889
|
</fingerprint>
|
856
890
|
|
857
891
|
<fingerprint pattern="^CN=UBNT,OU=Technical Support,O=Ubiquiti Networks Inc\.,L=San Jose,ST=CA,C=US$">
|
@@ -886,6 +920,16 @@
|
|
886
920
|
<param pos="0" name="os.device" value="Router"/>
|
887
921
|
</fingerprint>
|
888
922
|
|
923
|
+
<fingerprint pattern="^CN=UbiquitiRouterUI,O=Ubiquiti Inc.,L=New York,ST=New York,C=US">
|
924
|
+
<description>Ubiquiti Router UI</description>
|
925
|
+
<example>CN=UbiquitiRouterUI,O=Ubiquiti Inc.,L=New York,ST=New York,C=US</example>
|
926
|
+
<param pos="0" name="hw.vendor" value="Ubiquiti"/>
|
927
|
+
<param pos="0" name="hw.device" value="Router"/>
|
928
|
+
<param pos="0" name="os.vendor" value="Ubiquiti"/>
|
929
|
+
<param pos="0" name="os.family" value="Linux"/>
|
930
|
+
<param pos="0" name="os.device" value="Router"/>
|
931
|
+
</fingerprint>
|
932
|
+
|
889
933
|
<fingerprint pattern="^CN=UniFi-Video Controller,OU=R&D,O=Ubiquiti Networks,L=New York,ST=NY,C=US$">
|
890
934
|
<description>Ubiquiti Video Controller</description>
|
891
935
|
<example>CN=UniFi-Video Controller,OU=R&D,O=Ubiquiti Networks,L=New York,ST=NY,C=US</example>
|
@@ -901,7 +945,7 @@
|
|
901
945
|
<description>Verizon / Greenwave FIOS Router</description>
|
902
946
|
<example>CN=GreenWave Systems,OU=PKI,O=GreenWave Systems,L=Irvine,ST=California,C=US</example>
|
903
947
|
<param pos="0" name="hw.vendor" value="Greenwave Systems"/>
|
904
|
-
<param pos="0" name="hw.device" value="Broadband
|
948
|
+
<param pos="0" name="hw.device" value="Broadband Router"/>
|
905
949
|
<param pos="0" name="hw.product" value="Verizon FiOS Router"/>
|
906
950
|
</fingerprint>
|
907
951
|
|
@@ -1035,7 +1079,7 @@
|
|
1035
1079
|
<param pos="0" name="service.vendor" value="Akamai"/>
|
1036
1080
|
<param pos="0" name="service.product" value="GHost"/>
|
1037
1081
|
<param pos="0" name="os.vendor" value="Akamai"/>
|
1038
|
-
<param pos="0" name="os.device" value="Web
|
1082
|
+
<param pos="0" name="os.device" value="Web Proxy"/>
|
1039
1083
|
</fingerprint>
|
1040
1084
|
|
1041
1085
|
<fingerprint pattern="^CN=HP_3PAR_">
|
@@ -1195,10 +1239,11 @@
|
|
1195
1239
|
</fingerprint>
|
1196
1240
|
|
1197
1241
|
<fingerprint pattern="^CN=VMware default certificate,OU=vCenterServer.*,O=VMware\\, Inc\.$">
|
1198
|
-
<description>
|
1242
|
+
<description>VMware vCenter</description>
|
1199
1243
|
<example>CN=VMware default certificate,OU=vCenterServer_2013.09.26_220623,O=VMware\, Inc.</example>
|
1200
1244
|
<param pos="0" name="service.vendor" value="VMware"/>
|
1201
1245
|
<param pos="0" name="service.product" value="vCenter"/>
|
1246
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:vmware:vcenter_server:-"/>
|
1202
1247
|
</fingerprint>
|
1203
1248
|
|
1204
1249
|
<fingerprint pattern="^CN=selfappliance,OU=Engineering,O=Symplified,L=Boulder,ST=Colorado,C=US$">
|
@@ -1220,9 +1265,9 @@
|
|
1220
1265
|
<description>Axis Communications Web Cam</description>
|
1221
1266
|
<example host.mac="accc8ea31abf">CN=axis-accc8ea31abf,O=Axis Communications AB</example>
|
1222
1267
|
<param pos="0" name="hw.vendor" value="AXIS"/>
|
1223
|
-
<param pos="0" name="hw.device" value="
|
1268
|
+
<param pos="0" name="hw.device" value="IP Camera"/>
|
1224
1269
|
<param pos="0" name="os.vendor" value="AXIS"/>
|
1225
|
-
<param pos="0" name="os.device" value="
|
1270
|
+
<param pos="0" name="os.device" value="IP Camera"/>
|
1226
1271
|
<param pos="0" name="os.family" value="Linux"/>
|
1227
1272
|
<param pos="1" name="host.mac"/>
|
1228
1273
|
</fingerprint>
|
@@ -1231,10 +1276,10 @@
|
|
1231
1276
|
<description>ELAN Web Cam</description>
|
1232
1277
|
<example host.name="ServerRoom">CN=ServerRoom,OU=Nortek,O=ELAN,L=StuddardMD,ST=10000,C=US</example>
|
1233
1278
|
<param pos="0" name="hw.vendor" value="ELAN"/>
|
1234
|
-
<param pos="0" name="hw.device" value="
|
1279
|
+
<param pos="0" name="hw.device" value="IP Camera"/>
|
1235
1280
|
<param pos="0" name="hw.product" value="HDIPCam"/>
|
1236
1281
|
<param pos="0" name="os.vendor" value="ELAN"/>
|
1237
|
-
<param pos="0" name="os.device" value="
|
1282
|
+
<param pos="0" name="os.device" value="IP Camera"/>
|
1238
1283
|
<param pos="0" name="os.family" value="Linux"/>
|
1239
1284
|
<param pos="1" name="host.name"/>
|
1240
1285
|
</fingerprint>
|
@@ -1305,7 +1350,7 @@
|
|
1305
1350
|
<example hw.product="usg20w" host.mac="5067F0BC1D3C">CN=usg20w_5067F0BC1D3C</example>
|
1306
1351
|
<example hw.product="usg20" host.mac="107BEF0AD201">CN=usg20_107BEF0AD201</example>
|
1307
1352
|
<param pos="0" name="hw.vendor" value="Zyxel"/>
|
1308
|
-
<param pos="0" name="hw.device" value="Broadband
|
1353
|
+
<param pos="0" name="hw.device" value="Broadband Router"/>
|
1309
1354
|
<param pos="1" name="hw.product"/>
|
1310
1355
|
<param pos="2" name="host.mac"/>
|
1311
1356
|
</fingerprint>
|
@@ -1316,6 +1361,7 @@
|
|
1316
1361
|
<param pos="0" name="hw.vendor" value="Philips"/>
|
1317
1362
|
<param pos="0" name="hw.product" value="Hue"/>
|
1318
1363
|
<param pos="0" name="hw.device" value="Light Bulb"/>
|
1364
|
+
<param pos="0" name="hw.cpe23" value="cpe:/h:philips:hue:-"/>
|
1319
1365
|
<param pos="1" name="host.mac_eui64"/>
|
1320
1366
|
</fingerprint>
|
1321
1367
|
|
@@ -1427,4 +1473,38 @@
|
|
1427
1473
|
<param pos="0" name="os.product" value="Linux"/>
|
1428
1474
|
</fingerprint>
|
1429
1475
|
|
1476
|
+
<fingerprint pattern="^CN=(RFS\d+)-([0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2})$">
|
1477
|
+
<description>Motorola RFS Wireless Controllers</description>
|
1478
|
+
<example host.mac="B1-C1-11-11-11-11" hw.product="RFS6000">CN=RFS6000-B1-C1-11-11-11-11</example>
|
1479
|
+
<param pos="0" name="hw.device" value="Wireless Controller"/>
|
1480
|
+
<param pos="0" name="hw.vendor" value="Motorola"/>
|
1481
|
+
<param pos="1" name="hw.product"/>
|
1482
|
+
<param pos="2" name="host.mac"/>
|
1483
|
+
</fingerprint>
|
1484
|
+
|
1485
|
+
<fingerprint pattern="^CN=(AP\d+)-([0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2})$">
|
1486
|
+
<description>Motorola Wireless Access Points</description>
|
1487
|
+
<example host.mac="F1-11-11-11-11-11" hw.product="AP6532">CN=AP6532-F1-11-11-11-11-11</example>
|
1488
|
+
<param pos="0" name="hw.device" value="WAP"/>
|
1489
|
+
<param pos="0" name="hw.vendor" value="Motorola"/>
|
1490
|
+
<param pos="1" name="hw.product"/>
|
1491
|
+
<param pos="2" name="host.mac"/>
|
1492
|
+
</fingerprint>
|
1493
|
+
|
1494
|
+
<fingerprint pattern="^CN=attvpngateway\.att\.com,O=AT&T,L=Tampa,ST=FL,C=US$">
|
1495
|
+
<description>ATT VPN Gateway</description>
|
1496
|
+
<example>CN=attvpngateway.att.com,O=AT&T,L=Tampa,ST=FL,C=US</example>
|
1497
|
+
<param pos="0" name="hw.vendor" value="ATT"/>
|
1498
|
+
<param pos="0" name="hw.device" value="VPN"/>
|
1499
|
+
<param pos="0" name="hw.product" value="VPN Gateway"/>
|
1500
|
+
</fingerprint>
|
1501
|
+
|
1502
|
+
<fingerprint pattern="^CN=silver-peak,OU=Networking Appliance">
|
1503
|
+
<description>Silver Peak Appliance</description>
|
1504
|
+
<example>CN=silver-peak,OU=Networking Appliance,O=Silver Peak Systems Inc,L=Mountain View,ST=California,C=--</example>
|
1505
|
+
<param pos="0" name="hw.vendor" value="Silver Peak"/>
|
1506
|
+
<param pos="0" name="hw.device" value="Network Appliance"/>
|
1507
|
+
<param pos="0" name="hw.product" value="SD-WAN"/>
|
1508
|
+
</fingerprint>
|
1509
|
+
|
1430
1510
|
</fingerprints>
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: recog
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 2.3.
|
4
|
+
version: 2.3.19
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Rapid7 Research
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date:
|
11
|
+
date: 2021-02-04 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: rspec
|
@@ -127,10 +127,13 @@ files:
|
|
127
127
|
- ".github/ISSUE_TEMPLATE/feature_request.md"
|
128
128
|
- ".github/ISSUE_TEMPLATE/fingerprint_request.md"
|
129
129
|
- ".github/PULL_REQUEST_TEMPLATE"
|
130
|
+
- ".github/SECURITY.md"
|
131
|
+
- ".github/workflows/ci.yml"
|
130
132
|
- ".gitignore"
|
131
133
|
- ".rspec"
|
132
134
|
- ".ruby-gemset"
|
133
135
|
- ".ruby-version"
|
136
|
+
- ".snyk"
|
134
137
|
- ".travis.yml"
|
135
138
|
- ".yardopts"
|
136
139
|
- CONTRIBUTING.md
|
@@ -167,9 +170,6 @@ files:
|
|
167
170
|
- identifiers/os_product.txt
|
168
171
|
- identifiers/service_family.txt
|
169
172
|
- identifiers/service_product.txt
|
170
|
-
- identifiers/software_class.txt
|
171
|
-
- identifiers/software_family.txt
|
172
|
-
- identifiers/software_product.txt
|
173
173
|
- identifiers/vendor.txt
|
174
174
|
- lib/recog.rb
|
175
175
|
- lib/recog/db.rb
|
@@ -252,6 +252,7 @@ files:
|
|
252
252
|
- xml/snmp_sysobjid.xml
|
253
253
|
- xml/ssh_banners.xml
|
254
254
|
- xml/telnet_banners.xml
|
255
|
+
- xml/tls_jarm.xml
|
255
256
|
- xml/x11_banners.xml
|
256
257
|
- xml/x509_issuers.xml
|
257
258
|
- xml/x509_subjects.xml
|
@@ -1,26 +0,0 @@
|
|
1
|
-
Backup
|
2
|
-
Blog
|
3
|
-
Browser Add-On
|
4
|
-
Container Orchestrator
|
5
|
-
Database Client
|
6
|
-
Database Server
|
7
|
-
Gateway
|
8
|
-
General
|
9
|
-
IM Client
|
10
|
-
IM Server
|
11
|
-
Internet Client
|
12
|
-
Internet Server
|
13
|
-
Mail Client
|
14
|
-
Mail Server
|
15
|
-
Media Client
|
16
|
-
Media Server
|
17
|
-
Medical Device
|
18
|
-
Middleware
|
19
|
-
OS Level Virtualization
|
20
|
-
Peer-Peer
|
21
|
-
Productivity
|
22
|
-
SCADA
|
23
|
-
Security
|
24
|
-
Systems Management
|
25
|
-
Utility
|
26
|
-
Virtualization
|
@@ -1,91 +0,0 @@
|
|
1
|
-
.NET Framework
|
2
|
-
Acrobat
|
3
|
-
ASP.NET MVC
|
4
|
-
Chrome
|
5
|
-
Cisco WebEx
|
6
|
-
ColdFusion
|
7
|
-
Commerce Server
|
8
|
-
CyberArk
|
9
|
-
DB2
|
10
|
-
Docker Platform
|
11
|
-
Edge
|
12
|
-
Enhanced Mitigation Experience Toolkit
|
13
|
-
Essentials
|
14
|
-
Exchange Server
|
15
|
-
Expression Suite
|
16
|
-
Flash
|
17
|
-
Forefront Endpoint Protection
|
18
|
-
Forefront
|
19
|
-
Fusion
|
20
|
-
Ghostscript
|
21
|
-
Host Integration Server 2004
|
22
|
-
Host Integration Server 2006
|
23
|
-
Host Integration Server 2009
|
24
|
-
Host Integration Server 2010
|
25
|
-
Host Integration Server
|
26
|
-
HP System Management Homepage
|
27
|
-
HP Systems Insight Manager
|
28
|
-
Internet Explorer
|
29
|
-
Internet Information Services
|
30
|
-
iTunes
|
31
|
-
Java
|
32
|
-
JBoss
|
33
|
-
LastPass
|
34
|
-
Lync 2010
|
35
|
-
Lync 2013
|
36
|
-
MDAC
|
37
|
-
Microsoft Biztalk Server
|
38
|
-
Microsoft Dynamics AX
|
39
|
-
Moodle
|
40
|
-
Mozilla
|
41
|
-
MSXML
|
42
|
-
Norton
|
43
|
-
Office 2000
|
44
|
-
Office 2003
|
45
|
-
Office 2007
|
46
|
-
Office 2010
|
47
|
-
Office 2013
|
48
|
-
Office 2016
|
49
|
-
Office Communicator 2005
|
50
|
-
Office Communicator 2007 R2
|
51
|
-
Office Communicator 2007
|
52
|
-
Office Communicator
|
53
|
-
Office Web Apps
|
54
|
-
Office XP
|
55
|
-
Office
|
56
|
-
OfficeScan
|
57
|
-
OpenShift
|
58
|
-
OpenView
|
59
|
-
Outlook
|
60
|
-
ownCloud
|
61
|
-
QuickTime
|
62
|
-
Rapid7 Agent
|
63
|
-
Safari
|
64
|
-
Scada
|
65
|
-
SharePoint
|
66
|
-
Shockwave
|
67
|
-
Silverlight
|
68
|
-
Skype for Business 2015
|
69
|
-
Skype for Business 2016
|
70
|
-
Sophos
|
71
|
-
SQL Server
|
72
|
-
Struts
|
73
|
-
Symantec Endpoint Protection Manager
|
74
|
-
System Center Operations Manager
|
75
|
-
Systems Management Server
|
76
|
-
Tomcat
|
77
|
-
TOR
|
78
|
-
vCenter Server
|
79
|
-
VirusScan
|
80
|
-
Visual Basic for Applications
|
81
|
-
Visual FoxPro
|
82
|
-
Visual Studio Foundation Server
|
83
|
-
Visual Studio
|
84
|
-
VLC
|
85
|
-
WebLogic Server
|
86
|
-
WebSphere
|
87
|
-
Windows Media Player
|
88
|
-
Wordpress
|
89
|
-
Works
|
90
|
-
Workstation
|
91
|
-
Worry-Free Business Security
|