recog 2.3.14 → 2.3.19
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/.github/SECURITY.md +35 -0
- data/.github/workflows/ci.yml +26 -0
- data/.snyk +10 -0
- data/LICENSE +1 -1
- data/bin/recog_standardize +2 -2
- data/cpe-remap.yaml +55 -14
- data/identifiers/hw_device.txt +5 -4
- data/identifiers/hw_family.txt +12 -0
- data/identifiers/hw_product.txt +76 -6
- data/identifiers/os_architecture.txt +0 -10
- data/identifiers/os_device.txt +13 -31
- data/identifiers/os_family.txt +2 -95
- data/identifiers/os_product.txt +34 -117
- data/identifiers/service_family.txt +7 -36
- data/identifiers/service_product.txt +238 -92
- data/identifiers/vendor.txt +78 -193
- data/lib/recog/version.rb +1 -1
- data/requirements.txt +1 -1
- data/update_cpes.py +96 -48
- data/xml/dns_versionbind.xml +39 -16
- data/xml/favicons.xml +150 -17
- data/xml/ftp_banners.xml +21 -19
- data/xml/hp_pjl_id.xml +1 -1
- data/xml/html_title.xml +200 -23
- data/xml/http_cookies.xml +89 -1
- data/xml/http_servers.xml +144 -18
- data/xml/http_wwwauth.xml +28 -20
- data/xml/ldap_searchresult.xml +9 -6
- data/xml/mdns_device-info_txt.xml +308 -10
- data/xml/ntp_banners.xml +9 -1
- data/xml/operating_system.xml +1 -0
- data/xml/rtsp_servers.xml +7 -0
- data/xml/sip_banners.xml +344 -8
- data/xml/sip_user_agents.xml +320 -7
- data/xml/smb_native_lm.xml +32 -1
- data/xml/smb_native_os.xml +158 -33
- data/xml/smtp_banners.xml +7 -2
- data/xml/smtp_help.xml +2 -0
- data/xml/smtp_vrfy.xml +2 -1
- data/xml/snmp_sysdescr.xml +252 -86
- data/xml/ssh_banners.xml +118 -11
- data/xml/telnet_banners.xml +34 -9
- data/xml/tls_jarm.xml +139 -0
- data/xml/x509_issuers.xml +24 -5
- data/xml/x509_subjects.xml +97 -17
- metadata +6 -5
- data/identifiers/software_class.txt +0 -26
- data/identifiers/software_family.txt +0 -91
- data/identifiers/software_product.txt +0 -333
data/xml/x509_issuers.xml
CHANGED
|
@@ -14,10 +14,13 @@
|
|
|
14
14
|
<description>Google Chromecast Gen 1</description>
|
|
15
15
|
<example>CN=Eureka Gen1 ICA,OU=Google TV,O=Google Inc,L=Mountain View,ST=California,C=US</example>
|
|
16
16
|
<param pos="0" name="os.vendor" value="Google"/>
|
|
17
|
-
<param pos="0" name="os.product" value="
|
|
17
|
+
<param pos="0" name="os.product" value="Chrome OS"/>
|
|
18
|
+
<param pos="0" name="os.certainty" value="0.5"/>
|
|
19
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:google:chrome_os:-"/>
|
|
18
20
|
<param pos="0" name="hw.device" value="Media Server"/>
|
|
19
21
|
<param pos="0" name="hw.vendor" value="Google"/>
|
|
20
22
|
<param pos="0" name="hw.product" value="Chromecast"/>
|
|
23
|
+
<param pos="0" name="hw.certainty" value="0.5"/>
|
|
21
24
|
<param pos="0" name="chromecast.generation" value="1"/>
|
|
22
25
|
</fingerprint>
|
|
23
26
|
|
|
@@ -32,10 +35,13 @@
|
|
|
32
35
|
<example chromecast.generation="11" chromecast.capabilities="Video Assist">CN=Chromecast ICA 11 (Video Assist),OU=Cast,O=Google Inc,L=Mountain View,ST=California,C=US</example>
|
|
33
36
|
<example chromecast.generation="12">CN=Chromecast ICA 12,OU=Cast,O=Google Inc,L=Mountain View,ST=California,C=US</example>
|
|
34
37
|
<param pos="0" name="os.vendor" value="Google"/>
|
|
35
|
-
<param pos="0" name="os.product" value="
|
|
38
|
+
<param pos="0" name="os.product" value="Chrome OS"/>
|
|
39
|
+
<param pos="0" name="os.certainty" value="0.5"/>
|
|
40
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:google:chrome_os:-"/>
|
|
36
41
|
<param pos="0" name="hw.device" value="Media Server"/>
|
|
37
42
|
<param pos="0" name="hw.vendor" value="Google"/>
|
|
38
43
|
<param pos="0" name="hw.product" value="Chromecast"/>
|
|
44
|
+
<param pos="0" name="hw.certainty" value="0.5"/>
|
|
39
45
|
<param pos="1" name="chromecast.generation"/>
|
|
40
46
|
<param pos="2" name="chromecast.capabilities"/>
|
|
41
47
|
</fingerprint>
|
|
@@ -113,7 +119,7 @@
|
|
|
113
119
|
<fingerprint pattern="^CN=[a-zA-Z0-9]+,OU=Internally Generated Certificate,O=American Power Conversion Corp,L=Default Locality,ST=Default State,C=US$">
|
|
114
120
|
<description>APC UPS</description>
|
|
115
121
|
<example>CN=ZA1117619249,OU=Internally Generated Certificate,O=American Power Conversion Corp,L=Default Locality,ST=Default State,C=US</example>
|
|
116
|
-
<param pos="0" name="hw.device" value="Power
|
|
122
|
+
<param pos="0" name="hw.device" value="Power Device"/>
|
|
117
123
|
<param pos="0" name="hw.vendor" value="APC"/>
|
|
118
124
|
</fingerprint>
|
|
119
125
|
|
|
@@ -126,19 +132,21 @@
|
|
|
126
132
|
</fingerprint>
|
|
127
133
|
|
|
128
134
|
<fingerprint pattern="^O=VMware Installer$">
|
|
129
|
-
<description>
|
|
135
|
+
<description>VMware ESXi w/Installer</description>
|
|
130
136
|
<example>O=VMware Installer</example>
|
|
131
137
|
<param pos="0" name="os.vendor" value="VMware"/>
|
|
132
138
|
<param pos="0" name="os.product" value="ESXi"/>
|
|
133
139
|
<param pos="0" name="os.device" value="Hypervisor"/>
|
|
134
140
|
<param pos="0" name="os.cpe23" value="cpe:/o:vmware:esxi:-"/>
|
|
141
|
+
<param pos="0" name="hw.device" value="Hypervisor"/>
|
|
135
142
|
</fingerprint>
|
|
136
143
|
|
|
137
144
|
<fingerprint pattern="^CN=CA,OU=VMware Engineering,O=vCenter,ST=California,C=US$">
|
|
138
|
-
<description>
|
|
145
|
+
<description>VMware vCenter</description>
|
|
139
146
|
<example>CN=CA,OU=VMware Engineering,O=vCenter,ST=California,C=US</example>
|
|
140
147
|
<param pos="0" name="service.vendor" value="VMware"/>
|
|
141
148
|
<param pos="0" name="service.product" value="vCenter"/>
|
|
149
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:vmware:vcenter_server:-"/>
|
|
142
150
|
</fingerprint>
|
|
143
151
|
|
|
144
152
|
<fingerprint pattern="^CN=Default Issuer \(Do not trust\),OU=ISS,O=Hewlett Packard Enterprise,L=Houston,ST=Texas,C=US$">
|
|
@@ -155,4 +163,15 @@
|
|
|
155
163
|
<param pos="0" name="os.product" value="iLO"/>
|
|
156
164
|
</fingerprint>
|
|
157
165
|
|
|
166
|
+
<fingerprint pattern="^CN=synology.com,O=Synology Inc.,L=Taipei,C=TW$">
|
|
167
|
+
<description>Synology</description>
|
|
168
|
+
<example>CN=synology.com,O=Synology Inc.,L=Taipei,C=TW</example>
|
|
169
|
+
<param pos="0" name="os.device" value="NAS"/>
|
|
170
|
+
<param pos="0" name="os.family" value="Linux"/>
|
|
171
|
+
<param pos="0" name="os.product" value="DSM"/>
|
|
172
|
+
<param pos="0" name="os.vendor" value="Synology"/>
|
|
173
|
+
<param pos="0" name="hw.vendor" value="Synology"/>
|
|
174
|
+
<param pos="0" name="hw.device" value="NAS"/>
|
|
175
|
+
</fingerprint>
|
|
176
|
+
|
|
158
177
|
</fingerprints>
|
data/xml/x509_subjects.xml
CHANGED
|
@@ -51,7 +51,7 @@
|
|
|
51
51
|
<fingerprint pattern="^CN=([a-fA-F0-9:]+),OU=([^,]+),O=Cisco-Linksys\\, LLC">
|
|
52
52
|
<description>Cisco / Linksys Router</description>
|
|
53
53
|
<example host.mac="00:22:6b:ef:1e:d0" hw.product="RV042">CN=00:22:6b:ef:1e:d0,OU=RV042,O=Cisco-Linksys\, LLC,L=Irvine,C=US</example>
|
|
54
|
-
<param pos="0" name="hw.device" value="Broadband
|
|
54
|
+
<param pos="0" name="hw.device" value="Broadband Router"/>
|
|
55
55
|
<param pos="0" name="hw.vendor" value="Cisco"/>
|
|
56
56
|
<param pos="2" name="hw.product"/>
|
|
57
57
|
<param pos="1" name="host.mac"/>
|
|
@@ -61,7 +61,7 @@
|
|
|
61
61
|
<description>Cisco Post-Linksys Router</description>
|
|
62
62
|
<example host.mac="74:a2:e6:5c:99:21" hw.product="RV042G">CN=74:a2:e6:5c:99:21,OU=RV042G,O=Cisco Systems\, Inc.,L=Irvine,C=US</example>
|
|
63
63
|
<example host.mac="4C4E315901D0" hw.product="RV180">CN=4C4E315901D0,OU=RV180,O=Cisco Systems\, Inc.,C=US</example>
|
|
64
|
-
<param pos="0" name="hw.device" value="Broadband
|
|
64
|
+
<param pos="0" name="hw.device" value="Broadband Router"/>
|
|
65
65
|
<param pos="0" name="hw.vendor" value="Cisco"/>
|
|
66
66
|
<param pos="2" name="hw.product"/>
|
|
67
67
|
<param pos="1" name="host.mac"/>
|
|
@@ -468,24 +468,25 @@
|
|
|
468
468
|
</fingerprint>
|
|
469
469
|
|
|
470
470
|
<fingerprint pattern="^CN=VMware,OU=VMware,L=Palo Alto,C=US$">
|
|
471
|
-
<description>
|
|
471
|
+
<description>VMware Authentication Daemon</description>
|
|
472
472
|
<example>CN=VMware,OU=VMware,L=Palo Alto,C=US</example>
|
|
473
473
|
<param pos="0" name="service.vendor" value="VMware"/>
|
|
474
474
|
<param pos="0" name="service.product" value="vmauthd"/>
|
|
475
475
|
</fingerprint>
|
|
476
476
|
|
|
477
477
|
<fingerprint pattern="^CN=([a-zA-Z0-9\.\-\_]+),OU=VMware ESX Server Default Certificate,O=VMware\\, Inc,L=Palo Alto,ST=California,C=US$">
|
|
478
|
-
<description>
|
|
478
|
+
<description>VMware ESX</description>
|
|
479
479
|
<example>CN=server99.,OU=VMware ESX Server Default Certificate,O=VMware\, Inc,L=Palo Alto,ST=California,C=US</example>
|
|
480
480
|
<param pos="0" name="os.vendor" value="VMware"/>
|
|
481
481
|
<param pos="0" name="os.product" value="ESX"/>
|
|
482
482
|
<param pos="0" name="os.device" value="Hypervisor"/>
|
|
483
483
|
<param pos="0" name="os.cpe23" value="cpe:/o:vmware:esx:-"/>
|
|
484
484
|
<param pos="1" name="host.name"/>
|
|
485
|
+
<param pos="0" name="hw.device" value="Hypervisor"/>
|
|
485
486
|
</fingerprint>
|
|
486
487
|
|
|
487
488
|
<fingerprint pattern="^CN.*,OU=SRM,O=VMware\\, Inc\.,L=Palo Alto,ST=California,C=US$">
|
|
488
|
-
<description>
|
|
489
|
+
<description>VMware SRM</description>
|
|
489
490
|
<example>CN=SRM01,OU=SRM,O=VMware\, Inc.,L=Palo Alto,ST=California,C=US</example>
|
|
490
491
|
<param pos="0" name="os.vendor" value="VMware"/>
|
|
491
492
|
<param pos="0" name="os.product" value="Linux"/>
|
|
@@ -512,10 +513,13 @@
|
|
|
512
513
|
<example chromecast.serial_number="LVDZG5" host.mac_local="FA8FCA67413D">CN=LVDZG5 FA8FCA67413D,OU=Cast,O=Google Inc,L=Mountain View,ST=California,C=US</example>
|
|
513
514
|
<example chromecast.serial_number="YRBLE" host.mac_local="FA8FCA7DE87D">CN=YRBLE FA8FCA7DE87D,OU=Google TV,O=Google Inc,L=Mountain View,ST=California,C=US</example>
|
|
514
515
|
<param pos="0" name="os.vendor" value="Google"/>
|
|
515
|
-
<param pos="0" name="os.product" value="
|
|
516
|
+
<param pos="0" name="os.product" value="Chrome OS"/>
|
|
517
|
+
<param pos="0" name="os.certainty" value="0.5"/>
|
|
518
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:google:chrome_os:-"/>
|
|
516
519
|
<param pos="0" name="hw.device" value="Media Server"/>
|
|
517
520
|
<param pos="0" name="hw.vendor" value="Google"/>
|
|
518
521
|
<param pos="0" name="hw.product" value="Chromecast"/>
|
|
522
|
+
<param pos="0" name="hw.certainty" value="0.5"/>
|
|
519
523
|
<param pos="1" name="chromecast.serial_number"/>
|
|
520
524
|
<!-- This is the hotspot-mode MAC address (clear bit 2) -->
|
|
521
525
|
|
|
@@ -561,6 +565,30 @@
|
|
|
561
565
|
<param pos="0" name="os.device" value="Video Conferencing"/>
|
|
562
566
|
</fingerprint>
|
|
563
567
|
|
|
568
|
+
<fingerprint pattern="^CN=a_lifesize_system,OU=lifesize,O=lifesize,L=Austin,ST=Texas,C=US$">
|
|
569
|
+
<description>Lifesize TelePresence (a_lifesize variant 1)</description>
|
|
570
|
+
<example>CN=a_lifesize_system,OU=lifesize,O=lifesize,L=Austin,ST=Texas,C=US</example>
|
|
571
|
+
<param pos="0" name="hw.vendor" value="Lifesize"/>
|
|
572
|
+
<param pos="0" name="hw.device" value="Video Conferencing"/>
|
|
573
|
+
<param pos="0" name="hw.product" value="TelePresence"/>
|
|
574
|
+
<param pos="0" name="os.vendor" value="Lifesize"/>
|
|
575
|
+
<param pos="0" name="os.family" value="Linux"/>
|
|
576
|
+
<param pos="0" name="os.product" value="TelePresence"/>
|
|
577
|
+
<param pos="0" name="os.device" value="Video Conferencing"/>
|
|
578
|
+
</fingerprint>
|
|
579
|
+
|
|
580
|
+
<fingerprint pattern="^CN=A_LifeSize_System,OU=IT,O=LifeSize Communications\\, Inc\.,ST=Texas,C=US$">
|
|
581
|
+
<description>Lifesize TelePresence (a_lifesize variant 2)</description>
|
|
582
|
+
<example>CN=A_LifeSize_System,OU=IT,O=LifeSize Communications\, Inc.,ST=Texas,C=US</example>
|
|
583
|
+
<param pos="0" name="hw.vendor" value="Lifesize"/>
|
|
584
|
+
<param pos="0" name="hw.device" value="Video Conferencing"/>
|
|
585
|
+
<param pos="0" name="hw.product" value="TelePresence"/>
|
|
586
|
+
<param pos="0" name="os.vendor" value="Lifesize"/>
|
|
587
|
+
<param pos="0" name="os.family" value="Linux"/>
|
|
588
|
+
<param pos="0" name="os.product" value="TelePresence"/>
|
|
589
|
+
<param pos="0" name="os.device" value="Video Conferencing"/>
|
|
590
|
+
</fingerprint>
|
|
591
|
+
|
|
564
592
|
<fingerprint pattern="^CN=MERCURY-([a-fA-F0-9]{12}),OU=Engineering,O=Crestron">
|
|
565
593
|
<description>Crestron Mercury</description>
|
|
566
594
|
<example host.mac="00107F1ABAA0">CN=MERCURY-00107F1ABAA0,OU=Engineering,O=Crestron Electronics\, Inc.,L=Rockleigh,ST=NJ,C=US</example>
|
|
@@ -657,6 +685,9 @@
|
|
|
657
685
|
<fingerprint pattern="^CN=VMM APIC,OU=VMM\d+,O=Cisco,L=San Jose,ST=CA,C=US$">
|
|
658
686
|
<description>Cisco APIC</description>
|
|
659
687
|
<example>CN=VMM APIC,OU=VMM15,O=Cisco,L=San Jose,ST=CA,C=US</example>
|
|
688
|
+
<param pos="0" name="service.vendor" value="Cisco"/>
|
|
689
|
+
<param pos="0" name="service.product" value="APIC"/>
|
|
690
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:cisco:application_policy_infrastructure_controller:-"/>
|
|
660
691
|
<param pos="0" name="hw.vendor" value="Cisco"/>
|
|
661
692
|
<param pos="0" name="hw.product" value="APIC"/>
|
|
662
693
|
<param pos="0" name="hw.device" value="Network Appliance"/>
|
|
@@ -665,6 +696,9 @@
|
|
|
665
696
|
<fingerprint pattern="^CN=APIC$">
|
|
666
697
|
<description>Cisco APIC - bare CN</description>
|
|
667
698
|
<example>CN=APIC</example>
|
|
699
|
+
<param pos="0" name="service.vendor" value="Cisco"/>
|
|
700
|
+
<param pos="0" name="service.product" value="APIC"/>
|
|
701
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:cisco:application_policy_infrastructure_controller:-"/>
|
|
668
702
|
<param pos="0" name="hw.vendor" value="Cisco"/>
|
|
669
703
|
<param pos="0" name="hw.product" value="APIC"/>
|
|
670
704
|
<param pos="0" name="hw.device" value="Network Appliance"/>
|
|
@@ -840,18 +874,18 @@
|
|
|
840
874
|
<param pos="0" name="os.family" value="Linux"/>
|
|
841
875
|
<param pos="0" name="hw.vendor" value="Ubiquiti"/>
|
|
842
876
|
<param pos="0" name="hw.family" value="UniFi"/>
|
|
843
|
-
<param pos="0" name="hw.device" value="
|
|
877
|
+
<param pos="0" name="hw.device" value="IP Camera"/>
|
|
844
878
|
</fingerprint>
|
|
845
879
|
|
|
846
880
|
<fingerprint pattern="^CN=camera\.ubnt\.dev,">
|
|
847
881
|
<description>UniFi Video Camera</description>
|
|
848
882
|
<example>CN=camera.ubnt.dev,OU=devint,O=Ubiquiti Networks Inc.,L=Taipei,C=TW</example>
|
|
849
883
|
<param pos="0" name="hw.vendor" value="Ubiquiti"/>
|
|
850
|
-
<param pos="0" name="hw.device" value="
|
|
884
|
+
<param pos="0" name="hw.device" value="IP Camera"/>
|
|
851
885
|
<param pos="0" name="hw.product" value="Camera"/>
|
|
852
886
|
<param pos="0" name="os.vendor" value="Ubiquiti"/>
|
|
853
887
|
<param pos="0" name="os.family" value="Linux"/>
|
|
854
|
-
<param pos="0" name="os.device" value="
|
|
888
|
+
<param pos="0" name="os.device" value="IP Camera"/>
|
|
855
889
|
</fingerprint>
|
|
856
890
|
|
|
857
891
|
<fingerprint pattern="^CN=UBNT,OU=Technical Support,O=Ubiquiti Networks Inc\.,L=San Jose,ST=CA,C=US$">
|
|
@@ -886,6 +920,16 @@
|
|
|
886
920
|
<param pos="0" name="os.device" value="Router"/>
|
|
887
921
|
</fingerprint>
|
|
888
922
|
|
|
923
|
+
<fingerprint pattern="^CN=UbiquitiRouterUI,O=Ubiquiti Inc.,L=New York,ST=New York,C=US">
|
|
924
|
+
<description>Ubiquiti Router UI</description>
|
|
925
|
+
<example>CN=UbiquitiRouterUI,O=Ubiquiti Inc.,L=New York,ST=New York,C=US</example>
|
|
926
|
+
<param pos="0" name="hw.vendor" value="Ubiquiti"/>
|
|
927
|
+
<param pos="0" name="hw.device" value="Router"/>
|
|
928
|
+
<param pos="0" name="os.vendor" value="Ubiquiti"/>
|
|
929
|
+
<param pos="0" name="os.family" value="Linux"/>
|
|
930
|
+
<param pos="0" name="os.device" value="Router"/>
|
|
931
|
+
</fingerprint>
|
|
932
|
+
|
|
889
933
|
<fingerprint pattern="^CN=UniFi-Video Controller,OU=R&D,O=Ubiquiti Networks,L=New York,ST=NY,C=US$">
|
|
890
934
|
<description>Ubiquiti Video Controller</description>
|
|
891
935
|
<example>CN=UniFi-Video Controller,OU=R&D,O=Ubiquiti Networks,L=New York,ST=NY,C=US</example>
|
|
@@ -901,7 +945,7 @@
|
|
|
901
945
|
<description>Verizon / Greenwave FIOS Router</description>
|
|
902
946
|
<example>CN=GreenWave Systems,OU=PKI,O=GreenWave Systems,L=Irvine,ST=California,C=US</example>
|
|
903
947
|
<param pos="0" name="hw.vendor" value="Greenwave Systems"/>
|
|
904
|
-
<param pos="0" name="hw.device" value="Broadband
|
|
948
|
+
<param pos="0" name="hw.device" value="Broadband Router"/>
|
|
905
949
|
<param pos="0" name="hw.product" value="Verizon FiOS Router"/>
|
|
906
950
|
</fingerprint>
|
|
907
951
|
|
|
@@ -1035,7 +1079,7 @@
|
|
|
1035
1079
|
<param pos="0" name="service.vendor" value="Akamai"/>
|
|
1036
1080
|
<param pos="0" name="service.product" value="GHost"/>
|
|
1037
1081
|
<param pos="0" name="os.vendor" value="Akamai"/>
|
|
1038
|
-
<param pos="0" name="os.device" value="Web
|
|
1082
|
+
<param pos="0" name="os.device" value="Web Proxy"/>
|
|
1039
1083
|
</fingerprint>
|
|
1040
1084
|
|
|
1041
1085
|
<fingerprint pattern="^CN=HP_3PAR_">
|
|
@@ -1195,10 +1239,11 @@
|
|
|
1195
1239
|
</fingerprint>
|
|
1196
1240
|
|
|
1197
1241
|
<fingerprint pattern="^CN=VMware default certificate,OU=vCenterServer.*,O=VMware\\, Inc\.$">
|
|
1198
|
-
<description>
|
|
1242
|
+
<description>VMware vCenter</description>
|
|
1199
1243
|
<example>CN=VMware default certificate,OU=vCenterServer_2013.09.26_220623,O=VMware\, Inc.</example>
|
|
1200
1244
|
<param pos="0" name="service.vendor" value="VMware"/>
|
|
1201
1245
|
<param pos="0" name="service.product" value="vCenter"/>
|
|
1246
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:vmware:vcenter_server:-"/>
|
|
1202
1247
|
</fingerprint>
|
|
1203
1248
|
|
|
1204
1249
|
<fingerprint pattern="^CN=selfappliance,OU=Engineering,O=Symplified,L=Boulder,ST=Colorado,C=US$">
|
|
@@ -1220,9 +1265,9 @@
|
|
|
1220
1265
|
<description>Axis Communications Web Cam</description>
|
|
1221
1266
|
<example host.mac="accc8ea31abf">CN=axis-accc8ea31abf,O=Axis Communications AB</example>
|
|
1222
1267
|
<param pos="0" name="hw.vendor" value="AXIS"/>
|
|
1223
|
-
<param pos="0" name="hw.device" value="
|
|
1268
|
+
<param pos="0" name="hw.device" value="IP Camera"/>
|
|
1224
1269
|
<param pos="0" name="os.vendor" value="AXIS"/>
|
|
1225
|
-
<param pos="0" name="os.device" value="
|
|
1270
|
+
<param pos="0" name="os.device" value="IP Camera"/>
|
|
1226
1271
|
<param pos="0" name="os.family" value="Linux"/>
|
|
1227
1272
|
<param pos="1" name="host.mac"/>
|
|
1228
1273
|
</fingerprint>
|
|
@@ -1231,10 +1276,10 @@
|
|
|
1231
1276
|
<description>ELAN Web Cam</description>
|
|
1232
1277
|
<example host.name="ServerRoom">CN=ServerRoom,OU=Nortek,O=ELAN,L=StuddardMD,ST=10000,C=US</example>
|
|
1233
1278
|
<param pos="0" name="hw.vendor" value="ELAN"/>
|
|
1234
|
-
<param pos="0" name="hw.device" value="
|
|
1279
|
+
<param pos="0" name="hw.device" value="IP Camera"/>
|
|
1235
1280
|
<param pos="0" name="hw.product" value="HDIPCam"/>
|
|
1236
1281
|
<param pos="0" name="os.vendor" value="ELAN"/>
|
|
1237
|
-
<param pos="0" name="os.device" value="
|
|
1282
|
+
<param pos="0" name="os.device" value="IP Camera"/>
|
|
1238
1283
|
<param pos="0" name="os.family" value="Linux"/>
|
|
1239
1284
|
<param pos="1" name="host.name"/>
|
|
1240
1285
|
</fingerprint>
|
|
@@ -1305,7 +1350,7 @@
|
|
|
1305
1350
|
<example hw.product="usg20w" host.mac="5067F0BC1D3C">CN=usg20w_5067F0BC1D3C</example>
|
|
1306
1351
|
<example hw.product="usg20" host.mac="107BEF0AD201">CN=usg20_107BEF0AD201</example>
|
|
1307
1352
|
<param pos="0" name="hw.vendor" value="Zyxel"/>
|
|
1308
|
-
<param pos="0" name="hw.device" value="Broadband
|
|
1353
|
+
<param pos="0" name="hw.device" value="Broadband Router"/>
|
|
1309
1354
|
<param pos="1" name="hw.product"/>
|
|
1310
1355
|
<param pos="2" name="host.mac"/>
|
|
1311
1356
|
</fingerprint>
|
|
@@ -1316,6 +1361,7 @@
|
|
|
1316
1361
|
<param pos="0" name="hw.vendor" value="Philips"/>
|
|
1317
1362
|
<param pos="0" name="hw.product" value="Hue"/>
|
|
1318
1363
|
<param pos="0" name="hw.device" value="Light Bulb"/>
|
|
1364
|
+
<param pos="0" name="hw.cpe23" value="cpe:/h:philips:hue:-"/>
|
|
1319
1365
|
<param pos="1" name="host.mac_eui64"/>
|
|
1320
1366
|
</fingerprint>
|
|
1321
1367
|
|
|
@@ -1427,4 +1473,38 @@
|
|
|
1427
1473
|
<param pos="0" name="os.product" value="Linux"/>
|
|
1428
1474
|
</fingerprint>
|
|
1429
1475
|
|
|
1476
|
+
<fingerprint pattern="^CN=(RFS\d+)-([0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2})$">
|
|
1477
|
+
<description>Motorola RFS Wireless Controllers</description>
|
|
1478
|
+
<example host.mac="B1-C1-11-11-11-11" hw.product="RFS6000">CN=RFS6000-B1-C1-11-11-11-11</example>
|
|
1479
|
+
<param pos="0" name="hw.device" value="Wireless Controller"/>
|
|
1480
|
+
<param pos="0" name="hw.vendor" value="Motorola"/>
|
|
1481
|
+
<param pos="1" name="hw.product"/>
|
|
1482
|
+
<param pos="2" name="host.mac"/>
|
|
1483
|
+
</fingerprint>
|
|
1484
|
+
|
|
1485
|
+
<fingerprint pattern="^CN=(AP\d+)-([0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2})$">
|
|
1486
|
+
<description>Motorola Wireless Access Points</description>
|
|
1487
|
+
<example host.mac="F1-11-11-11-11-11" hw.product="AP6532">CN=AP6532-F1-11-11-11-11-11</example>
|
|
1488
|
+
<param pos="0" name="hw.device" value="WAP"/>
|
|
1489
|
+
<param pos="0" name="hw.vendor" value="Motorola"/>
|
|
1490
|
+
<param pos="1" name="hw.product"/>
|
|
1491
|
+
<param pos="2" name="host.mac"/>
|
|
1492
|
+
</fingerprint>
|
|
1493
|
+
|
|
1494
|
+
<fingerprint pattern="^CN=attvpngateway\.att\.com,O=AT&T,L=Tampa,ST=FL,C=US$">
|
|
1495
|
+
<description>ATT VPN Gateway</description>
|
|
1496
|
+
<example>CN=attvpngateway.att.com,O=AT&T,L=Tampa,ST=FL,C=US</example>
|
|
1497
|
+
<param pos="0" name="hw.vendor" value="ATT"/>
|
|
1498
|
+
<param pos="0" name="hw.device" value="VPN"/>
|
|
1499
|
+
<param pos="0" name="hw.product" value="VPN Gateway"/>
|
|
1500
|
+
</fingerprint>
|
|
1501
|
+
|
|
1502
|
+
<fingerprint pattern="^CN=silver-peak,OU=Networking Appliance">
|
|
1503
|
+
<description>Silver Peak Appliance</description>
|
|
1504
|
+
<example>CN=silver-peak,OU=Networking Appliance,O=Silver Peak Systems Inc,L=Mountain View,ST=California,C=--</example>
|
|
1505
|
+
<param pos="0" name="hw.vendor" value="Silver Peak"/>
|
|
1506
|
+
<param pos="0" name="hw.device" value="Network Appliance"/>
|
|
1507
|
+
<param pos="0" name="hw.product" value="SD-WAN"/>
|
|
1508
|
+
</fingerprint>
|
|
1509
|
+
|
|
1430
1510
|
</fingerprints>
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: recog
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 2.3.
|
|
4
|
+
version: 2.3.19
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Rapid7 Research
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2021-02-04 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: rspec
|
|
@@ -127,10 +127,13 @@ files:
|
|
|
127
127
|
- ".github/ISSUE_TEMPLATE/feature_request.md"
|
|
128
128
|
- ".github/ISSUE_TEMPLATE/fingerprint_request.md"
|
|
129
129
|
- ".github/PULL_REQUEST_TEMPLATE"
|
|
130
|
+
- ".github/SECURITY.md"
|
|
131
|
+
- ".github/workflows/ci.yml"
|
|
130
132
|
- ".gitignore"
|
|
131
133
|
- ".rspec"
|
|
132
134
|
- ".ruby-gemset"
|
|
133
135
|
- ".ruby-version"
|
|
136
|
+
- ".snyk"
|
|
134
137
|
- ".travis.yml"
|
|
135
138
|
- ".yardopts"
|
|
136
139
|
- CONTRIBUTING.md
|
|
@@ -167,9 +170,6 @@ files:
|
|
|
167
170
|
- identifiers/os_product.txt
|
|
168
171
|
- identifiers/service_family.txt
|
|
169
172
|
- identifiers/service_product.txt
|
|
170
|
-
- identifiers/software_class.txt
|
|
171
|
-
- identifiers/software_family.txt
|
|
172
|
-
- identifiers/software_product.txt
|
|
173
173
|
- identifiers/vendor.txt
|
|
174
174
|
- lib/recog.rb
|
|
175
175
|
- lib/recog/db.rb
|
|
@@ -252,6 +252,7 @@ files:
|
|
|
252
252
|
- xml/snmp_sysobjid.xml
|
|
253
253
|
- xml/ssh_banners.xml
|
|
254
254
|
- xml/telnet_banners.xml
|
|
255
|
+
- xml/tls_jarm.xml
|
|
255
256
|
- xml/x11_banners.xml
|
|
256
257
|
- xml/x509_issuers.xml
|
|
257
258
|
- xml/x509_subjects.xml
|
|
@@ -1,26 +0,0 @@
|
|
|
1
|
-
Backup
|
|
2
|
-
Blog
|
|
3
|
-
Browser Add-On
|
|
4
|
-
Container Orchestrator
|
|
5
|
-
Database Client
|
|
6
|
-
Database Server
|
|
7
|
-
Gateway
|
|
8
|
-
General
|
|
9
|
-
IM Client
|
|
10
|
-
IM Server
|
|
11
|
-
Internet Client
|
|
12
|
-
Internet Server
|
|
13
|
-
Mail Client
|
|
14
|
-
Mail Server
|
|
15
|
-
Media Client
|
|
16
|
-
Media Server
|
|
17
|
-
Medical Device
|
|
18
|
-
Middleware
|
|
19
|
-
OS Level Virtualization
|
|
20
|
-
Peer-Peer
|
|
21
|
-
Productivity
|
|
22
|
-
SCADA
|
|
23
|
-
Security
|
|
24
|
-
Systems Management
|
|
25
|
-
Utility
|
|
26
|
-
Virtualization
|
|
@@ -1,91 +0,0 @@
|
|
|
1
|
-
.NET Framework
|
|
2
|
-
Acrobat
|
|
3
|
-
ASP.NET MVC
|
|
4
|
-
Chrome
|
|
5
|
-
Cisco WebEx
|
|
6
|
-
ColdFusion
|
|
7
|
-
Commerce Server
|
|
8
|
-
CyberArk
|
|
9
|
-
DB2
|
|
10
|
-
Docker Platform
|
|
11
|
-
Edge
|
|
12
|
-
Enhanced Mitigation Experience Toolkit
|
|
13
|
-
Essentials
|
|
14
|
-
Exchange Server
|
|
15
|
-
Expression Suite
|
|
16
|
-
Flash
|
|
17
|
-
Forefront Endpoint Protection
|
|
18
|
-
Forefront
|
|
19
|
-
Fusion
|
|
20
|
-
Ghostscript
|
|
21
|
-
Host Integration Server 2004
|
|
22
|
-
Host Integration Server 2006
|
|
23
|
-
Host Integration Server 2009
|
|
24
|
-
Host Integration Server 2010
|
|
25
|
-
Host Integration Server
|
|
26
|
-
HP System Management Homepage
|
|
27
|
-
HP Systems Insight Manager
|
|
28
|
-
Internet Explorer
|
|
29
|
-
Internet Information Services
|
|
30
|
-
iTunes
|
|
31
|
-
Java
|
|
32
|
-
JBoss
|
|
33
|
-
LastPass
|
|
34
|
-
Lync 2010
|
|
35
|
-
Lync 2013
|
|
36
|
-
MDAC
|
|
37
|
-
Microsoft Biztalk Server
|
|
38
|
-
Microsoft Dynamics AX
|
|
39
|
-
Moodle
|
|
40
|
-
Mozilla
|
|
41
|
-
MSXML
|
|
42
|
-
Norton
|
|
43
|
-
Office 2000
|
|
44
|
-
Office 2003
|
|
45
|
-
Office 2007
|
|
46
|
-
Office 2010
|
|
47
|
-
Office 2013
|
|
48
|
-
Office 2016
|
|
49
|
-
Office Communicator 2005
|
|
50
|
-
Office Communicator 2007 R2
|
|
51
|
-
Office Communicator 2007
|
|
52
|
-
Office Communicator
|
|
53
|
-
Office Web Apps
|
|
54
|
-
Office XP
|
|
55
|
-
Office
|
|
56
|
-
OfficeScan
|
|
57
|
-
OpenShift
|
|
58
|
-
OpenView
|
|
59
|
-
Outlook
|
|
60
|
-
ownCloud
|
|
61
|
-
QuickTime
|
|
62
|
-
Rapid7 Agent
|
|
63
|
-
Safari
|
|
64
|
-
Scada
|
|
65
|
-
SharePoint
|
|
66
|
-
Shockwave
|
|
67
|
-
Silverlight
|
|
68
|
-
Skype for Business 2015
|
|
69
|
-
Skype for Business 2016
|
|
70
|
-
Sophos
|
|
71
|
-
SQL Server
|
|
72
|
-
Struts
|
|
73
|
-
Symantec Endpoint Protection Manager
|
|
74
|
-
System Center Operations Manager
|
|
75
|
-
Systems Management Server
|
|
76
|
-
Tomcat
|
|
77
|
-
TOR
|
|
78
|
-
vCenter Server
|
|
79
|
-
VirusScan
|
|
80
|
-
Visual Basic for Applications
|
|
81
|
-
Visual FoxPro
|
|
82
|
-
Visual Studio Foundation Server
|
|
83
|
-
Visual Studio
|
|
84
|
-
VLC
|
|
85
|
-
WebLogic Server
|
|
86
|
-
WebSphere
|
|
87
|
-
Windows Media Player
|
|
88
|
-
Wordpress
|
|
89
|
-
Works
|
|
90
|
-
Workstation
|
|
91
|
-
Worry-Free Business Security
|