recog 2.3.14 → 2.3.19

Sign up to get free protection for your applications and to get access to all the features.
Files changed (50) hide show
  1. checksums.yaml +4 -4
  2. data/.github/SECURITY.md +35 -0
  3. data/.github/workflows/ci.yml +26 -0
  4. data/.snyk +10 -0
  5. data/LICENSE +1 -1
  6. data/bin/recog_standardize +2 -2
  7. data/cpe-remap.yaml +55 -14
  8. data/identifiers/hw_device.txt +5 -4
  9. data/identifiers/hw_family.txt +12 -0
  10. data/identifiers/hw_product.txt +76 -6
  11. data/identifiers/os_architecture.txt +0 -10
  12. data/identifiers/os_device.txt +13 -31
  13. data/identifiers/os_family.txt +2 -95
  14. data/identifiers/os_product.txt +34 -117
  15. data/identifiers/service_family.txt +7 -36
  16. data/identifiers/service_product.txt +238 -92
  17. data/identifiers/vendor.txt +78 -193
  18. data/lib/recog/version.rb +1 -1
  19. data/requirements.txt +1 -1
  20. data/update_cpes.py +96 -48
  21. data/xml/dns_versionbind.xml +39 -16
  22. data/xml/favicons.xml +150 -17
  23. data/xml/ftp_banners.xml +21 -19
  24. data/xml/hp_pjl_id.xml +1 -1
  25. data/xml/html_title.xml +200 -23
  26. data/xml/http_cookies.xml +89 -1
  27. data/xml/http_servers.xml +144 -18
  28. data/xml/http_wwwauth.xml +28 -20
  29. data/xml/ldap_searchresult.xml +9 -6
  30. data/xml/mdns_device-info_txt.xml +308 -10
  31. data/xml/ntp_banners.xml +9 -1
  32. data/xml/operating_system.xml +1 -0
  33. data/xml/rtsp_servers.xml +7 -0
  34. data/xml/sip_banners.xml +344 -8
  35. data/xml/sip_user_agents.xml +320 -7
  36. data/xml/smb_native_lm.xml +32 -1
  37. data/xml/smb_native_os.xml +158 -33
  38. data/xml/smtp_banners.xml +7 -2
  39. data/xml/smtp_help.xml +2 -0
  40. data/xml/smtp_vrfy.xml +2 -1
  41. data/xml/snmp_sysdescr.xml +252 -86
  42. data/xml/ssh_banners.xml +118 -11
  43. data/xml/telnet_banners.xml +34 -9
  44. data/xml/tls_jarm.xml +139 -0
  45. data/xml/x509_issuers.xml +24 -5
  46. data/xml/x509_subjects.xml +97 -17
  47. metadata +6 -5
  48. data/identifiers/software_class.txt +0 -26
  49. data/identifiers/software_family.txt +0 -91
  50. data/identifiers/software_product.txt +0 -333
data/xml/x509_issuers.xml CHANGED
@@ -14,10 +14,13 @@
14
14
  <description>Google Chromecast Gen 1</description>
15
15
  <example>CN=Eureka Gen1 ICA,OU=Google TV,O=Google Inc,L=Mountain View,ST=California,C=US</example>
16
16
  <param pos="0" name="os.vendor" value="Google"/>
17
- <param pos="0" name="os.product" value="ChromeOS"/>
17
+ <param pos="0" name="os.product" value="Chrome OS"/>
18
+ <param pos="0" name="os.certainty" value="0.5"/>
19
+ <param pos="0" name="os.cpe23" value="cpe:/o:google:chrome_os:-"/>
18
20
  <param pos="0" name="hw.device" value="Media Server"/>
19
21
  <param pos="0" name="hw.vendor" value="Google"/>
20
22
  <param pos="0" name="hw.product" value="Chromecast"/>
23
+ <param pos="0" name="hw.certainty" value="0.5"/>
21
24
  <param pos="0" name="chromecast.generation" value="1"/>
22
25
  </fingerprint>
23
26
 
@@ -32,10 +35,13 @@
32
35
  <example chromecast.generation="11" chromecast.capabilities="Video Assist">CN=Chromecast ICA 11 (Video Assist),OU=Cast,O=Google Inc,L=Mountain View,ST=California,C=US</example>
33
36
  <example chromecast.generation="12">CN=Chromecast ICA 12,OU=Cast,O=Google Inc,L=Mountain View,ST=California,C=US</example>
34
37
  <param pos="0" name="os.vendor" value="Google"/>
35
- <param pos="0" name="os.product" value="ChromeOS"/>
38
+ <param pos="0" name="os.product" value="Chrome OS"/>
39
+ <param pos="0" name="os.certainty" value="0.5"/>
40
+ <param pos="0" name="os.cpe23" value="cpe:/o:google:chrome_os:-"/>
36
41
  <param pos="0" name="hw.device" value="Media Server"/>
37
42
  <param pos="0" name="hw.vendor" value="Google"/>
38
43
  <param pos="0" name="hw.product" value="Chromecast"/>
44
+ <param pos="0" name="hw.certainty" value="0.5"/>
39
45
  <param pos="1" name="chromecast.generation"/>
40
46
  <param pos="2" name="chromecast.capabilities"/>
41
47
  </fingerprint>
@@ -113,7 +119,7 @@
113
119
  <fingerprint pattern="^CN=[a-zA-Z0-9]+,OU=Internally Generated Certificate,O=American Power Conversion Corp,L=Default Locality,ST=Default State,C=US$">
114
120
  <description>APC UPS</description>
115
121
  <example>CN=ZA1117619249,OU=Internally Generated Certificate,O=American Power Conversion Corp,L=Default Locality,ST=Default State,C=US</example>
116
- <param pos="0" name="hw.device" value="Power device"/>
122
+ <param pos="0" name="hw.device" value="Power Device"/>
117
123
  <param pos="0" name="hw.vendor" value="APC"/>
118
124
  </fingerprint>
119
125
 
@@ -126,19 +132,21 @@
126
132
  </fingerprint>
127
133
 
128
134
  <fingerprint pattern="^O=VMware Installer$">
129
- <description>VMWare ESXi w/Installer</description>
135
+ <description>VMware ESXi w/Installer</description>
130
136
  <example>O=VMware Installer</example>
131
137
  <param pos="0" name="os.vendor" value="VMware"/>
132
138
  <param pos="0" name="os.product" value="ESXi"/>
133
139
  <param pos="0" name="os.device" value="Hypervisor"/>
134
140
  <param pos="0" name="os.cpe23" value="cpe:/o:vmware:esxi:-"/>
141
+ <param pos="0" name="hw.device" value="Hypervisor"/>
135
142
  </fingerprint>
136
143
 
137
144
  <fingerprint pattern="^CN=CA,OU=VMware Engineering,O=vCenter,ST=California,C=US$">
138
- <description>VMWare vCenter</description>
145
+ <description>VMware vCenter</description>
139
146
  <example>CN=CA,OU=VMware Engineering,O=vCenter,ST=California,C=US</example>
140
147
  <param pos="0" name="service.vendor" value="VMware"/>
141
148
  <param pos="0" name="service.product" value="vCenter"/>
149
+ <param pos="0" name="service.cpe23" value="cpe:/a:vmware:vcenter_server:-"/>
142
150
  </fingerprint>
143
151
 
144
152
  <fingerprint pattern="^CN=Default Issuer \(Do not trust\),OU=ISS,O=Hewlett Packard Enterprise,L=Houston,ST=Texas,C=US$">
@@ -155,4 +163,15 @@
155
163
  <param pos="0" name="os.product" value="iLO"/>
156
164
  </fingerprint>
157
165
 
166
+ <fingerprint pattern="^CN=synology.com,O=Synology Inc.,L=Taipei,C=TW$">
167
+ <description>Synology</description>
168
+ <example>CN=synology.com,O=Synology Inc.,L=Taipei,C=TW</example>
169
+ <param pos="0" name="os.device" value="NAS"/>
170
+ <param pos="0" name="os.family" value="Linux"/>
171
+ <param pos="0" name="os.product" value="DSM"/>
172
+ <param pos="0" name="os.vendor" value="Synology"/>
173
+ <param pos="0" name="hw.vendor" value="Synology"/>
174
+ <param pos="0" name="hw.device" value="NAS"/>
175
+ </fingerprint>
176
+
158
177
  </fingerprints>
@@ -51,7 +51,7 @@
51
51
  <fingerprint pattern="^CN=([a-fA-F0-9:]+),OU=([^,]+),O=Cisco-Linksys\\, LLC">
52
52
  <description>Cisco / Linksys Router</description>
53
53
  <example host.mac="00:22:6b:ef:1e:d0" hw.product="RV042">CN=00:22:6b:ef:1e:d0,OU=RV042,O=Cisco-Linksys\, LLC,L=Irvine,C=US</example>
54
- <param pos="0" name="hw.device" value="Broadband router"/>
54
+ <param pos="0" name="hw.device" value="Broadband Router"/>
55
55
  <param pos="0" name="hw.vendor" value="Cisco"/>
56
56
  <param pos="2" name="hw.product"/>
57
57
  <param pos="1" name="host.mac"/>
@@ -61,7 +61,7 @@
61
61
  <description>Cisco Post-Linksys Router</description>
62
62
  <example host.mac="74:a2:e6:5c:99:21" hw.product="RV042G">CN=74:a2:e6:5c:99:21,OU=RV042G,O=Cisco Systems\, Inc.,L=Irvine,C=US</example>
63
63
  <example host.mac="4C4E315901D0" hw.product="RV180">CN=4C4E315901D0,OU=RV180,O=Cisco Systems\, Inc.,C=US</example>
64
- <param pos="0" name="hw.device" value="Broadband router"/>
64
+ <param pos="0" name="hw.device" value="Broadband Router"/>
65
65
  <param pos="0" name="hw.vendor" value="Cisco"/>
66
66
  <param pos="2" name="hw.product"/>
67
67
  <param pos="1" name="host.mac"/>
@@ -468,24 +468,25 @@
468
468
  </fingerprint>
469
469
 
470
470
  <fingerprint pattern="^CN=VMware,OU=VMware,L=Palo Alto,C=US$">
471
- <description>VMWare Authentication Daemon</description>
471
+ <description>VMware Authentication Daemon</description>
472
472
  <example>CN=VMware,OU=VMware,L=Palo Alto,C=US</example>
473
473
  <param pos="0" name="service.vendor" value="VMware"/>
474
474
  <param pos="0" name="service.product" value="vmauthd"/>
475
475
  </fingerprint>
476
476
 
477
477
  <fingerprint pattern="^CN=([a-zA-Z0-9\.\-\_]+),OU=VMware ESX Server Default Certificate,O=VMware\\, Inc,L=Palo Alto,ST=California,C=US$">
478
- <description>VMWare ESX</description>
478
+ <description>VMware ESX</description>
479
479
  <example>CN=server99.,OU=VMware ESX Server Default Certificate,O=VMware\, Inc,L=Palo Alto,ST=California,C=US</example>
480
480
  <param pos="0" name="os.vendor" value="VMware"/>
481
481
  <param pos="0" name="os.product" value="ESX"/>
482
482
  <param pos="0" name="os.device" value="Hypervisor"/>
483
483
  <param pos="0" name="os.cpe23" value="cpe:/o:vmware:esx:-"/>
484
484
  <param pos="1" name="host.name"/>
485
+ <param pos="0" name="hw.device" value="Hypervisor"/>
485
486
  </fingerprint>
486
487
 
487
488
  <fingerprint pattern="^CN.*,OU=SRM,O=VMware\\, Inc\.,L=Palo Alto,ST=California,C=US$">
488
- <description>VMWare SRM</description>
489
+ <description>VMware SRM</description>
489
490
  <example>CN=SRM01,OU=SRM,O=VMware\, Inc.,L=Palo Alto,ST=California,C=US</example>
490
491
  <param pos="0" name="os.vendor" value="VMware"/>
491
492
  <param pos="0" name="os.product" value="Linux"/>
@@ -512,10 +513,13 @@
512
513
  <example chromecast.serial_number="LVDZG5" host.mac_local="FA8FCA67413D">CN=LVDZG5 FA8FCA67413D,OU=Cast,O=Google Inc,L=Mountain View,ST=California,C=US</example>
513
514
  <example chromecast.serial_number="YRBLE" host.mac_local="FA8FCA7DE87D">CN=YRBLE FA8FCA7DE87D,OU=Google TV,O=Google Inc,L=Mountain View,ST=California,C=US</example>
514
515
  <param pos="0" name="os.vendor" value="Google"/>
515
- <param pos="0" name="os.product" value="ChromeOS"/>
516
+ <param pos="0" name="os.product" value="Chrome OS"/>
517
+ <param pos="0" name="os.certainty" value="0.5"/>
518
+ <param pos="0" name="os.cpe23" value="cpe:/o:google:chrome_os:-"/>
516
519
  <param pos="0" name="hw.device" value="Media Server"/>
517
520
  <param pos="0" name="hw.vendor" value="Google"/>
518
521
  <param pos="0" name="hw.product" value="Chromecast"/>
522
+ <param pos="0" name="hw.certainty" value="0.5"/>
519
523
  <param pos="1" name="chromecast.serial_number"/>
520
524
  <!-- This is the hotspot-mode MAC address (clear bit 2) -->
521
525
 
@@ -561,6 +565,30 @@
561
565
  <param pos="0" name="os.device" value="Video Conferencing"/>
562
566
  </fingerprint>
563
567
 
568
+ <fingerprint pattern="^CN=a_lifesize_system,OU=lifesize,O=lifesize,L=Austin,ST=Texas,C=US$">
569
+ <description>Lifesize TelePresence (a_lifesize variant 1)</description>
570
+ <example>CN=a_lifesize_system,OU=lifesize,O=lifesize,L=Austin,ST=Texas,C=US</example>
571
+ <param pos="0" name="hw.vendor" value="Lifesize"/>
572
+ <param pos="0" name="hw.device" value="Video Conferencing"/>
573
+ <param pos="0" name="hw.product" value="TelePresence"/>
574
+ <param pos="0" name="os.vendor" value="Lifesize"/>
575
+ <param pos="0" name="os.family" value="Linux"/>
576
+ <param pos="0" name="os.product" value="TelePresence"/>
577
+ <param pos="0" name="os.device" value="Video Conferencing"/>
578
+ </fingerprint>
579
+
580
+ <fingerprint pattern="^CN=A_LifeSize_System,OU=IT,O=LifeSize Communications\\, Inc\.,ST=Texas,C=US$">
581
+ <description>Lifesize TelePresence (a_lifesize variant 2)</description>
582
+ <example>CN=A_LifeSize_System,OU=IT,O=LifeSize Communications\, Inc.,ST=Texas,C=US</example>
583
+ <param pos="0" name="hw.vendor" value="Lifesize"/>
584
+ <param pos="0" name="hw.device" value="Video Conferencing"/>
585
+ <param pos="0" name="hw.product" value="TelePresence"/>
586
+ <param pos="0" name="os.vendor" value="Lifesize"/>
587
+ <param pos="0" name="os.family" value="Linux"/>
588
+ <param pos="0" name="os.product" value="TelePresence"/>
589
+ <param pos="0" name="os.device" value="Video Conferencing"/>
590
+ </fingerprint>
591
+
564
592
  <fingerprint pattern="^CN=MERCURY-([a-fA-F0-9]{12}),OU=Engineering,O=Crestron">
565
593
  <description>Crestron Mercury</description>
566
594
  <example host.mac="00107F1ABAA0">CN=MERCURY-00107F1ABAA0,OU=Engineering,O=Crestron Electronics\, Inc.,L=Rockleigh,ST=NJ,C=US</example>
@@ -657,6 +685,9 @@
657
685
  <fingerprint pattern="^CN=VMM APIC,OU=VMM\d+,O=Cisco,L=San Jose,ST=CA,C=US$">
658
686
  <description>Cisco APIC</description>
659
687
  <example>CN=VMM APIC,OU=VMM15,O=Cisco,L=San Jose,ST=CA,C=US</example>
688
+ <param pos="0" name="service.vendor" value="Cisco"/>
689
+ <param pos="0" name="service.product" value="APIC"/>
690
+ <param pos="0" name="service.cpe23" value="cpe:/a:cisco:application_policy_infrastructure_controller:-"/>
660
691
  <param pos="0" name="hw.vendor" value="Cisco"/>
661
692
  <param pos="0" name="hw.product" value="APIC"/>
662
693
  <param pos="0" name="hw.device" value="Network Appliance"/>
@@ -665,6 +696,9 @@
665
696
  <fingerprint pattern="^CN=APIC$">
666
697
  <description>Cisco APIC - bare CN</description>
667
698
  <example>CN=APIC</example>
699
+ <param pos="0" name="service.vendor" value="Cisco"/>
700
+ <param pos="0" name="service.product" value="APIC"/>
701
+ <param pos="0" name="service.cpe23" value="cpe:/a:cisco:application_policy_infrastructure_controller:-"/>
668
702
  <param pos="0" name="hw.vendor" value="Cisco"/>
669
703
  <param pos="0" name="hw.product" value="APIC"/>
670
704
  <param pos="0" name="hw.device" value="Network Appliance"/>
@@ -840,18 +874,18 @@
840
874
  <param pos="0" name="os.family" value="Linux"/>
841
875
  <param pos="0" name="hw.vendor" value="Ubiquiti"/>
842
876
  <param pos="0" name="hw.family" value="UniFi"/>
843
- <param pos="0" name="hw.device" value="Web cam"/>
877
+ <param pos="0" name="hw.device" value="IP Camera"/>
844
878
  </fingerprint>
845
879
 
846
880
  <fingerprint pattern="^CN=camera\.ubnt\.dev,">
847
881
  <description>UniFi Video Camera</description>
848
882
  <example>CN=camera.ubnt.dev,OU=devint,O=Ubiquiti Networks Inc.,L=Taipei,C=TW</example>
849
883
  <param pos="0" name="hw.vendor" value="Ubiquiti"/>
850
- <param pos="0" name="hw.device" value="Web cam"/>
884
+ <param pos="0" name="hw.device" value="IP Camera"/>
851
885
  <param pos="0" name="hw.product" value="Camera"/>
852
886
  <param pos="0" name="os.vendor" value="Ubiquiti"/>
853
887
  <param pos="0" name="os.family" value="Linux"/>
854
- <param pos="0" name="os.device" value="Web cam"/>
888
+ <param pos="0" name="os.device" value="IP Camera"/>
855
889
  </fingerprint>
856
890
 
857
891
  <fingerprint pattern="^CN=UBNT,OU=Technical Support,O=Ubiquiti Networks Inc\.,L=San Jose,ST=CA,C=US$">
@@ -886,6 +920,16 @@
886
920
  <param pos="0" name="os.device" value="Router"/>
887
921
  </fingerprint>
888
922
 
923
+ <fingerprint pattern="^CN=UbiquitiRouterUI,O=Ubiquiti Inc.,L=New York,ST=New York,C=US">
924
+ <description>Ubiquiti Router UI</description>
925
+ <example>CN=UbiquitiRouterUI,O=Ubiquiti Inc.,L=New York,ST=New York,C=US</example>
926
+ <param pos="0" name="hw.vendor" value="Ubiquiti"/>
927
+ <param pos="0" name="hw.device" value="Router"/>
928
+ <param pos="0" name="os.vendor" value="Ubiquiti"/>
929
+ <param pos="0" name="os.family" value="Linux"/>
930
+ <param pos="0" name="os.device" value="Router"/>
931
+ </fingerprint>
932
+
889
933
  <fingerprint pattern="^CN=UniFi-Video Controller,OU=R&amp;D,O=Ubiquiti Networks,L=New York,ST=NY,C=US$">
890
934
  <description>Ubiquiti Video Controller</description>
891
935
  <example>CN=UniFi-Video Controller,OU=R&amp;D,O=Ubiquiti Networks,L=New York,ST=NY,C=US</example>
@@ -901,7 +945,7 @@
901
945
  <description>Verizon / Greenwave FIOS Router</description>
902
946
  <example>CN=GreenWave Systems,OU=PKI,O=GreenWave Systems,L=Irvine,ST=California,C=US</example>
903
947
  <param pos="0" name="hw.vendor" value="Greenwave Systems"/>
904
- <param pos="0" name="hw.device" value="Broadband router"/>
948
+ <param pos="0" name="hw.device" value="Broadband Router"/>
905
949
  <param pos="0" name="hw.product" value="Verizon FiOS Router"/>
906
950
  </fingerprint>
907
951
 
@@ -1035,7 +1079,7 @@
1035
1079
  <param pos="0" name="service.vendor" value="Akamai"/>
1036
1080
  <param pos="0" name="service.product" value="GHost"/>
1037
1081
  <param pos="0" name="os.vendor" value="Akamai"/>
1038
- <param pos="0" name="os.device" value="Web proxy"/>
1082
+ <param pos="0" name="os.device" value="Web Proxy"/>
1039
1083
  </fingerprint>
1040
1084
 
1041
1085
  <fingerprint pattern="^CN=HP_3PAR_">
@@ -1195,10 +1239,11 @@
1195
1239
  </fingerprint>
1196
1240
 
1197
1241
  <fingerprint pattern="^CN=VMware default certificate,OU=vCenterServer.*,O=VMware\\, Inc\.$">
1198
- <description>VMWare vCenter</description>
1242
+ <description>VMware vCenter</description>
1199
1243
  <example>CN=VMware default certificate,OU=vCenterServer_2013.09.26_220623,O=VMware\, Inc.</example>
1200
1244
  <param pos="0" name="service.vendor" value="VMware"/>
1201
1245
  <param pos="0" name="service.product" value="vCenter"/>
1246
+ <param pos="0" name="service.cpe23" value="cpe:/a:vmware:vcenter_server:-"/>
1202
1247
  </fingerprint>
1203
1248
 
1204
1249
  <fingerprint pattern="^CN=selfappliance,OU=Engineering,O=Symplified,L=Boulder,ST=Colorado,C=US$">
@@ -1220,9 +1265,9 @@
1220
1265
  <description>Axis Communications Web Cam</description>
1221
1266
  <example host.mac="accc8ea31abf">CN=axis-accc8ea31abf,O=Axis Communications AB</example>
1222
1267
  <param pos="0" name="hw.vendor" value="AXIS"/>
1223
- <param pos="0" name="hw.device" value="Web cam"/>
1268
+ <param pos="0" name="hw.device" value="IP Camera"/>
1224
1269
  <param pos="0" name="os.vendor" value="AXIS"/>
1225
- <param pos="0" name="os.device" value="Web cam"/>
1270
+ <param pos="0" name="os.device" value="IP Camera"/>
1226
1271
  <param pos="0" name="os.family" value="Linux"/>
1227
1272
  <param pos="1" name="host.mac"/>
1228
1273
  </fingerprint>
@@ -1231,10 +1276,10 @@
1231
1276
  <description>ELAN Web Cam</description>
1232
1277
  <example host.name="ServerRoom">CN=ServerRoom,OU=Nortek,O=ELAN,L=StuddardMD,ST=10000,C=US</example>
1233
1278
  <param pos="0" name="hw.vendor" value="ELAN"/>
1234
- <param pos="0" name="hw.device" value="Web cam"/>
1279
+ <param pos="0" name="hw.device" value="IP Camera"/>
1235
1280
  <param pos="0" name="hw.product" value="HDIPCam"/>
1236
1281
  <param pos="0" name="os.vendor" value="ELAN"/>
1237
- <param pos="0" name="os.device" value="Web cam"/>
1282
+ <param pos="0" name="os.device" value="IP Camera"/>
1238
1283
  <param pos="0" name="os.family" value="Linux"/>
1239
1284
  <param pos="1" name="host.name"/>
1240
1285
  </fingerprint>
@@ -1305,7 +1350,7 @@
1305
1350
  <example hw.product="usg20w" host.mac="5067F0BC1D3C">CN=usg20w_5067F0BC1D3C</example>
1306
1351
  <example hw.product="usg20" host.mac="107BEF0AD201">CN=usg20_107BEF0AD201</example>
1307
1352
  <param pos="0" name="hw.vendor" value="Zyxel"/>
1308
- <param pos="0" name="hw.device" value="Broadband router"/>
1353
+ <param pos="0" name="hw.device" value="Broadband Router"/>
1309
1354
  <param pos="1" name="hw.product"/>
1310
1355
  <param pos="2" name="host.mac"/>
1311
1356
  </fingerprint>
@@ -1316,6 +1361,7 @@
1316
1361
  <param pos="0" name="hw.vendor" value="Philips"/>
1317
1362
  <param pos="0" name="hw.product" value="Hue"/>
1318
1363
  <param pos="0" name="hw.device" value="Light Bulb"/>
1364
+ <param pos="0" name="hw.cpe23" value="cpe:/h:philips:hue:-"/>
1319
1365
  <param pos="1" name="host.mac_eui64"/>
1320
1366
  </fingerprint>
1321
1367
 
@@ -1427,4 +1473,38 @@
1427
1473
  <param pos="0" name="os.product" value="Linux"/>
1428
1474
  </fingerprint>
1429
1475
 
1476
+ <fingerprint pattern="^CN=(RFS\d+)-([0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2})$">
1477
+ <description>Motorola RFS Wireless Controllers</description>
1478
+ <example host.mac="B1-C1-11-11-11-11" hw.product="RFS6000">CN=RFS6000-B1-C1-11-11-11-11</example>
1479
+ <param pos="0" name="hw.device" value="Wireless Controller"/>
1480
+ <param pos="0" name="hw.vendor" value="Motorola"/>
1481
+ <param pos="1" name="hw.product"/>
1482
+ <param pos="2" name="host.mac"/>
1483
+ </fingerprint>
1484
+
1485
+ <fingerprint pattern="^CN=(AP\d+)-([0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2}-[0-9a-fA-F]{2})$">
1486
+ <description>Motorola Wireless Access Points</description>
1487
+ <example host.mac="F1-11-11-11-11-11" hw.product="AP6532">CN=AP6532-F1-11-11-11-11-11</example>
1488
+ <param pos="0" name="hw.device" value="WAP"/>
1489
+ <param pos="0" name="hw.vendor" value="Motorola"/>
1490
+ <param pos="1" name="hw.product"/>
1491
+ <param pos="2" name="host.mac"/>
1492
+ </fingerprint>
1493
+
1494
+ <fingerprint pattern="^CN=attvpngateway\.att\.com,O=AT&amp;T,L=Tampa,ST=FL,C=US$">
1495
+ <description>ATT VPN Gateway</description>
1496
+ <example>CN=attvpngateway.att.com,O=AT&amp;T,L=Tampa,ST=FL,C=US</example>
1497
+ <param pos="0" name="hw.vendor" value="ATT"/>
1498
+ <param pos="0" name="hw.device" value="VPN"/>
1499
+ <param pos="0" name="hw.product" value="VPN Gateway"/>
1500
+ </fingerprint>
1501
+
1502
+ <fingerprint pattern="^CN=silver-peak,OU=Networking Appliance">
1503
+ <description>Silver Peak Appliance</description>
1504
+ <example>CN=silver-peak,OU=Networking Appliance,O=Silver Peak Systems Inc,L=Mountain View,ST=California,C=--</example>
1505
+ <param pos="0" name="hw.vendor" value="Silver Peak"/>
1506
+ <param pos="0" name="hw.device" value="Network Appliance"/>
1507
+ <param pos="0" name="hw.product" value="SD-WAN"/>
1508
+ </fingerprint>
1509
+
1430
1510
  </fingerprints>
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: recog
3
3
  version: !ruby/object:Gem::Version
4
- version: 2.3.14
4
+ version: 2.3.19
5
5
  platform: ruby
6
6
  authors:
7
7
  - Rapid7 Research
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2020-08-07 00:00:00.000000000 Z
11
+ date: 2021-02-04 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: rspec
@@ -127,10 +127,13 @@ files:
127
127
  - ".github/ISSUE_TEMPLATE/feature_request.md"
128
128
  - ".github/ISSUE_TEMPLATE/fingerprint_request.md"
129
129
  - ".github/PULL_REQUEST_TEMPLATE"
130
+ - ".github/SECURITY.md"
131
+ - ".github/workflows/ci.yml"
130
132
  - ".gitignore"
131
133
  - ".rspec"
132
134
  - ".ruby-gemset"
133
135
  - ".ruby-version"
136
+ - ".snyk"
134
137
  - ".travis.yml"
135
138
  - ".yardopts"
136
139
  - CONTRIBUTING.md
@@ -167,9 +170,6 @@ files:
167
170
  - identifiers/os_product.txt
168
171
  - identifiers/service_family.txt
169
172
  - identifiers/service_product.txt
170
- - identifiers/software_class.txt
171
- - identifiers/software_family.txt
172
- - identifiers/software_product.txt
173
173
  - identifiers/vendor.txt
174
174
  - lib/recog.rb
175
175
  - lib/recog/db.rb
@@ -252,6 +252,7 @@ files:
252
252
  - xml/snmp_sysobjid.xml
253
253
  - xml/ssh_banners.xml
254
254
  - xml/telnet_banners.xml
255
+ - xml/tls_jarm.xml
255
256
  - xml/x11_banners.xml
256
257
  - xml/x509_issuers.xml
257
258
  - xml/x509_subjects.xml
@@ -1,26 +0,0 @@
1
- Backup
2
- Blog
3
- Browser Add-On
4
- Container Orchestrator
5
- Database Client
6
- Database Server
7
- Gateway
8
- General
9
- IM Client
10
- IM Server
11
- Internet Client
12
- Internet Server
13
- Mail Client
14
- Mail Server
15
- Media Client
16
- Media Server
17
- Medical Device
18
- Middleware
19
- OS Level Virtualization
20
- Peer-Peer
21
- Productivity
22
- SCADA
23
- Security
24
- Systems Management
25
- Utility
26
- Virtualization
@@ -1,91 +0,0 @@
1
- .NET Framework
2
- Acrobat
3
- ASP.NET MVC
4
- Chrome
5
- Cisco WebEx
6
- ColdFusion
7
- Commerce Server
8
- CyberArk
9
- DB2
10
- Docker Platform
11
- Edge
12
- Enhanced Mitigation Experience Toolkit
13
- Essentials
14
- Exchange Server
15
- Expression Suite
16
- Flash
17
- Forefront Endpoint Protection
18
- Forefront
19
- Fusion
20
- Ghostscript
21
- Host Integration Server 2004
22
- Host Integration Server 2006
23
- Host Integration Server 2009
24
- Host Integration Server 2010
25
- Host Integration Server
26
- HP System Management Homepage
27
- HP Systems Insight Manager
28
- Internet Explorer
29
- Internet Information Services
30
- iTunes
31
- Java
32
- JBoss
33
- LastPass
34
- Lync 2010
35
- Lync 2013
36
- MDAC
37
- Microsoft Biztalk Server
38
- Microsoft Dynamics AX
39
- Moodle
40
- Mozilla
41
- MSXML
42
- Norton
43
- Office 2000
44
- Office 2003
45
- Office 2007
46
- Office 2010
47
- Office 2013
48
- Office 2016
49
- Office Communicator 2005
50
- Office Communicator 2007 R2
51
- Office Communicator 2007
52
- Office Communicator
53
- Office Web Apps
54
- Office XP
55
- Office
56
- OfficeScan
57
- OpenShift
58
- OpenView
59
- Outlook
60
- ownCloud
61
- QuickTime
62
- Rapid7 Agent
63
- Safari
64
- Scada
65
- SharePoint
66
- Shockwave
67
- Silverlight
68
- Skype for Business 2015
69
- Skype for Business 2016
70
- Sophos
71
- SQL Server
72
- Struts
73
- Symantec Endpoint Protection Manager
74
- System Center Operations Manager
75
- Systems Management Server
76
- Tomcat
77
- TOR
78
- vCenter Server
79
- VirusScan
80
- Visual Basic for Applications
81
- Visual FoxPro
82
- Visual Studio Foundation Server
83
- Visual Studio
84
- VLC
85
- WebLogic Server
86
- WebSphere
87
- Windows Media Player
88
- Wordpress
89
- Works
90
- Workstation
91
- Worry-Free Business Security