RubyGems - recog - Versions diffs - 2.3.17 → 2.3.21 - Mend

recog 2.3.17 → 2.3.21

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (51) hide show

checksums.yaml +4 -4
data/.github/workflows/ci.yml +26 -0
data/bin/recog_standardize +6 -0
data/cpe-remap.yaml +342 -200
data/identifiers/README.md +24 -10
data/identifiers/fields.txt +104 -0
data/identifiers/hw_device.txt +2 -0
data/identifiers/hw_family.txt +11 -0
data/identifiers/hw_product.txt +71 -0
data/identifiers/os_device.txt +2 -1
data/identifiers/os_family.txt +2 -0
data/identifiers/os_product.txt +36 -8
data/identifiers/service_family.txt +10 -1
data/identifiers/service_product.txt +78 -2
data/identifiers/vendor.txt +55 -0
data/lib/recog/nizer.rb +1 -82
data/lib/recog/version.rb +1 -1
data/requirements.txt +1 -1
data/update_cpes.py +18 -5
data/xml/apache_modules.xml +60 -0
data/xml/apache_os.xml +1 -1
data/xml/dns_versionbind.xml +11 -1
data/xml/favicons.xml +122 -3
data/xml/ftp_banners.xml +62 -51
data/xml/html_title.xml +553 -41
data/xml/http_cookies.xml +262 -61
data/xml/http_servers.xml +478 -108
data/xml/http_wwwauth.xml +36 -9
data/xml/imap_banners.xml +5 -5
data/xml/ldap_searchresult.xml +1 -0
data/xml/mdns_device-info_txt.xml +340 -10
data/xml/mysql_banners.xml +2 -1
data/xml/nntp_banners.xml +1 -1
data/xml/ntp_banners.xml +16 -2
data/xml/operating_system.xml +4 -4
data/xml/pop_banners.xml +4 -4
data/xml/rtsp_servers.xml +7 -0
data/xml/sip_banners.xml +347 -9
data/xml/sip_user_agents.xml +323 -4
data/xml/smb_native_lm.xml +32 -1
data/xml/smb_native_os.xml +160 -33
data/xml/smtp_banners.xml +167 -128
data/xml/smtp_expn.xml +1 -0
data/xml/smtp_vrfy.xml +1 -0
data/xml/snmp_sysdescr.xml +205 -36
data/xml/ssh_banners.xml +139 -25
data/xml/telnet_banners.xml +92 -48
data/xml/tls_jarm.xml +140 -0
data/xml/x509_issuers.xml +201 -2
data/xml/x509_subjects.xml +251 -32
metadata +5 -2

data/identifiers/vendor.txt CHANGED Viewed

@@ -1,10 +1,13 @@
+3CX
 3Com
 8x8 Inc.
 A.K.I Software
 ACME
+ACT Security
 ADB
 ADC
 ADTRAN
+AIOHTTP Project
 ALCATEL
 ALT
 ALU
@@ -22,12 +25,14 @@ AT&T Worldworx
 ATEN
 ATG
 ATL Telecom Limited
+ATT
 AVM
 AVT
 AVTECH
 AXIS
 Aastra
 Accelerated Technology
+AdGuard
 Adaptec
 Adobe
 Adtran
@@ -77,6 +82,7 @@ AudioCodes
 Avaya
 Avery Dennison
 Avigilon
+Avleen Vig
 Avocent
 Axis
 Axonius
@@ -87,6 +93,7 @@ BT
 Bandura Labs
 Bangteng
 Barco
+Barracuda
 Berkeley Software Design Inc.
 Bftpd Project
 Bigfoot
@@ -110,6 +117,7 @@ CDVI
 CSM
 Cabletron
 CaddyServer
+Calibre-Web Project
 Calient
 Calnex
 Cambium Networks
@@ -126,6 +134,7 @@ Cesanta
 Chainpoint
 Check Point
 Checkpoint
+Cherokee Project
 CherryPy
 Ciena
 Cintech Tele-Management
@@ -153,12 +162,14 @@ Compuware
 Conectiva
 Conexant
 Congruency, Inc.
+ConnectWise
 Couchbase
 Cradlepoint
 Crestron
 Critical Path
 CrushFTP
 CrystalVoice Communications
+Cumulus
 Cyberoam
 D J Bernstein
 D-Link
@@ -176,11 +187,13 @@ Debian
 Dell
 Deutsche Telekom
 Device42
+Dialogic
 Digi
 Digitronic Computersysteme GmbH
 Digium
 DirectLOGIC
 DocuWiki
+Dokuwiki
 Double Precision
 Dovecot
 Dr. Neuhaus Mikroelektronik
@@ -206,7 +219,9 @@ Embedthis
 Emby
 Emerson
 Emulex
+Encode
 Enterasys
+Envoy Proxy
 Epson
 EqualLogic
 Equivalence (OpenH323)
@@ -231,6 +246,7 @@ Firefly
 Floosietek
 FlowPoint
 Flussonic
+Flyspray
 Folding@home
 Fortinet
 Foscam
@@ -238,6 +254,7 @@ Foundry
 Foundry Networks
 FreeBSD
 FreePBX
+FreeSWITCH
 Fuji Xerox
 Fujitsu
 Fujitsu Siemens
@@ -261,6 +278,7 @@ GitLab
 Gitea
 Global Technology Associates
 GlobalScape
+Gogs
 Google
 Gordano
 Grafana
@@ -277,6 +295,7 @@ HP
 HPE
 Hadoop
 Haivision
+Hak5
 Hanwha Techwin
 HashiCorp
 Hauni Elektronik
@@ -298,6 +317,7 @@ ISC
 ISDN Communications
 ITO Communications
 Idea
+Ignite Realtime
 ImageCom
 Imagistics
 Inari Inc.
@@ -313,7 +333,10 @@ Internet Archive
 Inveo
 Ipswitch
 Isilon
+Istio
+JFrog
 Jamf
+Jellyfin
 Jenkins
 JetBrains
 Juniper
@@ -352,10 +375,12 @@ LibreNMS
 Liebert
 Lifesize
 LigoWave
+Ligowave
 Linksys
 Linux
 LiteSpeed Technologies
 LiveWorks Limited
+Logitech
 Lotus
 Loxone
 Lucent
@@ -385,8 +410,10 @@ Mercury Security
 Merit LILIN
 Mersive
 MetaInfo
+Metabase
 MiBridge Inc.
 Michael Tokarev
+MicroStrategy
 Microplex
 Microsoft
 MikroTik
@@ -396,11 +423,13 @@ Mitel
 Mobatek
 Mobotix
 Mocana
+MoinMoin
 Moodle
 Mort Bay
 Motion Media Technology
 Motorola
 Moxa
+Mozilla
 MultiTech
 Multicraft
 Munin
@@ -435,6 +464,7 @@ Netwave
 Network Alchemy Limited
 Network Equipment Technologies
 Neustar
+Nextcloud
 Nokia
 Nokia-Siemens
 Nominum
@@ -443,6 +473,7 @@ Norton
 Novell
 OPNsense
 Objective Communications
+Observium
 Oce
 Octopus
 Oki
@@ -453,6 +484,8 @@ OpenLDAP
 OpenMediaVault
 OpenNAC
 OpenResty
+OpenSER
+OpenSIPS
 OpenSUSE
 OpenStack
 OpenVMS
@@ -464,6 +497,7 @@ Oracle
 Overland
 Oversee
 PHP
+PIAF
 PLD
 PRTG
 Pagoo, Inc.
@@ -476,7 +510,10 @@ Paradyne
 Parallels
 Paramiko
 Paul Smith Computer Services
+Pelco
 Percona
+Perl
+Phacility
 Philips
 Philips Video Conferencing Systems
 Pi-hole
@@ -498,6 +535,7 @@ Process Software
 Progress
 Prometheus
 Pronet
+Proxmox
 Pulse Secure
 Pure Storage
 PureFTPd
@@ -527,6 +565,7 @@ Rhino Software
 Ricoh
 Ridgeway Systems and Software
 Rifatron
+Riverbed
 Riverstone
 Rockliffe
 Rockwell Automation
@@ -550,8 +589,10 @@ SMA Solar Technology Ag
 SMC Networks
 SPIP
 SSH Communications Security
+STARFACE GmhH
 SUSE
 SafeNet
+Sage
 Samba
 Samsung
 Sangoma
@@ -585,6 +626,7 @@ Silver Peak
 Siqura
 Slackware
 SmoothWall
+SnapServer
 Sofrel
 Softing
 SolarWinds
@@ -605,6 +647,7 @@ StarNet Communications Corp.
 StarVox, Inc.
 StartCom
 Steinsvik
+Strategic Cyber LLC
 StreamComm
 SuSE
 Sun
@@ -616,6 +659,7 @@ Symantec
 Symbol
 Symbol Technologies Inc.
 Symplified
+Synacor
 Syndeo Corp.
 Synology
 SysMaster Corporation
@@ -626,9 +670,11 @@ TP-LINK
 TRENDnet
 TVersity
 TYPO3
+Tableau
 Tandberg
 Taobao
 Tasman Networks
+Technicolor
 Tektronix
 Teldat H. Kruszynski, M. Cichocki Sp. J.
 TeleStream Technologies, Inc.
@@ -641,14 +687,17 @@ Thekelleys
 Thomson
 TigerVNC
 TightVNC
+Tildeslash
 Tilgin
 Tintro
 Tinyproxy Project
 Tivo
 Tobit Software
 Tokutek
+Tor Project
 TornadoWeb
 Toshiba
+Traefik Labs
 Treck
 Tridium
 Troy
@@ -679,6 +728,7 @@ VideoServer
 Vignette
 Vine
 Vircom
+Visuality Systems
 Vizio
 VocalTec Communications, Inc.
 Västgöta-Data AB
@@ -688,12 +738,14 @@ Washington University
 WatchGuard
 WeOnlyDo
 WebTrends
+Webmin
 Westbay Engineers
 Westell
 Western Digital
 White Box
 Wildix
 Wind River
+Wowza
 Wowza Media Systems
 X.Org
 XAMPP
@@ -707,6 +759,7 @@ Xitami
 Xlight
 Xubuntu
 Xyplex
+Xytronix
 Yamaha
 Yealink
 Yocto
@@ -723,6 +776,7 @@ cPanel
 cz.nic
 enGenius
 estos
+etherpad
 exim
 gdnsd
 home.pl
@@ -734,6 +788,7 @@ lighttpd
 mod_ssl
 mod_wsgi
 nginx
+ninenines
 noVNC
 ownCloud
 pfSense

data/lib/recog/nizer.rb CHANGED Viewed

@@ -8,13 +8,13 @@ class Nizer
   # Non-weighted host attributes that can be extracted from fingerprint matches
   HOST_ATTRIBUTES = %W{
     host.domain
-    host.id
     host.ip
     host.mac
     host.name
     host.time
     hw.device
     hw.family
+    hw.serial_number
     hw.product
     hw.vendor
   }
@@ -264,84 +264,3 @@ class Nizer
 end
 end
-=begin
-Current key names:
-  apache.info
-  apache.variant
-  apache.variant.version
-  cookie
-  host.domain
-  host.id
-  host.ip
-  host.mac
-  host.name
-  host.time
-  hw.device
-  hw.family
-  hw.product
-  hw.vendor
-  imail.eval
-  jetty.info
-  junction.cookie
-  junction.name
-  linux.kernel.version
-  loadbalancer.poolname
-  mdaemon.unregistered
-  mercur.os.info
-  metainfo.version
-  metainfo.version.version
-  ms.nttp.version
-  notes.build.version
-  notes.intl
-  ntmail.id
-  openssh.comment
-  openssh.cvepatch
-  os.arch
-  os.build
-  os.certainty
-  os.device
-  os.edition
-  os.family
-  os.product
-  os.vendor
-  os.version
-  os.version.version
-  os.version.version.version
-  postfix.os.info
-  postoffice.build
-  postoffice.id
-  proftpd.server.name
-  pureftpd.config
-  qpopper.version
-  sendmail.config.version
-  sendmail.hpux.phne.version
-  sendmail.vendor.version
-  service.certainty
-  service.component.family
-  service.component.product
-  service.component.vendor
-  service.component.version
-  service.family
-  service.product
-  service.vendor
-  service.version
-  service.version.version
-  service.version.version.version
-  service.version.version.version.version
-  service.version.version.version.version.version
-  siemens.model
-  snmp.fpmib.oid.1
-  snmp.fpmib.oid.2
-  system.time
-  system.time.format
-  system.time.micros
-  system.time.millis
-  thttpd.mx-patch
-  timeout
-  tomcat.info
-  zmailer.ident
-=end

data/lib/recog/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module Recog
-  VERSION = '2.3.17'
+  VERSION = '2.3.21'
 end

data/requirements.txt CHANGED Viewed

@@ -1,2 +1,2 @@
-lxml==4.6.2
+lxml==4.6.3
 pyyaml