recog 2.3.9 → 2.3.14
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/bin/recog_cleanup +0 -0
- data/cpe-remap.yaml +18 -2
- data/identifiers/service_product.txt +1 -0
- data/identifiers/vendor.txt +1 -0
- data/lib/recog/version.rb +1 -1
- data/update_cpes.py +3 -0
- data/xml/dns_versionbind.xml +116 -8
- data/xml/favicons.xml +3 -2
- data/xml/ftp_banners.xml +72 -10
- data/xml/html_title.xml +28 -0
- data/xml/http_servers.xml +418 -72
- data/xml/http_wwwauth.xml +7 -7
- data/xml/imap_banners.xml +43 -0
- data/xml/pop_banners.xml +57 -2
- data/xml/smtp_banners.xml +84 -2
- data/xml/snmp_sysdescr.xml +2 -1
- data/xml/ssh_banners.xml +7 -3
- data/xml/telnet_banners.xml +227 -7
- metadata +2 -2
data/xml/snmp_sysdescr.xml
CHANGED
|
@@ -2403,7 +2403,7 @@ Copyright (c) 1995-2005 by Cisco Systems
|
|
|
2403
2403
|
<param pos="2" name="hw.product"/>
|
|
2404
2404
|
<param pos="3" name="os.version"/>
|
|
2405
2405
|
<param pos="4" name="os.version.version"/>
|
|
2406
|
-
<param pos="0" name="os.cpe23" value="cpe:/o:hp:
|
|
2406
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:hp:tru64_unix:{os.version}"/>
|
|
2407
2407
|
</fingerprint>
|
|
2408
2408
|
|
|
2409
2409
|
<fingerprint pattern="^(\S+) (.*?) Digital UNIX V(\S+)\s+\(Rev\. ([^\)]+)\).*TCP/IP$">
|
|
@@ -3353,6 +3353,7 @@ Copyright (c) 1995-2005 by Cisco Systems
|
|
|
3353
3353
|
<param pos="0" name="os.vendor" value="IBM"/>
|
|
3354
3354
|
<param pos="0" name="os.family" value="z/OS"/>
|
|
3355
3355
|
<param pos="0" name="os.product" value="z/OS"/>
|
|
3356
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:ibm:z\/os:-"/>
|
|
3356
3357
|
</fingerprint>
|
|
3357
3358
|
|
|
3358
3359
|
<fingerprint pattern="^BladeCenter Management Module$">
|
data/xml/ssh_banners.xml
CHANGED
|
@@ -1962,8 +1962,10 @@
|
|
|
1962
1962
|
<fingerprint pattern="^dropbear$">
|
|
1963
1963
|
<description>Dropbear w/o version - http://matt.ucc.asn.au/dropbear/dropbear.html</description>
|
|
1964
1964
|
<example>dropbear</example>
|
|
1965
|
+
<param pos="0" name="service.vendor" value="Dropbear SSH Project"/>
|
|
1965
1966
|
<param pos="0" name="service.family" value="Dropbear"/>
|
|
1966
|
-
<param pos="0" name="service.product" value="Dropbear"/>
|
|
1967
|
+
<param pos="0" name="service.product" value="Dropbear SSH"/>
|
|
1968
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:dropbear_ssh_project:dropbear_ssh:-"/>
|
|
1967
1969
|
</fingerprint>
|
|
1968
1970
|
|
|
1969
1971
|
<fingerprint pattern="^dropbear_(.*)$">
|
|
@@ -1971,8 +1973,10 @@
|
|
|
1971
1973
|
<example service.version="2015.67">dropbear_2015.67</example>
|
|
1972
1974
|
<example service.version="0.49">dropbear_0.49</example>
|
|
1973
1975
|
<param pos="1" name="service.version"/>
|
|
1976
|
+
<param pos="0" name="service.vendor" value="Dropbear SSH Project"/>
|
|
1974
1977
|
<param pos="0" name="service.family" value="Dropbear"/>
|
|
1975
|
-
<param pos="0" name="service.product" value="Dropbear"/>
|
|
1978
|
+
<param pos="0" name="service.product" value="Dropbear SSH"/>
|
|
1979
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:dropbear_ssh_project:dropbear_ssh:{service.version}"/>
|
|
1976
1980
|
</fingerprint>
|
|
1977
1981
|
|
|
1978
1982
|
<fingerprint pattern="^lancom$">
|
|
@@ -2059,7 +2063,7 @@
|
|
|
2059
2063
|
<param pos="0" name="os.vendor" value="HP"/>
|
|
2060
2064
|
<param pos="0" name="os.family" value="Unix"/>
|
|
2061
2065
|
<param pos="0" name="os.product" value="Tru64 Unix"/>
|
|
2062
|
-
<param pos="0" name="os.cpe23" value="cpe:/o:hp:
|
|
2066
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:hp:tru64_unix:-"/>
|
|
2063
2067
|
</fingerprint>
|
|
2064
2068
|
|
|
2065
2069
|
<fingerprint pattern="^ROSSSH$">
|
data/xml/telnet_banners.xml
CHANGED
|
@@ -66,7 +66,7 @@
|
|
|
66
66
|
<param pos="0" name="hw.vendor" value="Cisco"/>
|
|
67
67
|
</fingerprint>
|
|
68
68
|
|
|
69
|
-
<fingerprint pattern="^(?:\r|\n)*MikroTik v([\w.]+)(?: \(\w+\))?(?:\r|\n)+Login:\s*$">
|
|
69
|
+
<fingerprint pattern="^(?:\r|\n)*MikroTik v([\w.]+)(?: \([\w-]+\))?(?:\r|\n)+Login:\s*$">
|
|
70
70
|
<description>MikroTik RouterOS</description>
|
|
71
71
|
<!-- MikroTik v5.2\r\nLogin: -->
|
|
72
72
|
|
|
@@ -80,6 +80,9 @@
|
|
|
80
80
|
<!-- MikroTik v6.36rc12 (testing)\r\nLogin: -->
|
|
81
81
|
|
|
82
82
|
<example _encoding="base64" os.version="6.36rc12">TWlrcm9UaWsgdjYuMzZyYzEyICh0ZXN0aW5nKQ0KTG9naW46Cg==</example>
|
|
83
|
+
<!-- MikroTik v6.42.9 (long-term)\r\nLogin: -->
|
|
84
|
+
|
|
85
|
+
<example _encoding="base64" os.version="6.42.9">TWlrcm9UaWsgdjYuNDIuOSAobG9uZy10ZXJtKQ0KTG9naW46Cg==</example>
|
|
83
86
|
<param pos="0" name="os.vendor" value="MikroTik"/>
|
|
84
87
|
<param pos="0" name="os.device" value="Router"/>
|
|
85
88
|
<param pos="0" name="os.product" value="RouterOS"/>
|
|
@@ -165,6 +168,28 @@
|
|
|
165
168
|
<param pos="0" name="hw.device" value="Router"/>
|
|
166
169
|
</fingerprint>
|
|
167
170
|
|
|
171
|
+
<fingerprint pattern="^(?:\r|\n)*DD-WRT v(3.\d)-(r([\w]+)) ([\w-]+) \(c\) \d{4} NewMedia-NET GmbH(?:\r|\n)+Release: \d+\/\d+\/\d+(?:\r|\n)+Board: (\S+) ([^\n\r]+)(?:\r|\n)+.* login:\s*$">
|
|
172
|
+
<description>DD-WRT - 3.0 family - with hardward product</description>
|
|
173
|
+
<!-- DD-WRT v3.0-r40559 std (c) 2019 NewMedia-NET GmbH\r\nRelease: 08/06/19\r\nBoard: Linksys WRT3200ACM\r\n\r\nDD-WRT login: -->
|
|
174
|
+
|
|
175
|
+
<example _encoding="base64" os.version="3.0" os.version.version="r40559" os.edition="std" os.build="40559" hw.vendor="Linksys" hw.product="WRT3200ACM">
|
|
176
|
+
REQtV1JUIHYzLjAtcjQwNTU5IHN0ZCAoYykgMjAxOSBOZXdNZWRpYS1ORVQgR21iSA0KUmVsZ
|
|
177
|
+
WFzZTogMDgvMDYvMTkNCkJvYXJkOiBMaW5rc3lzIFdSVDMyMDBBQ00NCg0KREQtV1JUIGxvZ2
|
|
178
|
+
luOgo=
|
|
179
|
+
</example>
|
|
180
|
+
<param pos="0" name="os.vendor" value="DD-WRT"/>
|
|
181
|
+
<param pos="0" name="os.product" value="DD-WRT"/>
|
|
182
|
+
<param pos="0" name="os.device" value="Router"/>
|
|
183
|
+
<param pos="1" name="os.version"/>
|
|
184
|
+
<param pos="2" name="os.version.version"/>
|
|
185
|
+
<param pos="3" name="os.build"/>
|
|
186
|
+
<param pos="4" name="os.edition"/>
|
|
187
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:dd-wrt:dd-wrt:{os.version}"/>
|
|
188
|
+
<param pos="5" name="hw.vendor"/>
|
|
189
|
+
<param pos="6" name="hw.product"/>
|
|
190
|
+
<param pos="0" name="hw.device" value="Router"/>
|
|
191
|
+
</fingerprint>
|
|
192
|
+
|
|
168
193
|
<fingerprint pattern="^(TD-\w+) [\d.]+ DSL Modem Router(?:\r|\n)+Authorization failed after trying \d+ times!!!\.(?:\r|\n)+Please login after \d+ seconds!\s*$">
|
|
169
194
|
<description>TP-LINK TD Family DSL Modem/Router</description>
|
|
170
195
|
<!-- TD-W8960N 5.0 DSL Modem Router\r\nAuthorization failed after trying 5 times!!!.\r\nPlease login after 416 seconds! -->
|
|
@@ -906,6 +931,7 @@
|
|
|
906
931
|
<param pos="1" name="hw.product"/>
|
|
907
932
|
<param pos="2" name="host.mac"/>
|
|
908
933
|
<param pos="3" name="host.id"/>
|
|
934
|
+
<param pos="0" name="os.vendor" value="Moxa"/>
|
|
909
935
|
<param pos="4" name="os.version"/>
|
|
910
936
|
<param pos="5" name="os.version.version"/>
|
|
911
937
|
</fingerprint>
|
|
@@ -928,10 +954,24 @@
|
|
|
928
954
|
<param pos="1" name="hw.product"/>
|
|
929
955
|
<param pos="2" name="host.mac"/>
|
|
930
956
|
<param pos="3" name="host.id"/>
|
|
957
|
+
<param pos="0" name="os.vendor" value="Moxa"/>
|
|
931
958
|
<param pos="4" name="os.version"/>
|
|
932
959
|
<param pos="5" name="os.version.version"/>
|
|
933
960
|
</fingerprint>
|
|
934
961
|
|
|
962
|
+
<fingerprint pattern="^(?:\r|\n|\x00|-)*Model name\s+: NPort (5[\w-]+)(?:\r|\n|\x00)+Please keyin your username:">
|
|
963
|
+
<description>Moxa NPort Device Server - 5xxx Series - Model only</description>
|
|
964
|
+
<!-- Model name : NPort 5110A\r\n\r\nPlease keyin your username: -->
|
|
965
|
+
|
|
966
|
+
<example _encoding="base64" hw.product="5110A">TW9kZWwgbmFtZSAgICAgICA6IE5Q
|
|
967
|
+
b3J0IDUxMTBBDQoNClBsZWFzZSBrZXlpbiB5b3VyIHVzZXJuYW1lOgo=
|
|
968
|
+
</example>
|
|
969
|
+
<param pos="0" name="hw.vendor" value="Moxa"/>
|
|
970
|
+
<param pos="0" name="hw.family" value="NPort"/>
|
|
971
|
+
<param pos="0" name="hw.device" value="Device Server"/>
|
|
972
|
+
<param pos="1" name="hw.product"/>
|
|
973
|
+
</fingerprint>
|
|
974
|
+
|
|
935
975
|
<fingerprint pattern="^Model name\s+: MGate (MB3[\w-]+)(?:\r|\n|\x00|)+MAC address\s+: ([\w:]+)(?:\r|\n|\x00)+Serial No.\s+: (\d+)(?:\r|\n|\x00)+Firmware version : ([\d.]+) Build (\d+)(?:\r|\n|\x00)+">
|
|
936
976
|
<description>Moxa MGate Modbus Gateway</description>
|
|
937
977
|
<!-- Model name : MGate MB3180\r\u0000\nMAC address : 00:90:E8:AA:AA:AA\r\u0000\nSerial No. : 9474\r\u0000\nFirmware version : 1.2 Build 09101913\r\u0000\nSystem uptime : 15 days, 16h:37m:48s\r\u0000\n\r\u0000\nPlease keyin your password: -->
|
|
@@ -948,11 +988,12 @@
|
|
|
948
988
|
<param pos="1" name="hw.product"/>
|
|
949
989
|
<param pos="2" name="host.mac"/>
|
|
950
990
|
<param pos="3" name="host.id"/>
|
|
991
|
+
<param pos="0" name="os.vendor" value="Moxa"/>
|
|
951
992
|
<param pos="4" name="os.version"/>
|
|
952
993
|
<param pos="5" name="os.version.version"/>
|
|
953
994
|
</fingerprint>
|
|
954
995
|
|
|
955
|
-
<fingerprint pattern="^Model name\s+: (NE[\w-]+)(?:\r|\n|\x00)+MAC address\s+: ([\w:]+)(?:\r|\n|\x00)+Serial No.\s+: (\d+)(?:\r|\n|\x00)+Firmware version\s+: ([\d.]+) Build (\d+)(?:\r|\n|\x00)+">
|
|
996
|
+
<fingerprint pattern="^Model name\s+: (NE[\w-]+)(?:\r|\n|\x00)+MAC address\s+: ([\w:]+)(?:\r|\n|\x00)+Serial No.\s+: (\d+)(?:\r|\n|\x00)+Firmware version\s+: ([\d.]+)(?: Build (\d+)(?:\r|\n|\x00)+)?">
|
|
956
997
|
<description>Moxa NE Series Embedded device server</description>
|
|
957
998
|
<!-- Model name : NE-4110S\r\u0000\nMAC address : 00:90:E8:AA:AA:AA\r\u0000\nSerial No : 3616\r\u0000\nFirmware version : 4.1 Build 07061517\r\u0000\n\r\u0000\nPlease keyin your password: -->
|
|
958
999
|
|
|
@@ -961,16 +1002,74 @@
|
|
|
961
1002
|
kU4OkFBOkFBOkFBDQAKU2VyaWFsIE5vICAgICAgICA6IDM2MTYNAApGaXJtd2FyZSB2ZXJzaW
|
|
962
1003
|
9uIDogNC4xIEJ1aWxkIDA3MDYxNTE3DQAKDQAKUGxlYXNlIGtleWluIHlvdXIgcGFzc3dvcmQ6
|
|
963
1004
|
</example>
|
|
1005
|
+
<!-- Model name : NE-4110S\r\nMAC address : 00:90:E8:AA:AA:AA\r\nSerial No : 000\r\nFirmware version : 1.5.2\r\n\r\nPlease keyin your password: -->
|
|
1006
|
+
|
|
1007
|
+
<example _encoding="base64" hw.product="NE-4110S" host.mac="00:90:E8:AA:AA:AA" host.id="000" os.version="1.5.2">
|
|
1008
|
+
TW9kZWwgbmFtZSAgICAgICA6IE5FLTQxMTBTDQpNQUMgYWRkcmVzcyAgICAgIDogMDA6OTA6RTg6QUE6QUE6QUENClNlcmlhbCBObyAgICAgICAgOiAwMDANCkZpcm13YXJlIHZlcnNpb24gOiAxLjUuMg0KDQpQbGVhc2Uga2V5aW4geW91ciBwYXNzd29yZDoK
|
|
1009
|
+
</example>
|
|
964
1010
|
<param pos="0" name="hw.vendor" value="Moxa"/>
|
|
965
1011
|
<param pos="0" name="hw.family" value="NE"/>
|
|
966
1012
|
<param pos="0" name="hw.device" value="Device Server"/>
|
|
967
1013
|
<param pos="1" name="hw.product"/>
|
|
968
1014
|
<param pos="2" name="host.mac"/>
|
|
969
1015
|
<param pos="3" name="host.id"/>
|
|
1016
|
+
<param pos="0" name="os.vendor" value="Moxa"/>
|
|
970
1017
|
<param pos="4" name="os.version"/>
|
|
971
1018
|
<param pos="5" name="os.version.version"/>
|
|
972
1019
|
</fingerprint>
|
|
973
1020
|
|
|
1021
|
+
<fingerprint pattern="^Model name\s+: (MiiNePort [\w-]+)(?:\r|\n|\x00)+Serial No.\s+: (\d+)(?:\r|\n|\x00)+Device name\s+: [\w:-_\&]+(?:\r|\n|\x00)+Firmware version\s+: ([\d.]+) Build (\d+)(?:\r|\n|\x00)+Ethernet MAC address: ([\w:]+)(?:\r|\n|\x00)+">
|
|
1022
|
+
<description>Moxa MiiNePort Series Embedded device server</description>
|
|
1023
|
+
<!-- Model name : MiiNePort E2\r\nSerial No. : 9999\r\nDevice name : MiiNePort_E2_4064\r\nFirmware version : 1.3.36 Build 15031615\r\nEthernet MAC address: 00:90:E8:5A:92:FF\r\n\r\nPlease keyin your password: -->
|
|
1024
|
+
|
|
1025
|
+
<example _encoding="base64" hw.product="MiiNePort E2" host.mac="00:90:E8:5A:92:FF" host.id="9999" os.version="1.3.36" os.version.version="15031615">
|
|
1026
|
+
TW9kZWwgbmFtZSAgICAgICAgICA6IE1paU5lUG9ydCBFMg0KU2VyaWFsIE5vLiAgICAgICAgI
|
|
1027
|
+
CA6IDk5OTkNCkRldmljZSBuYW1lICAgICAgICAgOiBNaWlOZVBvcnRfRTJfNDA2NA0KRmlybX
|
|
1028
|
+
dhcmUgdmVyc2lvbiAgICA6IDEuMy4zNiBCdWlsZCAxNTAzMTYxNQ0KRXRoZXJuZXQgTUFDIGF
|
|
1029
|
+
kZHJlc3M6IDAwOjkwOkU4OjVBOjkyOkZGDQoNClBsZWFzZSBrZXlpbiB5b3VyIHBhc3N3b3Jk
|
|
1030
|
+
Ogo=
|
|
1031
|
+
</example>
|
|
1032
|
+
<param pos="0" name="hw.vendor" value="Moxa"/>
|
|
1033
|
+
<param pos="0" name="hw.family" value="MiiNePort"/>
|
|
1034
|
+
<param pos="0" name="hw.device" value="Device Server"/>
|
|
1035
|
+
<param pos="1" name="hw.product"/>
|
|
1036
|
+
<param pos="2" name="host.id"/>
|
|
1037
|
+
<param pos="0" name="os.vendor" value="Moxa"/>
|
|
1038
|
+
<param pos="3" name="os.version"/>
|
|
1039
|
+
<param pos="4" name="os.version.version"/>
|
|
1040
|
+
<param pos="5" name="host.mac"/>
|
|
1041
|
+
</fingerprint>
|
|
1042
|
+
|
|
1043
|
+
<!-- The following is very specific in order to express CPE values -->
|
|
1044
|
+
|
|
1045
|
+
<fingerprint pattern="^EDR-G903 login:">
|
|
1046
|
+
<description>Moxa EDR Secure Routers - EDR-G903</description>
|
|
1047
|
+
<example>EDR-G903 login:</example>
|
|
1048
|
+
<param pos="0" name="hw.vendor" value="Moxa"/>
|
|
1049
|
+
<param pos="0" name="hw.family" value="EDR"/>
|
|
1050
|
+
<param pos="0" name="hw.device" value="Router"/>
|
|
1051
|
+
<param pos="0" name="hw.product" value="EDR-G903"/>
|
|
1052
|
+
<param pos="0" name="hw.cpe23" value="cpe:/h:moxa:edr-g903:-"/>
|
|
1053
|
+
<param pos="0" name="os.vendor" value="Moxa"/>
|
|
1054
|
+
<param pos="0" name="os.family" value="EDR"/>
|
|
1055
|
+
<param pos="0" name="os.device" value="Router"/>
|
|
1056
|
+
<param pos="0" name="os.product" value="EDR G903 Firmware"/>
|
|
1057
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:moxa:edr_g903_firmware:-"/>
|
|
1058
|
+
</fingerprint>
|
|
1059
|
+
|
|
1060
|
+
<fingerprint pattern="^EDR-G902 login:">
|
|
1061
|
+
<description>Moxa EDR Secure Routers - EDR-G902</description>
|
|
1062
|
+
<example>EDR-G902 login:</example>
|
|
1063
|
+
<param pos="0" name="hw.vendor" value="Moxa"/>
|
|
1064
|
+
<param pos="0" name="hw.family" value="EDR"/>
|
|
1065
|
+
<param pos="0" name="hw.device" value="Router"/>
|
|
1066
|
+
<param pos="0" name="hw.product" value="EDR-G902"/>
|
|
1067
|
+
<param pos="0" name="os.vendor" value="Moxa"/>
|
|
1068
|
+
<param pos="0" name="os.family" value="EDR"/>
|
|
1069
|
+
<param pos="0" name="os.device" value="Router"/>
|
|
1070
|
+
<param pos="0" name="os.product" value="EDR G902 Firmware"/>
|
|
1071
|
+
</fingerprint>
|
|
1072
|
+
|
|
974
1073
|
<fingerprint pattern="^Red Hat Linux release ([^\\s]+)\\s*.*$">
|
|
975
1074
|
<description>RedHat general purpose linux</description>
|
|
976
1075
|
<!-- Red Hat Linux release 9 (Shrike)\nKernel 2.4.20-8 on an i686\nlogin: -->
|
|
@@ -1370,7 +1469,7 @@
|
|
|
1370
1469
|
<description>System HP-UX</description>
|
|
1371
1470
|
<!-- HP-UX ctout B.11.11 U 9000/800 (tc)\nlogin: -->
|
|
1372
1471
|
|
|
1373
|
-
<example _encoding="base64" host.name="ctout" os.version="11.11" hw.series="9000/800" hw.model="(tc)">
|
|
1472
|
+
<example _encoding="base64" host.name="ctout" os.version="11.11" hw.series="9000/800" hw.model="(tc)" hw.version="U">
|
|
1374
1473
|
SFAtVVggY3RvdXQgQi4xMS4xMSBVIDkwMDAvODAwICh0YykKCmxvZ2luOiA=
|
|
1375
1474
|
</example>
|
|
1376
1475
|
<param pos="0" name="os.vendor" value="HP"/>
|
|
@@ -1800,14 +1899,20 @@
|
|
|
1800
1899
|
<param pos="1" name="hw.version"/>
|
|
1801
1900
|
</fingerprint>
|
|
1802
1901
|
|
|
1803
|
-
<fingerprint pattern="^RDK \(A Yocto Project based Distro\) ([^ ]+) Docsis-Gateway">
|
|
1902
|
+
<fingerprint pattern="^RDK \(A Yocto Project based Distro\) ([^ ]+) (?:Docsis-Gateway|Business)">
|
|
1903
|
+
<description>DOCSIS Cable Modem Running RDK</description>
|
|
1804
1904
|
<!-- RDK (A Yocto Project based Distro) 2.0 Docsis-Gateway
|
|
1805
1905
|
Docsis-Gateway login: -->
|
|
1806
1906
|
|
|
1807
|
-
<description>DOCSIS Cable Modem Running RDK</description>
|
|
1808
1907
|
<example _encoding="base64" hw.device="DOCSIS Cable Modem" os.vendor="Yocto" os.product="RDK" os.version="2.0">
|
|
1809
|
-
|
|
1810
|
-
|
|
1908
|
+
UkRLIChBIFlvY3RvIFByb2plY3QgYmFzZWQgRGlzdHJvKSAyLjAgRG9jc2lzLUdhdGV3YXkNC
|
|
1909
|
+
g0NCg1Eb2NzaXMtR2F0ZXdheSBsb2dpbjo=
|
|
1910
|
+
</example>
|
|
1911
|
+
<!-- RDK (A Yocto Project based Distro) 2.0 Business\r\n\r\r\n\rBusiness login: -->
|
|
1912
|
+
|
|
1913
|
+
<example _encoding="base64" hw.device="DOCSIS Cable Modem" os.vendor="Yocto" os.product="RDK" os.version="2.0">
|
|
1914
|
+
UkRLIChBIFlvY3RvIFByb2plY3QgYmFzZWQgRGlzdHJvKSAyLjAgQnVzaW5lc3MNCg0NCg1Cd
|
|
1915
|
+
XNpbmVzcyBsb2dpbjoK
|
|
1811
1916
|
</example>
|
|
1812
1917
|
<param pos="0" name="hw.device" value="DOCSIS Cable Modem"/>
|
|
1813
1918
|
<param pos="0" name="os.vendor" value="Yocto"/>
|
|
@@ -1845,4 +1950,119 @@
|
|
|
1845
1950
|
<param pos="1" name="os.version"/>
|
|
1846
1951
|
</fingerprint>
|
|
1847
1952
|
|
|
1953
|
+
<fingerprint pattern="^KeeneticOS version ([\w.-]+), copyright">
|
|
1954
|
+
<description>Keentic KeeneticOS</description>
|
|
1955
|
+
<!-- KeeneticOS version 3.04.C.6.0-0, copyright (c) 2010-2020 Keenetic Ltd.\r\n\r\nLogin: -->
|
|
1956
|
+
|
|
1957
|
+
<example _encoding="base64" os.version="3.04.C.6.0-0">
|
|
1958
|
+
S2VlbmV0aWNPUyB2ZXJzaW9uIDMuMDQuQy42LjAtMCwgY29weXJpZ2h0IChjKSAyMDEwLTIwM
|
|
1959
|
+
jAgS2VlbmV0aWMgTHRkLg0KDQpMb2dpbjoK
|
|
1960
|
+
</example>
|
|
1961
|
+
<param pos="0" name="hw.device" value="Router"/>
|
|
1962
|
+
<param pos="0" name="hw.vendor" value="Keenetic"/>
|
|
1963
|
+
<param pos="0" name="os.device" value="Router"/>
|
|
1964
|
+
<param pos="0" name="os.vendor" value="Keenetic"/>
|
|
1965
|
+
<param pos="0" name="os.product" value="KeeneticOS"/>
|
|
1966
|
+
<param pos="1" name="os.version"/>
|
|
1967
|
+
</fingerprint>
|
|
1968
|
+
|
|
1969
|
+
<fingerprint pattern="^\**(?:\r|\n)+\* Copyright \(c\) \d\d\d\d-\d\d\d\d New H3C Technologies Co., Ltd. All rights reserved.\*(?:\r|\n)+\* Without the owner's prior written consent,\s+\*(?:\r|\n)+\* no decompiling or reverse-engineering shall be allowed.\s+\*(?:\r|\n)+\*+(?:\r|\n)+login:\s*$">
|
|
1970
|
+
<description>Generic H3C Technologies banner</description>
|
|
1971
|
+
<!-- ******************************************************************************\r\n* Copyright (c) 2004-2017 New H3C Technologies Co., Ltd. All rights reserved.*\r\n* Without the owner's prior written consent, *\r\n* no decompiling or reverse-engineering shall be allowed. *\r\n******************************************************************************\r\n\r\nlogin: -->
|
|
1972
|
+
|
|
1973
|
+
<example _encoding="base64">
|
|
1974
|
+
KioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqK
|
|
1975
|
+
ioqKioqKioqKioqKioqKioqKioqKioqDQoqIENvcHlyaWdodCAoYykgMjAwNC0yMDE3IE5ldy
|
|
1976
|
+
BIM0MgVGVjaG5vbG9naWVzIENvLiwgTHRkLiBBbGwgcmlnaHRzIHJlc2VydmVkLioNCiogV2l
|
|
1977
|
+
0aG91dCB0aGUgb3duZXIncyBwcmlvciB3cml0dGVuIGNvbnNlbnQsICAgICAgICAgICAgICAg
|
|
1978
|
+
ICAgICAgICAgICAgICAgICAgKg0KKiBubyBkZWNvbXBpbGluZyBvciByZXZlcnNlLWVuZ2luZ
|
|
1979
|
+
WVyaW5nIHNoYWxsIGJlIGFsbG93ZWQuICAgICAgICAgICAgICAgICAgICAqDQoqKioqKioqKi
|
|
1980
|
+
oqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKio
|
|
1981
|
+
qKioqKioqKioqKioqKioNCg0KbG9naW46Cg==
|
|
1982
|
+
</example>
|
|
1983
|
+
<param pos="0" name="hw.vendor" value="H3C"/>
|
|
1984
|
+
<param pos="0" name="os.vendor" value="H3C"/>
|
|
1985
|
+
</fingerprint>
|
|
1986
|
+
|
|
1987
|
+
<fingerprint pattern="Telnet Administration (?:\r|\n)+ SAP J2EE Engine v([\d.]+)(?:\r|\n)+">
|
|
1988
|
+
<description>SAP NetWeaver Application Server Java telnet service</description>
|
|
1989
|
+
<!-- ***********************************************
|
|
1990
|
+
**********************************************
|
|
1991
|
+
****###*******####*****#######**************
|
|
1992
|
+
**##***##****##**##****##****##************
|
|
1993
|
+
***##*******##****##***##****##**********
|
|
1994
|
+
*****##*****########***######***********
|
|
1995
|
+
******##****##****##***##*************
|
|
1996
|
+
**##***##**##******##**##************
|
|
1997
|
+
****###****##******##**##**********
|
|
1998
|
+
**********************************
|
|
1999
|
+
********************************
|
|
2000
|
+
Telnet Administration
|
|
2001
|
+
SAP J2EE Engine v7.00
|
|
2002
|
+
Login:
|
|
2003
|
+
-->
|
|
2004
|
+
|
|
2005
|
+
<example _encoding="base64" service.version="7.00">
|
|
2006
|
+
KioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKiogCiAgICoqKi
|
|
2007
|
+
oqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKiogCiAgICoqKiojIyMq
|
|
2008
|
+
KioqKioqIyMjIyoqKioqIyMjIyMjIyoqKioqKioqKioqKioqIAogICAqKiMjKioqIyMqKioqIy
|
|
2009
|
+
MqKiMjKioqKiMjKioqKiMjKioqKioqKioqKioqIAogICAqKiojIyoqKioqKiojIyoqKiojIyoq
|
|
2010
|
+
KiMjKioqKiMjKioqKioqKioqKiAKICAgKioqKiojIyoqKioqIyMjIyMjIyMqKiojIyMjIyMqKi
|
|
2011
|
+
oqKioqKioqKiAKICAgKioqKioqIyMqKioqIyMqKioqIyMqKiojIyoqKioqKioqKioqKiogCiAg
|
|
2012
|
+
ICoqIyMqKiojIyoqIyMqKioqKiojIyoqIyMqKioqKioqKioqKiogCiAgICoqKiojIyMqKioqIy
|
|
2013
|
+
MqKioqKiojIyoqIyMqKioqKioqKioqIAogICAqKioqKioqKioqKioqKioqKioqKioqKioqKioq
|
|
2014
|
+
KioqKioqIAogICAqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKiAKCiAgIFRlbG5ldC
|
|
2015
|
+
BBZG1pbmlzdHJhdGlvbiAKICAgU0FQIEoyRUUgRW5naW5lIHY3LjAwCgoKCkxvZ2luOgo=
|
|
2016
|
+
</example>
|
|
2017
|
+
<param pos="0" name="service.vendor" value="SAP"/>
|
|
2018
|
+
<param pos="0" name="service.product" value="NetWeaver Application Server Java"/>
|
|
2019
|
+
<param pos="0" name="service.family" value="NetWeaver"/>
|
|
2020
|
+
<param pos="1" name="service.version"/>
|
|
2021
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sap:netweaver_application_server_java:{service.version}"/>
|
|
2022
|
+
<param pos="0" name="service.component.vendor" value="SAP"/>
|
|
2023
|
+
<param pos="0" name="service.component.product" value="NetWeaver Application Server"/>
|
|
2024
|
+
<param pos="0" name="service.component.cpe23" value="cpe:/a:sap:netweaver_application_server:-"/>
|
|
2025
|
+
</fingerprint>
|
|
2026
|
+
|
|
2027
|
+
<fingerprint pattern="Telnet Administration (?:\r|\n)+ SAP Java EE Application Server v([\d.]+)(?:\r|\n)+">
|
|
2028
|
+
<description>SAP NetWeaver Application Server Java telnet service - newer variant</description>
|
|
2029
|
+
<!-- ***********************************************
|
|
2030
|
+
**********************************************
|
|
2031
|
+
****###*******####*****#######**************
|
|
2032
|
+
**##***##****##**##****##****##************
|
|
2033
|
+
***##*******##****##***##****##**********
|
|
2034
|
+
*****##*****########***######***********
|
|
2035
|
+
******##****##****##***##*************
|
|
2036
|
+
**##***##**##******##**##************
|
|
2037
|
+
****###****##******##**##**********
|
|
2038
|
+
**********************************
|
|
2039
|
+
********************************
|
|
2040
|
+
Telnet Administration
|
|
2041
|
+
SAP Java EE Application Server v7.50
|
|
2042
|
+
User name:
|
|
2043
|
+
-->
|
|
2044
|
+
|
|
2045
|
+
<example _encoding="base64" service.version="7.50">
|
|
2046
|
+
KioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKiogCiAgICoqKi
|
|
2047
|
+
oqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKiogCiAgICoqKiojIyMq
|
|
2048
|
+
KioqKioqIyMjIyoqKioqIyMjIyMjIyoqKioqKioqKioqKioqIAogICAqKiMjKioqIyMqKioqIy
|
|
2049
|
+
MqKiMjKioqKiMjKioqKiMjKioqKioqKioqKioqIAogICAqKiojIyoqKioqKiojIyoqKiojIyoq
|
|
2050
|
+
KiMjKioqKiMjKioqKioqKioqKiAKICAgKioqKiojIyoqKioqIyMjIyMjIyMqKiojIyMjIyMqKi
|
|
2051
|
+
oqKioqKioqKiAKICAgKioqKioqIyMqKioqIyMqKioqIyMqKiojIyoqKioqKioqKioqKiogCiAg
|
|
2052
|
+
ICoqIyMqKiojIyoqIyMqKioqKiojIyoqIyMqKioqKioqKioqKiogCiAgICoqKiojIyMqKioqIy
|
|
2053
|
+
MqKioqKiojIyoqIyMqKioqKioqKioqIAogICAqKioqKioqKioqKioqKioqKioqKioqKioqKioq
|
|
2054
|
+
KioqKioqIAogICAqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKiAKCiAgIFRlbG5ldC
|
|
2055
|
+
BBZG1pbmlzdHJhdGlvbiAKICAgU0FQIEphdmEgRUUgQXBwbGljYXRpb24gU2VydmVyIHY3LjUw
|
|
2056
|
+
CgoKVXNlciBuYW1lOgo=
|
|
2057
|
+
</example>
|
|
2058
|
+
<param pos="0" name="service.vendor" value="SAP"/>
|
|
2059
|
+
<param pos="0" name="service.product" value="NetWeaver Application Server Java"/>
|
|
2060
|
+
<param pos="0" name="service.family" value="NetWeaver"/>
|
|
2061
|
+
<param pos="1" name="service.version"/>
|
|
2062
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sap:netweaver_application_server_java:{service.version}"/>
|
|
2063
|
+
<param pos="0" name="service.component.vendor" value="SAP"/>
|
|
2064
|
+
<param pos="0" name="service.component.product" value="NetWeaver Application Server"/>
|
|
2065
|
+
<param pos="0" name="service.component.cpe23" value="cpe:/a:sap:netweaver_application_server:-"/>
|
|
2066
|
+
</fingerprint>
|
|
2067
|
+
|
|
1848
2068
|
</fingerprints>
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: recog
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 2.3.
|
|
4
|
+
version: 2.3.14
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Rapid7 Research
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2020-07
|
|
11
|
+
date: 2020-08-07 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: rspec
|