recog 2.3.9 → 2.3.14
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/bin/recog_cleanup +0 -0
- data/cpe-remap.yaml +18 -2
- data/identifiers/service_product.txt +1 -0
- data/identifiers/vendor.txt +1 -0
- data/lib/recog/version.rb +1 -1
- data/update_cpes.py +3 -0
- data/xml/dns_versionbind.xml +116 -8
- data/xml/favicons.xml +3 -2
- data/xml/ftp_banners.xml +72 -10
- data/xml/html_title.xml +28 -0
- data/xml/http_servers.xml +418 -72
- data/xml/http_wwwauth.xml +7 -7
- data/xml/imap_banners.xml +43 -0
- data/xml/pop_banners.xml +57 -2
- data/xml/smtp_banners.xml +84 -2
- data/xml/snmp_sysdescr.xml +2 -1
- data/xml/ssh_banners.xml +7 -3
- data/xml/telnet_banners.xml +227 -7
- metadata +2 -2
data/xml/snmp_sysdescr.xml
CHANGED
@@ -2403,7 +2403,7 @@ Copyright (c) 1995-2005 by Cisco Systems
|
|
2403
2403
|
<param pos="2" name="hw.product"/>
|
2404
2404
|
<param pos="3" name="os.version"/>
|
2405
2405
|
<param pos="4" name="os.version.version"/>
|
2406
|
-
<param pos="0" name="os.cpe23" value="cpe:/o:hp:
|
2406
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:hp:tru64_unix:{os.version}"/>
|
2407
2407
|
</fingerprint>
|
2408
2408
|
|
2409
2409
|
<fingerprint pattern="^(\S+) (.*?) Digital UNIX V(\S+)\s+\(Rev\. ([^\)]+)\).*TCP/IP$">
|
@@ -3353,6 +3353,7 @@ Copyright (c) 1995-2005 by Cisco Systems
|
|
3353
3353
|
<param pos="0" name="os.vendor" value="IBM"/>
|
3354
3354
|
<param pos="0" name="os.family" value="z/OS"/>
|
3355
3355
|
<param pos="0" name="os.product" value="z/OS"/>
|
3356
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:ibm:z\/os:-"/>
|
3356
3357
|
</fingerprint>
|
3357
3358
|
|
3358
3359
|
<fingerprint pattern="^BladeCenter Management Module$">
|
data/xml/ssh_banners.xml
CHANGED
@@ -1962,8 +1962,10 @@
|
|
1962
1962
|
<fingerprint pattern="^dropbear$">
|
1963
1963
|
<description>Dropbear w/o version - http://matt.ucc.asn.au/dropbear/dropbear.html</description>
|
1964
1964
|
<example>dropbear</example>
|
1965
|
+
<param pos="0" name="service.vendor" value="Dropbear SSH Project"/>
|
1965
1966
|
<param pos="0" name="service.family" value="Dropbear"/>
|
1966
|
-
<param pos="0" name="service.product" value="Dropbear"/>
|
1967
|
+
<param pos="0" name="service.product" value="Dropbear SSH"/>
|
1968
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:dropbear_ssh_project:dropbear_ssh:-"/>
|
1967
1969
|
</fingerprint>
|
1968
1970
|
|
1969
1971
|
<fingerprint pattern="^dropbear_(.*)$">
|
@@ -1971,8 +1973,10 @@
|
|
1971
1973
|
<example service.version="2015.67">dropbear_2015.67</example>
|
1972
1974
|
<example service.version="0.49">dropbear_0.49</example>
|
1973
1975
|
<param pos="1" name="service.version"/>
|
1976
|
+
<param pos="0" name="service.vendor" value="Dropbear SSH Project"/>
|
1974
1977
|
<param pos="0" name="service.family" value="Dropbear"/>
|
1975
|
-
<param pos="0" name="service.product" value="Dropbear"/>
|
1978
|
+
<param pos="0" name="service.product" value="Dropbear SSH"/>
|
1979
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:dropbear_ssh_project:dropbear_ssh:{service.version}"/>
|
1976
1980
|
</fingerprint>
|
1977
1981
|
|
1978
1982
|
<fingerprint pattern="^lancom$">
|
@@ -2059,7 +2063,7 @@
|
|
2059
2063
|
<param pos="0" name="os.vendor" value="HP"/>
|
2060
2064
|
<param pos="0" name="os.family" value="Unix"/>
|
2061
2065
|
<param pos="0" name="os.product" value="Tru64 Unix"/>
|
2062
|
-
<param pos="0" name="os.cpe23" value="cpe:/o:hp:
|
2066
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:hp:tru64_unix:-"/>
|
2063
2067
|
</fingerprint>
|
2064
2068
|
|
2065
2069
|
<fingerprint pattern="^ROSSSH$">
|
data/xml/telnet_banners.xml
CHANGED
@@ -66,7 +66,7 @@
|
|
66
66
|
<param pos="0" name="hw.vendor" value="Cisco"/>
|
67
67
|
</fingerprint>
|
68
68
|
|
69
|
-
<fingerprint pattern="^(?:\r|\n)*MikroTik v([\w.]+)(?: \(\w+\))?(?:\r|\n)+Login:\s*$">
|
69
|
+
<fingerprint pattern="^(?:\r|\n)*MikroTik v([\w.]+)(?: \([\w-]+\))?(?:\r|\n)+Login:\s*$">
|
70
70
|
<description>MikroTik RouterOS</description>
|
71
71
|
<!-- MikroTik v5.2\r\nLogin: -->
|
72
72
|
|
@@ -80,6 +80,9 @@
|
|
80
80
|
<!-- MikroTik v6.36rc12 (testing)\r\nLogin: -->
|
81
81
|
|
82
82
|
<example _encoding="base64" os.version="6.36rc12">TWlrcm9UaWsgdjYuMzZyYzEyICh0ZXN0aW5nKQ0KTG9naW46Cg==</example>
|
83
|
+
<!-- MikroTik v6.42.9 (long-term)\r\nLogin: -->
|
84
|
+
|
85
|
+
<example _encoding="base64" os.version="6.42.9">TWlrcm9UaWsgdjYuNDIuOSAobG9uZy10ZXJtKQ0KTG9naW46Cg==</example>
|
83
86
|
<param pos="0" name="os.vendor" value="MikroTik"/>
|
84
87
|
<param pos="0" name="os.device" value="Router"/>
|
85
88
|
<param pos="0" name="os.product" value="RouterOS"/>
|
@@ -165,6 +168,28 @@
|
|
165
168
|
<param pos="0" name="hw.device" value="Router"/>
|
166
169
|
</fingerprint>
|
167
170
|
|
171
|
+
<fingerprint pattern="^(?:\r|\n)*DD-WRT v(3.\d)-(r([\w]+)) ([\w-]+) \(c\) \d{4} NewMedia-NET GmbH(?:\r|\n)+Release: \d+\/\d+\/\d+(?:\r|\n)+Board: (\S+) ([^\n\r]+)(?:\r|\n)+.* login:\s*$">
|
172
|
+
<description>DD-WRT - 3.0 family - with hardward product</description>
|
173
|
+
<!-- DD-WRT v3.0-r40559 std (c) 2019 NewMedia-NET GmbH\r\nRelease: 08/06/19\r\nBoard: Linksys WRT3200ACM\r\n\r\nDD-WRT login: -->
|
174
|
+
|
175
|
+
<example _encoding="base64" os.version="3.0" os.version.version="r40559" os.edition="std" os.build="40559" hw.vendor="Linksys" hw.product="WRT3200ACM">
|
176
|
+
REQtV1JUIHYzLjAtcjQwNTU5IHN0ZCAoYykgMjAxOSBOZXdNZWRpYS1ORVQgR21iSA0KUmVsZ
|
177
|
+
WFzZTogMDgvMDYvMTkNCkJvYXJkOiBMaW5rc3lzIFdSVDMyMDBBQ00NCg0KREQtV1JUIGxvZ2
|
178
|
+
luOgo=
|
179
|
+
</example>
|
180
|
+
<param pos="0" name="os.vendor" value="DD-WRT"/>
|
181
|
+
<param pos="0" name="os.product" value="DD-WRT"/>
|
182
|
+
<param pos="0" name="os.device" value="Router"/>
|
183
|
+
<param pos="1" name="os.version"/>
|
184
|
+
<param pos="2" name="os.version.version"/>
|
185
|
+
<param pos="3" name="os.build"/>
|
186
|
+
<param pos="4" name="os.edition"/>
|
187
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:dd-wrt:dd-wrt:{os.version}"/>
|
188
|
+
<param pos="5" name="hw.vendor"/>
|
189
|
+
<param pos="6" name="hw.product"/>
|
190
|
+
<param pos="0" name="hw.device" value="Router"/>
|
191
|
+
</fingerprint>
|
192
|
+
|
168
193
|
<fingerprint pattern="^(TD-\w+) [\d.]+ DSL Modem Router(?:\r|\n)+Authorization failed after trying \d+ times!!!\.(?:\r|\n)+Please login after \d+ seconds!\s*$">
|
169
194
|
<description>TP-LINK TD Family DSL Modem/Router</description>
|
170
195
|
<!-- TD-W8960N 5.0 DSL Modem Router\r\nAuthorization failed after trying 5 times!!!.\r\nPlease login after 416 seconds! -->
|
@@ -906,6 +931,7 @@
|
|
906
931
|
<param pos="1" name="hw.product"/>
|
907
932
|
<param pos="2" name="host.mac"/>
|
908
933
|
<param pos="3" name="host.id"/>
|
934
|
+
<param pos="0" name="os.vendor" value="Moxa"/>
|
909
935
|
<param pos="4" name="os.version"/>
|
910
936
|
<param pos="5" name="os.version.version"/>
|
911
937
|
</fingerprint>
|
@@ -928,10 +954,24 @@
|
|
928
954
|
<param pos="1" name="hw.product"/>
|
929
955
|
<param pos="2" name="host.mac"/>
|
930
956
|
<param pos="3" name="host.id"/>
|
957
|
+
<param pos="0" name="os.vendor" value="Moxa"/>
|
931
958
|
<param pos="4" name="os.version"/>
|
932
959
|
<param pos="5" name="os.version.version"/>
|
933
960
|
</fingerprint>
|
934
961
|
|
962
|
+
<fingerprint pattern="^(?:\r|\n|\x00|-)*Model name\s+: NPort (5[\w-]+)(?:\r|\n|\x00)+Please keyin your username:">
|
963
|
+
<description>Moxa NPort Device Server - 5xxx Series - Model only</description>
|
964
|
+
<!-- Model name : NPort 5110A\r\n\r\nPlease keyin your username: -->
|
965
|
+
|
966
|
+
<example _encoding="base64" hw.product="5110A">TW9kZWwgbmFtZSAgICAgICA6IE5Q
|
967
|
+
b3J0IDUxMTBBDQoNClBsZWFzZSBrZXlpbiB5b3VyIHVzZXJuYW1lOgo=
|
968
|
+
</example>
|
969
|
+
<param pos="0" name="hw.vendor" value="Moxa"/>
|
970
|
+
<param pos="0" name="hw.family" value="NPort"/>
|
971
|
+
<param pos="0" name="hw.device" value="Device Server"/>
|
972
|
+
<param pos="1" name="hw.product"/>
|
973
|
+
</fingerprint>
|
974
|
+
|
935
975
|
<fingerprint pattern="^Model name\s+: MGate (MB3[\w-]+)(?:\r|\n|\x00|)+MAC address\s+: ([\w:]+)(?:\r|\n|\x00)+Serial No.\s+: (\d+)(?:\r|\n|\x00)+Firmware version : ([\d.]+) Build (\d+)(?:\r|\n|\x00)+">
|
936
976
|
<description>Moxa MGate Modbus Gateway</description>
|
937
977
|
<!-- Model name : MGate MB3180\r\u0000\nMAC address : 00:90:E8:AA:AA:AA\r\u0000\nSerial No. : 9474\r\u0000\nFirmware version : 1.2 Build 09101913\r\u0000\nSystem uptime : 15 days, 16h:37m:48s\r\u0000\n\r\u0000\nPlease keyin your password: -->
|
@@ -948,11 +988,12 @@
|
|
948
988
|
<param pos="1" name="hw.product"/>
|
949
989
|
<param pos="2" name="host.mac"/>
|
950
990
|
<param pos="3" name="host.id"/>
|
991
|
+
<param pos="0" name="os.vendor" value="Moxa"/>
|
951
992
|
<param pos="4" name="os.version"/>
|
952
993
|
<param pos="5" name="os.version.version"/>
|
953
994
|
</fingerprint>
|
954
995
|
|
955
|
-
<fingerprint pattern="^Model name\s+: (NE[\w-]+)(?:\r|\n|\x00)+MAC address\s+: ([\w:]+)(?:\r|\n|\x00)+Serial No.\s+: (\d+)(?:\r|\n|\x00)+Firmware version\s+: ([\d.]+) Build (\d+)(?:\r|\n|\x00)+">
|
996
|
+
<fingerprint pattern="^Model name\s+: (NE[\w-]+)(?:\r|\n|\x00)+MAC address\s+: ([\w:]+)(?:\r|\n|\x00)+Serial No.\s+: (\d+)(?:\r|\n|\x00)+Firmware version\s+: ([\d.]+)(?: Build (\d+)(?:\r|\n|\x00)+)?">
|
956
997
|
<description>Moxa NE Series Embedded device server</description>
|
957
998
|
<!-- Model name : NE-4110S\r\u0000\nMAC address : 00:90:E8:AA:AA:AA\r\u0000\nSerial No : 3616\r\u0000\nFirmware version : 4.1 Build 07061517\r\u0000\n\r\u0000\nPlease keyin your password: -->
|
958
999
|
|
@@ -961,16 +1002,74 @@
|
|
961
1002
|
kU4OkFBOkFBOkFBDQAKU2VyaWFsIE5vICAgICAgICA6IDM2MTYNAApGaXJtd2FyZSB2ZXJzaW
|
962
1003
|
9uIDogNC4xIEJ1aWxkIDA3MDYxNTE3DQAKDQAKUGxlYXNlIGtleWluIHlvdXIgcGFzc3dvcmQ6
|
963
1004
|
</example>
|
1005
|
+
<!-- Model name : NE-4110S\r\nMAC address : 00:90:E8:AA:AA:AA\r\nSerial No : 000\r\nFirmware version : 1.5.2\r\n\r\nPlease keyin your password: -->
|
1006
|
+
|
1007
|
+
<example _encoding="base64" hw.product="NE-4110S" host.mac="00:90:E8:AA:AA:AA" host.id="000" os.version="1.5.2">
|
1008
|
+
TW9kZWwgbmFtZSAgICAgICA6IE5FLTQxMTBTDQpNQUMgYWRkcmVzcyAgICAgIDogMDA6OTA6RTg6QUE6QUE6QUENClNlcmlhbCBObyAgICAgICAgOiAwMDANCkZpcm13YXJlIHZlcnNpb24gOiAxLjUuMg0KDQpQbGVhc2Uga2V5aW4geW91ciBwYXNzd29yZDoK
|
1009
|
+
</example>
|
964
1010
|
<param pos="0" name="hw.vendor" value="Moxa"/>
|
965
1011
|
<param pos="0" name="hw.family" value="NE"/>
|
966
1012
|
<param pos="0" name="hw.device" value="Device Server"/>
|
967
1013
|
<param pos="1" name="hw.product"/>
|
968
1014
|
<param pos="2" name="host.mac"/>
|
969
1015
|
<param pos="3" name="host.id"/>
|
1016
|
+
<param pos="0" name="os.vendor" value="Moxa"/>
|
970
1017
|
<param pos="4" name="os.version"/>
|
971
1018
|
<param pos="5" name="os.version.version"/>
|
972
1019
|
</fingerprint>
|
973
1020
|
|
1021
|
+
<fingerprint pattern="^Model name\s+: (MiiNePort [\w-]+)(?:\r|\n|\x00)+Serial No.\s+: (\d+)(?:\r|\n|\x00)+Device name\s+: [\w:-_\&]+(?:\r|\n|\x00)+Firmware version\s+: ([\d.]+) Build (\d+)(?:\r|\n|\x00)+Ethernet MAC address: ([\w:]+)(?:\r|\n|\x00)+">
|
1022
|
+
<description>Moxa MiiNePort Series Embedded device server</description>
|
1023
|
+
<!-- Model name : MiiNePort E2\r\nSerial No. : 9999\r\nDevice name : MiiNePort_E2_4064\r\nFirmware version : 1.3.36 Build 15031615\r\nEthernet MAC address: 00:90:E8:5A:92:FF\r\n\r\nPlease keyin your password: -->
|
1024
|
+
|
1025
|
+
<example _encoding="base64" hw.product="MiiNePort E2" host.mac="00:90:E8:5A:92:FF" host.id="9999" os.version="1.3.36" os.version.version="15031615">
|
1026
|
+
TW9kZWwgbmFtZSAgICAgICAgICA6IE1paU5lUG9ydCBFMg0KU2VyaWFsIE5vLiAgICAgICAgI
|
1027
|
+
CA6IDk5OTkNCkRldmljZSBuYW1lICAgICAgICAgOiBNaWlOZVBvcnRfRTJfNDA2NA0KRmlybX
|
1028
|
+
dhcmUgdmVyc2lvbiAgICA6IDEuMy4zNiBCdWlsZCAxNTAzMTYxNQ0KRXRoZXJuZXQgTUFDIGF
|
1029
|
+
kZHJlc3M6IDAwOjkwOkU4OjVBOjkyOkZGDQoNClBsZWFzZSBrZXlpbiB5b3VyIHBhc3N3b3Jk
|
1030
|
+
Ogo=
|
1031
|
+
</example>
|
1032
|
+
<param pos="0" name="hw.vendor" value="Moxa"/>
|
1033
|
+
<param pos="0" name="hw.family" value="MiiNePort"/>
|
1034
|
+
<param pos="0" name="hw.device" value="Device Server"/>
|
1035
|
+
<param pos="1" name="hw.product"/>
|
1036
|
+
<param pos="2" name="host.id"/>
|
1037
|
+
<param pos="0" name="os.vendor" value="Moxa"/>
|
1038
|
+
<param pos="3" name="os.version"/>
|
1039
|
+
<param pos="4" name="os.version.version"/>
|
1040
|
+
<param pos="5" name="host.mac"/>
|
1041
|
+
</fingerprint>
|
1042
|
+
|
1043
|
+
<!-- The following is very specific in order to express CPE values -->
|
1044
|
+
|
1045
|
+
<fingerprint pattern="^EDR-G903 login:">
|
1046
|
+
<description>Moxa EDR Secure Routers - EDR-G903</description>
|
1047
|
+
<example>EDR-G903 login:</example>
|
1048
|
+
<param pos="0" name="hw.vendor" value="Moxa"/>
|
1049
|
+
<param pos="0" name="hw.family" value="EDR"/>
|
1050
|
+
<param pos="0" name="hw.device" value="Router"/>
|
1051
|
+
<param pos="0" name="hw.product" value="EDR-G903"/>
|
1052
|
+
<param pos="0" name="hw.cpe23" value="cpe:/h:moxa:edr-g903:-"/>
|
1053
|
+
<param pos="0" name="os.vendor" value="Moxa"/>
|
1054
|
+
<param pos="0" name="os.family" value="EDR"/>
|
1055
|
+
<param pos="0" name="os.device" value="Router"/>
|
1056
|
+
<param pos="0" name="os.product" value="EDR G903 Firmware"/>
|
1057
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:moxa:edr_g903_firmware:-"/>
|
1058
|
+
</fingerprint>
|
1059
|
+
|
1060
|
+
<fingerprint pattern="^EDR-G902 login:">
|
1061
|
+
<description>Moxa EDR Secure Routers - EDR-G902</description>
|
1062
|
+
<example>EDR-G902 login:</example>
|
1063
|
+
<param pos="0" name="hw.vendor" value="Moxa"/>
|
1064
|
+
<param pos="0" name="hw.family" value="EDR"/>
|
1065
|
+
<param pos="0" name="hw.device" value="Router"/>
|
1066
|
+
<param pos="0" name="hw.product" value="EDR-G902"/>
|
1067
|
+
<param pos="0" name="os.vendor" value="Moxa"/>
|
1068
|
+
<param pos="0" name="os.family" value="EDR"/>
|
1069
|
+
<param pos="0" name="os.device" value="Router"/>
|
1070
|
+
<param pos="0" name="os.product" value="EDR G902 Firmware"/>
|
1071
|
+
</fingerprint>
|
1072
|
+
|
974
1073
|
<fingerprint pattern="^Red Hat Linux release ([^\\s]+)\\s*.*$">
|
975
1074
|
<description>RedHat general purpose linux</description>
|
976
1075
|
<!-- Red Hat Linux release 9 (Shrike)\nKernel 2.4.20-8 on an i686\nlogin: -->
|
@@ -1370,7 +1469,7 @@
|
|
1370
1469
|
<description>System HP-UX</description>
|
1371
1470
|
<!-- HP-UX ctout B.11.11 U 9000/800 (tc)\nlogin: -->
|
1372
1471
|
|
1373
|
-
<example _encoding="base64" host.name="ctout" os.version="11.11" hw.series="9000/800" hw.model="(tc)">
|
1472
|
+
<example _encoding="base64" host.name="ctout" os.version="11.11" hw.series="9000/800" hw.model="(tc)" hw.version="U">
|
1374
1473
|
SFAtVVggY3RvdXQgQi4xMS4xMSBVIDkwMDAvODAwICh0YykKCmxvZ2luOiA=
|
1375
1474
|
</example>
|
1376
1475
|
<param pos="0" name="os.vendor" value="HP"/>
|
@@ -1800,14 +1899,20 @@
|
|
1800
1899
|
<param pos="1" name="hw.version"/>
|
1801
1900
|
</fingerprint>
|
1802
1901
|
|
1803
|
-
<fingerprint pattern="^RDK \(A Yocto Project based Distro\) ([^ ]+) Docsis-Gateway">
|
1902
|
+
<fingerprint pattern="^RDK \(A Yocto Project based Distro\) ([^ ]+) (?:Docsis-Gateway|Business)">
|
1903
|
+
<description>DOCSIS Cable Modem Running RDK</description>
|
1804
1904
|
<!-- RDK (A Yocto Project based Distro) 2.0 Docsis-Gateway
|
1805
1905
|
Docsis-Gateway login: -->
|
1806
1906
|
|
1807
|
-
<description>DOCSIS Cable Modem Running RDK</description>
|
1808
1907
|
<example _encoding="base64" hw.device="DOCSIS Cable Modem" os.vendor="Yocto" os.product="RDK" os.version="2.0">
|
1809
|
-
|
1810
|
-
|
1908
|
+
UkRLIChBIFlvY3RvIFByb2plY3QgYmFzZWQgRGlzdHJvKSAyLjAgRG9jc2lzLUdhdGV3YXkNC
|
1909
|
+
g0NCg1Eb2NzaXMtR2F0ZXdheSBsb2dpbjo=
|
1910
|
+
</example>
|
1911
|
+
<!-- RDK (A Yocto Project based Distro) 2.0 Business\r\n\r\r\n\rBusiness login: -->
|
1912
|
+
|
1913
|
+
<example _encoding="base64" hw.device="DOCSIS Cable Modem" os.vendor="Yocto" os.product="RDK" os.version="2.0">
|
1914
|
+
UkRLIChBIFlvY3RvIFByb2plY3QgYmFzZWQgRGlzdHJvKSAyLjAgQnVzaW5lc3MNCg0NCg1Cd
|
1915
|
+
XNpbmVzcyBsb2dpbjoK
|
1811
1916
|
</example>
|
1812
1917
|
<param pos="0" name="hw.device" value="DOCSIS Cable Modem"/>
|
1813
1918
|
<param pos="0" name="os.vendor" value="Yocto"/>
|
@@ -1845,4 +1950,119 @@
|
|
1845
1950
|
<param pos="1" name="os.version"/>
|
1846
1951
|
</fingerprint>
|
1847
1952
|
|
1953
|
+
<fingerprint pattern="^KeeneticOS version ([\w.-]+), copyright">
|
1954
|
+
<description>Keentic KeeneticOS</description>
|
1955
|
+
<!-- KeeneticOS version 3.04.C.6.0-0, copyright (c) 2010-2020 Keenetic Ltd.\r\n\r\nLogin: -->
|
1956
|
+
|
1957
|
+
<example _encoding="base64" os.version="3.04.C.6.0-0">
|
1958
|
+
S2VlbmV0aWNPUyB2ZXJzaW9uIDMuMDQuQy42LjAtMCwgY29weXJpZ2h0IChjKSAyMDEwLTIwM
|
1959
|
+
jAgS2VlbmV0aWMgTHRkLg0KDQpMb2dpbjoK
|
1960
|
+
</example>
|
1961
|
+
<param pos="0" name="hw.device" value="Router"/>
|
1962
|
+
<param pos="0" name="hw.vendor" value="Keenetic"/>
|
1963
|
+
<param pos="0" name="os.device" value="Router"/>
|
1964
|
+
<param pos="0" name="os.vendor" value="Keenetic"/>
|
1965
|
+
<param pos="0" name="os.product" value="KeeneticOS"/>
|
1966
|
+
<param pos="1" name="os.version"/>
|
1967
|
+
</fingerprint>
|
1968
|
+
|
1969
|
+
<fingerprint pattern="^\**(?:\r|\n)+\* Copyright \(c\) \d\d\d\d-\d\d\d\d New H3C Technologies Co., Ltd. All rights reserved.\*(?:\r|\n)+\* Without the owner's prior written consent,\s+\*(?:\r|\n)+\* no decompiling or reverse-engineering shall be allowed.\s+\*(?:\r|\n)+\*+(?:\r|\n)+login:\s*$">
|
1970
|
+
<description>Generic H3C Technologies banner</description>
|
1971
|
+
<!-- ******************************************************************************\r\n* Copyright (c) 2004-2017 New H3C Technologies Co., Ltd. All rights reserved.*\r\n* Without the owner's prior written consent, *\r\n* no decompiling or reverse-engineering shall be allowed. *\r\n******************************************************************************\r\n\r\nlogin: -->
|
1972
|
+
|
1973
|
+
<example _encoding="base64">
|
1974
|
+
KioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqK
|
1975
|
+
ioqKioqKioqKioqKioqKioqKioqKioqDQoqIENvcHlyaWdodCAoYykgMjAwNC0yMDE3IE5ldy
|
1976
|
+
BIM0MgVGVjaG5vbG9naWVzIENvLiwgTHRkLiBBbGwgcmlnaHRzIHJlc2VydmVkLioNCiogV2l
|
1977
|
+
0aG91dCB0aGUgb3duZXIncyBwcmlvciB3cml0dGVuIGNvbnNlbnQsICAgICAgICAgICAgICAg
|
1978
|
+
ICAgICAgICAgICAgICAgICAgKg0KKiBubyBkZWNvbXBpbGluZyBvciByZXZlcnNlLWVuZ2luZ
|
1979
|
+
WVyaW5nIHNoYWxsIGJlIGFsbG93ZWQuICAgICAgICAgICAgICAgICAgICAqDQoqKioqKioqKi
|
1980
|
+
oqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKio
|
1981
|
+
qKioqKioqKioqKioqKioNCg0KbG9naW46Cg==
|
1982
|
+
</example>
|
1983
|
+
<param pos="0" name="hw.vendor" value="H3C"/>
|
1984
|
+
<param pos="0" name="os.vendor" value="H3C"/>
|
1985
|
+
</fingerprint>
|
1986
|
+
|
1987
|
+
<fingerprint pattern="Telnet Administration (?:\r|\n)+ SAP J2EE Engine v([\d.]+)(?:\r|\n)+">
|
1988
|
+
<description>SAP NetWeaver Application Server Java telnet service</description>
|
1989
|
+
<!-- ***********************************************
|
1990
|
+
**********************************************
|
1991
|
+
****###*******####*****#######**************
|
1992
|
+
**##***##****##**##****##****##************
|
1993
|
+
***##*******##****##***##****##**********
|
1994
|
+
*****##*****########***######***********
|
1995
|
+
******##****##****##***##*************
|
1996
|
+
**##***##**##******##**##************
|
1997
|
+
****###****##******##**##**********
|
1998
|
+
**********************************
|
1999
|
+
********************************
|
2000
|
+
Telnet Administration
|
2001
|
+
SAP J2EE Engine v7.00
|
2002
|
+
Login:
|
2003
|
+
-->
|
2004
|
+
|
2005
|
+
<example _encoding="base64" service.version="7.00">
|
2006
|
+
KioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKiogCiAgICoqKi
|
2007
|
+
oqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKiogCiAgICoqKiojIyMq
|
2008
|
+
KioqKioqIyMjIyoqKioqIyMjIyMjIyoqKioqKioqKioqKioqIAogICAqKiMjKioqIyMqKioqIy
|
2009
|
+
MqKiMjKioqKiMjKioqKiMjKioqKioqKioqKioqIAogICAqKiojIyoqKioqKiojIyoqKiojIyoq
|
2010
|
+
KiMjKioqKiMjKioqKioqKioqKiAKICAgKioqKiojIyoqKioqIyMjIyMjIyMqKiojIyMjIyMqKi
|
2011
|
+
oqKioqKioqKiAKICAgKioqKioqIyMqKioqIyMqKioqIyMqKiojIyoqKioqKioqKioqKiogCiAg
|
2012
|
+
ICoqIyMqKiojIyoqIyMqKioqKiojIyoqIyMqKioqKioqKioqKiogCiAgICoqKiojIyMqKioqIy
|
2013
|
+
MqKioqKiojIyoqIyMqKioqKioqKioqIAogICAqKioqKioqKioqKioqKioqKioqKioqKioqKioq
|
2014
|
+
KioqKioqIAogICAqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKiAKCiAgIFRlbG5ldC
|
2015
|
+
BBZG1pbmlzdHJhdGlvbiAKICAgU0FQIEoyRUUgRW5naW5lIHY3LjAwCgoKCkxvZ2luOgo=
|
2016
|
+
</example>
|
2017
|
+
<param pos="0" name="service.vendor" value="SAP"/>
|
2018
|
+
<param pos="0" name="service.product" value="NetWeaver Application Server Java"/>
|
2019
|
+
<param pos="0" name="service.family" value="NetWeaver"/>
|
2020
|
+
<param pos="1" name="service.version"/>
|
2021
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sap:netweaver_application_server_java:{service.version}"/>
|
2022
|
+
<param pos="0" name="service.component.vendor" value="SAP"/>
|
2023
|
+
<param pos="0" name="service.component.product" value="NetWeaver Application Server"/>
|
2024
|
+
<param pos="0" name="service.component.cpe23" value="cpe:/a:sap:netweaver_application_server:-"/>
|
2025
|
+
</fingerprint>
|
2026
|
+
|
2027
|
+
<fingerprint pattern="Telnet Administration (?:\r|\n)+ SAP Java EE Application Server v([\d.]+)(?:\r|\n)+">
|
2028
|
+
<description>SAP NetWeaver Application Server Java telnet service - newer variant</description>
|
2029
|
+
<!-- ***********************************************
|
2030
|
+
**********************************************
|
2031
|
+
****###*******####*****#######**************
|
2032
|
+
**##***##****##**##****##****##************
|
2033
|
+
***##*******##****##***##****##**********
|
2034
|
+
*****##*****########***######***********
|
2035
|
+
******##****##****##***##*************
|
2036
|
+
**##***##**##******##**##************
|
2037
|
+
****###****##******##**##**********
|
2038
|
+
**********************************
|
2039
|
+
********************************
|
2040
|
+
Telnet Administration
|
2041
|
+
SAP Java EE Application Server v7.50
|
2042
|
+
User name:
|
2043
|
+
-->
|
2044
|
+
|
2045
|
+
<example _encoding="base64" service.version="7.50">
|
2046
|
+
KioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKiogCiAgICoqKi
|
2047
|
+
oqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKiogCiAgICoqKiojIyMq
|
2048
|
+
KioqKioqIyMjIyoqKioqIyMjIyMjIyoqKioqKioqKioqKioqIAogICAqKiMjKioqIyMqKioqIy
|
2049
|
+
MqKiMjKioqKiMjKioqKiMjKioqKioqKioqKioqIAogICAqKiojIyoqKioqKiojIyoqKiojIyoq
|
2050
|
+
KiMjKioqKiMjKioqKioqKioqKiAKICAgKioqKiojIyoqKioqIyMjIyMjIyMqKiojIyMjIyMqKi
|
2051
|
+
oqKioqKioqKiAKICAgKioqKioqIyMqKioqIyMqKioqIyMqKiojIyoqKioqKioqKioqKiogCiAg
|
2052
|
+
ICoqIyMqKiojIyoqIyMqKioqKiojIyoqIyMqKioqKioqKioqKiogCiAgICoqKiojIyMqKioqIy
|
2053
|
+
MqKioqKiojIyoqIyMqKioqKioqKioqIAogICAqKioqKioqKioqKioqKioqKioqKioqKioqKioq
|
2054
|
+
KioqKioqIAogICAqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKiAKCiAgIFRlbG5ldC
|
2055
|
+
BBZG1pbmlzdHJhdGlvbiAKICAgU0FQIEphdmEgRUUgQXBwbGljYXRpb24gU2VydmVyIHY3LjUw
|
2056
|
+
CgoKVXNlciBuYW1lOgo=
|
2057
|
+
</example>
|
2058
|
+
<param pos="0" name="service.vendor" value="SAP"/>
|
2059
|
+
<param pos="0" name="service.product" value="NetWeaver Application Server Java"/>
|
2060
|
+
<param pos="0" name="service.family" value="NetWeaver"/>
|
2061
|
+
<param pos="1" name="service.version"/>
|
2062
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sap:netweaver_application_server_java:{service.version}"/>
|
2063
|
+
<param pos="0" name="service.component.vendor" value="SAP"/>
|
2064
|
+
<param pos="0" name="service.component.product" value="NetWeaver Application Server"/>
|
2065
|
+
<param pos="0" name="service.component.cpe23" value="cpe:/a:sap:netweaver_application_server:-"/>
|
2066
|
+
</fingerprint>
|
2067
|
+
|
1848
2068
|
</fingerprints>
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: recog
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 2.3.
|
4
|
+
version: 2.3.14
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Rapid7 Research
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2020-07
|
11
|
+
date: 2020-08-07 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: rspec
|