recog 1.0.22 → 1.0.23
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/recog/version.rb +1 -1
- data/xml/http_servers.xml +38 -19
- metadata +3 -3
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA1:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: ad487921922d1f5733299f9596229665492833e5
|
|
4
|
+
data.tar.gz: 707c0e7ff3eb7d3aa38998f115ef8af4c9d59a77
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 3854996cfe56e7f7462eaeb82e790e5c291ea1ada340580c4959b0b4266979d38f189546d121b518427474ce89d43a1de677fd0dc274f8d230e51962ae1ccf60
|
|
7
|
+
data.tar.gz: 17d7af15888c63ffdc242149e508d0ded0624726ff5b37eeb9222f36bc10a7434fb91600b61b88cf5bbd1425bb358887e7be38c89a0b567b499fb248f7d97424
|
data/lib/recog/version.rb
CHANGED
data/xml/http_servers.xml
CHANGED
|
@@ -3030,10 +3030,11 @@
|
|
|
3030
3030
|
</fingerprint>
|
|
3031
3031
|
-->
|
|
3032
3032
|
|
|
3033
|
-
<fingerprint pattern="^SentinelProtectionServer/((?:\d+\.)
|
|
3033
|
+
<fingerprint pattern="^SentinelProtectionServer/((?:\d+\.)*\d+)$">
|
|
3034
3034
|
<example>SentinelProtectionServer/7.1</example>
|
|
3035
3035
|
<example>SentinelProtectionServer/7.3</example>
|
|
3036
3036
|
<example>SentinelProtectionServer/7.0</example>
|
|
3037
|
+
<example>SentinelProtectionServer/7</example>
|
|
3037
3038
|
<description>Embedded web server in SafeNet's memory key dongles.</description>
|
|
3038
3039
|
<param pos="0" name="service.vendor" value="SafeNet"/>
|
|
3039
3040
|
<param pos="0" name="service.product" value="Sentinel Protection Server"/>
|
|
@@ -3041,9 +3042,10 @@
|
|
|
3041
3042
|
<param pos="1" name="service.version"/>
|
|
3042
3043
|
</fingerprint>
|
|
3043
3044
|
|
|
3044
|
-
<fingerprint pattern="^SentinelKeysServer/((?:\d+\.)
|
|
3045
|
+
<fingerprint pattern="^SentinelKeysServer/((?:\d+\.)*\d+)$">
|
|
3045
3046
|
<example>SentinelKeysServer/1.3.1</example>
|
|
3046
3047
|
<example>SentinelKeysServer/1.0</example>
|
|
3048
|
+
<example>SentinelKeysServer/1</example>
|
|
3047
3049
|
<description>Embedded web server in SafeNet's memory key dongles.</description>
|
|
3048
3050
|
<param pos="0" name="service.vendor" value="SafeNet"/>
|
|
3049
3051
|
<param pos="0" name="service.product" value="Sentinel Keys Server"/>
|
|
@@ -3051,8 +3053,9 @@
|
|
|
3051
3053
|
<param pos="1" name="service.version"/>
|
|
3052
3054
|
</fingerprint>
|
|
3053
3055
|
|
|
3054
|
-
<fingerprint pattern="^CherryPy/((?:\d+\.)
|
|
3056
|
+
<fingerprint pattern="^CherryPy/((?:\d+\.)*\d+)$">
|
|
3055
3057
|
<example>CherryPy/3.1.2</example>
|
|
3058
|
+
<example>CherryPy/3</example>
|
|
3056
3059
|
<description>Web server component of CherryPy web application framework.</description>
|
|
3057
3060
|
<param pos="0" name="service.vendor" value="CherryPy"/>
|
|
3058
3061
|
<param pos="0" name="service.product" value="CherryPy"/>
|
|
@@ -3080,8 +3083,9 @@
|
|
|
3080
3083
|
<param pos="2" name="python.version"/>
|
|
3081
3084
|
</fingerprint>
|
|
3082
3085
|
|
|
3083
|
-
<fingerprint pattern="^HP Web Jetadmin/((?:\d+\.)
|
|
3086
|
+
<fingerprint pattern="^HP Web Jetadmin/((?:\d+\.)*\d+)\s*(.*)$">
|
|
3084
3087
|
<example>HP Web Jetadmin/2.0.50 (Win32) mod_auth_sspi/1.0.1 mod_ssl/2.0.50 OpenSSL/0.9.6m</example>
|
|
3088
|
+
<example>HP Web Jetadmin/2 (Win32) mod_auth_sspi/1.0.1 mod_ssl/2.0.50 OpenSSL/0.9.6m</example>
|
|
3085
3089
|
<description>Apache variant for web access to HP printers.</description>
|
|
3086
3090
|
<param pos="0" name="service.vendor" value="Apache"/>
|
|
3087
3091
|
<param pos="0" name="service.product" value="HTTPD"/>
|
|
@@ -3101,8 +3105,9 @@
|
|
|
3101
3105
|
<param pos="0" name="service.family" value="Web PN Server"/>
|
|
3102
3106
|
</fingerprint>
|
|
3103
3107
|
|
|
3104
|
-
<fingerprint pattern="^Lotus Expeditor Web Container/((?:\d+\.)
|
|
3108
|
+
<fingerprint pattern="^Lotus Expeditor Web Container/((?:\d+\.)*\d+)$">
|
|
3105
3109
|
<example>Lotus Expeditor Web Container/6.1</example>
|
|
3110
|
+
<example>Lotus Expeditor Web Container/6</example>
|
|
3106
3111
|
<description>Expeditor is a framework used by IBM in many products in the Lotus brand, such as Sametime and Notes.</description>
|
|
3107
3112
|
<param pos="0" name="service.vendor" value="IBM"/>
|
|
3108
3113
|
<param pos="0" name="service.product" value="Lotus Expeditor Server"/>
|
|
@@ -3118,9 +3123,10 @@
|
|
|
3118
3123
|
<param pos="0" name="service.family" value="GoAhead Webserver"/>
|
|
3119
3124
|
</fingerprint>
|
|
3120
3125
|
|
|
3121
|
-
<fingerprint pattern="^Mbedthis-Appweb/((?:\d+\.)
|
|
3126
|
+
<fingerprint pattern="^Mbedthis-Appweb/((?:\d+\.)*\d+)$">
|
|
3122
3127
|
<example>Mbedthis-Appweb/2.4.0</example>
|
|
3123
3128
|
<example>Mbedthis-Appweb/2.4.2</example>
|
|
3129
|
+
<example>Mbedthis-Appweb/2</example>
|
|
3124
3130
|
<description>An embedded web server for hosting dynamic web applications.</description>
|
|
3125
3131
|
<param pos="0" name="service.vendor" value="Embedthis"/>
|
|
3126
3132
|
<param pos="0" name="service.product" value="Appweb"/>
|
|
@@ -3128,8 +3134,9 @@
|
|
|
3128
3134
|
<param pos="1" name="service.version"/>
|
|
3129
3135
|
</fingerprint>
|
|
3130
3136
|
|
|
3131
|
-
<fingerprint pattern="^Avaya CMBE/((?:\d+\.)
|
|
3137
|
+
<fingerprint pattern="^Avaya CMBE/((?:\d+\.)*\d+)$">
|
|
3132
3138
|
<example>Avaya CMBE/2.0.0</example>
|
|
3139
|
+
<example>Avaya CMBE/2</example>
|
|
3133
3140
|
<description>Web server for Avaya Aura Communication Manager Branch, a SIP-based communications platform.</description>
|
|
3134
3141
|
<param pos="0" name="service.vendor" value="Avaya"/>
|
|
3135
3142
|
<param pos="0" name="service.product" value="Aura Communication Manager"/>
|
|
@@ -3138,8 +3145,9 @@
|
|
|
3138
3145
|
</fingerprint>
|
|
3139
3146
|
|
|
3140
3147
|
|
|
3141
|
-
<fingerprint pattern="^Rapid Logic/((?:\d+\.)
|
|
3148
|
+
<fingerprint pattern="^Rapid Logic/((?:\d+\.)*\d+)$">
|
|
3142
3149
|
<example>Rapid Logic/1.1</example>
|
|
3150
|
+
<example>Rapid Logic/1</example>
|
|
3143
3151
|
<description>Embedded web server by Rapid Logic, which was acquired by Wind River.</description>
|
|
3144
3152
|
<!-- From Googling, it sounds like this is just referred to as the
|
|
3145
3153
|
Rapid Logic web server. -->
|
|
@@ -3177,8 +3185,9 @@
|
|
|
3177
3185
|
<param pos="1" name="service.version"/>
|
|
3178
3186
|
</fingerprint>
|
|
3179
3187
|
|
|
3180
|
-
<fingerprint pattern="^mini_httpd/((?:\d+\.)
|
|
3188
|
+
<fingerprint pattern="^mini_httpd/((?:\d+\.)*\d+) \S*$">
|
|
3181
3189
|
<example>mini_httpd/1.14 23jun2000</example>
|
|
3190
|
+
<example>mini_httpd/1 23jun2000</example>
|
|
3182
3191
|
<description>A small HTTP server</description>
|
|
3183
3192
|
<param pos="0" name="service.vendor" value="ACME Laboratories"/>
|
|
3184
3193
|
<param pos="0" name="service.product" value="mini_httpd"/>
|
|
@@ -3186,8 +3195,9 @@
|
|
|
3186
3195
|
<param pos="1" name="service.version"/>
|
|
3187
3196
|
</fingerprint>
|
|
3188
3197
|
|
|
3189
|
-
<fingerprint pattern="^thin ((?:\d+\.)
|
|
3198
|
+
<fingerprint pattern="^thin ((?:\d+\.)*\d+) codename .+$">
|
|
3190
3199
|
<example>thin 1.2.4 codename Flaming Astroboy</example>
|
|
3200
|
+
<example>thin 1 codename Flaming Astroboy</example>
|
|
3191
3201
|
<description>A Ruby-based web server.</description>
|
|
3192
3202
|
<!-- By private developer Marc-Andre Cournoyer; assert
|
|
3193
3203
|
nothing for service.vendor. -->
|
|
@@ -3196,8 +3206,9 @@
|
|
|
3196
3206
|
<param pos="1" name="service.version"/>
|
|
3197
3207
|
</fingerprint>
|
|
3198
3208
|
|
|
3199
|
-
<fingerprint pattern="^Avocent DSView \d+/((?:\d+\.)
|
|
3209
|
+
<fingerprint pattern="^Avocent DSView \d+/((?:\d+\.)*\d+)$">
|
|
3200
3210
|
<example>Avocent DSView 3/3.7.0.71</example>
|
|
3211
|
+
<example>Avocent DSView 3/3</example>
|
|
3201
3212
|
<description>Web server interface for controlling data centers.</description>
|
|
3202
3213
|
<param pos="0" name="service.vendor" value="Avocent"/>
|
|
3203
3214
|
<param pos="0" name="service.product" value="DSView"/>
|
|
@@ -3205,8 +3216,9 @@
|
|
|
3205
3216
|
<param pos="1" name="service.version"/>
|
|
3206
3217
|
</fingerprint>
|
|
3207
3218
|
|
|
3208
|
-
<fingerprint pattern="^Mongrel ((?:\d+\.)
|
|
3219
|
+
<fingerprint pattern="^Mongrel ((?:\d+\.)*\d+)$">
|
|
3209
3220
|
<example>Mongrel 1.1.5</example>
|
|
3221
|
+
<example>Mongrel 1</example>
|
|
3210
3222
|
<description>Ruby-based web server and HTTP library.</description>
|
|
3211
3223
|
<!-- By private developer Zed A. Shaw; assert
|
|
3212
3224
|
nothing for service.vendor. -->
|
|
@@ -3215,9 +3227,10 @@
|
|
|
3215
3227
|
<param pos="1" name="service.version"/>
|
|
3216
3228
|
</fingerprint>
|
|
3217
3229
|
|
|
3218
|
-
<fingerprint pattern="^Microplex emHTTPD/((?:\d+\.)
|
|
3230
|
+
<fingerprint pattern="^Microplex emHTTPD/((?:\d+\.)*\d+)$">
|
|
3219
3231
|
<example>Microplex emHTTPD/1.0</example>
|
|
3220
3232
|
<example>Microplex emHTTPD/1.1</example>
|
|
3233
|
+
<example>Microplex emHTTPD/1</example>
|
|
3221
3234
|
<description>Embedded web server used by Microplex.</description>
|
|
3222
3235
|
<param pos="0" name="service.vendor" value="Microplex"/>
|
|
3223
3236
|
<!-- Per Microplex M307 data sheet, the device is manageable
|
|
@@ -3232,8 +3245,9 @@
|
|
|
3232
3245
|
<param pos="0" name="os.device" value="Print server"/>
|
|
3233
3246
|
</fingerprint>
|
|
3234
3247
|
|
|
3235
|
-
<fingerprint pattern="^UPS_Server/((?:\d+\.)
|
|
3248
|
+
<fingerprint pattern="^UPS_Server/((?:\d+\.)*\d+)$">
|
|
3236
3249
|
<example>UPS_Server/1.0</example>
|
|
3250
|
+
<example>UPS_Server/1</example>
|
|
3237
3251
|
<description>An embedded web server used for UPS management; primarily by Eaton, but also by APC.</description>
|
|
3238
3252
|
<param pos="0" name="service.vendor" value="Eaton"/>
|
|
3239
3253
|
<param pos="0" name="service.product" value="ConnectUPS"/>
|
|
@@ -3243,8 +3257,9 @@
|
|
|
3243
3257
|
<param pos="0" name="os.device" value="UPS"/>
|
|
3244
3258
|
</fingerprint>
|
|
3245
3259
|
|
|
3246
|
-
<fingerprint pattern="^JC-HTTPD/((?:\d+\.)
|
|
3260
|
+
<fingerprint pattern="^JC-HTTPD/((?:\d+\.)*\d+)$">
|
|
3247
3261
|
<example>JC-HTTPD/1.11.14</example>
|
|
3262
|
+
<example>JC-HTTPD/1</example>
|
|
3248
3263
|
<!-- Shodan shows multiple printers with servers having this
|
|
3249
3264
|
banner, but I can't find a project page. -->
|
|
3250
3265
|
<description>An embedded web server, used notably by Oki and Kyocera in printers.</description>
|
|
@@ -3253,8 +3268,9 @@
|
|
|
3253
3268
|
<param pos="1" name="service.version"/>
|
|
3254
3269
|
</fingerprint>
|
|
3255
3270
|
|
|
3256
|
-
<fingerprint pattern="^JC-SHTTPD/((?:\d+\.)
|
|
3271
|
+
<fingerprint pattern="^JC-SHTTPD/((?:\d+\.)*\d+)$">
|
|
3257
3272
|
<example>JC-SHTTPD/1.17.20</example>
|
|
3273
|
+
<example>JC-SHTTPD/1</example>
|
|
3258
3274
|
<!-- The only Google hits for "JC-SHTTPD" list it as being
|
|
3259
3275
|
a Sharp printer. There is a project called SHTTPD (now Mongoose),
|
|
3260
3276
|
but version 1.17 does not have this banner.
|
|
@@ -3268,8 +3284,9 @@
|
|
|
3268
3284
|
<param pos="1" name="service.version"/>
|
|
3269
3285
|
</fingerprint>
|
|
3270
3286
|
|
|
3271
|
-
<fingerprint pattern="^Oracle XML DB/Oracle\S+ Enterprise Edition Release ((?:\d+\.)
|
|
3287
|
+
<fingerprint pattern="^Oracle XML DB/Oracle\S+ Enterprise Edition Release ((?:\d+\.)*\d+) - Production$">
|
|
3272
3288
|
<example>Oracle XML DB/Oracle9i Enterprise Edition Release 9.2.0.1.0 - Production</example>
|
|
3289
|
+
<example>Oracle XML DB/Oracle9i Enterprise Edition Release 9 - Production</example>
|
|
3273
3290
|
<!-- Oracle provides a laundry list of HTTP(S) features not
|
|
3274
3291
|
supported by the XML DB's web server; I think it's safe
|
|
3275
3292
|
to say that it is almost certainly not Apache under the hood:
|
|
@@ -3300,8 +3317,9 @@
|
|
|
3300
3317
|
<param pos="0" name="os.device" value="Firewall"/>
|
|
3301
3318
|
</fingerprint>
|
|
3302
3319
|
|
|
3303
|
-
<fingerprint pattern="^Ews/((?:\d+\.)
|
|
3320
|
+
<fingerprint pattern="^Ews/((?:\d+\.)*\d+)$">
|
|
3304
3321
|
<example>Ews/0.1</example>
|
|
3322
|
+
<example>Ews/0</example>
|
|
3305
3323
|
<description>IBM Network Printer Manager.</description>
|
|
3306
3324
|
<param pos="0" name="service.vendor" value="IBM"/>
|
|
3307
3325
|
<param pos="0" name="service.product" value="Network Printer Manager"/>
|
|
@@ -3411,8 +3429,9 @@
|
|
|
3411
3429
|
<param pos="0" name="service.family" value="Google Web Server"/>
|
|
3412
3430
|
</fingerprint>
|
|
3413
3431
|
|
|
3414
|
-
<fingerprint pattern="^GFE/((?:\d+\.)
|
|
3432
|
+
<fingerprint pattern="^GFE/((?:\d+\.)*\d+)$">
|
|
3415
3433
|
<example>GFE/1.3</example>
|
|
3434
|
+
<example>GFE/1</example>
|
|
3416
3435
|
<description>Google Front End for apps running on Google services.</description>
|
|
3417
3436
|
<param pos="0" name="service.vendor" value="Google"/>
|
|
3418
3437
|
<param pos="0" name="service.product" value="Google Front End"/>
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: recog
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.0.
|
|
4
|
+
version: 1.0.23
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Rapid7 Research
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2015-03-
|
|
11
|
+
date: 2015-03-17 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: rspec
|
|
@@ -225,7 +225,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
225
225
|
version: '0'
|
|
226
226
|
requirements: []
|
|
227
227
|
rubyforge_project:
|
|
228
|
-
rubygems_version: 2.
|
|
228
|
+
rubygems_version: 2.2.2
|
|
229
229
|
signing_key:
|
|
230
230
|
specification_version: 4
|
|
231
231
|
summary: Network service fingerprint database, classes, and utilities
|