recog 2.1.11 → 2.1.12

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: fc13eb8b58d006c42f2eee40698d8e6e319abaa1
4
- data.tar.gz: 70858ca807f4c8b210c395b909d425b5c3891807
3
+ metadata.gz: 51463e356f924b8b3308760d4a8f7ff312b868db
4
+ data.tar.gz: 1a8a4c8e219c94dd42212ca264051e4e686993cd
5
5
  SHA512:
6
- metadata.gz: d3e2041b194bac618bdbf277ac9294e043dd2718c62948793c05ac818590c692f46e9dcfb4626056ae24fe19ffb0023a5de55227e54d114eb5f601799e1d84e0
7
- data.tar.gz: 67b4e1322173eeab04e3d1d3a907fea64e0a3e3bbb66abbe80e8308cfb6a9bb050253d9320a57ce7fd5d3f25a685addc72b9dc77694b13e04d28cfa9367087b5
6
+ metadata.gz: fce4559ee26c063d8ca0ea6b0611b25a28a7005b486ea9d055cf8445d71bd23c9d15b3ed7c5bd3ddce0c7de84e30cb1f9dceb022be61b84aaf5804b7348a3c6f
7
+ data.tar.gz: 257ab6565edcbb7a72ac749800cc9a9c25b7eedd8c40ba23dbb171f64910dc2bee4009d59dca9965a01d17089f69e3ad5b8283b3a1a437972323fef7d8404f45
data/lib/recog/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module Recog
2
- VERSION = '2.1.11'
2
+ VERSION = '2.1.12'
3
3
  end
@@ -0,0 +1,685 @@
1
+ <?xml version="1.0" encoding="UTF-8"?>
2
+ <!--
3
+ This fingerprint file matches the text string response from a DNS
4
+ version.bind request.
5
+
6
+ For example, the string 'dnsmasq-2.76-1-ubnt2' emitted by the command below:
7
+
8
+ $ nslookup -type=txt -class=chaos VERSION.BIND <dns_server> | grep VERSION.BIND | cut -d\" -f2
9
+ dnsmasq-2.76-1-ubnt2
10
+
11
+ -->
12
+ <fingerprints matches="dns.versionbind" protocol="dns" database_type="service" preference="0.750">
13
+ <!-- Red Hat package naming:
14
+ https://fedoraproject.org/wiki/Packaging:DistTag
15
+ https://fedoraproject.org/wiki/Packaging:Versioning
16
+
17
+ Enterprise linux release dates:
18
+ https://access.redhat.com/articles/3078
19
+ -->
20
+ <fingerprint pattern="^(9.[^-]+(?:-rpz\d?[+.]rl[\d.]+)?(?:-[SP]\d)?)-RedHat-[\d.]+[-.][\w.]+el([\d]+)_?(\d*)(?:.[\w.]+)?$">
21
+ <description>ISC BIND: Red Hat Enterprise Linux</description>
22
+ <example service.version="9.8.2rc1" os.version="6" os.version.version="9">9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.2</example>
23
+ <example service.version="9.9.4" os.version="7" os.version.version="3">9.9.4-RedHat-9.9.4-38.el7_3.3</example>
24
+ <example service.version="9.3.6-P1" os.version="5" os.version.version="11">9.3.6-P1-RedHat-9.3.6-25.P1.el5_11.12</example>
25
+ <example service.version="9.9.1-P3" os.version="6">9.9.1-P3-RedHat-9.9.1.P3.el6</example>
26
+ <example service.version="9.9.3-rpz2+rl.13208.13-P2" os.version="6">9.9.3-rpz2+rl.13208.13-P2-RedHat-9.9.3-4.P2.el6</example>
27
+ <example os.version="6" os.version.version="1">9.7.3-P3-RedHat-9.7.3-2.el6_1.P3.3</example>
28
+ <example os.version="6" os.version.version="">9.8.2rc1-RedHat-9.8.2-0.47.rc1.el6</example>
29
+ <param pos="0" name="service.vendor" value="ISC"/>
30
+ <param pos="0" name="service.family" value="BIND"/>
31
+ <param pos="0" name="service.product" value="BIND"/>
32
+ <param pos="1" name="service.version"/>
33
+ <param pos="0" name="os.vendor" value="Red Hat"/>
34
+ <param pos="0" name="os.family" value="Linux"/>
35
+ <param pos="0" name="os.product" value="Enterprise Linux"/>
36
+ <param pos="2" name="os.version"/>
37
+ <param pos="3" name="os.version.version"/>
38
+ </fingerprint>
39
+ <fingerprint pattern="^(9.[^-]+(?:-rl[.\d]+)?(?:-[SP]\d)?)-RedHat-[\d.]+-[\w.]+fc([\d]+)$">
40
+ <description>ISC BIND: Fedora</description>
41
+ <example service.version="9.10.4-P8">9.10.4-P8-RedHat-9.10.4-4.P8.fc25</example>
42
+ <!-- The '-rl' in the example below indicates a rate limiting patch -->
43
+ <example service.version="9.9.3-rl.13207.22-P2">9.9.3-rl.13207.22-P2-RedHat-9.9.3-5.P2.fc19</example>
44
+ <example os.version="10">9.5.2-RedHat-9.5.2-1.fc10</example>
45
+ <param pos="0" name="service.vendor" value="ISC"/>
46
+ <param pos="0" name="service.family" value="BIND"/>
47
+ <param pos="0" name="service.product" value="BIND"/>
48
+ <param pos="1" name="service.version"/>
49
+ <param pos="0" name="os.vendor" value="Fedora"/>
50
+ <param pos="0" name="os.family" value="Linux"/>
51
+ <param pos="0" name="os.product" value="Fedora"/>
52
+ <param pos="2" name="os.version"/>
53
+ </fingerprint>
54
+ <fingerprint pattern="^(9.[^-]+(?:-[SP]\d)?)-RedHat-[\w.-]+amzn1$">
55
+ <description>ISC BIND: Red Hat - Amazon hosted</description>
56
+ <example service.version="9.8.2rc1">9.8.2rc1-RedHat-9.8.2-0.37.rc1.45.amzn1</example>
57
+ <example service.version="9.7.3-P3">9.7.3-P3-RedHat-9.7.3-2.11.amzn1</example>
58
+ <param pos="0" name="service.vendor" value="ISC"/>
59
+ <param pos="0" name="service.family" value="BIND"/>
60
+ <param pos="0" name="service.product" value="BIND"/>
61
+ <param pos="1" name="service.version"/>
62
+ <param pos="0" name="os.vendor" value="Red Hat"/>
63
+ <param pos="0" name="os.device" value="General"/>
64
+ <param pos="0" name="os.family" value="Linux"/>
65
+ </fingerprint>
66
+ <fingerprint pattern="(9.[^-]+(?:-[SP]\d)?)-RedHat-[\w.-]+alios([\d\.]+)$">
67
+ <description>ISC BIND: Red Hat - Alibaba Customized EL</description>
68
+ <example service.version="9.9.9-P3" os.version="6">9.9.9-P3-RedHat-9.9.9-2.1.alios6</example>
69
+ <example service.version="9.8.2rc1" os.version="6.1">9.8.2rc1-RedHat-9.8.2-0.23.rc1.2.alios6.1</example>
70
+ <param pos="0" name="service.vendor" value="ISC"/>
71
+ <param pos="0" name="service.family" value="BIND"/>
72
+ <param pos="0" name="service.product" value="BIND"/>
73
+ <param pos="1" name="service.version"/>
74
+ <param pos="0" name="os.vendor" value="Red Hat"/>
75
+ <param pos="0" name="os.device" value="General"/>
76
+ <param pos="0" name="os.family" value="Linux"/>
77
+ <param pos="0" name="os.product" value="Enterprise Linux"/>
78
+ <param pos="2" name="os.version"/>
79
+ </fingerprint>
80
+ <fingerprint pattern="^(9.[^-]+(?:rc\d)?(?:-[SP]\d)?)-RedHat-[\d.-]+(?:[-\.][SP]\d)?(?:rc[\d\.]+)?$">
81
+ <description>ISC BIND: Red Hat nonspecific platform</description>
82
+ <example service.version="9.9.10-P2">9.9.10-P2-RedHat-9.9.10-P2</example>
83
+ <example service.version="9.9.5">9.9.5-RedHat-9.9.5-1</example>
84
+ <example service.version="9.8.2rc1">9.8.2rc1-RedHat-9.8.2-0.10.rc1.1</example>
85
+ <param pos="0" name="service.vendor" value="ISC"/>
86
+ <param pos="0" name="service.family" value="BIND"/>
87
+ <param pos="0" name="service.product" value="BIND"/>
88
+ <param pos="1" name="service.version"/>
89
+ <param pos="0" name="os.vendor" value="Red Hat"/>
90
+ <param pos="0" name="os.family" value="Linux"/>
91
+ <param pos="0" name="os.product" value="Linux"/>
92
+ </fingerprint>
93
+ <fingerprint pattern="^(9.[^-]+(?:-[SP]\d)?)-[\d.]+ubuntu[\d.]+-Ubuntu$">
94
+ <description>ISC BIND: Ubuntu</description>
95
+ <example service.version="9.9.5">9.9.5-11ubuntu1.1-Ubuntu</example>
96
+ <example service.version="9.10.3-P4">9.10.3-P4-10.1ubuntu5-Ubuntu</example>
97
+ <param pos="0" name="service.vendor" value="ISC"/>
98
+ <param pos="0" name="service.family" value="BIND"/>
99
+ <param pos="0" name="service.product" value="BIND"/>
100
+ <param pos="1" name="service.version"/>
101
+ <param pos="0" name="os.vendor" value="Ubuntu"/>
102
+ <param pos="0" name="os.family" value="Linux"/>
103
+ <param pos="0" name="os.product" value="Linux"/>
104
+ </fingerprint>
105
+ <fingerprint pattern="^(9.[^-]+-rpz\d?[+.]rl[\d.]+(?:-[SP]\d)?)-Ubuntu-[\d\.:]+[\w\.]+(?:-[SP]\d)?-\d?ubuntu[\d\.]+$">
106
+ <description>ISC BIND: Ubuntu with Response Policy Zone and Request Limiting patches</description>
107
+ <example service.version="9.9.3-rpz2+rl.13214.22-P2">9.9.3-rpz2+rl.13214.22-P2-Ubuntu-1:9.9.3.dfsg.P2-4ubuntu1.1</example>
108
+ <param pos="0" name="service.vendor" value="ISC"/>
109
+ <param pos="0" name="service.family" value="BIND"/>
110
+ <param pos="0" name="service.product" value="BIND"/>
111
+ <param pos="1" name="service.version"/>
112
+ <param pos="0" name="os.vendor" value="Ubuntu"/>
113
+ <param pos="0" name="os.family" value="Linux"/>
114
+ <param pos="0" name="os.product" value="Linux"/>
115
+ </fingerprint>
116
+ <fingerprint pattern="^(9.[^-]+(?:-[SP]\d)?)(?:-[\d\.]+)?-Ubuntu$">
117
+ <description>ISC BIND: Ubuntu short</description>
118
+ <example service.version="9.10.3-P4">9.10.3-P4-Ubuntu</example>
119
+ <example service.version="9.9.5">9.9.5-3-Ubuntu</example>
120
+ <example service.version="9.9.5">9.9.5-4.3-Ubuntu</example>
121
+ <param pos="0" name="service.vendor" value="ISC"/>
122
+ <param pos="0" name="service.family" value="BIND"/>
123
+ <param pos="0" name="service.product" value="BIND"/>
124
+ <param pos="1" name="service.version"/>
125
+ <param pos="0" name="os.vendor" value="Ubuntu"/>
126
+ <param pos="0" name="os.family" value="Linux"/>
127
+ <param pos="0" name="os.product" value="Linux"/>
128
+ </fingerprint>
129
+ <fingerprint pattern="^(9.[\d\.]+(?:[+-]rpz\d?[+.]rl[\d.]+)?(?:-[SP]\d)?).*[+-]zentyal\d*">
130
+ <description>ISC BIND: Ubuntu Zentyal custom distribution</description>
131
+ <example service.version="9.9.5">9.9.5-3+zentyal-Ubuntu</example>
132
+ <example service.version="9.9.5">9.9.5-3-zentyal1-Ubuntu</example>
133
+ <example service.version="9.9.3-rpz2+rl.13214.22-P2">9.9.3-rpz2+rl.13214.22-P2-Ubuntu-2:9.9.3.dfsg.P2-4ubuntu1.1+zentyal12</example>
134
+ <param pos="0" name="service.vendor" value="ISC"/>
135
+ <param pos="0" name="service.family" value="BIND"/>
136
+ <param pos="0" name="service.product" value="BIND"/>
137
+ <param pos="1" name="service.version"/>
138
+ <param pos="0" name="os.vendor" value="Ubuntu"/>
139
+ <param pos="0" name="os.family" value="Linux"/>
140
+ <param pos="0" name="os.product" value="Zentyal"/>
141
+ </fingerprint>
142
+ <fingerprint pattern="^(9.[^-]+(?:-[SP]\d)?)-9\+deb8u[\w~\.]+-Debian$">
143
+ <description>ISC BIND: Debian Jessie</description>
144
+ <example service.version="9.9.5">9.9.5-9+deb8u11-Debian</example>
145
+ <example service.version="9.9.5">9.9.5-9+deb8u6A~4.2.0.201702281603-Debian</example>
146
+ <param pos="0" name="service.vendor" value="ISC"/>
147
+ <param pos="0" name="service.family" value="BIND"/>
148
+ <param pos="0" name="service.product" value="BIND"/>
149
+ <param pos="1" name="service.version"/>
150
+ <param pos="0" name="os.vendor" value="Debian"/>
151
+ <param pos="0" name="os.family" value="Linux"/>
152
+ <param pos="0" name="os.product" value="Linux"/>
153
+ <param pos="0" name="os.version" value="8.0"/>
154
+ </fingerprint>
155
+ <fingerprint pattern="^(9.[^-]+(?:-[SP]\d)?)-9wheezy\w+-Debian$">
156
+ <description>ISC BIND: Debian Wheezy</description>
157
+ <example service.version="9.9.5">9.9.5-9wheezy1-Debian</example>
158
+ <param pos="0" name="service.vendor" value="ISC"/>
159
+ <param pos="0" name="service.family" value="BIND"/>
160
+ <param pos="0" name="service.product" value="BIND"/>
161
+ <param pos="1" name="service.version"/>
162
+ <param pos="0" name="os.vendor" value="Debian"/>
163
+ <param pos="0" name="os.family" value="Linux"/>
164
+ <param pos="0" name="os.product" value="Linux"/>
165
+ <param pos="0" name="os.version" value="7.0"/>
166
+ </fingerprint>
167
+ <fingerprint pattern="^(9.[^-]+(?:-[SP]\d)?)-(?:[\d\.]+-)?Debian$">
168
+ <description>ISC BIND: Debian no version simple</description>
169
+ <example service.version="9.10.3-P4">9.10.3-P4-Debian</example>
170
+ <example service.version="9.9.5">9.9.5-12.1-Debian</example>
171
+ <example service.version="9.9.5">9.9.5-4-Debian</example>
172
+ <param pos="0" name="service.vendor" value="ISC"/>
173
+ <param pos="0" name="service.family" value="BIND"/>
174
+ <param pos="0" name="service.product" value="BIND"/>
175
+ <param pos="1" name="service.version"/>
176
+ <param pos="0" name="os.vendor" value="Debian"/>
177
+ <param pos="0" name="os.family" value="Linux"/>
178
+ <param pos="0" name="os.product" value="Linux"/>
179
+ </fingerprint>
180
+ <fingerprint pattern="^(9\.\d{,2}.\d{,2}-rpz\d?[+.]rl[\d.]+(?:-[SPW]\d+)?)$">
181
+ <description>ISC BIND: Response Policy Zone and Request Limiting patches</description>
182
+ <example service.version="9.8.4-rpz2+rl005.12-P1">9.8.4-rpz2+rl005.12-P1</example>
183
+ <example service.version="9.9.3-rpz2+rl.156.01-P2">9.9.3-rpz2+rl.156.01-P2</example>
184
+ <param pos="0" name="service.vendor" value="ISC"/>
185
+ <param pos="0" name="service.family" value="BIND"/>
186
+ <param pos="0" name="service.product" value="BIND"/>
187
+ <param pos="1" name="service.version"/>
188
+ </fingerprint>
189
+ <fingerprint pattern="^DNS Server BIND (9\.\d{,2}.\d{,2}-ESV(?:-R\d+)?(?:-[SPW]\d+)?)$">
190
+ <description>ISC BIND: ESV</description>
191
+ <example service.version="9.6-ESV-R7-P2">DNS Server BIND 9.6-ESV-R7-P2</example>
192
+ <param pos="0" name="service.vendor" value="ISC"/>
193
+ <param pos="0" name="service.family" value="BIND"/>
194
+ <param pos="0" name="service.product" value="BIND"/>
195
+ <param pos="1" name="service.version"/>
196
+ </fingerprint>
197
+ <!--
198
+ FP below might be overly specific, trying to avoid false positive when
199
+ matching cross-service/protocol.
200
+ -->
201
+ <fingerprint pattern="^(?:BIND )?([89]\.[\d\.]+(?:[ab]\d+)?(?:-ESV(?:-R\d+)?)?(?:-[SPW][\d\.]+)?(?:-REL)?(?:-[W]\d+)?(?:rc\d)?)(?:-NOESW)?$">
202
+ <description>ISC BIND: bare release number - ESV REL NOESW</description>
203
+ <example service.version="9.7.0-P1">9.7.0-P1</example>
204
+ <example service.version="9.4.2-P2.1">9.4.2-P2.1</example>
205
+ <example service.version="9.9.5-W1">9.9.5-W1</example>
206
+ <example service.version="9.2.2rc1">9.2.2rc1</example>
207
+ <example service.version="9.4.2-P2-W2">9.4.2-P2-W2</example>
208
+ <example service.version="9.5.0b1">9.5.0b1</example>
209
+ <example service.version="8.2.2-P5">8.2.2-P5</example>
210
+ <example service.version="8.2.2-P5">BIND 8.2.2-P5</example>
211
+ <example service.version="9.6-ESV-R11-P2">9.6-ESV-R11-P2</example>
212
+ <example service.version="9.6.-ESV-R6">9.6.-ESV-R6</example>
213
+ <example service.version="9.6-ESV">9.6-ESV</example>
214
+ <example service.version="8.4.7-REL">8.4.7-REL-NOESW</example>
215
+ <example service.version="8.3.7-REL">8.3.7-REL</example>
216
+ <example service.version="8.2.2-P5">8.2.2-P5-NOESW</example>
217
+ <param pos="0" name="service.vendor" value="ISC"/>
218
+ <param pos="0" name="service.family" value="BIND"/>
219
+ <param pos="0" name="service.product" value="BIND"/>
220
+ <param pos="1" name="service.version"/>
221
+ </fingerprint>
222
+ <fingerprint pattern="^dnsmasq-(\d.[\w\.]+)$">
223
+ <description>dnsmasq: simple</description>
224
+ <example service.version="2.40">dnsmasq-2.40</example>
225
+ <example service.version="2.51.2">dnsmasq-2.51.2</example>
226
+ <example service.version="2.63rc6">dnsmasq-2.63rc6</example>
227
+ <example service.version="2.76test8">dnsmasq-2.76test8</example>
228
+ <param pos="0" name="service.vendor" value="Thekelleys"/>
229
+ <param pos="0" name="service.family" value="Dnsmasq"/>
230
+ <param pos="0" name="service.product" value="Dnsmasq"/>
231
+ <param pos="1" name="service.version"/>
232
+ </fingerprint>
233
+ <fingerprint pattern="^dnsmasq-(\d.[\w]+-\d)-ubnt\d$">
234
+ <description>dnsmasq: Ubiquiti</description>
235
+ <example service.version="2.76-1">dnsmasq-2.76-1-ubnt2</example>
236
+ <param pos="0" name="service.vendor" value="Thekelleys"/>
237
+ <param pos="0" name="service.family" value="Dnsmasq"/>
238
+ <param pos="0" name="service.product" value="Dnsmasq"/>
239
+ <param pos="1" name="service.version"/>
240
+ <param pos="0" name="hw.vendor" value="Ubiquiti"/>
241
+ <!-- Not including more info at this time as I'm not sure this doesn't
242
+ run on products other than EdgeRouter.
243
+ -->
244
+ </fingerprint>
245
+ <fingerprint pattern="^dnsmasq-(\d.[\w]+)-OpenDNS-\d$">
246
+ <description>dnsmasq: OpenDNS variant</description>
247
+ <example service.version="2.15">dnsmasq-2.15-OpenDNS-1</example>
248
+ <param pos="0" name="service.vendor" value="Thekelleys"/>
249
+ <param pos="0" name="service.family" value="Dnsmasq"/>
250
+ <param pos="0" name="service.product" value="Dnsmasq"/>
251
+ <param pos="1" name="service.version"/>
252
+ <!-- Seems to correlate with OpenWRT and Netgear but I haven't been able
253
+ to verify that it isn't used elsewhere.
254
+ -->
255
+ </fingerprint>
256
+ <fingerprint pattern="^dnsmasq-?(?:UNKNOWN)?$">
257
+ <description>dnsmasq: no version</description>
258
+ <example>dnsmasq-UNKNOWN</example>
259
+ <example>dnsmasq-</example>
260
+ <example>dnsmasq</example>
261
+ <param pos="0" name="service.vendor" value="Thekelleys"/>
262
+ <param pos="0" name="service.family" value="Dnsmasq"/>
263
+ <param pos="0" name="service.product" value="Dnsmasq"/>
264
+ </fingerprint>
265
+ <fingerprint pattern="^PowerDNS Recursor (\d\.[\d.]+(?:-\w+)?) \(\w+@[\w.]+ built \d+ \w+@[\w.-]*\)$">
266
+ <description>PowerDNS Recursor</description>
267
+ <example service.version="3.6.2">PowerDNS Recursor 3.6.2 (jenkins@autotest.powerdns.com built 20141031140810 mockbuild@)</example>
268
+ <example service.version="3.7.4-rc1">PowerDNS Recursor 3.7.4-rc1 (jenkins@autotest.powerdns.com built 20170120211656 root@foo-bar.foo.baz)</example>
269
+ <param pos="0" name="service.vendor" value="PowerDNS"/>
270
+ <param pos="0" name="service.family" value="PowerDNS"/>
271
+ <param pos="0" name="service.product" value="Recursor"/>
272
+ <param pos="1" name="service.version"/>
273
+ </fingerprint>
274
+ <fingerprint pattern="^PowerDNS Recursor (\d\.[\d.]+) \(built [\w\s:]+ by [\w]+\@[\w.-]*\)$">
275
+ <description>PowerDNS Recursor: format 2</description>
276
+ <example service.version="4.0.4">PowerDNS Recursor 4.0.4 (built Apr 13 2017 09:59:06 by root@oof-e.baz.foo.bar)</example>
277
+ <param pos="0" name="service.vendor" value="PowerDNS"/>
278
+ <param pos="0" name="service.family" value="PowerDNS"/>
279
+ <param pos="0" name="service.product" value="Recursor"/>
280
+ <param pos="1" name="service.version"/>
281
+ </fingerprint>
282
+ <fingerprint pattern="^PowerDNS Recursor (\d\.[\d.]+(?:-\w+)?)$">
283
+ <description>PowerDNS Recursor: version only</description>
284
+ <example service.version="4.0.4">PowerDNS Recursor 4.0.4</example>
285
+ <example service.version="4.0.0-alpha2">PowerDNS Recursor 4.0.0-alpha2</example>
286
+ <param pos="0" name="service.vendor" value="PowerDNS"/>
287
+ <param pos="0" name="service.family" value="PowerDNS"/>
288
+ <param pos="0" name="service.product" value="Recursor"/>
289
+ <param pos="1" name="service.version"/>
290
+ </fingerprint>
291
+ <fingerprint pattern="^PowerDNS Recursor (\d\.[\d.]+) \$Id[^$]*\$$">
292
+ <description>PowerDNS Recursor: ID format</description>
293
+ <example service.version="3.5.3">PowerDNS Recursor 3.5.3 $Id$</example>
294
+ <example service.version="3.2">PowerDNS Recursor 3.2 $Id: pdns_recursor.cc 1538 2010-03-06 11:39:03Z ahu $</example>
295
+ <param pos="0" name="service.vendor" value="PowerDNS"/>
296
+ <param pos="0" name="service.family" value="PowerDNS"/>
297
+ <param pos="0" name="service.product" value="Recursor"/>
298
+ <param pos="1" name="service.version"/>
299
+ </fingerprint>
300
+ <fingerprint pattern="^PowerDNS Recursor$">
301
+ <description>PowerDNS Recursor: no version</description>
302
+ <example>PowerDNS Recursor</example>
303
+ <param pos="0" name="service.vendor" value="PowerDNS"/>
304
+ <param pos="0" name="service.family" value="PowerDNS"/>
305
+ <param pos="0" name="service.product" value="Recursor"/>
306
+ </fingerprint>
307
+ <fingerprint pattern="^PowerDNS Authoritative Server (\d\.[\d.]++(?:-rc\d)?) \(\w+@[\w.]+ built [\d\s]+\w*@[\w.-]*\)$">
308
+ <description>PowerDNS Authoritative Server</description>
309
+ <example service.version="3.4.19">PowerDNS Authoritative Server 3.4.19 (jenkins@autotest.powerdns.com built 20160102220341 root@)</example>
310
+ <example service.version="3.4.10">PowerDNS Authoritative Server 3.4.10 (jenkins@autotest.powerdns.com built 20170306160718 root@foo-bar.foo.baz)</example>
311
+ <example service.version="3.3">PowerDNS Authoritative Server 3.3 (jenkins@autotest.powerdns.com built 20150306160718 root@foo-bar.foo.baz)</example>
312
+ <example service.version="3.3-rc2">PowerDNS Authoritative Server 3.3-rc2 (jenkins@autotest.powerdns.com built 20130627120406 root@foo-bar.foo.baz)</example>
313
+ <example service.version="3.4.10">PowerDNS Authoritative Server 3.4.10 (jenkins@autotest.powerdns.com built @)</example>
314
+ <param pos="0" name="service.vendor" value="PowerDNS"/>
315
+ <param pos="0" name="service.family" value="PowerDNS"/>
316
+ <param pos="0" name="service.product" value="Authoritative Server"/>
317
+ <param pos="1" name="service.version"/>
318
+ </fingerprint>
319
+ <fingerprint pattern="^PowerDNS Authoritative Server (\d\.[\w.]+(?:-rc\d)?(?:-alpha\d)?(?:-beta\d)?) \(built [\w\s:]+ by [\w]+\@[\w.-:-]*\)$">
320
+ <description>PowerDNS Authoritative Server: format 2</description>
321
+ <example service.version="4.0.4">PowerDNS Authoritative Server 4.0.4 (built Jul 26 2017 15:04:27 by root@FreeBSD:11:amd64-default-job-03)</example>
322
+ <example service.version="4.0.0-rc2">PowerDNS Authoritative Server 4.0.0-rc2 (built Jul 4 2016 15:44:39 by root@foo-bar.baz)</example>
323
+ <example service.version="4.0.0-alpha2">PowerDNS Authoritative Server 4.0.0-alpha2 (built Feb 01 2016 00:12:05 by buildbot@baz)</example>
324
+ <example service.version="4.0.0-beta1">PowerDNS Authoritative Server 4.0.0-beta1 (built Feb 01 2016 00:00:00 by buildbot@baz)</example>
325
+ <example service.version="0.0.g56d692a">PowerDNS Authoritative Server 0.0.g56d692a (built Feb 25 2017 13:10:19 by root@foo-bar.baz)</example>
326
+ <param pos="0" name="service.vendor" value="PowerDNS"/>
327
+ <param pos="0" name="service.family" value="PowerDNS"/>
328
+ <param pos="0" name="service.product" value="Authoritative Server"/>
329
+ <param pos="1" name="service.version"/>
330
+ </fingerprint>
331
+ <fingerprint pattern="^PowerDNS Authoritative Server (\d\.[\d.]+(?:-\w+)?)$">
332
+ <description>PowerDNS Authoritative Server: version only</description>
333
+ <example service.version="4.0.0">PowerDNS Authoritative Server 4.0.0</example>
334
+ <example service.version="4.0.0-alpha2">PowerDNS Authoritative Server 4.0.0-alpha2</example>
335
+ <param pos="0" name="service.vendor" value="PowerDNS"/>
336
+ <param pos="0" name="service.family" value="PowerDNS"/>
337
+ <param pos="0" name="service.product" value="Authoritative Server"/>
338
+ <param pos="1" name="service.version"/>
339
+ </fingerprint>
340
+ <!-- PowerDNS returns 'Served by ...' when the 'version-string' configuration
341
+ value / arguement is set to 'powerdns'. If this value is set to
342
+ 'anonymous' then PowerDNS will return a ServFail DNS response
343
+ The matches below are *probably* Authoritative Server but we can't be
344
+ sure.
345
+ -->
346
+ <fingerprint pattern="^Served by POWERDNS (\d\.[\d.]+) \$Id[^$]*\$$">
347
+ <description>PowerDNS: Served by format with version</description>
348
+ <example service.version="2.9.22">Served by POWERDNS 2.9.22 $Id: packethandler.cc 1321 2008-12-06 19:44:36Z ahu $</example>
349
+ <param pos="0" name="service.vendor" value="PowerDNS"/>
350
+ <param pos="0" name="service.family" value="PowerDNS"/>
351
+ <param pos="1" name="service.version"/>
352
+ </fingerprint>
353
+ <fingerprint pattern="^Served by PowerDNS - https?:\/\/www.powerdns.com\/?$">
354
+ <description>PowerDNS: Served by format without version</description>
355
+ <example>Served by PowerDNS - https://www.powerdns.com/</example>
356
+ <example>Served by PowerDNS - http://www.powerdns.com</example>
357
+ <param pos="0" name="service.vendor" value="PowerDNS"/>
358
+ <param pos="0" name="service.family" value="PowerDNS"/>
359
+ </fingerprint>
360
+ <fingerprint pattern="^Nominum Vantio(?: CacheServe)? ([\d.]+)$">
361
+ <description>Nominum Vantio CacheServe</description>
362
+ <example service.version="4.3.0.2">Nominum Vantio 4.3.0.2</example>
363
+ <example service.version="7.2.1.3">Nominum Vantio CacheServe 7.2.1.3</example>
364
+ <param pos="0" name="service.vendor" value="Nominum"/>
365
+ <param pos="0" name="service.family" value="Vantio"/>
366
+ <param pos="0" name="service.product" value="CacheServe"/>
367
+ <param pos="1" name="service.version"/>
368
+ </fingerprint>
369
+ <fingerprint pattern="^Nominum Vantio ([\d.]+) \(build (\d+)\)$">
370
+ <description>Nominum Vantio CacheServe, with build</description>
371
+ <example service.version.version="114872">Nominum Vantio 5.4.5.1 (build 114872)</example>
372
+ <param pos="0" name="service.vendor" value="Nominum"/>
373
+ <param pos="0" name="service.family" value="Vantio"/>
374
+ <param pos="0" name="service.product" value="CacheServe"/>
375
+ <param pos="1" name="service.version"/>
376
+ <param pos="2" name="service.version.version"/>
377
+ </fingerprint>
378
+ <fingerprint pattern="^Nominum ANS(?:Premier)? ([\d\.]+)$">
379
+ <description>Nominum Vantio AuthServ</description>
380
+ <example service.version="5.4.0.0">Nominum ANS 5.4.0.0</example>
381
+ <example service.version="5.4.0.0">Nominum ANSPremier 5.4.0.0</example>
382
+ <param pos="0" name="service.vendor" value="Nominum"/>
383
+ <param pos="0" name="service.family" value="Vantio"/>
384
+ <param pos="0" name="service.product" value="AuthServ"/>
385
+ <param pos="1" name="service.version"/>
386
+ </fingerprint>
387
+ <fingerprint pattern="^NSD ([\d.]*(?:b\d+)?)$">
388
+ <description>NLnet Labs Name Server Daemon</description>
389
+ <example service.version="3.2.18">NSD 3.2.18</example>
390
+ <example service.version="4.0.0b5">NSD 4.0.0b5</example>
391
+ <example service.version="4">NSD 4</example>
392
+ <example>NSD </example>
393
+ <param pos="0" name="service.vendor" value="NLnet Labs"/>
394
+ <param pos="0" name="service.family" value="NSD"/>
395
+ <param pos="0" name="service.product" value="dnsd"/>
396
+ <param pos="1" name="service.version"/>
397
+ </fingerprint>
398
+ <fingerprint pattern="^unbound ([\d.]+)$">
399
+ <description>NLnet Labs Unbound</description>
400
+ <example service.version="1.4.22">unbound 1.4.22</example>
401
+ <param pos="0" name="service.vendor" value="NLnet Labs"/>
402
+ <param pos="0" name="service.family" value="Unbound"/>
403
+ <param pos="0" name="service.product" value="unbound"/>
404
+ <param pos="1" name="service.version"/>
405
+ </fingerprint>
406
+ <fingerprint pattern="^(?i:unbound)$">
407
+ <description>NLnet Labs Unbound no version string</description>
408
+ <example>unbound</example>
409
+ <param pos="0" name="service.vendor" value="NLnet Labs"/>
410
+ <param pos="0" name="service.family" value="Unbound"/>
411
+ <param pos="0" name="service.product" value="unbound"/>
412
+ </fingerprint>
413
+ <fingerprint pattern="^(?:BIND )?(9.[^-]+(?:-[SP]\d)?)-9\+deb8u\d+-Raspbian$">
414
+ <description>ISC BIND: Raspbian based on Debian Jessie</description>
415
+ <example service.version="9.9.5">9.9.5-9+deb8u7-Raspbian</example>
416
+ <example service.version="9.9.5">BIND 9.9.5-9+deb8u11-Raspbian</example>
417
+ <param pos="0" name="service.vendor" value="ISC"/>
418
+ <param pos="0" name="service.family" value="BIND"/>
419
+ <param pos="0" name="service.product" value="BIND"/>
420
+ <param pos="1" name="service.version"/>
421
+ <param pos="0" name="os.vendor" value="Raspbian"/>
422
+ <param pos="0" name="os.family" value="Linux"/>
423
+ <param pos="0" name="os.product" value="Linux"/>
424
+ <param pos="0" name="os.version" value="8.0"/>
425
+ </fingerprint>
426
+ <fingerprint pattern="^(9.[^-]+(?:-[SP]\d)?)-(?:\d-)?Raspbian$">
427
+ <description>ISC BIND: Raspbian based on Debian Jessie no version simple</description>
428
+ <example service.version="9.10.3-P4">9.10.3-P4-Raspbian</example>
429
+ <param pos="0" name="service.vendor" value="ISC"/>
430
+ <param pos="0" name="service.family" value="BIND"/>
431
+ <param pos="0" name="service.product" value="BIND"/>
432
+ <param pos="1" name="service.version"/>
433
+ <param pos="0" name="os.vendor" value="Raspbian"/>
434
+ <param pos="0" name="os.family" value="Linux"/>
435
+ <param pos="0" name="os.product" value="Linux"/>
436
+ </fingerprint>
437
+ <fingerprint pattern="^Knot DNS ([\d.]+(?:-dev)?)$">
438
+ <description>Knot DNS</description>
439
+ <example service.version="1.6.0">Knot DNS 1.6.0</example>
440
+ <example service.version="2.5.0-dev">Knot DNS 2.5.0-dev</example>
441
+ <param pos="0" name="service.vendor" value="cz.nic"/>
442
+ <param pos="0" name="service.family" value="Knot"/>
443
+ <param pos="0" name="service.product" value="DNS"/>
444
+ <param pos="1" name="service.version"/>
445
+ </fingerprint>
446
+ <fingerprint pattern="^UltraDNS Resolver$">
447
+ <description>Neustar UltraDNS Resolver</description>
448
+ <example>UltraDNS Resolver</example>
449
+ <param pos="0" name="service.vendor" value="Neustar"/>
450
+ <param pos="0" name="service.family" value="UltraDNS"/>
451
+ <param pos="0" name="service.product" value="Resolver"/>
452
+ </fingerprint>
453
+ <fingerprint pattern="^UltraDNS TLD Platform - www\.ultradns\.com$">
454
+ <description>Neustar UltraDNS TLD Platform</description>
455
+ <example>UltraDNS TLD Platform - www.ultradns.com</example>
456
+ <param pos="0" name="service.vendor" value="Neustar"/>
457
+ <param pos="0" name="service.family" value="UltraDNS"/>
458
+ <param pos="0" name="service.product" value="Resolver"/>
459
+ </fingerprint>
460
+ <!-- For Microsoft OSes the build number applies to the family. For example,
461
+ 6.3.9600 is used by Windows 8.1 Update 1 as well as Windows 2012 R2. We
462
+ are assuming that the server version of the OS is what we are
463
+ fingerprinting since installation of the DNS service on the workstation
464
+ class OS would be unlikely and difficult if possible at all.
465
+
466
+ DNS version response is disabled by default on modern Windows versions
467
+ and the detail in the response is controlled via the EnableVersionQuery
468
+ setting.
469
+
470
+ The to enable version response on modern versions is:
471
+ dnscmd /config /EnableVersionQuery 1
472
+ -->
473
+ <fingerprint pattern="^Microsoft DNS (10.0.\d+)(?: \(\w+\))?$">
474
+ <description>Microsoft DNS on Windows 2016: GA</description>
475
+ <!-- Windows 10 / 2016 moved towards a rolling release so capturing build
476
+ is required unlike other Windows versions where we use a fixed string.
477
+ -->
478
+ <example service.version="10.0.14393" os.build="10.0.14393">Microsoft DNS 10.0.14393 (383900CE)</example>
479
+ <param pos="0" name="service.vendor" value="Microsoft"/>
480
+ <param pos="0" name="service.family" value="DNS"/>
481
+ <param pos="0" name="service.product" value="DNS"/>
482
+ <param pos="1" name="service.version"/>
483
+ <param pos="0" name="os.vendor" value="Microsoft"/>
484
+ <param pos="0" name="os.device" value="General"/>
485
+ <param pos="0" name="os.family" value="Windows"/>
486
+ <param pos="0" name="os.product" value="Windows Server 2016"/>
487
+ <param pos="1" name="os.build"/>
488
+ </fingerprint>
489
+ <fingerprint pattern="^Microsoft DNS 6.3.9600(?: \(\w+\))?$">
490
+ <description>Microsoft DNS on Windows 2012 R2</description>
491
+ <example>Microsoft DNS 6.3.9600 (25804825)</example>
492
+ <param pos="0" name="service.vendor" value="Microsoft"/>
493
+ <param pos="0" name="service.family" value="DNS"/>
494
+ <param pos="0" name="service.product" value="DNS"/>
495
+ <param pos="0" name="service.version" value="6.3.9600"/>
496
+ <param pos="0" name="os.vendor" value="Microsoft"/>
497
+ <param pos="0" name="os.device" value="General"/>
498
+ <param pos="0" name="os.family" value="Windows"/>
499
+ <param pos="0" name="os.product" value="Windows Server 2012 R2"/>
500
+ <param pos="0" name="os.build" value="6.3.9600"/>
501
+ </fingerprint>
502
+ <fingerprint pattern="^Microsoft DNS 6.2.9200(?: \(\w+\))?$">
503
+ <description>Microsoft DNS on Windows 2012</description>
504
+ <example>Microsoft DNS 6.2.9200 (23F04000)</example>
505
+ <param pos="0" name="service.vendor" value="Microsoft"/>
506
+ <param pos="0" name="service.family" value="DNS"/>
507
+ <param pos="0" name="service.product" value="DNS"/>
508
+ <param pos="0" name="service.version" value="6.2.9200"/>
509
+ <param pos="0" name="os.vendor" value="Microsoft"/>
510
+ <param pos="0" name="os.device" value="General"/>
511
+ <param pos="0" name="os.family" value="Windows"/>
512
+ <param pos="0" name="os.product" value="Windows Server 2012"/>
513
+ <param pos="0" name="os.build" value="6.2.9200"/>
514
+ </fingerprint>
515
+ <fingerprint pattern="^Microsoft DNS 6.1.7601(?: \(\w+\))?$">
516
+ <description>Microsoft DNS on Windows 2008 R2 Service Pack 1</description>
517
+ <example>Microsoft DNS 6.1.7601 (1DB15CD4)</example>
518
+ <example>Microsoft DNS 6.1.7601</example>
519
+ <param pos="0" name="service.vendor" value="Microsoft"/>
520
+ <param pos="0" name="service.family" value="DNS"/>
521
+ <param pos="0" name="service.product" value="DNS"/>
522
+ <param pos="0" name="service.version" value="6.1.7601"/>
523
+ <param pos="0" name="os.vendor" value="Microsoft"/>
524
+ <param pos="0" name="os.device" value="General"/>
525
+ <param pos="0" name="os.family" value="Windows"/>
526
+ <param pos="0" name="os.product" value="Windows Server 2008 R2"/>
527
+ <param pos="0" name="os.version" value="Service Pack 1"/>
528
+ <param pos="0" name="os.build" value="6.1.7601"/>
529
+ </fingerprint>
530
+ <fingerprint pattern="^Microsoft DNS 6.1.7600(?: \(\w+\))?$">
531
+ <description>Microsoft DNS on Windows 2008 R2</description>
532
+ <example>Microsoft DNS 6.1.7600 (1DB04228)</example>
533
+ <param pos="0" name="service.vendor" value="Microsoft"/>
534
+ <param pos="0" name="service.family" value="DNS"/>
535
+ <param pos="0" name="service.product" value="DNS"/>
536
+ <param pos="0" name="service.version" value="6.1.7600"/>
537
+ <param pos="0" name="os.vendor" value="Microsoft"/>
538
+ <param pos="0" name="os.device" value="General"/>
539
+ <param pos="0" name="os.family" value="Windows"/>
540
+ <param pos="0" name="os.product" value="Windows Server 2008 R2"/>
541
+ <param pos="0" name="os.build" value="6.1.7600"/>
542
+ </fingerprint>
543
+ <fingerprint pattern="^Microsoft DNS 6.0.6002(?: \(\w+\))?$">
544
+ <description>Microsoft DNS on Windows 2008 Service Pack 2</description>
545
+ <example>Microsoft DNS 6.0.6002 (17724D35)</example>
546
+ <param pos="0" name="service.vendor" value="Microsoft"/>
547
+ <param pos="0" name="service.family" value="DNS"/>
548
+ <param pos="0" name="service.product" value="DNS"/>
549
+ <param pos="0" name="service.version" value="6.0.6002"/>
550
+ <param pos="0" name="os.vendor" value="Microsoft"/>
551
+ <param pos="0" name="os.device" value="General"/>
552
+ <param pos="0" name="os.family" value="Windows"/>
553
+ <param pos="0" name="os.product" value="Windows Server 2008"/>
554
+ <param pos="0" name="os.version" value="Service Pack 2"/>
555
+ <param pos="0" name="os.build" value="6.0.6002"/>
556
+ </fingerprint>
557
+ <fingerprint pattern="^Microsoft DNS 6.0.6001(?: \(\w+\))?$">
558
+ <description>Microsoft DNS on Windows 2008 Service Pack 1</description>
559
+ <example>Microsoft DNS 6.0.6001 (17714726)</example>
560
+ <param pos="0" name="service.vendor" value="Microsoft"/>
561
+ <param pos="0" name="service.family" value="DNS"/>
562
+ <param pos="0" name="service.product" value="DNS"/>
563
+ <param pos="0" name="service.version" value="6.0.6001"/>
564
+ <param pos="0" name="os.vendor" value="Microsoft"/>
565
+ <param pos="0" name="os.device" value="General"/>
566
+ <param pos="0" name="os.family" value="Windows"/>
567
+ <param pos="0" name="os.product" value="Windows Server 2008"/>
568
+ <param pos="0" name="os.version" value="Service Pack 1"/>
569
+ <param pos="0" name="os.build" value="6.0.6001"/>
570
+ </fingerprint>
571
+ <fingerprint pattern="^DNSServer$">
572
+ <description>Synology DNS service</description>
573
+ <example>DNSServer</example>
574
+ <param pos="0" name="service.vendor" value="Synology"/>
575
+ <param pos="0" name="service.family" value="DSM"/>
576
+ <param pos="0" name="service.product" value="DNS"/>
577
+ <param pos="0" name="os.device" value="NAS"/>
578
+ <param pos="0" name="os.family" value="Linux"/>
579
+ <param pos="0" name="hw.vendor" value="Synology"/>
580
+ <param pos="0" name="hw.device" value="NAS"/>
581
+ </fingerprint>
582
+ <fingerprint pattern="^Incognito DNS Service ([\d\.]+) \(built">
583
+ <description>Incognito DNS Service</description>
584
+ <example service.version="6.4.4.2">Incognito DNS Service 6.4.4.2 (built Aug 10 2015) [up=15d30902s, ser=9876]</example>
585
+ <param pos="0" name="service.vendor" value="Incognito"/>
586
+ <param pos="0" name="service.family" value="DNS"/>
587
+ <param pos="0" name="service.product" value="DNS"/>
588
+ <param pos="1" name="service.version"/>
589
+ </fingerprint>
590
+ <fingerprint pattern="^(?i:djbdns)[\s-](\d.\d+)$">
591
+ <description>djbdns</description>
592
+ <example service.version="1.05">djbdns 1.05</example>
593
+ <example service.version="1.05">djbdns-1.05</example>
594
+ <example service.version="1.05">DjbDNS 1.05</example>
595
+ <param pos="0" name="service.vendor" value="D J Bernstein"/>
596
+ <param pos="0" name="service.family" value="djbdns"/>
597
+ <param pos="0" name="service.product" value="djbdns"/>
598
+ <param pos="1" name="service.version"/>
599
+ </fingerprint>
600
+ <fingerprint pattern="^(?i:djbdns)$">
601
+ <description>djbdns: no version</description>
602
+ <example>DJBDNS</example>
603
+ <example>djbdns</example>
604
+ <param pos="0" name="service.vendor" value="D J Bernstein"/>
605
+ <param pos="0" name="service.family" value="djbdns"/>
606
+ <param pos="0" name="service.product" value="djbdns"/>
607
+ </fingerprint>
608
+ <fingerprint pattern="^rbldnsd (\d[\.\w\/-]+) \(\d\d \w\w\w \d\d\d\d\)$">
609
+ <description>rbldnsd</description>
610
+ <example service.version="0.997a">rbldnsd 0.997a (23 Jul 2013)</example>
611
+ <example service.version="0.996a-0.1">rbldnsd 0.996a-0.1 (01 Apr 2008)</example>
612
+ <example service.version="0.998/WGC">rbldnsd 0.998/WGC (31 Dec 2015)</example>
613
+ <param pos="0" name="service.vendor" value="Michael Tokarev"/>
614
+ <param pos="0" name="service.family" value="rbldnsd"/>
615
+ <param pos="0" name="service.product" value="rbldnsd"/>
616
+ <param pos="1" name="service.version"/>
617
+ </fingerprint>
618
+ <fingerprint pattern="^ALU DNS ([\d\.]+) Build (\d+)$">
619
+ <description>ALU (Alcatel Lucent?) DNS</description>
620
+ <example service.version="6.2">ALU DNS 6.2 Build 22</example>
621
+ <example service.version.version="9">ALU DNS 6.2 Build 9</example>
622
+ <param pos="0" name="service.vendor" value="ALU"/>
623
+ <param pos="0" name="service.family" value="DNS"/>
624
+ <param pos="0" name="service.product" value="DNS"/>
625
+ <param pos="1" name="service.version"/>
626
+ <param pos="2" name="service.version.version"/>
627
+ </fingerprint>
628
+ <fingerprint pattern="^DraytekDNS-v([\d\.]+)$">
629
+ <description>Draytek DNS</description>
630
+ <example service.version="1.2.3006">DraytekDNS-v1.2.3006</example>
631
+ <param pos="0" name="service.vendor" value="Draytek"/>
632
+ <param pos="0" name="service.family" value="DNS"/>
633
+ <param pos="0" name="service.product" value="DNS"/>
634
+ <param pos="1" name="service.version"/>
635
+ </fingerprint>
636
+ <fingerprint pattern="^Atlas Anchor ([\d\.]+)$">
637
+ <description>Ripe ATLAS Anchor</description>
638
+ <!-- https://atlas.ripe.net/docs/anchors/ -->
639
+ <example service.version="0.1">Atlas Anchor 0.1</example>
640
+ <param pos="0" name="service.vendor" value="RIPE"/>
641
+ <param pos="0" name="service.family" value="Atlas Anchor"/>
642
+ <param pos="0" name="service.product" value="DNS"/>
643
+ <param pos="1" name="service.version"/>
644
+ </fingerprint>
645
+ <fingerprint pattern="^ZyWALL DNS$">
646
+ <description>ZyWALL DNS</description>
647
+ <example>ZyWALL DNS</example>
648
+ <param pos="0" name="service.vendor" value="Zyxel"/>
649
+ <param pos="0" name="service.family" value="ZyWALL"/>
650
+ <param pos="0" name="service.product" value="DNS"/>
651
+ <param pos="0" name="hw.vendor" value="Zyxel"/>
652
+ </fingerprint>
653
+ <fingerprint pattern="^Array SmartDNS$">
654
+ <description>Array Networks SmartDNS</description>
655
+ <example>Array SmartDNS</example>
656
+ <param pos="0" name="service.vendor" value="Array Networks"/>
657
+ <param pos="0" name="service.family" value="AVP"/>
658
+ <param pos="0" name="service.product" value="SmartDNS"/>
659
+ </fingerprint>
660
+ <fingerprint pattern="^gdnsd$">
661
+ <description>gdnsd</description>
662
+ <example>gdnsd</example>
663
+ <param pos="0" name="service.vendor" value="Brandon Black"/>
664
+ <param pos="0" name="service.family" value="gdnsd"/>
665
+ <param pos="0" name="service.product" value="gdnsd"/>
666
+ </fingerprint>
667
+ <fingerprint pattern="^Hi: [\w\.: =]+\d{4}$">
668
+ <description>OzymanDNS DNS tunnel</description>
669
+ <example>Hi: Thu Aug 17 23:29:10 2017</example>
670
+ <example>Hi: Lookup=VERSION.BIND Date=Thu Aug 17 23:53:10 UTC 2017</example>
671
+ <param pos="0" name="service.vendor" value="Dan Kaminsky"/>
672
+ <param pos="0" name="service.family" value="OzymanDNS"/>
673
+ <param pos="0" name="service.product" value="OzymanDNS"/>
674
+ </fingerprint>
675
+ <fingerprint pattern="^Meta IP[\s\/]DNS (?:V[\d\.]+ )?- BIND V([\d\.]+(?:-REL)?) \(Build (\d+)\s?\)$">
676
+ <description>Check Point Meta IP</description>
677
+ <example service.version="8.2.7-REL">Meta IP DNS - BIND V8.2.7-REL (Build 31)</example>
678
+ <example service.version.version="4704">Meta IP/DNS V4.1 - BIND V8.1.2 (Build 4704 )</example>
679
+ <param pos="0" name="service.vendor" value="Check Point"/>
680
+ <param pos="0" name="service.family" value="META IP"/>
681
+ <param pos="0" name="service.product" value="DNS"/>
682
+ <param pos="1" name="service.version"/>
683
+ <param pos="2" name="service.version.version"/>
684
+ </fingerprint>
685
+ </fingerprints>
@@ -7372,7 +7372,7 @@ Copyright (c) 1995-2005 by Cisco Systems
7372
7372
  <example os.version="11" os.arch="sun4u">SunOS release:5.11 version:Generic_125100-07 machine:sun4u</example>
7373
7373
  <example os.version="12" os.arch="sun4u">SunOS release:5.12 version:Generic_125100-07 machine:sun4u</example>
7374
7374
  <param pos="0" name="os.vendor" value="Oracle"/>
7375
- <param pos="0" name="os.vertainty" value="0.9"/>
7375
+ <param pos="0" name="os.certainty" value="0.9"/>
7376
7376
  <param pos="0" name="os.family" value="Solaris"/>
7377
7377
  <param pos="0" name="os.product" value="Solaris"/>
7378
7378
  <param pos="0" name="os.device" value="General"/>
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: recog
3
3
  version: !ruby/object:Gem::Version
4
- version: 2.1.11
4
+ version: 2.1.12
5
5
  platform: ruby
6
6
  authors:
7
7
  - Rapid7 Research
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2017-07-03 00:00:00.000000000 Z
11
+ date: 2017-08-22 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: rspec
@@ -180,6 +180,7 @@ files:
180
180
  - spec/spec_helper.rb
181
181
  - xml/apache_os.xml
182
182
  - xml/architecture.xml
183
+ - xml/dns_versionbind.xml
183
184
  - xml/fingerprints.xsd
184
185
  - xml/ftp_banners.xml
185
186
  - xml/h323_callresp.xml
@@ -238,7 +239,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
238
239
  version: '0'
239
240
  requirements: []
240
241
  rubyforge_project:
241
- rubygems_version: 2.5.2
242
+ rubygems_version: 2.6.11
242
243
  signing_key:
243
244
  specification_version: 4
244
245
  summary: Network service fingerprint database, classes, and utilities