Releases: rapid7/recog
Releases · rapid7/recog
v3.0.3 - 2022.10.20
What's Changed
- Add Python BaseHTTP fingerprint by @mkienow-r7 in #473
- Temporary fix to restore rspec progress formatter by @mkienow-r7 in #474
- More DHCP-based fingerprints by @dmoinescu-r7 in #476
- Add Talend Restlet Framework fingerprint by @mkienow-r7 in #475
- Add Gunicorn with no version fingerprint by @mkienow-r7 in #477
- Restore non-capturing groups to fix anchored regex issue by @mkienow-r7 in #478
- Add Python WSGIServer fingerprint by @mkienow-r7 in #479
- Add OpenKM Document Management System fingerprint by @mkienow-r7 in #480
- Add Atlassian Bitbucket fingerprints by @mkienow-r7 in #482
- Add Mayan EDMS document management system fingerprint by @mkienow-r7 in #481
- Add SalesAgility SuiteCRM fingerprints by @mkienow-r7 in #483
- Add ManageEngine PAM360 fingerprints by @mkienow-r7 in #484
- Add ManageEngine Password Manager Pro fingerprints by @mkienow-r7 in #485
- Add ManageEngine Access Manager Plus fingerprints by @mkienow-r7 in #486
- Add Crow C++ framework for web services fingerprint by @mkienow-r7 in #487
- New dhcp vendor class fingerprints by @modoyle-r7 in #488
- Add Papermerge document management system fingerprints by @mkienow-r7 in #489
- Add Medusa extensible Internet server framework fingerprints by @mkienow-r7 in #490
- DHCP vendor_class Xerox Printer updates by @modoyle-r7 in #491
- Add Amazon OpenSearch fingerprints by @mkienow-r7 in #492
- Add Supervisord Supervisor web interface fingerprints by @mkienow-r7 in #494
- Add qdPM fingerprints by @mkienow-r7 in #495
- More fingerprints for the Polycom VVX family by @dmoinescu-r7 in #497
- Add missing IMAP CAPABILITY string by @mkienow-r7 in #498
- DHCP fingerprints for Polycom SoundStation IP by @dmoinescu-r7 in #496
- DHCP fingerprint for Avaya device by @dmoinescu-r7 in #499
New Contributors
- @dmoinescu-r7 made their first contribution in #476
Full Changelog: v3.0.2...v3.0.3
v3.0.2 - 2022.08.24
What's Changed
- Update recog requirement from ~>2.3.23 to ~> 3.0 by @mkienow-r7 in #465
- Bump lxml from 4.6.5 to 4.9.1 by @dependabot in #466
- Add more Jupyter product fingerprints by @mkienow-r7 in #468
- Add Duo Device Health and Mac Certifier x509 fingerprints by @mkienow-r7 in #470
- Add recog_match support for JSON output by @mkienow-r7 in #467
- Update and add new Zimbra Collaboration fingerprints by @mkienow-r7 in #471
- Add Kubernetes minikube x509 issuer fingerprint by @mkienow-r7 in #472
Full Changelog: v3.0.1...v3.0.2
v3.0.1 - 2022.06.29
What's Changed
- Repository split - remove recog library by @mkienow-r7 in #437
- Update default branch rename instructions by @mkienow-r7 in #442
- Update to Ruby version 2.7.5 by @mkienow-r7 in #443
- recog_standardize: handle missing files, detect removed identifiers, unify device type tracking by @TomSellers in #438
- Add Baxter SIGMA Spectrum Infusion System fingerprint by @mkienow-r7 in #439
- Add FastHTTP fingerprint by @mkienow-r7 in #440
- Add ManageEngine ADSelfService Plus cookie by @mkienow-r7 in #441
- Restore and enhance fingerprint self test spec by @mkienow-r7 in #444
- Add WatchGuard Fireware XTM favicon fingerprint by @mkienow-r7 in #445
- Fix pre-commit hook for updated recog_standardize by @mkienow-r7 in #446
- Add WSO2 product fingerprints by @mkienow-r7 in #450
- Add openHAB fingerprints by @mkienow-r7 in #448
- Add Home Assistant favicon fingerprint by @mkienow-r7 in #449
- Add Ballerina programming language HTTP module fingerprint by @mkienow-r7 in #451
- Add Alentis Electronics NetPing PDU fingerprints by @mkienow-r7 in #447
- Add dotCMS Content Management Platform fingerprints by @mkienow-r7 in #452
- Add Microsoft Azure Application Gateway fingerprint by @mkienow-r7 in #453
- Add Alibaba Cloud Object Storage Service (OSS) fingerprint by @mkienow-r7 in #454
- Add assorted ZTE CPE device web server fingerprint by @mkienow-r7 in #455
- Add a favicon for synology DSM by @jvoisin in #457
- Add a x509_issuers fingerprint for proxmox by @jvoisin in #459
- Fix port number portion of an assert nothing HTTP server regex by @mkienow-r7 in #461
- Add Hydra web server fingerprint by @mkienow-r7 in #463
- Add Aruba fingerprints via SNMP by @dcollado-r7 in #462
New Contributors
- @dcollado-r7 made their first contribution in #462
Full Changelog: v2.3.23...v3.0.1
v3.0.0 - 2022.06.28
What's Changed
- Repository split - remove recog library by @mkienow-r7 in #437
- Update default branch rename instructions by @mkienow-r7 in #442
- Update to Ruby version 2.7.5 by @mkienow-r7 in #443
- recog_standardize: handle missing files, detect removed identifiers, unify device type tracking by @TomSellers in #438
- Add Baxter SIGMA Spectrum Infusion System fingerprint by @mkienow-r7 in #439
- Add FastHTTP fingerprint by @mkienow-r7 in #440
- Add ManageEngine ADSelfService Plus cookie by @mkienow-r7 in #441
- Restore and enhance fingerprint self test spec by @mkienow-r7 in #444
- Add WatchGuard Fireware XTM favicon fingerprint by @mkienow-r7 in #445
- Fix pre-commit hook for updated recog_standardize by @mkienow-r7 in #446
- Add WSO2 product fingerprints by @mkienow-r7 in #450
- Add openHAB fingerprints by @mkienow-r7 in #448
- Add Home Assistant favicon fingerprint by @mkienow-r7 in #449
- Add Ballerina programming language HTTP module fingerprint by @mkienow-r7 in #451
- Add Alentis Electronics NetPing PDU fingerprints by @mkienow-r7 in #447
- Add dotCMS Content Management Platform fingerprints by @mkienow-r7 in #452
- Add Microsoft Azure Application Gateway fingerprint by @mkienow-r7 in #453
- Add Alibaba Cloud Object Storage Service (OSS) fingerprint by @mkienow-r7 in #454
- Add assorted ZTE CPE device web server fingerprint by @mkienow-r7 in #455
- Add a favicon for synology DSM by @jvoisin in #457
- Add a x509_issuers fingerprint for proxmox by @jvoisin in #459
- Fix port number portion of an assert nothing HTTP server regex by @mkienow-r7 in #461
- Add Hydra web server fingerprint by @mkienow-r7 in #463
- Add Aruba fingerprints via SNMP by @dcollado-r7 in #462
New Contributors
- @dcollado-r7 made their first contribution in #462
Full Changelog: v2.3.23...v3.0.0
v2.3.23 - 2022.03.30
What's Changed
- Resolve #389: Add line numbers to recog_verify output by @dabdine in #390
- Bump lxml from 4.6.3 to 4.6.5 by @dependabot in #391
- Increment lower JRuby version to 9.2.20.1 by @mkienow-r7 in #394
- Integrate fingerprint validation into Visual Studio Code by @dabdine in #393
- Add two jarm c2 fingerprints, one for msf, one for cobalt strike by @jvoisin in #397
- Add a jarm fingerprint for HP Printers by @jvoisin in #396
- Add Covenant C2 fingerprints by @mkienow-r7 in #399
- Add CALDERA C2 fingerprints by @mkienow-r7 in #401
- Add more Metasploit JARM fingerprints by @mkienow-r7 in #398
- Remap recently deprecated confluence CPE by @mkienow-r7 in #403
- Eliminate warnings when no examples are present in fingerprints by @dabdine in #402
- Scripted update to add missing example attributes by @dabdine in #400
- Fix additional warnings due to untested attributes by @dabdine in #404
- Fix examples in architecture.xml, ftp_banners.xml, and ssh_banners.xml by @dabdine in #406
- Fix all examples in apache_os.xml by @dabdine in #407
- Fix all examples in http_cookies.xml by adding/improving examples by @dabdine in #408
- Enhance recog verify to report an untested parameter as a failure by @mkienow-r7 in #405
- Fix greedy service.version capture group for EmWeb variants by @mkienow-r7 in #413
- Add teamspeak http server fingerprint by @dabdine in #415
- Add a WebSocket++ fingerprint by @dabdine in #414
- Enable fingerprint xsd validation and CI automation by @dabdine in #410
- Add phpMyAdmin fingerprints by @mkienow-r7 in #409
- Add Adminer fingerprints by @mkienow-r7 in #411
- Add Apache Solr fingerprints by @mkienow-r7 in #412
- Add Zaphoyd Studios WebSocket++ remap entry by @mkienow-r7 in #419
- Add SerenityOS web server fingerprint by @mkienow-r7 in #420
- Add mitmproxy fingerprints by @mkienow-r7 in #422
- Add Apache Spark fingerprints by @mkienow-r7 in #423
- Fix path traversal issue with example filename by @mkienow-r7 in #421
- Add pfSense and Netgate pfSense Plus firewall fingerprints by @mkienow-r7 in #426
- Add DrayTek Vigor network equipment fingerprint by @mkienow-r7 in #428
- update_cpes.py: add deprecation info to output by @tsellers-r7 in #429
- Fix regex capture issues pointed out in #400 by @mkienow-r7 in #425
- Oracle HTTP server enhancements by @mkienow-r7 in #418
- Update recently deprecated o:redhat:fedora_core CPE by @mkienow-r7 in #427
- Simplify log format and include recog XML filename by @mkienow-r7 in #430
- Xiongmai Technology DVR and IP Camera NetSurveillance web interface by @mkienow-r7 in #431
- Adds various Tomato router firmware fingerprints by @mkienow-r7 in #432
- Add mongo-express fingerprints by @mkienow-r7 in #433
- Add Eltex fingerprints by @tsellers-r7 in #434
- Enhance Eltex TAU model VoIP gateway fingerprints by @mkienow-r7 in #435
- Add Eltex SMG model fingerprints by @mkienow-r7 in #436
Full diff: v2.3.22...v2.3.23
v2.3.22 - 2021.12.14
Highlights:
- Many fingerprint contributions and an enhancement that adds the ability to use filesystem-based examples (Thanks Rumble Discovery @hdm, @lpar, @pbarry25) (#382)
- Fingerprints:
- Add new
dhcp_vendor_class
(Thanks @modoyle-r7) (#356) - Improve Proxmox fingerprinting (Thanks @jvoisin) (#377)
- Add JARM for Synology DSM7.0 (Thanks @jvoisin) (#378)
- Add more JARM for Synology DSM 6.2.x & 7.0 (Thanks @tsellers-r7 for enumerating the settings) (#379)
- Add missing parameters on x509.subject examples (#380)
- Simplify many regular expressions (Thanks to @jvoisin for the initial proposal) (#381)
- Fix telnet banners pattern for compatibility with recog-java (#385, #387)
- Add new
- BUG: Fix maximum repetition size to be compatible with Go's regex requirements. This was brought to our attention by @hdm. (#372)
- CPE: Updates using the current NIST database. (#388)
- Tooling: Add fingerprint path to
recog_verify
output (#376)
Full diff: v2.3.21...v2.3.22
v2.3.21 - 2021.08.02
v2.3.20 - 2021.05.13
Highlights:
- BUG: Fix for a regex performance bug in
http_servers
when matching IPs. This was brought to our attention by @hudclark (#353) - BUG: Fix for a CPE generation bug in which we were using deprecated CPEs. This was brought to our attention by @p0lr (#361)
- CPE: Remapping logic was refactored so that remaps are specific record type (
a
,h
,o
) which provides much greater flexibility. (#361) - CPE: Focused improvements in coverage (#349)
- Fingerprints: Misc improvements (Thanks @cblack-r7, @dabdine, @sdynes-r7) (#341, #344, #345, #351, #354, #355)
- Fingerprints: HTTP - focused work on HTTP related (
http_servers
,html_title
, etc) fingerprints (#352, #357, #358, #359) - Tooling: Adding field names (
os.vendor
,service.product
, etc) to our standard identifier checks (#350)
v2.3.19 - 2021.02.04
Highlights:
- JARM: New JARM database thanks to Julien Voisin @jvoisin (#331)
- Many contributions from Rumble Discovery (@hdm) thanks to Julien Voisin @jvoisin for the backport (#334)
- Testing: New testing via Github actions thanks to Gavin Schneider @gschneider-r7 (#328)
- SIP: Improved coverage for Server and User Agent (#339)
- CPE: Various improvements (#330)
- SMB: Focused improvements and added product coverage (#307)
- Misc fingerprint improvements (Thanks @jvoisin and @scopedsecurity) (#308, #327, #331)
v2.3.17 - 2020.12.08
Highlights:
- DNS: Fingerprint for Windows 2003 (#298)
- CPE: Improved generation, standardization, and updates (#301, #303)
- BUG: Fix issue preventing
recog_standardize
from working (#302)
Changes of note:
- All values for
hw.device
andos.device
have been converted to Title Case - All
hw.device
andos.device
instances ofWeb cam
andWeb Cam
are nowIP Camera
- All
hw.device
andos.device
instances ofPOS
are nowPoint of Sale