dnrops
/
metasploit-framework
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Land #13846, Add support for import Nmap vulners script output

This commit is contained in:
gwillcox-r7 2020-08-13 12:21:31 -05:00
parent eb64d47b31 1bf75e338f
commit c79f293e52
No known key found for this signature in database
GPG Key ID: D35E05C0F2B81E83
2 changed files with 49 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
lib/msf/core/db_manager/vuln.rb
View File

@ -110,6 +110,8 @@ module Msf::DBManager::Vuln
str = "#{r.ctx_id}-#{r.ctx_val}"
elsif (r.is_a?(Hash) and r[:ctx_id] and r[:ctx_val])
str = "#{r[:ctx_id]}-#{r[:ctx_val]}"
elsif r.is_a?(String)
str = r
end
rids << find_or_create_ref(:name => str) unless str.nil?
end

48
lib/rex/parser/nmap_nokogiri.rb
View File

@ -55,10 +55,15 @@ module Rex
record_port_state(attrs)
when "service"
record_port_service(attrs)
when "script" # Not actually used in import?
when "script"
record_port_script(attrs)
record_host_script(attrs)
record_vuln_script(attrs)
# Ignoring post scripts completely
when "table"
record_vuln_table(attrs)
when "elem"
record_vuln_values(attrs)
when "trace"
record_host_trace(attrs)
when "hop"
@ -88,10 +93,17 @@ module Rex
end
@state.delete_if {|k| k != :current_tag}
@report_data = {:workspace => @args[:workspace]}
when "script"
report_vulns
end
@state[:current_tag].delete name
end
def characters(text)
@state[:add_characters] << text if @state[:add_characters]
@state.delete(:add_characters)
end
# We can certainly get fancier with self.send() magic, but
# leaving this pretty simple for now.
@ -397,6 +409,40 @@ module Rex
reported
end
def report_vulns
if @state[:vulners]
vuln_info = {
:workspace => @args[:workspace],
:host => @state[:addresses]["ipv4"],
:port => @state[:port]["portid"],
:proto => @state[:port]["protocol"],
:name => @state[:vulners][:cpe],
:refs => @state[:vulners][:refs]
}
db_report(:vuln, vuln_info)
@state.delete :vulners
end
end
def record_vuln_table(attrs)
if attrs.dig(0, 0) == 'key' && @state[:vulners] == {}
@state[:vulners][:cpe] = attrs[0][1]
@state[:vulners][:refs] = []
end
end
def record_vuln_values(attrs)
if attrs.dig(0, 0) == 'key' && attrs.dig(0, 1) == 'id' && @state[:vulners]
@state[:add_characters] = @state[:vulners][:refs]
end
end
def record_vuln_script(attrs)
if attrs[0][0] == 'id' && attrs[0][1] == 'vulners'
@state[:vulners] = {}
end
end
end
end