metasploit-framework/lib/msf/core/auxiliary/scanner.rb

module Msf

###
#
# This module provides methods for scanning modules
#
###

module Auxiliary::Scanner


#
# Initializes an instance of a recon auxiliary module
#
def initialize(info = {})
	super

	register_options(
		[
			OptAddressRange.new('RHOSTS', [ true, "The target address range or CIDR identifier"]),
		], Auxiliary::Scanner)
	
	# RHOST should not be used in scanner modules, only RHOSTS
	deregister_options('RHOST')
end


#
# The command handler when launched from the console
#
def run
	if (self.respond_to?('run_range'))
		return run_range(datastore['RHOSTS'])
	end
	
	# Add support for multiple threads
	if (self.respond_to?('run_host'))
		ar = Rex::Socket::RangeWalker.new(datastore['RHOSTS'])
		while(ip = ar.next_ip)
			self.target_host = ip
			run_host(ip)
		end
		return
	end

	# Add support for multiple threads
	if (self.respond_to?('run_batch'))
	
		if (! self.respond_to?('run_batch_size'))
			print_status("This module needs to export run_batch_size()")
			return
		end
		
		size = run_batch_size()

		ar = Rex::Socket::RangeWalker.new(datastore['RHOSTS'])
		while(true)
			batch = []
			
			while (batch.length < size)
				ip = ar.next_ip
				break if not ip
				batch << ip
			end
			return if batch.length == 0
			run_batch(batch)
		end
		return
	end
		
	print_status("This module defined no run_host or run_range methods")
end


#
# The current target host (replaces RHOST)
#
attr_accessor :target_host

#
# Overloads the Exploit mixins for rhost
#
def rhost
	self.target_host
end

end
end
Major reworking of the recon stuff, there is a new mixin called Auxiliary::Scanner that supports per-range, per-host, and per-batch requests. The reporting stuff has been moved into a new mixin for it. The old recon stuff was pulled out and sample modules for the scanner mixin were added. Almost time to re-import skape's old recon foo using Scanner :-) git-svn-id: file:///home/svn/framework3/trunk@3820 4d416f70-5f16-0410-b530-b9f4589650da 2006-08-12 08:31:38 +00:00			`module Msf`

			`###`
			`#`
Bug fix to AddressRange option Reworked TCP/UDP exploit mixins to allow the source of rhost/rport/etc to be overloaded Reworked Scanner mixin to deregister RHOST and overflow self.rhost git-svn-id: file:///home/svn/framework3/trunk@3823 4d416f70-5f16-0410-b530-b9f4589650da 2006-08-12 23:08:20 +00:00			`# This module provides methods for scanning modules`
Major reworking of the recon stuff, there is a new mixin called Auxiliary::Scanner that supports per-range, per-host, and per-batch requests. The reporting stuff has been moved into a new mixin for it. The old recon stuff was pulled out and sample modules for the scanner mixin were added. Almost time to re-import skape's old recon foo using Scanner :-) git-svn-id: file:///home/svn/framework3/trunk@3820 4d416f70-5f16-0410-b530-b9f4589650da 2006-08-12 08:31:38 +00:00			`#`
			`###`

			`module Auxiliary::Scanner`

Bug fix to AddressRange option Reworked TCP/UDP exploit mixins to allow the source of rhost/rport/etc to be overloaded Reworked Scanner mixin to deregister RHOST and overflow self.rhost git-svn-id: file:///home/svn/framework3/trunk@3823 4d416f70-5f16-0410-b530-b9f4589650da 2006-08-12 23:08:20 +00:00
Major reworking of the recon stuff, there is a new mixin called Auxiliary::Scanner that supports per-range, per-host, and per-batch requests. The reporting stuff has been moved into a new mixin for it. The old recon stuff was pulled out and sample modules for the scanner mixin were added. Almost time to re-import skape's old recon foo using Scanner :-) git-svn-id: file:///home/svn/framework3/trunk@3820 4d416f70-5f16-0410-b530-b9f4589650da 2006-08-12 08:31:38 +00:00			`#`
			`# Initializes an instance of a recon auxiliary module`
			`#`
			`def initialize(info = {})`
			`super`

Bug fix to AddressRange option Reworked TCP/UDP exploit mixins to allow the source of rhost/rport/etc to be overloaded Reworked Scanner mixin to deregister RHOST and overflow self.rhost git-svn-id: file:///home/svn/framework3/trunk@3823 4d416f70-5f16-0410-b530-b9f4589650da 2006-08-12 23:08:20 +00:00			`register_options(`
Major reworking of the recon stuff, there is a new mixin called Auxiliary::Scanner that supports per-range, per-host, and per-batch requests. The reporting stuff has been moved into a new mixin for it. The old recon stuff was pulled out and sample modules for the scanner mixin were added. Almost time to re-import skape's old recon foo using Scanner :-) git-svn-id: file:///home/svn/framework3/trunk@3820 4d416f70-5f16-0410-b530-b9f4589650da 2006-08-12 08:31:38 +00:00			`[`
Bug fix to AddressRange option Reworked TCP/UDP exploit mixins to allow the source of rhost/rport/etc to be overloaded Reworked Scanner mixin to deregister RHOST and overflow self.rhost git-svn-id: file:///home/svn/framework3/trunk@3823 4d416f70-5f16-0410-b530-b9f4589650da 2006-08-12 23:08:20 +00:00			`OptAddressRange.new('RHOSTS', [ true, "The target address range or CIDR identifier"]),`
Major reworking of the recon stuff, there is a new mixin called Auxiliary::Scanner that supports per-range, per-host, and per-batch requests. The reporting stuff has been moved into a new mixin for it. The old recon stuff was pulled out and sample modules for the scanner mixin were added. Almost time to re-import skape's old recon foo using Scanner :-) git-svn-id: file:///home/svn/framework3/trunk@3820 4d416f70-5f16-0410-b530-b9f4589650da 2006-08-12 08:31:38 +00:00			`], Auxiliary::Scanner)`
Bug fix to AddressRange option Reworked TCP/UDP exploit mixins to allow the source of rhost/rport/etc to be overloaded Reworked Scanner mixin to deregister RHOST and overflow self.rhost git-svn-id: file:///home/svn/framework3/trunk@3823 4d416f70-5f16-0410-b530-b9f4589650da 2006-08-12 23:08:20 +00:00
			`# RHOST should not be used in scanner modules, only RHOSTS`
			`deregister_options('RHOST')`
Major reworking of the recon stuff, there is a new mixin called Auxiliary::Scanner that supports per-range, per-host, and per-batch requests. The reporting stuff has been moved into a new mixin for it. The old recon stuff was pulled out and sample modules for the scanner mixin were added. Almost time to re-import skape's old recon foo using Scanner :-) git-svn-id: file:///home/svn/framework3/trunk@3820 4d416f70-5f16-0410-b530-b9f4589650da 2006-08-12 08:31:38 +00:00			`end`

Bug fix to AddressRange option Reworked TCP/UDP exploit mixins to allow the source of rhost/rport/etc to be overloaded Reworked Scanner mixin to deregister RHOST and overflow self.rhost git-svn-id: file:///home/svn/framework3/trunk@3823 4d416f70-5f16-0410-b530-b9f4589650da 2006-08-12 23:08:20 +00:00
Major reworking of the recon stuff, there is a new mixin called Auxiliary::Scanner that supports per-range, per-host, and per-batch requests. The reporting stuff has been moved into a new mixin for it. The old recon stuff was pulled out and sample modules for the scanner mixin were added. Almost time to re-import skape's old recon foo using Scanner :-) git-svn-id: file:///home/svn/framework3/trunk@3820 4d416f70-5f16-0410-b530-b9f4589650da 2006-08-12 08:31:38 +00:00			`#`
			`# The command handler when launched from the console`
			`#`
			`def run`
			`if (self.respond_to?('run_range'))`
			`return run_range(datastore['RHOSTS'])`
			`end`

			`# Add support for multiple threads`
			`if (self.respond_to?('run_host'))`
			`ar = Rex::Socket::RangeWalker.new(datastore['RHOSTS'])`
			`while(ip = ar.next_ip)`
Bug fix to AddressRange option Reworked TCP/UDP exploit mixins to allow the source of rhost/rport/etc to be overloaded Reworked Scanner mixin to deregister RHOST and overflow self.rhost git-svn-id: file:///home/svn/framework3/trunk@3823 4d416f70-5f16-0410-b530-b9f4589650da 2006-08-12 23:08:20 +00:00			`self.target_host = ip`
Major reworking of the recon stuff, there is a new mixin called Auxiliary::Scanner that supports per-range, per-host, and per-batch requests. The reporting stuff has been moved into a new mixin for it. The old recon stuff was pulled out and sample modules for the scanner mixin were added. Almost time to re-import skape's old recon foo using Scanner :-) git-svn-id: file:///home/svn/framework3/trunk@3820 4d416f70-5f16-0410-b530-b9f4589650da 2006-08-12 08:31:38 +00:00			`run_host(ip)`
			`end`
			`return`
			`end`

			`# Add support for multiple threads`
			`if (self.respond_to?('run_batch'))`

			`if (! self.respond_to?('run_batch_size'))`
			`print_status("This module needs to export run_batch_size()")`
			`return`
			`end`

			`size = run_batch_size()`

			`ar = Rex::Socket::RangeWalker.new(datastore['RHOSTS'])`
			`while(true)`
			`batch = []`

			`while (batch.length < size)`
			`ip = ar.next_ip`
			`break if not ip`
			`batch << ip`
			`end`
			`return if batch.length == 0`
			`run_batch(batch)`
			`end`
			`return`
			`end`

			`print_status("This module defined no run_host or run_range methods")`
			`end`

Bug fix to AddressRange option Reworked TCP/UDP exploit mixins to allow the source of rhost/rport/etc to be overloaded Reworked Scanner mixin to deregister RHOST and overflow self.rhost git-svn-id: file:///home/svn/framework3/trunk@3823 4d416f70-5f16-0410-b530-b9f4589650da 2006-08-12 23:08:20 +00:00
			`#`
			`# The current target host (replaces RHOST)`
			`#`
			`attr_accessor :target_host`

			`#`
			`# Overloads the Exploit mixins for rhost`
			`#`
			`def rhost`
			`self.target_host`
			`end`

Major reworking of the recon stuff, there is a new mixin called Auxiliary::Scanner that supports per-range, per-host, and per-batch requests. The reporting stuff has been moved into a new mixin for it. The old recon stuff was pulled out and sample modules for the scanner mixin were added. Almost time to re-import skape's old recon foo using Scanner :-) git-svn-id: file:///home/svn/framework3/trunk@3820 4d416f70-5f16-0410-b530-b9f4589650da 2006-08-12 08:31:38 +00:00			`end`
			`end`