infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Import CVE refs and db.emit all the things

bug/bundler_fix
William Vu 2013-10-17 14:27:17 -05:00
parent ad8af02021
commit 920e406526
1 changed files with 29 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

37
lib/rex/parser/outpost24_nokogiri.rb
View File

@ -26,6 +26,7 @@ load_nokogiri && class Outpost24Document < Nokogiri::XML::SAX::Document
when "detail" when "detail"
return unless in_tag("detaillist") return unless in_tag("detaillist")
@vuln = {} @vuln = {}
@refs = []
when "ip" when "ip"
@state[:has_text] = true @state[:has_text] = true
when "platform" when "platform"
@ -41,6 +42,11 @@ load_nokogiri && class Outpost24Document < Nokogiri::XML::SAX::Document
return unless in_tag("detaillist") return unless in_tag("detaillist")
return unless in_tag("detail") return unless in_tag("detail")
@state[:has_text] = true @state[:has_text] = true
when "id"
return unless in_tag("detaillist")
return unless in_tag("detail")
return unless in_tag("cve")
@state[:has_text] = true
end end
end end
@ -77,6 +83,11 @@ load_nokogiri && class Outpost24Document < Nokogiri::XML::SAX::Document
return unless in_tag("detaillist") return unless in_tag("detaillist")
return unless in_tag("detail") return unless in_tag("detail")
collect_vuln_data(name) collect_vuln_data(name)
when "id"
return unless in_tag("detaillist")
return unless in_tag("detail")
return unless in_tag("cve")
collect_vuln_data(name)
end end
@state[:current_tag].delete(name) @state[:current_tag].delete(name)
end end
@ -97,8 +108,9 @@ load_nokogiri && class Outpost24Document < Nokogiri::XML::SAX::Document
def collect_vuln def collect_vuln
@vuln[:host] = @state[:host] @vuln[:host] = @state[:host]
@vuln[:name] = @state[:name] @vuln[:name] = @state[:vname]
@vuln[:info] = @state[:info] @vuln[:info] = @state[:info]
@vuln[:refs] = @refs
@report_data[:vulns] << @vuln @report_data[:vulns] << @vuln
end end
@ -135,28 +147,37 @@ load_nokogiri && class Outpost24Document < Nokogiri::XML::SAX::Document
def collect_vuln_data(name) def collect_vuln_data(name)
@state[:has_text] = false @state[:has_text] = false
if name == "name" if name == "name"
@state[:name] = @text.strip if @text @state[:vname] = @text.strip if @text
elsif name == "description" elsif name == "description"
@state[:info] = @text.strip if @text @state[:info] = @text.strip if @text
elsif name == "id"
@state[:ref] = @text.strip if @text
@refs << normalize_ref("CVE", @state[:ref])
end end
@text = nil @text = nil
end end
def report_hosts def report_hosts
@report_data[:hosts].each do |host| block = @block
db_report(:host, host) @report_data[:hosts].each do |h|
db.emit(:address, h[:host], &block) if block
db_report(:host, h)
end end
end end
def report_services def report_services
@report_data[:services].each do |service| block = @block
db_report(:service, service) @report_data[:services].each do |s|
db.emit(:service, "#{s[:host]}:#{s[:port]}/#{s[:proto]}", &block) if block
db_report(:service, s)
end end
end end
def report_vulns def report_vulns
@report_data[:vulns].each do |vuln| block = @block
db_report(:vuln, vuln) @report_data[:vulns].each do |v|
db.emit(:vuln, ["#{v[:name]} (#{v[:host]})", 1], &block) if block
db_report(:vuln, v)
end end
end end