More Cred Sourcing

git-svn-id: file:///home/svn/framework3/trunk@14197 4d416f70-5f16-0410-b530-b9f4589650da
2011-11-09 01:49:57 +00:00 · 2011-11-09 01:49:57 +00:00 · a88f954640
parent fdf13e5e0e
commit a88f954640
21 changed files with 27 additions and 3 deletions
--- a/modules/auxiliary/scanner/ftp/ftp_login.rb
+++ b/modules/auxiliary/scanner/ftp/ftp_login.rb
@ -158,6 +158,7 @@ class Metasploit3 < Msf::Auxiliary
 			:user => user,
 			:pass => pass,
 			:type => "password#{access == :read ? "_ro" : "" }",
+			:source_type => "user supplied",
 			:active => true
 		)
 	end
--- a/modules/auxiliary/scanner/http/axis_login.rb
+++ b/modules/auxiliary/scanner/http/axis_login.rb
@ -81,6 +81,7 @@ class Metasploit3 < Msf::Auxiliary
 					:user   => user,
 					:pass   => pass,
 					:proof  => "WEBAPP=\"Apache Axis\", VHOST=#{vhost}",
+					:source_type => "user supplied",
 					:active => true
 				)

--- a/modules/auxiliary/scanner/http/glassfish_login.rb
+++ b/modules/auxiliary/scanner/http/glassfish_login.rb
@ -88,6 +88,7 @@ class Metasploit3 < Msf::Auxiliary
 			:user   => user,
 			:pass   => pass,
 			:proof  => "WEBAPP=\"GlassFish\", VHOST=#{vhost}",
+			:source_type => "user supplied",
 			:active => true
 		)
 	end
@ -154,6 +155,7 @@ class Metasploit3 < Msf::Auxiliary
 				:user	=> '',
 				:pass	=> '',
 				:proof	=> "WEBAPP=\"GlassFish\", VHOST=#{vhost}",
+				:source_type => "user supplied",
 				:active => true
 			)
 		else
--- a/modules/auxiliary/scanner/http/http_login.rb
+++ b/modules/auxiliary/scanner/http/http_login.rb
@ -183,6 +183,7 @@ class Metasploit3 < Msf::Auxiliary
 				:user   => user,
 				:pass   => pass,
 				:proof  => "WEBAPP=\"Generic\", PROOF=#{proof}",
+				:source_type => "user supplied",
 				:active => true
 			)

--- a/modules/auxiliary/scanner/http/tomcat_mgr_login.rb
+++ b/modules/auxiliary/scanner/http/tomcat_mgr_login.rb
@ -145,6 +145,7 @@ class Metasploit3 < Msf::Auxiliary
 				:user => user,
 				:pass => pass,
 				:proof => "WEBAPP=\"Tomcat Application Manager\"",
+				:source_type => "user supplied",
 				:active => true
 			)

--- a/modules/auxiliary/scanner/lotus/lotus_domino_login.rb
+++ b/modules/auxiliary/scanner/lotus/lotus_domino_login.rb
@ -62,6 +62,7 @@ class Metasploit3 < Msf::Auxiliary
 						:user   => user,
 						:pass   => pass,
 						:proof  => "WEBAPP=\"Lotus Domino\", VHOST=#{vhost}, COOKIE=#{res.headers['Set-Cookie']}",
+						:source_type => "user supplied",
 						:active => true
 					)
 					return :next_user
--- a/modules/auxiliary/scanner/mssql/mssql_login.rb
+++ b/modules/auxiliary/scanner/mssql/mssql_login.rb
@ -64,6 +64,7 @@ class Metasploit3 < Msf::Auxiliary
 					:sname => 'mssql',
 					:user => user,
 					:pass => pass,
+					:source_type => "user supplied",
 					:active => true
 				)
 				return :next_user
--- a/modules/auxiliary/scanner/mysql/mysql_login.rb
+++ b/modules/auxiliary/scanner/mysql/mysql_login.rb
@ -116,6 +116,7 @@ class Metasploit3 < Msf::Auxiliary
 				:sname  => 'mysql',
 				:user   => user,
 				:pass   => pass,
+				:source_type => "user supplied",
 				:active => true
 			)
 			return :next_user
--- a/modules/auxiliary/scanner/oracle/isqlplus_login.rb
+++ b/modules/auxiliary/scanner/oracle/isqlplus_login.rb
@ -236,7 +236,8 @@ class Metasploit3 < Msf::Auxiliary
 	def report_isqlauth_info(ip,user,pass,sid)
 		ora_info = {
 			:host => ip, :port => rport, :proto => "tcp",
-			:pass => pass, :active => true
+			:pass => pass, :source_type => "user supplied",
+			:active => true
 		}
 		if sid.nil? || sid.empty?
 			ora_info.merge! :user => user
--- a/modules/auxiliary/scanner/oracle/oracle_login.rb
+++ b/modules/auxiliary/scanner/oracle/oracle_login.rb
@ -165,7 +165,8 @@ class Metasploit3 < Msf::Auxiliary
 					print_good "#{msg} Success: #{user}:#{pass} (SID: #{sid})"
 					report_auth_info(
 						:host => addr, :port => port, :proto => "tcp",
-						:user => "#{sid}/#{user}", :pass => pass, :active => true
+						:user => "#{sid}/#{user}", :pass => pass,
+						:source_type => "user supplied", :active => true
 					)
 				elsif oline =~ /Account locked/
 					if not @oracle_reported
@ -177,7 +178,8 @@ class Metasploit3 < Msf::Auxiliary
 					print_status "#{msg} Locked: #{user} (SID: #{sid}) -- account valid but locked"
 					report_auth_info(
 						:host => addr, :port => port, :proto => "tcp",
-						:user => "#{sid}/#{user}", :active => false
+						:user => "#{sid}/#{user}",
+						:source_type => "user supplied", :active => false
 					)
 				elsif oline =~ /^\s+ERROR: (.*)/
 					print_error "#{msg} NSE script error: #{$1}"
--- a/modules/auxiliary/scanner/pop3/pop3_login.rb
+++ b/modules/auxiliary/scanner/pop3/pop3_login.rb
@ -117,6 +117,7 @@ class Metasploit3 < Msf::Auxiliary
 						:sname => 'pop3',
 						:user => user,
 						:pass => pass,
+						:source_type => "user supplied",
 						:active => true
 					)
 					disconnect
--- a/modules/auxiliary/scanner/postgres/postgres_login.rb
+++ b/modules/auxiliary/scanner/postgres/postgres_login.rb
@ -127,6 +127,7 @@ class Metasploit3 < Msf::Auxiliary
 			:sname => "postgres",
 			:user => user,
 			:pass => pass,
+			:source_type => "user supplied",
 			:active => true
 		}
 		result_hash[:user] = "#{db}/#{user}" if db_ok
--- a/modules/auxiliary/scanner/rservices/rexec_login.rb
+++ b/modules/auxiliary/scanner/rservices/rexec_login.rb
@ -175,6 +175,7 @@ class Metasploit3 < Msf::Auxiliary
 			:user	=> user,
 			:pass	=> pass,
 			:proof  => proof,
+			:source_type => "user supplied",
 			:active => true
 		)

--- a/modules/auxiliary/scanner/rservices/rlogin_login.rb
+++ b/modules/auxiliary/scanner/rservices/rlogin_login.rb
@ -313,6 +313,7 @@ class Metasploit3 < Msf::Auxiliary
 			:sname => 'login',
 			:user	=> user,
 			:proof  => proof,
+			:source_type => "user supplied",
 			:active => true
 		}

--- a/modules/auxiliary/scanner/rservices/rsh_login.rb
+++ b/modules/auxiliary/scanner/rservices/rsh_login.rb
@ -233,6 +233,7 @@ class Metasploit3 < Msf::Auxiliary
 			:user	=> user,
 			:luser => luser,
 			:proof  => proof,
+			:source_type => "user supplied",
 			:active => true
 		)

--- a/modules/auxiliary/scanner/sap/sap_mgmt_con_brute_login.rb
+++ b/modules/auxiliary/scanner/sap/sap_mgmt_con_brute_login.rb
@ -166,6 +166,7 @@ class Metasploit4 < Msf::Auxiliary
 				:port => rport,
 				:user => user,
 				:pass => pass,
+				:source_type => "user supplied",
 				:target_host => rhost,
 				:target_port => rport
 			)
--- a/modules/auxiliary/scanner/smb/smb_login.rb
+++ b/modules/auxiliary/scanner/smb/smb_login.rb
@ -208,6 +208,7 @@ class Metasploit3 < Msf::Auxiliary
 				:port   => datastore['RPORT'],
 				:sname	=> 'smb',
 				:pass   => pass,
+				:source_type => "user supplied",
 				:active => true
 			}
 			if accepts_bogus_domains? rhost
--- a/modules/auxiliary/scanner/snmp/snmp_login.rb
+++ b/modules/auxiliary/scanner/snmp/snmp_login.rb
@ -187,6 +187,7 @@ class Metasploit3 < Msf::Auxiliary
 						:pass   => comm,
 						:duplicate_ok => true,
 						:active => true,
+						:source_type => "user supplied",
 						:type   => "password"
 					)
 				end
@ -201,6 +202,7 @@ class Metasploit3 < Msf::Auxiliary
 						:pass   => comm,
 						:duplicate_ok => true,
 						:active => true,
+						:source_type => "user supplied",
 						:type   => "password_ro"
 					)
 				end
--- a/modules/auxiliary/scanner/ssh/ssh_login.rb
+++ b/modules/auxiliary/scanner/ssh/ssh_login.rb
@ -142,6 +142,7 @@ class Metasploit3 < Msf::Auxiliary
 			:user => user,
 			:pass => pass,
 			:proof => proof,
+			:source_type => "user supplied",
 			:active => true
 		)
 	end
--- a/modules/auxiliary/scanner/telnet/telnet_login.rb
+++ b/modules/auxiliary/scanner/telnet/telnet_login.rb
@ -223,6 +223,7 @@ class Metasploit3 < Msf::Auxiliary
 			:user	=> user,
 			:pass	=> pass,
 			:proof  => proof,
+			:source_type => "user supplied",
 			:active => true
 		)
 	end
--- a/modules/auxiliary/scanner/vnc/vnc_login.rb
+++ b/modules/auxiliary/scanner/vnc/vnc_login.rb
@ -126,6 +126,7 @@ class Metasploit3 < Msf::Auxiliary
 				:pass => pass,
 				:type => access_type,
 				:duplicate_ok => true,
+				:source_type => "user supplied",
 				:active => true
 			})
 			return :next_user