Land #8735, robots.txt for HttpServer

2017-07-24 18:26:41 -05:00 · 2017-07-24 18:26:41 -05:00 · c9853a6bfe
parent 2d9e14b208 a950ecc345
commit c9853a6bfe
1 changed files with 37 additions and 1 deletions
--- a/lib/msf/core/exploit/http/server.rb
+++ b/lib/msf/core/exploit/http/server.rb
@ -43,7 +43,8 @@ module Exploit::Remote::HttpServer

    register_advanced_options([
      OptAddress.new('URIHOST', [false, 'Host to use in URI (useful for tunnels)']),
-      OptPort.new('URIPORT', [false, 'Port to use in URI (useful for tunnels)'])
+      OptPort.new('URIPORT', [false, 'Port to use in URI (useful for tunnels)']),
+      OptBool.new('SendRobots', [false, 'Return a robots.txt file if asked for one', false])
    ])

    # Used to keep track of resources added to the service manager by
@ -180,7 +181,26 @@ module Exploit::Remote::HttpServer
      print_status("Local IP: #{proto}://#{Rex::Socket.source_address('1.2.3.4')}:#{opts['ServerPort']}#{uopts['Path']}")
    end

+    if datastore['SendRobots']
+      add_robots_resource
+    end
+
    add_resource(uopts)
+
+  end
+
+  def add_robots_resource
+    proc = Proc.new do |cli, req|
+      self.cli = cli
+      send_robots(cli, req)
+    end
+
+    vprint_status('Adding hardcoded URI /robots.txt')
+    begin
+      add_resource('Path' => '/robots.txt', 'Proc' => proc)
+    rescue RuntimeError => e
+      print_warning(e.message)
+    end
  end

  # Set {#on_request_uri} to handle the given +uri+ in addition to the one
@ -610,6 +630,22 @@ module Exploit::Remote::HttpServer
    cli.send_response(resp_404)
  end

+  #
+  # Sends a canned robots.txt file
+  #
+  def send_robots(cli, request)
+    print_status('Sending robots.txt')
+    robots = create_response(200, 'Success')
+    robots['Content-Type'] = 'text/plain'
+
+    robots.body = %Q{\
+User-agent: *
+Disallow: /
+}
+
+    cli.send_response(robots)
+  end
+

  #
  # Returns the configured (or random, if not configured) URI path