infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Updated rfcode_reader_enum.rb ... 

Updated as per review comments. 
Removed loot of network configuration.
Used JSON.parse to bring cleaner loot output
Changed some print_goods to vprint_status
Changed if not to unless
unstable
Karn Ganeshen 2013-06-08 03:21:43 +05:30
parent eb0ae6ed27
commit ffa18d413f
1 changed files with 27 additions and 36 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

63
modules/auxiliary/scanner/http/rfcode_reader_enum.rb
View File

@ -9,25 +9,24 @@ require 'msf/core'
class Metasploit3 < Msf::Auxiliary class Metasploit3 < Msf::Auxiliary
include Msf::Exploit::Remote::HttpClient include Msf::Exploit::Remote::HttpClient
include Msf::Auxiliary::Report include Msf::Auxiliary::Report
include Msf::Auxiliary::AuthBrute include Msf::Auxiliary::AuthBrute
include Msf::Auxiliary::Scanner include Msf::Auxiliary::Scanner
def initialize(info={}) def initialize(info={})
super(update_info(info, super(update_info(info,
'Name' => 'RFCode Reader Web interface Login Utility', 'Name' => 'RFCode Reader Web Interface Login Utility',
'Description' => %{ 'Description' => %{
This module simply attempts to login to a RFCode Reader web interface. Please note that This module simply attempts to login to a RFCode Reader web interface. Please note that
by default there is no authentication. In such a case, password brute force will not be performed. by default there is no authentication. In such a case, password brute force will not be performed.
If there is authentication configured, the module will attempt to find valid login credentials and If there is authentication configured, the module will attempt to find valid login credentials and
capture device information. capture device information.
}, },
'Author' => 'Author' =>
[ [
'Karn Ganeshen <KarnGaneshen[at]gmail.com>' 'Karn Ganeshen <KarnGaneshen[at]gmail.com>'
], ],
'Version' => '1.0',
'License' => MSF_LICENSE 'License' => MSF_LICENSE
)) ))
@ -45,7 +44,6 @@ class Metasploit3 < Msf::Auxiliary
# Identify logged in user: /rfcode_reader/api/whoami.json?_dc=1369680704481 # Identify logged in user: /rfcode_reader/api/whoami.json?_dc=1369680704481
# Capture list of users: /rfcode_reader/api/userlist.json?_dc=1370353972710 # Capture list of users: /rfcode_reader/api/userlist.json?_dc=1370353972710
# Interface configuration: /rfcode_reader/api/interfacestatus.json?_dc=1369678668067 # Interface configuration: /rfcode_reader/api/interfacestatus.json?_dc=1369678668067
# Network configuration: /rfcode_reader/api/netconfigstatus.json?_dc=1369678669208
# #
def run_host(ip) def run_host(ip)
@ -146,25 +144,28 @@ class Metasploit3 < Msf::Auxiliary
begin begin
res = send_request_cgi( res = send_request_cgi(
{ {
'uri' => '/rfcode_reader/api/version.json?_dc=1370460180056', 'uri' => '/rfcode_reader/api/version.json?_dc=1370460180056',
'method' => 'GET', 'method' => 'GET',
'authorization' => basic_auth(user,pass) 'authorization' => basic_auth(user,pass)
}) })
print_good("Collecting device platform info...") release_ver = JSON.parse(res.body)["release"]
print_good(res.body) product_name = JSON.parse(res.body)["product"]
vprint_status("Collecting device platform info...")
print_good("Release version: '#{release_ver}', Product Name: '#{product_name}'")
res = send_request_cgi( res = send_request_cgi(
{ {
'uri' => '/rfcode_reader/api/userlist.json?_dc=1370353972710', 'uri' => '/rfcode_reader/api/userlist.json?_dc=1370353972710',
'method' => 'GET', 'method' => 'GET',
'authorization' => basic_auth(user,pass) 'authorization' => basic_auth(user,pass)
}) })
print_good("Collecting user list...")
print_good(res.body)
userlist = JSON.parse(res.body)
vprint_status("Collecting user list...")
print_good("User list & role: #{userlist}")
res = send_request_cgi( res = send_request_cgi(
{ {
@ -173,19 +174,9 @@ class Metasploit3 < Msf::Auxiliary
'authorization' => basic_auth(user,pass) 'authorization' => basic_auth(user,pass)
}) })
print_good("Collecting interface info…") eth0_info = JSON.parse(res.body)["eth0"]
print_good(res.body) vprint_status("Collecting interface info...")
print_good("Interface eth0 info: #{eth0_info}")
res = send_request_cgi(
{
'uri' => '/rfcode_reader/api/netconfigstatus.json?_dc=1369678669208',
'method' => 'GET',
'authorization' => basic_auth(user,pass)
})
print_good("Collecting network configuration…")
print_good(res.body)
return return
end end