Commit Graph

328 Commits (4932a9ca251baad876d1851e217d4823e0f27f69)

Author SHA1 Message Date
Tod Beardsley 4e55c8b7e4 Fixes Qualys asset importer to pull all refs
Makes the qualys asset importer behave like the qualys scan importer
when it comes to importing vuln references.
2012-02-14 11:08:51 -06:00
Tod Beardsley af506240cf http_fingerprint reports service info
Service info once again is reported when http_fingerprint is run against
a target, along with http status codes.
2012-02-03 12:15:11 -06:00
Tod Beardsley 33c53b1f3f Updates vm checking 2012-01-26 13:02:39 -06:00
HD Moore 8e01312d0f Formatting 2011-12-10 13:27:47 -06:00
HD Moore e46745b761 Add support for link-local scopes 2011-12-10 13:24:58 -06:00
HD Moore e3f121929c Accept IPv6 addresses in the return if getaddress 2011-12-10 13:24:58 -06:00
David Maloney d939e33f1e Allows for Loot and Tasks to be imported from an MSF ZIP.
This should bring any loots and tasks along with
everything else when doing an improt from an MSF ZIP file.
2011-12-05 22:30:34 -05:00
HD Moore 5362e0cd24 Accept IPv6 addresses into the database routines, start flushing out
incompatibilities.
2011-12-05 13:07:36 -06:00
David Maloney d8cd16eb65 Typo in report_auth_info
that caused snmp creds to fail reporting.
fixes #6015
2011-11-26 17:57:46 -08:00
James Lee e7a545c483 spaces at EOL in core stuff 2011-11-20 12:10:08 +11:00
David Maloney 6306f8888a Fix to the username normalisation routine to deal with creds that
have no username (i.e. VNC)
2011-11-15 08:52:18 -08:00
David Maloney c8142043e9 Fixes to credential handling to downcase usernames whenever they are not case sensitive.
Also report_auth_info now checks to see if a non-case sensitive version of the cred
may already exist.
2011-11-14 22:50:52 -08:00
David Maloney e3f6756e18 Quick fix to import to prevent services from being imported without a port. 2011-11-11 17:19:26 -08:00
David Maloney e82c3ad486 Fixes #5426 2011-11-10 18:59:30 -08:00
Tod Beardsley e014401977 See #3472, deleting some extraneous commenting about a TODO that WASDONE.
git-svn-id: file:///home/svn/framework3/trunk@14059 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-25 03:08:17 +00:00
Tod Beardsley 3d2e734ac1 Fixes #3472 with Jaime Filson's patch, with some extra pizzaz for reporting notes against the service, and reporting some notes as vulns as well.
See #5837 as well.



git-svn-id: file:///home/svn/framework3/trunk@14058 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-25 03:07:15 +00:00
HD Moore 8a0eddc795 Handle closed_at in a consistent way as it applies to UTC (closes #5572)
git-svn-id: file:///home/svn/framework3/trunk@13955 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-16 19:03:59 +00:00
James Lee 5c9ddb293d add a few comments to reduce the sanity-blasting-ness
git-svn-id: file:///home/svn/framework3/trunk@13942 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-16 00:17:13 +00:00
HD Moore 0ff7f17cba Cosmetic module and service name fixes
git-svn-id: file:///home/svn/framework3/trunk@13917 4d416f70-5f16-0410-b530-b9f4589650da
2011-10-14 00:52:15 +00:00
HD Moore 425a032a31 Remove the routes check here as its not actually used
git-svn-id: file:///home/svn/framework3/trunk@13613 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-23 19:37:58 +00:00
HD Moore 50638068a2 Woops - this should check for a Msf::DBManager::Session, not Msf::Session, thanks! Closes #5302
git-svn-id: file:///home/svn/framework3/trunk@13612 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-23 03:35:59 +00:00
HD Moore 7e474fe29a Fix this up so that it works for this function as well
git-svn-id: file:///home/svn/framework3/trunk@13610 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-22 14:00:01 +00:00
HD Moore c1baf51bad Handle session object detection better, kind_of? doesnt work when the session has been extended via mixins
git-svn-id: file:///home/svn/framework3/trunk@13609 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-22 05:17:57 +00:00
James Lee f34b96b454 cleanup some rdoc
git-svn-id: file:///home/svn/framework3/trunk@13525 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-11 16:02:06 +00:00
HD Moore d631e109e1 Truncate field names if necessary for specific fields hit by importers
git-svn-id: file:///home/svn/framework3/trunk@13469 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-02 01:07:52 +00:00
HD Moore 3c33128186 Ensure that a :ua_string is always present in report_client()
git-svn-id: file:///home/svn/framework3/trunk@13461 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-31 21:02:39 +00:00
HD Moore 89a41e86da Sanitize host fields for low bytes
git-svn-id: file:///home/svn/framework3/trunk@13441 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-31 03:34:51 +00:00
HD Moore b885b8ea74 Fixes import of binary data. This may not be a problem for valid imports, but at the least this avoids a stack trace
git-svn-id: file:///home/svn/framework3/trunk@13428 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-30 18:31:12 +00:00
HD Moore 9f8cbc4145 First pass at an import, still missing a few items to call this done
git-svn-id: file:///home/svn/framework3/trunk@13390 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-28 21:17:30 +00:00
HD Moore 46183783aa Fix a typo in the previous commit
git-svn-id: file:///home/svn/framework3/trunk@13363 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 13:38:22 +00:00
HD Moore 9b076df69f Encode non-ASCII bits in usernames/hashes for now
git-svn-id: file:///home/svn/framework3/trunk@13362 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 13:25:55 +00:00
Tod Beardsley b965d4b6c8 Avoid a problem with phantom services on port 0
git-svn-id: file:///home/svn/framework3/trunk@13334 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-25 13:24:41 +00:00
Tod Beardsley 9eb71240a4 Avoid trying to save multiple MAC addresses with the nessus import.
git-svn-id: file:///home/svn/framework3/trunk@13241 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-19 21:27:02 +00:00
HD Moore 9b2e03e18b Handle newlines (or lack of them) cleaner
git-svn-id: file:///home/svn/framework3/trunk@13170 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-14 15:11:17 +00:00
HD Moore cd6678188e Allow :service to be passed in
git-svn-id: file:///home/svn/framework3/trunk@13139 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-09 06:58:55 +00:00
Tod Beardsley fb9e0a72e0 Deal with a workspace namespace race in starting the UI.
git-svn-id: file:///home/svn/framework3/trunk@13116 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-07 13:33:07 +00:00
HD Moore b80d364a64 Adds support for <audit> as well as <audits>. Fixes #4744
git-svn-id: file:///home/svn/framework3/trunk@12965 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-17 20:08:27 +00:00
Tod Beardsley cc04901610 Updating import comment docs.
git-svn-id: file:///home/svn/framework3/trunk@12963 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-17 14:46:54 +00:00
HD Moore ee20ed3dc6 This adds support for direct import of ASPL files from IP360 (stored in the user's config directory) and fixes an issue with the report_host() processing Host objects. Fixes #4619
git-svn-id: file:///home/svn/framework3/trunk@12945 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-15 00:51:51 +00:00
Tod Beardsley bd79b31c80 Future-proofing the credential ptype. Don't assume anything not smb_hash|ssh_key is plaintext.
git-svn-id: file:///home/svn/framework3/trunk@12875 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-06 21:36:58 +00:00
Tod Beardsley 7b4c7d44db Adds a Burp Session XML parser and importer. Also includes fix to Rex's HTTP header parser to ensure that it uses only unencoded regexes.
git-svn-id: file:///home/svn/framework3/trunk@12846 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-03 21:17:57 +00:00
Tod Beardsley 110f4df649 Adding a webapp vulnscanner parser for Appscan
git-svn-id: file:///home/svn/framework3/trunk@12826 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-02 22:16:08 +00:00
HD Moore d326423b74 Skip another way that qualys indicates an invalid hostname
git-svn-id: file:///home/svn/framework3/trunk@12820 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-02 20:56:42 +00:00
Tod Beardsley 0a7f6b8528 Adds support for importing Acunetix webvuln XML reports.
git-svn-id: file:///home/svn/framework3/trunk@12813 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-02 06:17:38 +00:00
Tod Beardsley c0d88caf95 Fix the references for MS Bulletins when importing from qualys sources.
git-svn-id: file:///home/svn/framework3/trunk@12804 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-01 20:14:25 +00:00
Tod Beardsley 23e3d4274d Adds a parser for MBSA XML files.
git-svn-id: file:///home/svn/framework3/trunk@12790 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-01 00:01:46 +00:00
Tod Beardsley c94577448e Cleans up service name normalization.
git-svn-id: file:///home/svn/framework3/trunk@12787 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-31 19:27:22 +00:00
Tod Beardsley a5e6b78d12 Cleanup on the yield warning for Retina imports.
git-svn-id: file:///home/svn/framework3/trunk@12783 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-31 16:30:07 +00:00
Tod Beardsley 8132409497 For older Nessus formatted reports, prefer the plugin name over the plugin id when importing vulnerabilities.
git-svn-id: file:///home/svn/framework3/trunk@12782 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-31 16:22:42 +00:00
Tod Beardsley f420b9c9e9 Adding an importer for Foundstone/Mcafee Network Inventory reports.
git-svn-id: file:///home/svn/framework3/trunk@12780 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-31 15:24:42 +00:00