module Msf ### # # This module provides methods for WMAP-enabled modules # ### module Auxiliary::WMAPModule # # Initializes an instance of a WMAP module # def initialize(info = {}) super end def wmap_enabled #enabled by default true end def wmap_type #default type nil end def wmap_target_host datastore['RHOST'] end def wmap_target_port datastore['RPORT'] end def wmap_target_ssl datastore['SSL'] end def wmap_base_url res = (ssl ? "https://" : "http://") if datastore['VHOST'].nil? res << wmap_target_host else res << datastore['VHOST'] end res << ":" + wmap_target_port res end # # This method allows wmap modules to access # requests table. The extra condition requires to start with a logical # operator like AND, OR. Not tied to a specific host,port to be able to use data from other targets. # def wmap_request_sql(host,port,extra_condition) return framework.db.request_sql(host,port,extra_condition) end # # Modified from CGI.rb as we dont use arrays # def headersparse(qheaders) params = Hash.new() qheaders.split(/[&;]/n).each do |pairs| key, value = pairs.split(':',2) if params.has_key?(key) #Error else params[key] = value end end params end #modified from CGI.rb as we dont use arrays def queryparse(query) params = Hash.new() query.split(/[&;]/n).each do |pairs| key, value = pairs.split('=',2) if params.has_key?(key) #Error else params[key] = value end end params end # Levenshtein distance algorithm (slow, huge mem consuption) def distance(a, b) case when a.empty? b.length when b.empty? a.length else [(a[0] == b[0] ? 0 : 1) + distance(a[1..-1], b[1..-1]), 1 + distance(a[1..-1], b), 2 + distance(a, b[1..-1])].min end end end ### # # This module provides methods for WMAP File Scanner modules # ### module Auxiliary::WMAPScanFile include Auxiliary::WMAPModule def wmap_type :WMAP_FILE end end ### # # This module provides methods for WMAP Directory Scanner modules # ### module Auxiliary::WMAPScanDir include Auxiliary::WMAPModule def wmap_type :WMAP_DIR end end ### # # This module provides methods for WMAP Web Server Scanner modules # ### module Auxiliary::WMAPScanServer include Auxiliary::WMAPModule def wmap_type :WMAP_SERVER end end ### # # This module provides methods for WMAP Query Scanner modules # ### module Auxiliary::WMAPScanQuery include Auxiliary::WMAPModule def wmap_type :WMAP_QUERY end end ### # # This module provides methods for WMAP Unique Query Scanner modules # ### module Auxiliary::WMAPScanUniqueQuery include Auxiliary::WMAPModule def wmap_type :WMAP_UNIQUE_QUERY end def signature(path,query) hsig = Hash.new() hsig = queryparse(query) # # Signature of the form ',p1,p2,pn' then to be appended to path: path,p1,p2,pn # sig = path hsig.each_pair do |par, val| sig << "," sig << par end sig end end ### # # This module provides methods for WMAP Body Scanner modules # ### module Auxiliary::WMAPScanBody include Auxiliary::WMAPModule def wmap_type :WMAP_BODY end end ### # # This module provides methods for WMAP Headers Scanner modules # ### module Auxiliary::WMAPScanHeaders include Auxiliary::WMAPModule def wmap_type :WMAP_HEADERS end end ### # # This module provides methods for WMAP Generic Scanner modules # ### module Auxiliary::WMAPScanGeneric include Auxiliary::WMAPModule def wmap_type :WMAP_GENERIC end end ### # # This module provides methods for WMAP Crawler modules # ### module Auxiliary::WMAPCrawler include Auxiliary::WMAPModule def wmap_type :WMAP_CRAWLER end end end