NetExec/nxc/parsers/nmap.py

#!/usr/bin/env python3
# -*- coding: utf-8 -*-

from libnmap.parser import NmapParser
from nxc.logger import nxc_logger

# right now we are only referencing the port numbers, not the service name, but this should be sufficient for 99% cases
protocol_dict = {
    "ftp": {
        "ports": [21],
        "services": ["ftp"]
    },
    "ssh": {
        "ports": [22, 2222],
        "services": ["ssh"]
    },
    "smb": {
        "ports": [139, 445],
        "services": ["netbios-ssn", "microsoft-ds"]
    },
    "ldap": {
        "ports": [389, 636],
        "services": ["ldap", "ldaps"]
    },
    "mssql": {
        "ports": [1433],
        "services": ["ms-sql-s"]
    },
    "rdp": {
        "ports": [3389],
        "services": ["ms-wbt-server"]
    },
    "winrm": {
        "ports": [5985, 5986],
        "services": ["wsman"]
    },
    "vnc": {
        "ports": [5900, 5901, 5902, 5903, 5904, 5905, 5906],
        "services": ["vnc"]
    },
}


def parse_nmap_xml(nmap_output_file, protocol):
    nmap_report = NmapParser.parse_fromfile(nmap_output_file)
    targets = []

    for host in nmap_report.hosts:
        for port, proto in host.get_open_ports():
            if port in protocol_dict[protocol]["ports"]:
                targets.append(host.ipv4)
                break
    nxc_logger.debug(f"Targets parsed from Nmap scan: {targets}")

    return targets
Adding shebang and encoding utf-8 for all python files 2022-07-18 23:59:14 +00:00			`#!/usr/bin/env python3`
			`# -- coding: utf-8 --`

fix(nmap): passing in an nmap xml scan works again. added missing protocols and removed http 2023-06-26 01:17:23 +00:00			`from libnmap.parser import NmapParser`
rename folders, files, functions, classes, etc to NetExec/nxc 2023-09-14 21:07:15 +00:00			`from nxc.logger import nxc_logger`
Added WINRM support, NMap XML and .Nessus parsing - Added the WINRM protocol, CME now supports executing commands through WinRM (Powershell Remoting) - Added support for NMap XML and .Nessus files if given as targets - Fixed a bug in the MSSQL protocol which caused it to not retrieve host info - Version Bump 2017-10-25 02:08:19 +00:00
fix(nmap): passing in an nmap xml scan works again. added missing protocols and removed http 2023-06-26 01:17:23 +00:00			`# right now we are only referencing the port numbers, not the service name, but this should be sufficient for 99% cases`
Added WINRM support, NMap XML and .Nessus parsing - Added the WINRM protocol, CME now supports executing commands through WinRM (Powershell Remoting) - Added support for NMap XML and .Nessus files if given as targets - Fixed a bug in the MSSQL protocol which caused it to not retrieve host info - Version Bump 2017-10-25 02:08:19 +00:00			`protocol_dict = {`
fix(nmap): passing in an nmap xml scan works again. added missing protocols and removed http 2023-06-26 01:17:23 +00:00			`"ftp": {`
			`"ports": [21],`
			`"services": ["ftp"]`
			`},`
			`"ssh": {`
			`"ports": [22, 2222],`
			`"services": ["ssh"]`
			`},`
			`"smb": {`
			`"ports": [139, 445],`
			`"services": ["netbios-ssn", "microsoft-ds"]`
			`},`
			`"ldap": {`
			`"ports": [389, 636],`
			`"services": ["ldap", "ldaps"]`
			`},`
			`"mssql": {`
			`"ports": [1433],`
			`"services": ["ms-sql-s"]`
			`},`
			`"rdp": {`
			`"ports": [3389],`
			`"services": ["ms-wbt-server"]`
			`},`
			`"winrm": {`
			`"ports": [5985, 5986],`
			`"services": ["wsman"]`
			`},`
			`"vnc": {`
			`"ports": [5900, 5901, 5902, 5903, 5904, 5905, 5906],`
			`"services": ["vnc"]`
black formating 2023-05-02 15:17:59 +00:00			`},`
Added WINRM support, NMap XML and .Nessus parsing - Added the WINRM protocol, CME now supports executing commands through WinRM (Powershell Remoting) - Added support for NMap XML and .Nessus files if given as targets - Fixed a bug in the MSSQL protocol which caused it to not retrieve host info - Version Bump 2017-10-25 02:08:19 +00:00			`}`


			`def parse_nmap_xml(nmap_output_file, protocol):`
fix(nmap): passing in an nmap xml scan works again. added missing protocols and removed http 2023-06-26 01:17:23 +00:00			`nmap_report = NmapParser.parse_fromfile(nmap_output_file)`
Added WINRM support, NMap XML and .Nessus parsing - Added the WINRM protocol, CME now supports executing commands through WinRM (Powershell Remoting) - Added support for NMap XML and .Nessus files if given as targets - Fixed a bug in the MSSQL protocol which caused it to not retrieve host info - Version Bump 2017-10-25 02:08:19 +00:00			`targets = []`

fix(nmap): passing in an nmap xml scan works again. added missing protocols and removed http 2023-06-26 01:17:23 +00:00			`for host in nmap_report.hosts:`
			`for port, proto in host.get_open_ports():`
			`if port in protocol_dict[protocol]["ports"]:`
			`targets.append(host.ipv4)`
			`break`
rename folders, files, functions, classes, etc to NetExec/nxc 2023-09-14 21:07:15 +00:00			`nxc_logger.debug(f"Targets parsed from Nmap scan: {targets}")`
Added WINRM support, NMap XML and .Nessus parsing - Added the WINRM protocol, CME now supports executing commands through WinRM (Powershell Remoting) - Added support for NMap XML and .Nessus files if given as targets - Fixed a bug in the MSSQL protocol which caused it to not retrieve host info - Version Bump 2017-10-25 02:08:19 +00:00
			`return targets`