File: moxa-nport-device.rb

package info (click to toggle)
whatweb 0.4.8~git20161009-1
  • links: PTS, VCS
  • area: main
  • in suites: stretch
  • size: 8,588 kB
  • ctags: 540
  • sloc: ruby: 33,376; sh: 612; makefile: 42
file content (100 lines) | stat: -rw-r--r-- 4,225 bytes parent folder | download | duplicates (2) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
 
##
# This file is part of WhatWeb and may be subject to
# redistribution and commercial restrictions. Please see the WhatWeb
# web site for more information on licensing and terms of use.
# http://www.morningstarsecurity.com/research/whatweb
##
Plugin.define "Moxa-NPort-Device" do
author "Brendan Coles <bcoles@gmail.com>" # 2011-07-07
version "0.1"
description "Moxa serial-to-ethernet NPort device server"
website "http://www.moxa.com/product/nport_device_server_1.htm"

# Google results as at 2011-07-07 #
# 5 for intitle:"NPort web console"

# Dorks #
dorks [
'intitle:"NPort web console"'
]



# Matches #
matches [

# /logo.gif
{ :md5=>"27829d70bb23c465d86b9c643cf534d3", :url=>"/logo.gif" },
{ :md5=>"2f9af91da3dc3f192e26ac8f42db41bd", :url=>"/logo.gif" },

# Frameset
{ :text=>"<HTML><HEAD><TITLE>NPort Web Console</TITLE></HEAD> <FRAMESET rows=57,1* frameborder=NO> <FRAME name=top scrolling=NO target=contents src=top.htm noresize> <FRAMESET cols=200,*> <FRAME name=contents target=main src=contents.htm> <FRAME name=main src=main.htm marginwidth=0 marginheight=0 scrolling=auto> </FRAMESET> <NOFRAMES><BODY background=bg.gif><P>This page uses frame, but your browser doesn't support.</P></BODY> </NOFRAMES> </FRAMESET></HTML>" },

# Login page
{ :text=>'<HTML><HEAD><TITLE>NPort Web Console</TITLE> <SCRIPT language=' },

# /main.htm # nport2g.css + title
{ :text=>'<HTML><HEAD> <LINK href=nport2g.css rel=stylesheet type=text/css><TITLE>Overview</TITLE></HEAD>' },

# /main.htm # some models # BODY onload=window_onload()
{ :text=>"</script><BODY onload=window_onload()> <TABLE width=100% border=0 align=center><TR><TD><H2>Welcome to <span id=devlab1></span>'s web console !</H2></TD></TR>" },

]

# Passive #
# Extract system details
# This could be looped however some models provide the in different formats
# Models with system details in HTML rather than JS are currently not supported
def passive
	m=[]

	device={};
	device[:model] = []
	device[:mac] = []
	device[:serial] = []
	device[:version] = []
	device[:label] = []
	device[:uptime] = []

	# /main.htm # extract details # models with frameset # JavaScript
	if @base_uri.to_s =~ /\/main\.htm/ and @body =~ /\{set\("modelname", "([^"]+)"\);set\("mac", "([^"]+)"\);set\("serialno", "([^"]+)"\);set\("ver", "([^"]+)"\);setlabel\("([^"]+)"\);uptime\("([^"]+)"\);\}<\/Script>/

		result = @body.scan(/\{set\("modelname", "([^"]+)"\);set\("mac", "([^"]+)"\);set\("serialno", "([^"]+)"\);set\("ver", "([^"]+)"\);setlabel\("([^"]+)"\);uptime\("([^"]+)"\);\}<\/Script>/)[0]

		device[:model] << result[0].to_s
		device[:mac] << result[1].to_s
		device[:serial] << result[2].to_s
		device[:version] << result[3].to_s
		device[:label] << result[4].to_s
		device[:uptime] << result[5].to_s

	end

	# /main.htm # extract details # models with frameset # JavaScript
	if @base_uri.to_s =~ /\/main\.htm/ and @body =~ /\{document.getElementById\("modelname"\).innerHTML="([^"]+)";document.getElementById\("mac"\).innerHTML="([^"]+)";document.getElementById\("serialno"\).innerHTML="([^"]+)";document.getElementById\("ver"\).innerHTML="([^"]+)";setlabel\("([^"]+)"\);uptime\("([^"]+)"\);\}<\/Script>/

		result = @body.scan(/\{document.getElementById\("modelname"\).innerHTML="([^"]+)";document.getElementById\("mac"\).innerHTML="([^"]+)";document.getElementById\("serialno"\).innerHTML="([^"]+)";document.getElementById\("ver"\).innerHTML="([^"]+)";setlabel\("([^"]+)"\);uptime\("([^"]+)"\);\}<\/Script>/)[0]

		device[:model] << result[0].to_s
		device[:mac] << result[1].to_s
		device[:serial] << result[2].to_s
		device[:version] << result[3].to_s
		device[:label] << result[4].to_s
		device[:uptime] << result[5].to_s

	end

	if result and !device.empty? and !device.nil?
		m << { :model=>device[:model].to_s } unless device[:model].nil?
		m << { :string=>"MAC: "+device[:mac].to_s } unless device[:mac].nil?
		m << { :string=>"Serial: "+device[:serial].to_s } unless device[:serial].nil?
		#m << { :string=>"Label: "+device[:label].to_s } unless device[:label].nil?
		m << { :string=>"Uptime: "+device[:uptime].to_s } unless device[:uptime].nil?
		m << { :firmware=>device[:version].to_s } unless device[:version].nil?
	end

	# Return passive matches
	m
end
end