PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-06 04:31:29 +00:00
Code Issues Projects Releases Wiki Activity

Implemented STARTTLS support for IMAP and POP3

Browse Source
This commit is contained in:
claudiu
2014-06-17 07:46:55 +00:00
parent 36f15bdfb9
commit 0f17475b15
1 changed files with 125 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

126
nselib/sslcert.lua
View File

@@ -9,6 +9,8 @@
-- STARTTLS functions are included for several protocols: -- STARTTLS functions are included for several protocols:
-- --
-- * FTP -- * FTP
-- * IMAP
-- * POP3
-- * SMTP -- * SMTP
-- * XMPP -- * XMPP
-- --
@@ -21,7 +23,8 @@ local xmpp = require "xmpp"
_ENV = stdnse.module("sslcert", stdnse.seeall) _ENV = stdnse.module("sslcert", stdnse.seeall)
StartTLS = { StartTLS = {
-- TODO: Implement STARTTLS for IMAP, POP3, LDAP, NNTP
-- TODO: Implement STARTTLS for LDAP, NNTP
ftp_prepare_tls_without_reconnect = function(host, port) ftp_prepare_tls_without_reconnect = function(host, port)
local s = nmap.new_socket() local s = nmap.new_socket()
@@ -80,6 +83,119 @@ StartTLS = {
return false, "Failed to connect to FTP server" return false, "Failed to connect to FTP server"
end, end,
imap_prepare_tls_without_reconnect = function(host, port)
local s = nmap.new_socket()
-- Attempt to negotiate TLS over IMAP for services that support it
-- Works for IMAP (143)
-- Open a standard TCP socket
local status, error = s:connect(host, port, "tcp")
if not status then
return false, "Failed to connect to IMAP server"
else
-- Read the greetings message
-- TODO(claudiu) There may be a better way to handle this.
local greetings
local i = 0
repeat
status, greetings = s:receive_lines(1)
i = i + 1
until string.match(greetings, "OK") or i == 5
-- Check for STARTTLS support.
local result, query
query = "a001 CAPABILITY\r\n"
status = s:send(query)
status, result = s:receive_lines(1)
if not (string.match(result, "STARTTLS")) then
stdnse.print_debug(1, "Server doesn't support STARTTLS")
return false, "Failed to connect to IMAP server"
end
-- Send the STARTTLS message
query = "a002 STARTTLS\r\n"
status = s:send(query)
status, result = s:receive_lines(1)
if not (string.match(result, "OK")) then
stdnse.print_debug(1, string.format("Error: %s", result))
return false, "Failed to connect to IMAP server"
end
end
-- Should have a solid TLS over IMAP session now...
return true, s
end,
imap_prepare_tls = function(host, port)
local err
local status, s = StartTLS.imap_prepare_tls_without_reconnect(host, port)
if status then
status,err = s:reconnect_ssl()
if not status then
stdnse.print_debug(
1, "Could not establish SSL session after STARTTLS command.")
s:close()
return false, "Failed to connect to IMAP server"
else
return true,s
end
end
return false, "Failed to connect to IMAP server"
end,
pop3_prepare_tls_without_reconnect = function(host, port)
local s = nmap.new_socket()
-- Attempt to negotiate TLS over POP3 for services that support it
-- Works for POP3 (110)
-- Open a standard TCP socket
local status, error = s:connect(host, port, "tcp")
if not status then
return false, "Failed to connect to POP3 server"
else
-- Read the greetings message
-- TODO(claudiu) There may be a better way to handle this.
local greetings
local i = 0
repeat
status, greetings = s:receive_lines(1)
i = i + 1
until string.match(greetings, "OK") or i == 5
-- Send the STLS message
query = "STLS\r\n"
status = s:send(query)
status, result = s:receive_lines(1)
if not (string.match(result, "OK")) then
stdnse.print_debug(1, string.format("Error: %s", result))
return false, "Failed to connect to POP3 server"
end
end
-- Should have a solid TLS over POP3 session now...
return true, s
end,
pop3_prepare_tls = function(host, port)
local err
local status, s = StartTLS.pop3_prepare_tls_without_reconnect(host, port)
if status then
status,err = s:reconnect_ssl()
if not status then
stdnse.print_debug(
1, "Could not establish SSL session after STARTTLS command.")
s:close()
return false, "Failed to connect to POP3 server"
else
return true,s
end
end
return false, "Failed to connect to POP3 server"
end,
smtp_prepare_tls_without_reconnect = function(host, port) smtp_prepare_tls_without_reconnect = function(host, port)
local s = nmap.new_socket() local s = nmap.new_socket()
-- Attempt to negotiate TLS over SMTP for services that support it -- Attempt to negotiate TLS over SMTP for services that support it
@@ -227,6 +343,10 @@ StartTLS = {
local SPECIALIZED_PREPARE_TLS = { local SPECIALIZED_PREPARE_TLS = {
ftp = StartTLS.ftp_prepare_tls, ftp = StartTLS.ftp_prepare_tls,
[21] = StartTLS.ftp_prepare_tls, [21] = StartTLS.ftp_prepare_tls,
imap = StartTLS.imap_prepare_tls,
[143] = StartTLS.imap_prepare_tls,
pop3 = StartTLS.pop3_prepare_tls,
[110] = StartTLS.pop3_prepare_tls,
smtp = StartTLS.smtp_prepare_tls, smtp = StartTLS.smtp_prepare_tls,
[25] = StartTLS.smtp_prepare_tls, [25] = StartTLS.smtp_prepare_tls,
[587] = StartTLS.smtp_prepare_tls, [587] = StartTLS.smtp_prepare_tls,
@@ -238,6 +358,10 @@ local SPECIALIZED_PREPARE_TLS = {
local SPECIALIZED_PREPARE_TLS_WITHOUT_RECONNECT = { local SPECIALIZED_PREPARE_TLS_WITHOUT_RECONNECT = {
ftp = StartTLS.ftp_prepare_tls_without_reconnect, ftp = StartTLS.ftp_prepare_tls_without_reconnect,
[21] = StartTLS.ftp_prepare_tls_without_reconnect, [21] = StartTLS.ftp_prepare_tls_without_reconnect,
imap = StartTLS.imap_prepare_tls_without_reconnect,
[143] = StartTLS.imap_prepare_tls_without_reconnect,
pop3 = StartTLS.pop3_prepare_tls_without_reconnect,
[110] = StartTLS.pop3_prepare_tls_without_reconnect,
smtp = StartTLS.smtp_prepare_tls_without_reconnect, smtp = StartTLS.smtp_prepare_tls_without_reconnect,
[25] = StartTLS.smtp_prepare_tls_without_reconnect, [25] = StartTLS.smtp_prepare_tls_without_reconnect,
[587] = StartTLS.smtp_prepare_tls_without_reconnect, [587] = StartTLS.smtp_prepare_tls_without_reconnect,