PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-18 21:49:01 +00:00
Code Issues Projects Releases Wiki Activity

Simplifies a few logical expressions

Browse Source
This commit is contained in:
nnposter
2017-04-09 14:25:08 +00:00
parent 3952e2fd62
commit 5ef8d01a7f
1 changed files with 4 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
nselib/data/http-default-accounts-fingerprints.lua
View File

@@ -259,7 +259,7 @@ table.insert(fingerprints, {
-- harvest all hidden fields from the login form -- harvest all hidden fields from the login form
local resp1 = http_get_simple(host, port, lurl) local resp1 = http_get_simple(host, port, lurl)
if resp1.status ~= 200 then return false end if resp1.status ~= 200 then return false end
local html = resp1.body and resp1.body:match('<form%s+action%s*=%s*"[^"]*/users/login".->(.-)</form>') local html = (resp1.body or ""):match('<form%s+action%s*=%s*"[^"]*/users/login".->(.-)</form>')
if not html then return false end if not html then return false end
local form = {} local form = {}
for n, v in html:gmatch('<input%s+type%s*=%s*"hidden"%s+name%s*=%s*"(.-)"%s+value%s*=%s*"(.-)"') do for n, v in html:gmatch('<input%s+type%s*=%s*"hidden"%s+name%s*=%s*"(.-)"%s+value%s*=%s*"(.-)"') do
@@ -1224,13 +1224,13 @@ table.insert(fingerprints, {
-- determine proper login path by locale -- determine proper login path by locale
local resp0 = http.get(host, port, path) local resp0 = http.get(host, port, path)
if resp0.status ~= 200 then return false end if resp0.status ~= 200 then return false end
local lurl = resp0.body and resp0.body:match('location%.href="(/[^"]+/)mainFrame%.cgi"') local lurl = (resp0.body or ""):match('location%.href="(/[^"]+/)mainFrame%.cgi"')
if not lurl then return false end if not lurl then return false end
-- harvest the login form token -- harvest the login form token
local resp1 = http_get_simple(host, port, url.absolute(lurl, "authForm.cgi"), local resp1 = http_get_simple(host, port, url.absolute(lurl, "authForm.cgi"),
{cookies="cookieOnOffChecker=on"}) {cookies="cookieOnOffChecker=on"})
if resp1.status ~= 200 then return false end if resp1.status ~= 200 then return false end
local token = resp1.body and resp1.body:match('<input%s+type%s*=%s*"hidden"%s+name%s*=%s*"wimToken"%s+value%s*=%s*"(.-)"') local token = (resp1.body or ""):match('<input%s+type%s*=%s*"hidden"%s+name%s*=%s*"wimToken"%s+value%s*=%s*"(.-)"')
if not token then return false end if not token then return false end
-- build the login form and submit it -- build the login form and submit it
local form = {wimToken = token, local form = {wimToken = token,
@@ -1324,8 +1324,7 @@ table.insert(fingerprints, {
local resp = http_post_simple(host, port, url.absolute(path, "soap"), local resp = http_post_simple(host, port, url.absolute(path, "soap"),
{header=header}, soapmsg) {header=header}, soapmsg)
return resp.status == 200 return resp.status == 200
and resp.body and (resp.body or ""):find('<result xsi:type="xsd:boolean">true</result>', 1, true)
and resp.body:find('<result xsi:type="xsd:boolean">true</result>', 1, true)
end end
}) })