PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-13 03:09:02 +00:00
Code Issues Projects Releases Wiki Activity

[NSE] Added support to broadcast-listener for extracting address, native vlan and management IP address from CDP packets.

Browse Source
This commit is contained in:
tomsellers
2012-02-25 17:18:22 +00:00
parent f8784f8829
commit 9f4fcc4da5
2 changed files with 37 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
CHANGELOG
View File

@@ -1,5 +1,8 @@
# Nmap Changelog ($Id$); -*-text-*- # Nmap Changelog ($Id$); -*-text-*-
o [NSE] Added support to broadcast-listener for extracting address, native vlan
and management IP address from CDP packets. [Tom]
o [NSE] Added the script broadcast-networker-discover that discoverer EMC o [NSE] Added the script broadcast-networker-discover that discoverer EMC
Networker servers on the LAN. [Patrik] Networker servers on the LAN. [Patrik]

44
nselib/data/packetdecoders.lua
View File

@@ -106,15 +106,38 @@ Decoders = {
return o return o
end, end,
getAddresses = function(data)
local ipOps = require("ipOps")
local pos, proto_type, proto_len, addr_proto, addr_len, dev_addr, count
local addr_list = ''
pos, count = bin.unpack(">I", data)
for i=1, count do
pos, proto_type, proto_len = bin.unpack(">CC", data, pos)
pos, addr_proto = bin.unpack(">H" .. proto_len, data, pos)
if ( addr_proto == 'CC' ) then
-- IPv4 address, extract it
pos, addr_len = bin.unpack(">S", data, pos)
pos, dev_addr = bin.unpack("<I", data, pos)
addr_list = addr_list .. ' ' .. ipOps.fromdword(dev_addr)
end
-- Add code here for IPv6, others
end
return addr_list
end,
process = function(self, data) process = function(self, data)
local pos, ver, ttl, chk = bin.unpack(">CCS", data, 9) local pos, ver, ttl, chk = bin.unpack(">CCS", data, 9)
if ( ver ~= 2 ) then return end if ( ver ~= 2 ) then return end
if ( not(self.results) ) then if ( not(self.results) ) then
self.results = tab.new(4) self.results = tab.new(5)
tab.addrow( self.results, 'ip', 'id', 'platform', 'version' ) tab.addrow( self.results, 'ip', 'id', 'platform', 'version', 'notes' )
end end
local result_part = {} local result_part = {}
result_part.notes = ''
while ( pos < #data ) do while ( pos < #data ) do
local typ, len, typdata local typ, len, typdata
pos, typ, len = bin.unpack(">SS", data, pos) pos, typ, len = bin.unpack(">SS", data, pos)
@@ -131,20 +154,21 @@ Decoders = {
result_part.platform = typdata result_part.platform = typdata
-- Address -- Address
elseif ( typ == 2 ) then elseif ( typ == 2 ) then
-- TODO: add more decoding here ... result_part.ip = self.getAddresses(typdata)
local pos, count = bin.unpack(">I", typdata) elseif ( typ == 10) then
-- for i=1, count do local _, mgmt_vlan = bin.unpack(">S", data,pos - 2)
-- result_part.notes = result_part.notes .. 'native vlan:' .. mgmt_vlan .. ' '
-- end -- Management Address
elseif ( typ == 22 ) then
result_part.ip = '?' result_part.notes = result_part.notes .. 'mgmt ip:' .. self.getAddresses(typdata) .. ' '
-- TODO: add more decoding of types here ...
end end
end end
-- TODO: add code for dups check -- TODO: add code for dups check
if ( not(self.dups[result_part.ip]) ) then if ( not(self.dups[result_part.ip]) ) then
self.dups[result_part.ip] = true self.dups[result_part.ip] = true
tab.addrow( self.results, result_part.ip, result_part.id, result_part.platform, result_part.version ) tab.addrow( self.results, result_part.ip, result_part.id, result_part.platform, result_part.version, result_part.notes )
end end
end, end,