PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-18 13:39:02 +00:00
Code Issues Projects Releases Wiki Activity

Updates two fingerprints to use the JSON library

Browse Source
This commit is contained in:
nnposter
2017-04-09 14:57:51 +00:00
parent 665ee2ad66
commit b80141d69e
1 changed files with 10 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
nselib/data/http-default-accounts-fingerprints.lua
View File

@@ -1,5 +1,7 @@
local base64 = require "base64" local base64 = require "base64"
local http = require "http" local http = require "http"
local json = require "json"
local math = require "math"
local shortport = require "shortport" local shortport = require "shortport"
local stdnse = require "stdnse" local stdnse = require "stdnse"
local table = require "table" local table = require "table"
@@ -351,9 +353,10 @@ table.insert(fingerprints, {
login_check = function (host, port, path, user, pass) login_check = function (host, port, path, user, pass)
local header = {["Accept"] = "application/json, text/plain, */*", local header = {["Accept"] = "application/json, text/plain, */*",
["Content-Type"] = "application/json;charset=utf-8"} ["Content-Type"] = "application/json;charset=utf-8"}
local json = ('{"user":"%s","email":"","password":"%s"}'):format(user, pass) local jin = {user=user, email="", password=pass}
json.make_object(jin)
local resp = http_post_simple(host, port, url.absolute(path, "login"), local resp = http_post_simple(host, port, url.absolute(path, "login"),
{header=header}, json) {header=header}, json.generate(jin))
return resp.status == 200 and sets_cookie(resp, "grafana_user") == user return resp.status == 200 and sets_cookie(resp, "grafana_user") == user
end end
}) })
@@ -806,7 +809,8 @@ table.insert(fingerprints, {
}) })
table.insert(fingerprints, { table.insert(fingerprints, {
name = "Motorola AP-7532", -- AP6521, AP6522, AP7522, AP7532
name = "Motorola AP",
category = "routers", category = "routers",
paths = { paths = {
{path = "/"} {path = "/"}
@@ -826,8 +830,9 @@ table.insert(fingerprints, {
password = pass} password = pass}
local lurl = url.absolute(path, "rest.fcgi/services/rest/login?" .. url.build_query(form)) local lurl = url.absolute(path, "rest.fcgi/services/rest/login?" .. url.build_query(form))
local resp = http_get_simple(host, port, lurl) local resp = http_get_simple(host, port, lurl)
return resp.status == 200 if not (resp.status == 200 and resp.body) then return false end
and (resp.body or ""):find('[{,]%s*"status"%s*:%s*true%s*[,}]') local jstatus, jout = json.parse(resp.body)
return jstatus and jout.status
end end
}) })