mirror of
https://github.com/nmap/nmap.git
synced 2025-12-07 13:11:28 +00:00
nselib stdnse.print_debug -> stdnse.debug
$ f() { find -name \*.lua -exec /bin/echo sed -i "$1" {} \; ; }
$ f 's/stdnse.print_debug( *\([0-9]*\) *, */stdnse.debug\1(/'
$ f 's/stdnse.print_debug( *"\(.*\))/stdnse.debug1("\1)/'
This commit is contained in:
batrick
@@ -217,7 +217,7 @@ function add_account(host, username, domain, password, password_hash, hash_type,
|
||||
table.sort(host.registry['smbaccounts'], function(a,b) return a['account_type'] > b['account_type'] end)
|
||||
|
||||
-- Print a debug message
|
||||
stdnse.print_debug(1, "SMB: Added account '%s' to account list", username)
|
||||
stdnse.debug1("SMB: Added account '%s' to account list", username)
|
||||
|
||||
-- Reset the credentials
|
||||
next_account(host, 1)
|
||||
@@ -316,7 +316,7 @@ function init_account(host)
|
||||
|
||||
-- Add the account, if we got a password
|
||||
if(password == nil and password_hash == nil) then
|
||||
stdnse.print_debug(1, "SMB: Either smbpass, smbpassword, or smbhash have to be passed as script arguments to use an account")
|
||||
stdnse.debug1("SMB: Either smbpass, smbpassword, or smbhash have to be passed as script arguments to use an account")
|
||||
else
|
||||
add_account(host, username, domain, password, password_hash, hash_type)
|
||||
end
|
||||
@@ -362,7 +362,7 @@ local function lm_create_hash(password)
|
||||
end
|
||||
password = table.concat(buf)
|
||||
local nsedebug = require 'nsedebug'
|
||||
stdnse.print_debug("LM Password: %s", stdnse.tohex(password))
|
||||
stdnse.debug1("LM Password: %s", stdnse.tohex(password))
|
||||
end
|
||||
|
||||
-- If password is under 14 characters, pad it to 14
|
||||
@@ -436,7 +436,7 @@ function lm_create_response(lanman, challenge)
|
||||
-- Print a warning message if a blank challenge is received, and create a phony challenge. A blank challenge is
|
||||
-- invalid in the protocol, and causes some versions of OpenSSL to abort with no possible error handling.
|
||||
if(challenge == "") then
|
||||
stdnse.print_debug(1, "SMB: ERROR: Server returned invalid (blank) challenge value (should be 8 bytes); failing login to avoid OpenSSL crash.")
|
||||
stdnse.debug1("SMB: ERROR: Server returned invalid (blank) challenge value (should be 8 bytes); failing login to avoid OpenSSL crash.")
|
||||
challenge = "AAAAAAAA"
|
||||
end
|
||||
|
||||
@@ -625,7 +625,7 @@ function get_password_response(ip, username, domain, password, password_hash, ha
|
||||
|
||||
-- Check for a blank password
|
||||
if(password == nil and password_hash == nil) then
|
||||
stdnse.print_debug(2, "SMB: Couldn't find password or hash to use (assuming blank)")
|
||||
stdnse.debug2("SMB: Couldn't find password or hash to use (assuming blank)")
|
||||
password = ""
|
||||
end
|
||||
|
||||
@@ -641,19 +641,19 @@ function get_password_response(ip, username, domain, password, password_hash, ha
|
||||
else
|
||||
if(password_hash ~= nil) then
|
||||
if(string.find(password_hash, "^" .. string.rep("%x%x", 16) .. "$")) then
|
||||
stdnse.print_debug(2, "SMB: Found a 16-byte hex string")
|
||||
stdnse.debug2("SMB: Found a 16-byte hex string")
|
||||
lm_hash = bin.pack("H", password_hash:sub(1, 32))
|
||||
ntlm_hash = bin.pack("H", password_hash:sub(1, 32))
|
||||
elseif(string.find(password_hash, "^" .. string.rep("%x%x", 32) .. "$")) then
|
||||
stdnse.print_debug(2, "SMB: Found a 32-byte hex string")
|
||||
stdnse.debug2("SMB: Found a 32-byte hex string")
|
||||
lm_hash = bin.pack("H", password_hash:sub(1, 32))
|
||||
ntlm_hash = bin.pack("H", password_hash:sub(33, 64))
|
||||
elseif(string.find(password_hash, "^" .. string.rep("%x%x", 16) .. "." .. string.rep("%x%x", 16) .. "$")) then
|
||||
stdnse.print_debug(2, "SMB: Found two 16-byte hex strings")
|
||||
stdnse.debug2("SMB: Found two 16-byte hex strings")
|
||||
lm_hash = bin.pack("H", password_hash:sub(1, 32))
|
||||
ntlm_hash = bin.pack("H", password_hash:sub(34, 65))
|
||||
else
|
||||
stdnse.print_debug(1, "SMB: ERROR: Hash(es) provided in an invalid format (should be 32, 64, or 65 hex characters)")
|
||||
stdnse.debug1("SMB: ERROR: Hash(es) provided in an invalid format (should be 32, 64, or 65 hex characters)")
|
||||
lm_hash = nil
|
||||
ntlm_hash = nil
|
||||
end
|
||||
@@ -662,18 +662,18 @@ function get_password_response(ip, username, domain, password, password_hash, ha
|
||||
|
||||
-- At this point, we should have a good lm_hash and ntlm_hash if we're getting one
|
||||
if(lm_hash == nil or ntlm_hash == nil) then
|
||||
stdnse.print_debug(2, "SMB: Couldn't determine which password to use, using a blank one")
|
||||
stdnse.debug2("SMB: Couldn't determine which password to use, using a blank one")
|
||||
return "", ""
|
||||
end
|
||||
|
||||
-- Output what we've got so far
|
||||
stdnse.print_debug(2, "SMB: Lanman hash: %s", stdnse.tohex(lm_hash))
|
||||
stdnse.print_debug(2, "SMB: NTLM hash: %s", stdnse.tohex(ntlm_hash))
|
||||
stdnse.debug2("SMB: Lanman hash: %s", stdnse.tohex(lm_hash))
|
||||
stdnse.debug2("SMB: NTLM hash: %s", stdnse.tohex(ntlm_hash))
|
||||
|
||||
-- Hash the password the way the user wants
|
||||
if(hash_type == "v1") then
|
||||
-- LM and NTLM are hashed with their respective algorithms
|
||||
stdnse.print_debug(2, "SMB: Creating v1 response")
|
||||
stdnse.debug2("SMB: Creating v1 response")
|
||||
status, lm_response = lm_create_response(lm_hash, challenge)
|
||||
status, ntlm_response = ntlm_create_response(ntlm_hash, challenge)
|
||||
|
||||
@@ -681,7 +681,7 @@ function get_password_response(ip, username, domain, password, password_hash, ha
|
||||
|
||||
elseif(hash_type == "lm") then
|
||||
-- LM is hashed with its algorithm, NTLM is blank
|
||||
stdnse.print_debug(2, "SMB: Creating LMv1 response")
|
||||
stdnse.debug2("SMB: Creating LMv1 response")
|
||||
status, lm_response = lm_create_response(lm_hash, challenge)
|
||||
ntlm_response = ""
|
||||
|
||||
@@ -689,7 +689,7 @@ function get_password_response(ip, username, domain, password, password_hash, ha
|
||||
|
||||
elseif(hash_type == "ntlm") then
|
||||
-- LM and NTLM both use the NTLM algorithm
|
||||
stdnse.print_debug(2, "SMB: Creating NTLMv1 response")
|
||||
stdnse.debug2("SMB: Creating NTLMv1 response")
|
||||
status, lm_response = ntlm_create_response(ntlm_hash, challenge)
|
||||
status, ntlm_response = ntlm_create_response(ntlm_hash, challenge)
|
||||
|
||||
@@ -697,22 +697,22 @@ function get_password_response(ip, username, domain, password, password_hash, ha
|
||||
|
||||
elseif(hash_type == "v2") then
|
||||
-- LM and NTLM are hashed with their respective v2 algorithms
|
||||
stdnse.print_debug(2, "SMB: Creating v2 response")
|
||||
stdnse.debug2("SMB: Creating v2 response")
|
||||
status, lm_response = lmv2_create_response(ntlm_hash, username, domain, challenge)
|
||||
status, ntlm_response = ntlmv2_create_response(ntlm_hash, username, domain, challenge, 24)
|
||||
|
||||
elseif(hash_type == "lmv2") then
|
||||
-- LM is hashed with its v2 algorithm, NTLM is blank
|
||||
stdnse.print_debug(2, "SMB: Creating LMv2 response")
|
||||
stdnse.debug2("SMB: Creating LMv2 response")
|
||||
status, lm_response = lmv2_create_response(ntlm_hash, username, domain, challenge)
|
||||
ntlm_response = ""
|
||||
|
||||
else
|
||||
-- Default to NTLMv1
|
||||
if(hash_type ~= nil) then
|
||||
stdnse.print_debug(1, "SMB: Invalid login type specified ('%s'), using default (NTLM)", hash_type)
|
||||
stdnse.debug1("SMB: Invalid login type specified ('%s'), using default (NTLM)", hash_type)
|
||||
else
|
||||
stdnse.print_debug(1, "SMB: No login type specified, using default (NTLM)")
|
||||
stdnse.debug1("SMB: No login type specified, using default (NTLM)")
|
||||
end
|
||||
|
||||
status, lm_response = ntlm_create_response(ntlm_hash, challenge)
|
||||
@@ -720,8 +720,8 @@ function get_password_response(ip, username, domain, password, password_hash, ha
|
||||
|
||||
end
|
||||
|
||||
stdnse.print_debug(2, "SMB: Lanman response: %s", stdnse.tohex(lm_response))
|
||||
stdnse.print_debug(2, "SMB: NTLM response: %s", stdnse.tohex(ntlm_response))
|
||||
stdnse.debug2("SMB: Lanman response: %s", stdnse.tohex(lm_response))
|
||||
stdnse.debug2("SMB: NTLM response: %s", stdnse.tohex(ntlm_response))
|
||||
|
||||
return lm_response, ntlm_response, mac_key
|
||||
end
|
||||
@@ -830,11 +830,11 @@ function get_host_info_from_security_blob(security_blob)
|
||||
|
||||
-- Do some validation on the NTLMSSP message
|
||||
if ( identifier ~= "NTLMSSP\0" ) then
|
||||
stdnse.print_debug( 1, "SMB: Invalid NTLM challenge message: unexpected signature." )
|
||||
stdnse.debug1("SMB: Invalid NTLM challenge message: unexpected signature." )
|
||||
return false, "Invalid NTLM challenge message"
|
||||
-- Per MS-NLMP, this field must be 2 for an NTLM challenge message
|
||||
elseif ( message_type ~= 0x2 ) then
|
||||
stdnse.print_debug( 1, "SMB: Invalid NTLM challenge message: unexpected message type: %d.", message_type )
|
||||
stdnse.debug1("SMB: Invalid NTLM challenge message: unexpected message type: %d.", message_type )
|
||||
return false, "Invalid message type in NTLM challenge message"
|
||||
end
|
||||
|
||||
|
||||
Reference in New Issue
Block a user