def __update_os(self):
"""Update OS (Service.host.os)"""
if self.os:
logger.smartsuccess('Detected OS: {os}'.format(os=self.os))
self.service.host.os = self.os
self.service.host.os_vendor = OSUtils.get_os_vendor(self.os)
self.service.host.os_family = OSUtils.get_os_family(self.os)
def __update_usernames(self):
"""
Update service's usernames (in table "credentials").
This is called when only valid username has been found (but not the
associated password).
"""
for username in self.usernames:
username_str = '{username} {auth_type}'.format(
username=username.username or '<empty>',
auth_type='(type=' + username.type +
')' if username.type else '')
match_cred = self.service.get_credential(username.username,
username.type)
if match_cred:
if match_cred.password is None:
logger.smartinfo(
'Detected username (already known): {}'.format(
username_str))
else:
logger.smartinfo('Detected username (password already ' \
'known): {}'.format(username_str))
else:
logger.smartsuccess(
'New detected username: {}'.format(username_str))
self.service.credentials.append(username)
def __update_vulns(self):
"""Update service's vulnerabilities (table "vulns")"""
for vuln in self.vulns:
match_vuln = self.service.get_vuln(vuln.name)
if match_vuln:
logger.smartinfo('Detected vulnerability (already in db): {name}'.format(
name=vuln.name))
else:
logger.smartsuccess('New vulnerability detected: {name}'.format(
name=vuln.name))
self.service.vulns.append(vuln)
def __update_specific_options(self):
"""Update service's specific options (table "options")"""
for option in self.specific_options:
match_option = self.service.get_option(option.name)
if match_option:
if match_option.value == option.value:
logger.smartinfo('Detected option (already known): {name} = ' \
'{old}'.format(name=option.name, old=match_option.value))
else:
logger.smartsuccess('Change option: {name} = {old} -> {new}'.format(
name=option.name, old=match_option.value, new=option.value))
match_option.value = option.value
else:
logger.smartsuccess('New detected option: {name} = {new}'.format(
name=option.name, new=option.value))
self.service.options.append(option)
def __update_usernames(self, service):
for username in self.usernames:
username_str = '{username} {auth_type}'.format(
username=username.username or '<empty>',
auth_type='(' + username.type + ')' if username.type else '')
match_cred = service.get_credential(username.username,
username.type)
if match_cred:
if match_cred.password is None:
logger.smartinfo('Detected username (already knwon): ' +
username_str)
else:
logger.smartinfo(
'Detected username (password already known): ' +
username_str)
else:
logger.smartsuccess('New detected username: ' + username_str)
service.credentials.append(username)
def __update_specific_options(self, service):
for option in self.specific_options:
match_option = service.get_option(option.name)
if match_option:
if match_option.value == option.value:
logger.smartinfo(
'Detected option (no update): {name} = {old}'.format(
name=option.name, old=match_option.value))
else:
logger.smartsuccess(
'Change option: {name} = {old} -> {new}'.format(
name=option.name,
old=match_option.value,
new=option.value))
match_option.value = option.value
else:
logger.smartsuccess(
'New detected option: {name} = {new}'.format(
name=option.name, new=option.value))
service.options.append(option)
def __update_credentials(self):
"""Update service's credentials (username+password) (in table "credentials")"""
for credential in self.credentials:
credential_str = '{username}/{password} {auth_type}'.format(
username=credential.username or '<empty>',
password=credential.password or '<empty>',
auth_type='(type='+credential.type+')' if credential.type else '')
match_cred = self.service.get_credential(
credential.username, credential.type)
if match_cred:
if match_cred.password is None:
logger.smartsuccess('Credentials found (username already ' \
'known): {}'.format(credential_str))
match_cred.password = credential.password
elif match_cred.password != credential.password:
logger.smartsuccess('Credentials found (new password): {}'.format(
credential_str))
match_cred.password = credential.password
else:
logger.smartinfo('Credentials detected (already in db): {}'.format(
credential_str))
else:
logger.smartsuccess('New Credentials found: {}'.format(credential_str))
self.service.credentials.append(credential)
def __update_credentials(self, service):
for credential in self.credentials:
credential_str = '{username}/{password} {auth_type}'.format(
username=credential.username or '<empty>',
password=credential.password or '<empty>',
auth_type='(' + credential.type +
')' if credential.type else '')
match_cred = service.get_credential(credential.username,
credential.type)
if match_cred:
if match_cred.password is None:
logger.smartsuccess(
'Credentials found (username already known): ' +
credential_str)
match_cred.password = credential.password
elif match_cred.password != credential.password:
logger.smartsuccess('Credentials found (new password)' +
credential_str)
match_cred.password = credential.password
else:
logger.smartinfo('Credentials detected (no update): ' +
credential_str)
else:
logger.smartsuccess('New Credentials found: ' + credential_str)
service.credentials.append(credential)
def __update_products(self):
"""Update service's products (in table "products")"""
for product in self.products:
product_str = '{type}={name}'.format(
type=product.type,
name=product.name)
match_product = self.service.get_product(product.type)
# Same type already present in database
if match_product:
# Same product name detected
if match_product.name == product.name:
# Version detected
if product.version:
# Version freshly detected
if match_product.version == '':
logger.smartsuccess('Version detected for product ' \
'{product}: {version}'.format(
product=product_str,
version=product.version))
match_product.version = product.version
# Update version if new version is "more accurate" than the
# one already known
elif match_product.version != product.version:
if VersionUtils.is_version_more_precise(
old_version=match_product.version,
new_version=product.version):
logger.smartsuccess('Version for product ' \
'{product} updated: {oldvers} -> {newvers}'.format(
product=product_str,
oldvers=match_product.version,
newvers=product.version))
match_product.version = product.version
else:
logger.smartinfo('Version detected for product ' \
'{product}: {newvers}. Not updated in db ' \
'because less accurate than {oldvers}'.format(
product=product_str,
newvers=product.version,
oldvers=match_product.version))
# Version detected is superior (newer version) to the one in
# db, no update
# elif match_product.version < product.version:
# logger.smartsuccess('Version for product ' \
# '{product} detected: {newvers}. Not updated in db ' \
# 'because older version {oldvers} already detected'.format(
# product=product_str,
# newvers=product.version,
# oldvers=match_product.version))
# match_product.version = product.version
# Same version as already detected
else:
logger.smartinfo('Product detected: {product} ' \
'{version}. Not updated because already in db'.format(
product=product_str,
version=product.version))
# Version not detected
else:
logger.smartinfo('Product detected (already in db): ' \
'{product} (version unknown)'.format(product=product_str))
# Different product name detected
else:
oldprod = '{name}{vers}'.format(
name=match_product.name,
vers=' '+match_product.version if match_product.version else '')
newprod = '{name}{vers}'.format(
name=product.name,
vers=' '+product.version if product.version else '')
logger.smartsuccess('Change product {type}: {oldprod} -> ' \
'{newprod}'.format(
type=product.type,
oldprod=oldprod,
newprod=newprod))
match_product.name = product.name
match_product.version = product.version
# Type not present in database
else:
logger.smartsuccess('New product detected: {product} {version}'.format(
product=product_str,
version=product.version))
self.service.products.append(product)