def run(PluginInfo): NiktoOutput = plugin_helper.CommandDump('Test Command', 'Output', get_resources('Nikto_Unauth'), PluginInfo, []) Content = plugin_helper.CommandDump('Test Command', 'Output', get_resources('Nikto_Verify_Unauth'), PluginInfo, NiktoOutput) return Content + NiktoOutput # Show Nikto Verify FIRST (more useful, with links to findings, etc)
def run(PluginInfo): Content = [] args = { 'Description': DESCRIPTION, 'Mandatory': { 'RHOST': config_handler.get_val('RHOST_DESCRIP'), 'RPORT': config_handler.get_val('RPORT_DESCRIP'), 'CATEGORY': 'Category to use (i.e. ' + ', '.join(sorted(CATEGORIES)) + ')', 'SUBCATEGORY': 'Subcategory to use (i.e. ' + ', '.join(sorted(SUBCATEGORIES)) + ')' }, 'Optional': { 'REPEAT_DELIM': config_handler.get_val('REPEAT_DELIM_DESCRIP') } } for Args in plugin_params.get_args(args, PluginInfo): plugin_params.set_config(Args) resource = config_handler.get_resources('LaunchExploit_' + Args['CATEGORY'] + "_" + Args['SUBCATEGORY']) Content += plugin_helper.CommandDump('Test Command', 'Output', resource, PluginInfo, "") return Content
def run(PluginInfo): Content = [] args = { 'Description': DESCRIPTION, 'Mandatory': { 'RHOST': config_handler.get_val('RHOST_DESCRIP'), 'RPORT': config_handler.get_val('RPORT_DESCRIP'), 'CATEGORY': 'Category to use (i.e. ' + ', '.join(sorted(CATEGORIES)) + ')' }, 'Optional': { 'BRUTEFORCER': 'Bruteforcer to use (i.e. ' + ', '.join(sorted(BRUTEFORCER)) + ')', 'ONLINE_USER_LIST': config_handler.get_val('ONLINE_USER_LIST_DESCRIP'), 'ONLINE_PASSWORD_LIST': config_handler.get_val('ONLINE_PASSWORD_LIST_DESCRIP'), 'THREADS': config_handler.get_val('THREADS_DESCRIP'), '_RESPONSE_WAIT': config_handler.get_val('_RESPONSE_WAIT_DESCRIP'), 'CONNECT_WAIT': config_handler.get_val('CONNECT_WAIT_DESCRIP'), 'REPEAT_DELIM': config_handler.get_val('REPEAT_DELIM_DESCRIP') } } for args in plugin_params.get_args(args, PluginInfo): plugin_params.set_config(args) resource = config_handler.get_resources('PassBruteForce_' + args['BRUTEFORCER'] + "_" + args['CATEGORY']) Content += plugin_helper.CommandDump('Test Command', 'Output', resource, PluginInfo, "") # No previous output return Content
def run(PluginInfo): URL = target_manager.get_val('top_url') # TODO: PUT not working right yet Content = plugin_helper.TransactionTableForURL(True, URL, Method='TRACE') Content += plugin_helper.CommandDump('Test Command', 'Output', get_resources('ActiveHTTPMethods'), PluginInfo, Content) return Content
def run(PluginInfo): resource = get_resources('SemiPassiveHTTPMethods') Content = plugin_helper.TransactionTableForURLList( True, get_targets_as_list(['target_url', 'top_url']), 'OPTIONS') # No previous output Content += plugin_helper.CommandDump('Test Command', 'Output', resource, PluginInfo, []) return Content
def run(PluginInfo): resource = get_resources('PassiveSearchEngineDiscoveryCmd') resource_online = get_resources('PassiveSearchEngineDiscoveryLnk') Content = plugin_helper.CommandDump('Test Command', 'Output', resource, PluginInfo, []) Content += plugin_helper.resource_linklist('Online Resources', resource_online) return Content
def run(PluginInfo): # Define DirBuster Commands to use depending on Interaction Setting: # DirBuster allows much more control when interactive # DirBuster can also be run non-interactively for scripting DirBusterInteraction = { 'True': 'DirBusterInteractive', 'False': 'DirBusterNotInteractive' } # Get settings from the config DB resource = get_resources(DirBusterInteraction['{}'.format(INTERACTIVE)]) Content = plugin_helper.CommandDump('Test Command', 'Output', resource, PluginInfo, []) extractURL_resource = get_resources('DirBuster_Extract_URLs') Content += plugin_helper.CommandDump('Test Command', 'Output', extractURL_resource, PluginInfo, []) return Content
def run(PluginInfo): # True = Use Transaction Cache if possible: Visit the start URLs if not already visited TransactionTable = plugin_helper.TransactionTableForURLList( True, get_targets_as_list(['target_url', 'top_url'])) resource = get_resources('SemiPassiveFingerPrint') Content = plugin_helper.ResearchFingerprintInlog() + TransactionTable Content += plugin_helper.CommandDump('Test Command', 'Output', resource, PluginInfo, Content) return Content
def run(PluginInfo): resource = get_resources('ActiveDiscovery') # No previous output return plugin_helper.CommandDump('Test Command', 'Output', resource, PluginInfo, [])
def run(PluginInfo): resource = get_resources('BruteSnmpProbeMethods') return plugin_helper.CommandDump('Test Command', 'Output', resource, PluginInfo, [])
def run(PluginInfo): resource = get_resources('MsRpcProbeMethods') # No previous output return plugin_helper.CommandDump('Test Command', 'Output', resource, PluginInfo, [])
def run(PluginInfo): resource = get_resources('ActiveSSLCmds') Content = plugin_helper.CommandDump('Test Command', 'Output', resource, PluginInfo, []) # No previous output return Content
def run(PluginInfo): resource = get_resources('Arachni_Unauth') return plugin_helper.CommandDump('Test Command', 'Output', resource, PluginInfo, [])
def run(PluginInfo): resource = get_resources('SemiPassiveSearchEngineDiscoveryCmd') Content = plugin_helper.CommandDump('Test Command', 'Output', resource, PluginInfo, []) # No previous output return Content
def run(PluginInfo): return plugin_helper.CommandDump('Test Command', 'Output', get_resources('DomainBruteForcing'), PluginInfo, "")
def run(PluginInfo): # No previous output resource = get_resources('ActiveInfrastructureConfigurationManagement') Content = plugin_helper.CommandDump('Test Command', 'Output', resource, PluginInfo, []) return Content