Sign upLogin

ninoseki/SimpleWhatWeb

View on GitHub
Star
lib/whatweb/plugins/moxa-nport-device.rb

Summary

Maintainability
C
1 day
Test Coverage
# frozen_string_literal: true

##
# This file is part of WhatWeb and may be subject to
# redistribution and commercial restrictions. Please see the WhatWeb
# web site for more information on licensing and terms of use.
# http://www.morningstarsecurity.com/research/whatweb
##
WhatWeb::Plugin.define "Moxa-NPort-Device" do
  @author = "Brendan Coles <bcoles@gmail.com>" # 2011-07-07
  @version = "0.1"
  @description = "Moxa serial-to-ethernet NPort device server"
  @website = "http://www.moxa.com/product/nport_device_server_1.htm"

  # Google results as at 2011-07-07 #
  # 5 for intitle:"NPort web console"

  # Dorks #
  @dorks = [
    'intitle:"NPort web console"'
  ]

  # Matches #
  @matches = [

    # /logo.gif
    { md5: "27829d70bb23c465d86b9c643cf534d3", url: "/logo.gif" },
    { md5: "2f9af91da3dc3f192e26ac8f42db41bd", url: "/logo.gif" },

    # Frameset
    { text: "<HTML><HEAD><TITLE>NPort Web Console</TITLE></HEAD> <FRAMESET rows=57,1* frameborder=NO> <FRAME name=top scrolling=NO target=contents src=top.htm noresize> <FRAMESET cols=200,*> <FRAME name=contents target=main src=contents.htm> <FRAME name=main src=main.htm marginwidth=0 marginheight=0 scrolling=auto> </FRAMESET> <NOFRAMES><BODY background=bg.gif><P>This page uses frame, but your browser doesn't support.</P></BODY> </NOFRAMES> </FRAMESET></HTML>" },

    # Login page
    { text: '<HTML><HEAD><TITLE>NPort Web Console</TITLE> <SCRIPT language=' },

    # /main.htm # nport2g.css + title
    { text: '<HTML><HEAD> <LINK href=nport2g.css rel=stylesheet type=text/css><TITLE>Overview</TITLE></HEAD>' },

    # /main.htm # some models # BODY onload=window_onload()
    { text: "</script><BODY onload=window_onload()> <TABLE width=100% border=0 align=center><TR><TD><H2>Welcome to <span id=devlab1></span>'s web console !</H2></TD></TR>" },

  ]

  # Passive #
  # Extract system details
  # This could be looped however some models provide the in different formats
  # Models with system details in HTML rather than JS are currently not supported
  def passive(target)
    m = []

    device = {};
    device[:model] = []
    device[:mac] = []
    device[:serial] = []
    device[:version] = []
    device[:label] = []
    device[:uptime] = []

    # /main.htm # extract details # models with frameset # JavaScript
    if target.uri.to_s =~ /\/main\.htm/ && target.body =~ /\{set\("modelname", "([^"]+)"\);set\("mac", "([^"]+)"\);set\("serialno", "([^"]+)"\);set\("ver", "([^"]+)"\);setlabel\("([^"]+)"\);uptime\("([^"]+)"\);\}<\/Script>/

      result = target.body.scan(/\{set\("modelname", "([^"]+)"\);set\("mac", "([^"]+)"\);set\("serialno", "([^"]+)"\);set\("ver", "([^"]+)"\);setlabel\("([^"]+)"\);uptime\("([^"]+)"\);\}<\/Script>/)[0]

      device[:model] << result[0].to_s
      device[:mac] << result[1].to_s
      device[:serial] << result[2].to_s
      device[:version] << result[3].to_s
      device[:label] << result[4].to_s
      device[:uptime] << result[5].to_s

    end

    # /main.htm # extract details # models with frameset # JavaScript
    if target.uri.to_s =~ /\/main\.htm/ && target.body =~ /\{document.getElementById\("modelname"\).innerHTML="([^"]+)";document.getElementById\("mac"\).innerHTML="([^"]+)";document.getElementById\("serialno"\).innerHTML="([^"]+)";document.getElementById\("ver"\).innerHTML="([^"]+)";setlabel\("([^"]+)"\);uptime\("([^"]+)"\);\}<\/Script>/

      result = target.body.scan(/\{document.getElementById\("modelname"\).innerHTML="([^"]+)";document.getElementById\("mac"\).innerHTML="([^"]+)";document.getElementById\("serialno"\).innerHTML="([^"]+)";document.getElementById\("ver"\).innerHTML="([^"]+)";setlabel\("([^"]+)"\);uptime\("([^"]+)"\);\}<\/Script>/)[0]

      device[:model] << result[0].to_s
      device[:mac] << result[1].to_s
      device[:serial] << result[2].to_s
      device[:version] << result[3].to_s
      device[:label] << result[4].to_s
      device[:uptime] << result[5].to_s

    end

    if result && !device.empty? && !device.nil?
      m << { model: device[:model].to_s } unless device[:model].nil?
      m << { string: "MAC: " + device[:mac].to_s } unless device[:mac].nil?
      m << { string: "Serial: " + device[:serial].to_s } unless device[:serial].nil?
      # m << { :string=>"Label: "+device[:label].to_s } unless device[:label].nil?
      m << { string: "Uptime: " + device[:uptime].to_s } unless device[:uptime].nil?
      m << { firmware: device[:version].to_s } unless device[:version].nil?
    end

    # Return passive matches
    m
  end
end