Method exploit has 219 lines of code (exceeds 25 allowed). Consider refactoring.

Open

  def exploit
    # Make initial request to get assigned a session token
    cookie = "pagerefresh=1; NfaupdateMsg=true; sortBy=sByName; testcookie=; "
    cookie << "am_username=;am_check="
    begin

Method run has a Cognitive Complexity of 56 (exceeds 5 allowed). Consider refactoring.

Open

  def run
    begin
      @port = datastore['SRVPORT'].to_i
      @sock = Rex::Socket::Udp.create(
            'LocalHost' => datastore['SRVHOST'],

• Read up
  Read up

Method run_host has a Cognitive Complexity of 56 (exceeds 5 allowed). Consider refactoring.

Open

  def run_host(ip)
    begin
      snmp = connect_snmp

      vprint_status("Connecting to #{ip}")

• Read up
  Read up

Method run_host has a Cognitive Complexity of 56 (exceeds 5 allowed). Consider refactoring.

Open

  def run_host(ip)
    trav = datastore['FILE']

    if(trav == '' or datastore['FINGERPINT'])
    # the user did not specify what they wanted, fingerprint, go after password.properties

• Read up
  Read up

Method process_config has a Cognitive Complexity of 56 (exceeds 5 allowed). Consider refactoring.

Open

  def process_config(filename)
    config = client.fs.file.new(filename, 'r')
    print_status("Processing #{filename}")
    contents = config.read
    config_lines = contents.split("\n")

• Read up
  Read up

Method substitute_vars has a Cognitive Complexity of 56 (exceeds 5 allowed). Consider refactoring.

Open

  def substitute_vars(raw, offsets)
    offsets.each_pair { |name, info|
      offset, pack = info

      # Give the derived class a chance to substitute this variable

• Read up
  Read up

Method process_propfind has 218 lines of code (exceeds 25 allowed). Consider refactoring.

Open

  def process_propfind(cli, request)
    path = request.uri
    print_status("Received WebDAV PROPFIND request for #{path}")
    body = ''

Method initialize has 217 lines of code (exceeds 25 allowed). Consider refactoring.

Open

  def initialize(info = {})
    super(merge_info(info,
      'Name'          => 'Windows x64 Pingback, Reverse TCP Inline',
      'Description'   => 'Connect back to attacker and report UUID (Windows x64)',
      'Author'        => [ 'bwatters-r7' ],

Method exploit_html has 217 lines of code (exceeds 25 allowed). Consider refactoring.

Open

  def exploit_html(req_uri)
    srvhost = datastore['SRVHOST']
    srvport = datastore['SRVPORT']

    template = <<-EOF

File solarwinds_orion_dump.rb has 526 lines of code (exceeds 250 allowed). Consider refactoring.

Open

require 'metasploit/framework/credential_collection'

class MetasploitModule < Msf::Post
  include Msf::Post::Common
  include Msf::Post::File

File apache_superset_cookie_sig_rce.rb has 525 lines of code (exceeds 250 allowed). Consider refactoring.

Open

class MetasploitModule < Msf::Exploit::Remote
  Rank = GoodRanking
  include Msf::Exploit::Remote::HttpClient

  def initialize(info = {})

Method cmd_hosts has 215 lines of code (exceeds 25 allowed). Consider refactoring.

Open

  def cmd_hosts(*args)
    return unless active?
    onlyup = false
    set_rhosts = false
    mode = []

Method custom_inflections has 215 lines of code (exceeds 25 allowed). Consider refactoring.

Open

  def custom_inflections
    {
      'uuid' => 'UUID',
      'db_manager' => 'DBManager',
      'ci' => 'CI',

Function dump has a Cognitive Complexity of 55 (exceeds 5 allowed). Consider refactoring.

Open

    def dump(self):
        try:
            if self.__remoteName.upper() == 'LOCAL' and self.__username == '':
                self.__isRemote = False
                self.__useVSSMethod = True

• Read up
  Read up

Function main has a Cognitive Complexity of 55 (exceeds 5 allowed). Consider refactoring.

Open

def main(argv=None):
    if not argv:
        argv = sys.argv
    if len(argv) == 1:
        print('Usage: build.py [clean|all|<name>]')

• Read up
  Read up

Method cmd_token_hunt_user has a Cognitive Complexity of 55 (exceeds 5 allowed). Consider refactoring.

Open

      def cmd_token_hunt_user(*args)
        opts = Rex::Parser::Arguments.new(
          '-h' => [ false, 'This help menu'],
          '-f' => [ true, 'A file containing a list of users to search for (one per line)']
        )

• Read up
  Read up

Method run has a Cognitive Complexity of 55 (exceeds 5 allowed). Consider refactoring.

Open

  def run
    check_pcaprub_loaded # Check first
    target  = rhost()
    source  = Rex::Socket.source_address(target)
    saddr   = datastore['SRCADDR']

• Read up
  Read up

Method run has a Cognitive Complexity of 55 (exceeds 5 allowed). Consider refactoring.

Open

  def run
    check_pcaprub_loaded # Check first.

    target   = rhost()
    source   = Rex::Socket.source_address(target)

• Read up
  Read up

Method report_host has a Cognitive Complexity of 55 (exceeds 5 allowed). Consider refactoring.

Open

  def report_host(opts)

    return if !active
    addr = opts.delete(:host) || return

• Read up
  Read up

Method exploit has a Cognitive Complexity of 55 (exceeds 5 allowed). Consider refactoring.

Open

  def exploit
    # Is the selected target a brute force target?
    if (target.bruteforce?)
      # The step direction is automatically calculated
      direction = {}

• Read up
  Read up