Land rapid7#1215, creds reuse for AuthBrute modules

wvu · wvu · commit 27a540e12fb5 · 2013-07-25T16:54:44.000-05:00
diff --git a/lib/msf/core/auxiliary/auth_brute.rb b/lib/msf/core/auxiliary/auth_brute.rb
@@ -22,6 +22,9 @@ def initialize(info = {})
 			OptBool.new('VERBOSE', [ true, "Whether to print output for all attempts", true]),
 			OptBool.new('BLANK_PASSWORDS', [ false, "Try blank passwords for all users", true]),
 			OptBool.new('USER_AS_PASS', [ false, "Try the username as the password for all users", true]),
+			OptBool.new('DB_ALL_CREDS', [false,"Try each user/password couple stored in the current database",true]),
+			OptBool.new('DB_ALL_USERS', [false,"Add all users in the current database to the list",false]),
+			OptBool.new('DB_ALL_PASS', [false,"Add all passwords in the current database to the list",false]),
 			OptBool.new('STOP_ON_SUCCESS', [ true, "Stop guessing when a credential works for a host", false]),
 		], Auxiliary::AuthBrute)
 
@@ -184,6 +187,23 @@ def build_credentials_array
 		if datastore['BLANK_PASSWORDS']
 			credentials = gen_blank_passwords(users, credentials)
 		end
+		if framework.db.active
+			if datastore['DB_ALL_CREDS']
+				myworkspace.creds.each do |o|
+					credentials << [o.user, o.pass] if o.ptype =~ /password/
+				end
+			end
+			if datastore['DB_ALL_USERS']
+				myworkspace.creds.each do |o|
+					users << o.user
+				end
+			end
+			if datastore['DB_ALL_PASS']
+				myworkspace.creds.each do |o|
+					passwords << o.pass if o.ptype =~ /password/
+				end
+			end
+		end
 		credentials.concat(combine_users_and_passwords(users, passwords))
 		credentials.uniq!
 		credentials = just_uniq_users(credentials) if @strip_passwords
