sempervictus
diff --git a/‎modules/auxiliary/scanner/http/axis_local_file_include.rb
Lines changed: 27 additions & 9 deletions b/‎modules/auxiliary/scanner/http/axis_local_file_include.rb
Lines changed: 27 additions & 9 deletions
diff --git a/‎modules/auxiliary/scanner/http/cisco_asa_asdm.rb
Lines changed: 27 additions & 11 deletions b/‎modules/auxiliary/scanner/http/cisco_asa_asdm.rb
Lines changed: 27 additions & 11 deletions
diff --git a/‎modules/auxiliary/scanner/http/cisco_ironport_enum.rb
Lines changed: 27 additions & 11 deletions b/‎modules/auxiliary/scanner/http/cisco_ironport_enum.rb
Lines changed: 27 additions & 11 deletions
diff --git a/‎modules/auxiliary/scanner/http/cisco_ssl_vpn.rb
Lines changed: 29 additions & 12 deletions b/‎modules/auxiliary/scanner/http/cisco_ssl_vpn.rb
Lines changed: 29 additions & 12 deletions
diff --git a/‎modules/auxiliary/scanner/http/dlink_dir_300_615_http_login.rb
Lines changed: 27 additions & 10 deletions b/‎modules/auxiliary/scanner/http/dlink_dir_300_615_http_login.rb
Lines changed: 27 additions & 10 deletions
diff --git a/‎modules/auxiliary/scanner/http/dlink_dir_615h_http_login.rb
Lines changed: 27 additions & 9 deletions b/‎modules/auxiliary/scanner/http/dlink_dir_615h_http_login.rb
Lines changed: 27 additions & 9 deletions
diff --git a/‎modules/auxiliary/scanner/http/dlink_dir_session_cgi_http_login.rb
Lines changed: 27 additions & 9 deletions b/‎modules/auxiliary/scanner/http/dlink_dir_session_cgi_http_login.rb
Lines changed: 27 additions & 9 deletions
@@ -70,6 +70,32 @@ def run_host(ip)
     end
   end
 
+  def report_cred(opts)
+    service_data = {
+      address: opts[:ip],
+      port: opts[:port],
+      service_name: (ssl ? 'https' : 'http'),
+      protocol: 'tcp',
+      workspace_id: myworkspace_id
+    }
+
+    credential_data = {
+      origin_type: :service,
+      module_fullname: fullname,
+      username: opts[:user],
+      private_data: opts[:password],
+      private_type: :password
+    }.merge(service_data)
+
+    login_data = {
+      last_attempted_at: DateTime.now,
+      core: create_credential(credential_data),
+      status: Metasploit::Model::Login::Status::SUCCESSFUL,
+    }.merge(service_data)
+
+    create_credential_login(login_data)
+  end
+
   def get_credentials(uri)
     lfi_payload = "?xsd=../conf/axis2.xml"
 
@@ -96,15 +122,7 @@ def get_credentials(uri)
 
           print_good("#{target_url} - Apache Axis - Credentials Found Username: '#{username}' - Password: '#{password}'")
 
-          report_auth_info(
-            :host => rhost,
-            :port => rport,
-            :sname => (ssl ? 'https' : 'http'),
-            :user => username,
-            :pass => password,
-            :proof => "WEBAPP=\"Apache Axis\", VHOST=#{vhost}",
-            :active => true
-          )
+          report_cred(ip: rhost, port: rport, user: username, password: password)
 
         else
           print_error("#{target_url} - Apache Axis - Not Vulnerable")
 
@@ -88,6 +88,32 @@ def is_app_asdm?
       end
   end
 
+  def report_cred(opts)
+    service_data = {
+      address: opts[:ip],
+      port: opts[:port],
+      service_name: 'Cisco ASA ASDM',
+      protocol: 'tcp',
+      workspace_id: myworkspace_id
+    }
+
+    credential_data = {
+      origin_type: :service,
+      module_fullname: fullname,
+      username: opts[:user],
+      private_data: opts[:password],
+      private_type: :password
+    }.merge(service_data)
+
+    login_data = {
+      last_attempted_at: DateTime.now,
+      core: create_credential(credential_data),
+      status: Metasploit::Model::Login::Status::SUCCESSFUL,
+    }.merge(service_data)
+
+    create_credential_login(login_data)
+  end
+
   # Brute-force the login page
   def do_login(user, pass)
     vprint_status("#{peer} - Trying username:#{user.inspect} with password:#{pass.inspect}")
@@ -113,17 +139,7 @@ def do_login(user, pass)
 
         print_good("#{peer} - SUCCESSFUL LOGIN - #{user.inspect}:#{pass.inspect}")
 
-        report_hash = {
-          :host   => rhost,
-          :port   => rport,
-          :sname  => 'Cisco ASA ASDM',
-          :user   => user,
-          :pass   => pass,
-          :active => true,
-          :type => 'password'
-        }
-
-        report_auth_info(report_hash)
+        report_cred(ip: rhost, port: rport, user: user, password: pass)
         return :next_user
 
       else
 
@@ -114,6 +114,32 @@ def is_app_ironport?
       end
   end
 
+  def report_cred(opts)
+    service_data = {
+      address: opts[:ip],
+      port: opts[:port],
+      service_name: 'Cisco IronPort Appliance',
+      protocol: 'tcp',
+      workspace_id: myworkspace_id
+    }
+
+    credential_data = {
+      origin_type: :service,
+      module_fullname: fullname,
+      username: opts[:user],
+      private_data: opts[:password],
+      private_type: :password
+    }.merge(service_data)
+
+    login_data = {
+      last_attempted_at: DateTime.now,
+      core: create_credential(credential_data),
+      status: Metasploit::Model::Login::Status::SUCCESSFUL,
+    }.merge(service_data)
+
+    create_credential_login(login_data)
+  end
+
   #
   # Brute-force the login page
   #
@@ -138,17 +164,7 @@ def do_login(user, pass)
       if res and res.get_cookies.include?('authenticated=')
         print_good("#{rhost}:#{rport} - SUCCESSFUL LOGIN - #{user.inspect}:#{pass.inspect}")
 
-        report_hash = {
-          :host   => rhost,
-          :port   => rport,
-          :sname  => 'Cisco IronPort Appliance',
-          :user   => user,
-          :pass   => pass,
-          :active => true,
-          :type => 'password'
-        }
-
-        report_auth_info(report_hash)
+        report_cred(ip: rhost, port: rport, user: user, password: pass)
         return :next_user
 
       else
 
@@ -157,6 +157,33 @@ def do_logout(cookie)
           )
   end
 
+  def report_cred(opts)
+    service_data = {
+      address: opts[:ip],
+      port: opts[:port],
+      service_name: 'Cisco SSL VPN',
+      protocol: 'tcp',
+      workspace_id: myworkspace_id
+    }
+
+    credential_data = {
+      origin_type: :service,
+      module_fullname: fullname,
+      username: opts[:user],
+      private_data: opts[:password],
+      private_type: :password
+    }.merge(service_data)
+
+    login_data = {
+      last_attempted_at: DateTime.now,
+      core: create_credential(credential_data),
+      status: Metasploit::Model::Login::Status::SUCCESSFUL,
+    }.merge(service_data)
+
+    create_credential_login(login_data)
+  end
+
+
   # Brute-force the login page
   def do_login(user, pass, group)
     vprint_status("#{peer} - Trying username:#{user.inspect} with password:#{pass.inspect} and group:#{group.inspect}")
@@ -197,18 +224,8 @@ def do_login(user, pass, group)
 
         do_logout(resp.get_cookies)
 
-        report_hash = {
-          :host   => rhost,
-          :port   => rport,
-          :sname  => 'Cisco SSL VPN',
-          :user   => user,
-          :pass   => pass,
-          :group => group,
-          :active => true,
-          :type => 'password'
-        }
-
-        report_auth_info(report_hash)
+        report_cred(ip: rhost, port: rport, user: user, password: pass)
+        report_note(ip: rhost, type: 'cisco.cred.group', data: "User: #{user} / Group: #{group}")
         return :next_user
 
       else
 
@@ -82,6 +82,32 @@ def run_host(ip)
     }
   end
 
+  def report_cred(opts)
+    service_data = {
+      address: opts[:ip],
+      port: opts[:port],
+      service_name: (ssl ? 'https' : 'http'),
+      protocol: 'tcp',
+      workspace_id: myworkspace_id
+    }
+
+    credential_data = {
+      origin_type: :service,
+      module_fullname: fullname,
+      username: opts[:user],
+      private_data: opts[:password],
+      private_type: :password
+    }.merge(service_data)
+
+    login_data = {
+      last_attempted_at: DateTime.now,
+      core: create_credential(credential_data),
+      status: Metasploit::Model::Login::Status::SUCCESSFUL,
+    }.merge(service_data)
+
+    create_credential_login(login_data)
+  end
+
   # default to user=admin without password (default on most dlink routers)
   def do_login(user='admin', pass='')
     vprint_status("#{target_url} - Trying username:'#{user}' with password:'#{pass}'")
@@ -91,16 +117,7 @@ def do_login(user='admin', pass='')
 
     if result == :success
       print_good("#{target_url} - Successful login '#{user}' : '#{pass}'")
-
-      report_auth_info(
-        :host   => rhost,
-        :port   => rport,
-        :sname => (ssl ? 'https' : 'http'),
-        :user   => user,
-        :pass   => pass,
-        :proof  => "WEBAPP=\"D-Link Management Interface\", PROOF=#{response.to_s}",
-        :active => true
-      )
+      report_cred(ip: rhost, port: rport, user: user, password: pass)
 
       return :next_user
     else
 
@@ -101,15 +101,7 @@ def do_login(user='admin', pass='')
     if result == :success
       print_good("#{target_url} - Successful login '#{user}' : '#{pass}'")
 
-      report_auth_info(
-        :host   => rhost,
-        :port   => rport,
-        :sname => (ssl ? 'https' : 'http'),
-        :user   => user,
-        :pass   => pass,
-        :proof  => "WEBAPP=\"D-Link Management Interface\", PROOF=#{response.to_s}",
-        :active => true
-      )
+      report_cred(ip: rhost, port: rport, user: user, password: pass)
 
       return :next_user
     else
@@ -118,6 +110,32 @@ def do_login(user='admin', pass='')
     end
   end
 
+  def report_cred(opts)
+    service_data = {
+      address: opts[:ip],
+      port: opts[:port],
+      service_name: (ssl ? 'https' : 'http'),
+      protocol: 'tcp',
+      workspace_id: myworkspace_id
+    }
+
+    credential_data = {
+      origin_type: :service,
+      module_fullname: fullname,
+      username: opts[:user],
+      private_data: opts[:password],
+      private_type: :password
+    }.merge(service_data)
+
+    login_data = {
+      last_attempted_at: DateTime.now,
+      core: create_credential(credential_data),
+      status: Metasploit::Model::Login::Status::SUCCESSFUL,
+    }.merge(service_data)
+
+    create_credential_login(login_data)
+  end
+
   def do_http_login(user,pass)
     begin
       response = send_request_cgi({
 
@@ -83,6 +83,32 @@ def run_host(ip)
     }
   end
 
+  def report_cred(opts)
+    service_data = {
+      address: opts[:ip],
+      port: opts[:port],
+      service_name: (ssl ? 'https' : 'http'),
+      protocol: 'tcp',
+      workspace_id: myworkspace_id
+    }
+
+    credential_data = {
+      origin_type: :service,
+      module_fullname: fullname,
+      username: opts[:user],
+      private_data: opts[:password],
+      private_type: :password
+    }.merge(service_data)
+
+    login_data = {
+      last_attempted_at: DateTime.now,
+      core: create_credential(credential_data),
+      status: Metasploit::Model::Login::Status::SUCCESSFUL,
+    }.merge(service_data)
+
+    create_credential_login(login_data)
+  end
+
   # default to user=admin without password (default on most dlink routers)
   def do_login(user='admin', pass='')
     vprint_status("#{target_url} - Trying username:'#{user}' with password:'#{pass}'")
@@ -93,15 +119,7 @@ def do_login(user='admin', pass='')
     if result == :success
       print_good("#{target_url} - Successful login '#{user}' : '#{pass}'")
 
-      report_auth_info(
-        :host   => rhost,
-        :port   => rport,
-        :sname => (ssl ? 'https' : 'http'),
-        :user   => user,
-        :pass   => pass,
-        :proof  => "WEBAPP=\"D-Link Management Interface\", PROOF=#{response.to_s}",
-        :active => true
-      )
+      report_cred(ip: rhost, port: rport, user: user, password: pass)
 
       return :next_user
     else