Land rapid7#7746, chromecast_wifi now uses Scanner

h00die · h00die · commit 699da8df5bae · 2016-12-25T11:36:31.000-05:00
diff --git a/modules/auxiliary/scanner/http/chromecast_wifi.rb b/modules/auxiliary/scanner/http/chromecast_wifi.rb
@@ -8,6 +8,7 @@
 class MetasploitModule < Msf::Auxiliary
 
   include Msf::Exploit::Remote::HttpClient
+  include Msf::Auxiliary::Scanner
 
   def initialize(info = {})
     super(update_info(info,
@@ -24,16 +25,16 @@ def initialize(info = {})
 
     register_options([
       Opt::RPORT(8008)
-    ], self.class)
+    ])
   end
 
-  def run
+  def run_host(ip)
     res = scan
 
     return unless res && res.code == 200
 
-    waps = Rex::Text::Table.new(
-      'Header' => 'Wireless Access Points',
+    waps_table = Rex::Text::Table.new(
+      'Header' => "Wireless Access Points from #{ip}",
       'Columns' => [
         'BSSID',
         'PWR',
@@ -46,7 +47,7 @@ def run
     )
 
     JSON.parse(res.body).each do |wap|
-      waps << [
+      waps_table << [
         wap['bssid'],
         wap['signal_level'],
         enc(wap),
@@ -56,35 +57,29 @@ def run
       ]
     end
 
-    print_line(waps.to_s)
-
-    report_note(
-      :host => rhost,
-      :port => rport,
-      :proto => 'tcp',
-      :type => 'chromecast.wifi',
-      :data => waps.to_csv
-    )
+    unless waps_table.rows.empty?
+      print_line(waps_table.to_s)
+      report_note(
+        :host => ip,
+        :port => rport,
+        :proto => 'tcp',
+        :type => 'chromecast.wifi',
+        :data => waps_table.to_csv
+      )
+    end
   end
 
   def scan
-    begin
-      send_request_raw(
-        'method' => 'POST',
-        'uri' => '/setup/scan_wifi',
-        'agent' => Rex::Text.rand_text_english(rand(42) + 1)
-      )
-      send_request_raw(
-        'method' => 'GET',
-        'uri' => '/setup/scan_results',
-        'agent' => Rex::Text.rand_text_english(rand(42) + 1)
-      )
-    rescue Rex::ConnectionRefused, Rex::ConnectionTimeout,
-           Rex::HostUnreachable => e
-      fail_with(Failure::Unreachable, e)
-    ensure
-      disconnect
-    end
+    send_request_raw(
+      'method' => 'POST',
+      'uri' => '/setup/scan_wifi',
+      'agent' => Rex::Text.rand_text_english(rand(42) + 1)
+    )
+    send_request_raw(
+      'method' => 'GET',
+      'uri' => '/setup/scan_results',
+      'agent' => Rex::Text.rand_text_english(rand(42) + 1)
+    )
   end
 
   def enc(wap)
