Merge pull request #7 from jhart-r7/pr/9079-gopher

h00die · web-flow · commit c517ded3ae96 · 2017-10-20T19:25:03.000-04:00
Gopher improvements
diff --git a/documentation/modules/auxiliary/scanner/gopher/gopher_gophermap.md b/documentation/modules/auxiliary/scanner/gopher/gopher_gophermap.md
@@ -3,6 +3,42 @@
   Any gopher server will work.  There seems to only be [a few left](https://en.wikipedia.org/wiki/Gopher_(protocol)#Server_software)
    in 2017.
 
+  A few options for local installation and testing are below.
+
+### Docker Install
+
+A [dockerized gopher server written in Go](https://hub.docker.com/r/prodhe/gopher/) is available.  To install and run this, with content being
+served out of a temporary directory in which you'll be left:
+
+```
+$  docker pull prodhe/gopher
+Using default tag: latest
+latest: Pulling from prodhe/gopher
+627beaf3eaaf: Already exists
+8800e3417eb1: Pull complete
+d9f3bcdad0eb: Pull complete
+c018073abd26: Pull complete
+b2855f535c50: Pull complete
+23480a2f73d8: Pull complete
+1555a5435ec5: Pull complete
+0728d289e0fc: Pull complete
+6f6f265b58ee: Pull complete
+Digest: sha256:69931d56946d192d9bd155a88b6f365cb276e9edf453129d374e64d244d1edaa
+Status: Downloaded newer image for prodhe/gopher:latest
+$  cd `mktemp -d`;
+$  sudo docker run --rm -d -it --name gopher_test -v `pwd -P`:/public  -p 70:70  prodhe/gopher
+2017/10/20 16:45:01 Serving /public/ at localhost:70
+$ date > test.txt
+$ echo HELLO > README.md
+```
+
+*NOTE*: Don't forget to `docker stop` the container ID returned from the `docker run` command just run above:
+```
+$ docker stop X
+X
+```
+
+
 ### Ubuntu 16.04 Install
 
 First we need to install the server:
@@ -67,23 +103,37 @@ The following table contains the file types associated with the characters:
 
   **PATH**
 
-  It is possible to view content within a directory of the gophermap.  If the intial run shows directory `Directory: foobar`, 
+  It is possible to view content within a directory of the gophermap.  If the intial run shows directory `Directory: foobar`,
   setting **path** to `/foobar` will enumerate the contents of that folder.  Default: [empty string].
 
 ## Scenarios
 
+### Docker Gopher Server
+```
+msf > use auxiliary/scanner/gopher/gopher_gophermap
+msf auxiliary(gopher_gophermap) > set RHOSTS localhost
+RHOSTS => localhost
+msf auxiliary(gopher_gophermap) > run
+
+[+] 127.0.0.1:70          -   Text file: README.md
+[+] 127.0.0.1:70          -     Path: localhost:70/README.md
+[+] 127.0.0.1:70          -   Text file: test.txt
+[+] 127.0.0.1:70          -     Path: localhost:70/test.txt
+[*] Scanned 1 of 1 hosts (100% complete)
+[*] Auxiliary module execution completed
+```
 ### Gopher-server on Ubuntu 16.04
 
 ```
-msf > use auxiliary/scanner/gopher/gopher_gophermap 
+msf > use auxiliary/scanner/gopher/gopher_gophermap
 msf auxiliary(gopher_gophermap) > set rhosts 1.1.1.1
 rhosts => 1.1.1.1
 msf auxiliary(gopher_gophermap) > set verbose true
 verbose => true
 msf auxiliary(gopher_gophermap) > run
 
 [+] 1.1.1.1:70      - gopher custom gophermap
-[+] 1.1.1.1:70      - 
+[+] 1.1.1.1:70      -
 [+] 1.1.1.1:70      -   HTML: Hello World
 [+] 1.1.1.1:70      -     Path: 1.1.1.1:70/example.html
 [+] 1.1.1.1:70      -   Text file: Foo File
diff --git a/modules/auxiliary/scanner/gopher/gopher_gophermap.rb b/modules/auxiliary/scanner/gopher/gopher_gophermap.rb
@@ -11,45 +11,50 @@ class MetasploitModule < Msf::Auxiliary
   def initialize
     super(
       'Name'        => 'Gopher gophermap Scanner',
-      'Description' => %q{
+      'Description' => %q(
         This module identifies Gopher servers, and processes the gophermap
         file which lists all the files on the server.
-      },
+      ),
       'References'  =>
         [
-          ['URL', 'https://sdfeu.org/w/tutorials:gopher'],
+          ['URL', 'https://sdfeu.org/w/tutorials:gopher']
         ],
       'Author'      => 'h00die',
       'License'     => MSF_LICENSE
     )
 
-    register_options([
-      Opt::RPORT(70),
-      OptString.new('PATH',[false,'Path to enumerate',''])
-    ])
-
+    register_options(
+      [
+        Opt::RPORT(70),
+        OptString.new('PATH', [false, 'Path to enumerate', ''])
+      ]
+    )
   end
 
+  TYPE_MAP = {
+    '0' => 'Text file',
+    '1' => 'Directory',
+    '2' => 'CSO name server',
+    '3' => 'Error',
+    '4' => 'Mac HQX filer',
+    '5' => 'PC binary',
+    '6' => 'UNIX uuencoded file',
+    '7' => 'Search server',
+    '8' => 'Telnet Session',
+    '9' => 'Binary File',
+    'c' => 'Calendar',
+    'e' => 'Event',
+    'g' => 'GIF image',
+    'h' => 'HTML',
+    'i' => 'inline text',
+    's' => 'Sound',
+    'I' => 'Image',
+    'M' => 'MIME multipart/mixed message',
+    'T' => 'TN3270 Session'
+  }.freeze
+
   def get_type(char)
-    return {'0' => 'Text file',
-            '1' => 'Directory',
-            '2' => 'CSO name server',
-            '3' => 'Error',
-            '4' => 'Mac HQX filer',
-            '5' => 'PC binary',
-            '6' => 'UNIX uuencoded file',
-            '7' => 'Search server',
-            '8' => 'Telnet Session',
-            '9' => 'Binary File',
-            'c' => 'Calendar',
-            'e' => 'Event',
-            'g' => 'GIF image',
-            'h' => 'HTML',
-            'i' => 'inline text',
-            's' => 'Sound',
-            'I' => 'Image',
-            'M' => 'MIME multipart/mixed message',
-            'T' => 'TN3270 Session'}.fetch(char.chomp)
+    TYPE_MAP.fetch(char.chomp)
   end
 
   def run_host(ip)
@@ -59,32 +64,32 @@ def run_host(ip)
       gophermap = sock.get_once
       if gophermap
         gophermap.split("\r\n").each do |line|
-          if line.split("\t").length >= 2
-            # syntax: [type_character]description[tab]path[tab, after this is optional]server[tab]port
-            line = line.split("\t")
-            desc = line[0]
-            type_char = desc.slice!(0) #remove first character which is the file type
-            file_type = get_type(type_char)
-            if file_type && file_type == 'inline text'
-              print_good(desc)
-              next
-            end
-            if file_type
-              print_good("  #{file_type}: #{desc}")
-            else
-              print_good("  Invalid File Type (#{type_char}): #{desc}")
-            end
-            if line.length >= 3
-              print_good("    Path: #{line[2]}:#{line[3]}#{line[1]}")
-            elsif line.length >= 2
-              print_good("    Path: #{line[2]}#{line[1]}")
-            else
-              print_good("    Path: #{line[1]}")
+          line_parts = line.split("\t")
+          next unless line_parts.length >= 2
+          # syntax: [type_character]description[tab]path[tab, after this is optional]server[tab]port
+          line_parts = line.split("\t")
+          desc = line_parts[0]
+          type_char = desc.slice!(0) # remove first character which is the file type
+          file_type = get_type(type_char)
+          if file_type && file_type == 'inline text'
+            print_good(desc)
+            next
+          end
+          if file_type
+            print_good("  #{file_type}: #{desc}")
+          else
+            print_good("  Invalid File Type (#{type_char}): #{desc}")
+          end
+          if line_parts.length >= 3
+            print_good("    Path: #{line_parts[2]}:#{line_parts[3]}#{line_parts[1]}")
+          elsif line.length >= 2
+            print_good("    Path: #{line_parts[2]}#{line_parts[1]}")
+          else
+            print_good("    Path: #{line_parts[1]}")
 
-            end
           end
         end
-        report_service(:host => ip, :port => rport, :name => 'gopher', :info => gophermap)
+        report_service(host: ip, port: rport, service: 'gopher', info: gophermap)
       else
         print_error('No gophermap')
       end
@@ -95,5 +100,4 @@ def run_host(ip)
       disconnect
     end
   end
-
 end
