Updated to use get_cookie

parzamendi-r7 · parzamendi-r7 · commit ea5fe9ec0a6c · 2014-02-27T08:52:54.000-06:00
diff --git a/modules/auxiliary/scanner/http/owa_login.rb b/modules/auxiliary/scanner/http/owa_login.rb
@@ -28,7 +28,7 @@ def initialize
           'SecureState R&D Team',
           'sinn3r',
           'Brandon Knight',
-          'Pete Arzamendi -> Outlook 2013 updates'
+          'Pete (Bokojan) Arzamendi, #Outlook 2013 updates'
         ],
  
       'License'        => MSF_LICENSE,
@@ -71,16 +71,18 @@ def initialize
             }
           ]
         ],
-      'DefaultAction' => 'OWA_2010'
+      'DefaultAction' => 'OWA_2010',
+      'DefaultOptions' => { 
+        'SSL' => true 
+      }  
     )
 
-    'DefaultOptions' => { 'SSL' => true }
 
     register_options(
       [
         OptInt.new('RPORT', [ true, "The target port", 443]),
         OptAddress.new('RHOST', [ true, "The target address", true]),
-        OptBool.new('ENUM_DOMAIN', [ true, "Automatically enumerate AD domain using NTLM authentication", false]),
+        OptBool.new('ENUM_DOMAIN', [ true, "Automatically enumerate AD domain using NTLM authentication", true]),
       ], self.class)
 
 
@@ -225,14 +227,8 @@ def try_user_pass(opts)
 
       #No password change required moving on. 
       reason = res.headers['location'].split('reason=')[1]
-      if reason == nil
-        #Get cdata auth cookies from headers. Wookie
-        cadata_cookies = res.headers['set-cookie'].scan(/cadata.*?=.*?;/)
-        cookieMonster = ""
-        cadata_cookies.each do | cookie |
-          cookieMonster += cookie.to_s
-        end
-        headers['Cookie'] = 'PBack=0;' << cookieMonster
+      if reason == nil  
+        headers['Cookie'] = 'PBack=0;' << res.get_cookies
       else 
       #Login didn't work. no point on going on.
         vprint_error("#{msg} FAILED LOGIN. '#{user}' : '#{pass}'") 
