Module: Aikido::Zen::Sinks::Socket::IPSocketExtensions

Defined in:: lib/aikido/zen/sinks/socket.rb

Class Method Summary collapse

.scan_socket(hostname, socket) ⇒ Object

Instance Method Summary collapse

#open(name) ⇒ Object

Class Method Details

.scan_socket(hostname, socket) ⇒ `Object`

# File 'lib/aikido/zen/sinks/socket.rb', line 17

def self.scan_socket(hostname, socket)
  # ["AF_INET", 80, "10.0.0.1", "10.0.0.1"]
  addr_family, *, remote_address = socket.peeraddr

  # We only care about IPv4 (AF_INET) or IPv6 (AF_INET6) sockets
  # This might be overcautious, since this is _IP_Socket, so you
  # would expect it's only used for IP connections?
  return unless addr_family.start_with?("AF_INET")

  if (context = Aikido::Zen.current_context)
    context["dns.lookups"] ||= Aikido::Zen::Scanners::SSRF::DNSLookups.new
    context["dns.lookups"].add(hostname, remote_address)
  end

  SINK.scan(
    hostname: hostname,
    addresses: [remote_address],
    request: context && context["ssrf.request"],
    operation: "open"
  )
end

Instance Method Details

#open(name) ⇒ `Object`

# File 'lib/aikido/zen/sinks/socket.rb', line 39

def open(name, *)
  socket = super

  IPSocketExtensions.scan_socket(name, socket)

  socket
end

Module: Aikido::Zen::Sinks::Socket::IPSocketExtensions

Class Method Summary collapse

Instance Method Summary collapse

Class Method Details

.scan_socket(hostname, socket) ⇒ Object

Instance Method Details

#open(name) ⇒ Object

.scan_socket(hostname, socket) ⇒ `Object`

#open(name) ⇒ `Object`