Class: Msf::Analyze::Result

Inherits:

Object

• Object
• Msf::Analyze::Result

Defined in:

lib/msf/core/analyze/result.rb

Instance Attribute Summary

• #datastore ⇒ Object readonly

  Returns the value of attribute datastore.

• #host ⇒ Object readonly

  Returns the value of attribute host.

• #invalid ⇒ Object readonly

  Returns the value of attribute invalid.

• #missing ⇒ Object readonly

  Returns the value of attribute missing.

• #mod ⇒ Object readonly

  Returns the value of attribute mod.

• #required ⇒ Object readonly

  Returns the value of attribute required.

Instance Method Summary

• #description ⇒ Object

  Returns state for module readiness.

• #evaluate(with: @datastore, payloads: @wanted_payloads) ⇒ Object
• #initialize(host:, mod:, framework:, available_creds: nil, payloads: nil, datastore: nil) ⇒ Result constructor

  A new instance of Result.

• #match? ⇒ Boolean
• #ready_for_test? ⇒ Boolean
• #state ⇒ Object

  Returns state for module readiness.

Constructor Details

#initialize(host:, mod:, framework:, available_creds: nil, payloads: nil, datastore: nil) ⇒ Result

Returns a new instance of Result.

# File 'lib/msf/core/analyze/result.rb', line 10

def initialize(host:, mod:, framework:, available_creds: nil, payloads: nil, datastore: nil)
  @host = host
  @mod = mod
  @required = []
  @missing = []
  @invalid = []
  @datastore = datastore&.transform_keys(&:downcase) || Hash.new
  @available_creds = available_creds
  @wanted_payloads = payloads
  @framework = framework

  determine_likely_compatibility
end

Instance Attribute Details

#datastore ⇒ Object (readonly)

Returns the value of attribute datastore.

# File 'lib/msf/core/analyze/result.rb', line 3

def datastore
  @datastore
end

#host ⇒ Object (readonly)

Returns the value of attribute host.

# File 'lib/msf/core/analyze/result.rb', line 4

def host
  @host
end

#invalid ⇒ Object (readonly)

Returns the value of attribute invalid.

# File 'lib/msf/core/analyze/result.rb', line 5

def invalid
  @invalid
end

#missing ⇒ Object (readonly)

Returns the value of attribute missing.

# File 'lib/msf/core/analyze/result.rb', line 6

def missing
  @missing
end

#mod ⇒ Object (readonly)

Returns the value of attribute mod.

# File 'lib/msf/core/analyze/result.rb', line 7

def mod
  @mod
end

#required ⇒ Object (readonly)

Returns the value of attribute required.

# File 'lib/msf/core/analyze/result.rb', line 8

def required
  @required
end

Instance Method Details

#description ⇒ Object

Returns state for module readiness.

Returns:

• :String detailed sentence form description of result evaluation.

# File 'lib/msf/core/analyze/result.rb', line 74

def description
  if ready_for_test?
    "ready for testing"
  elsif @missing.empty? && @invalid.empty?
    # TODO? confirm vuln match in this class
    "has matching reference"
  else
    if missing_message.empty? || invalid_message.empty?
      missing_message + invalid_message
    else
      [missing_message, invalid_message].join(', ')
    end
  end
end

#evaluate(with: @datastore, payloads: @wanted_payloads) ⇒ Object

# File 'lib/msf/core/analyze/result.rb', line 24

def evaluate(with: @datastore, payloads: @wanted_payloads)
  @datastore = with
  @wanted_payloads = payloads

  determine_prerequisites
  self
end

#match? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/msf/core/analyze/result.rb', line 89

def match?
  !@missing.include? :os_match
end

#ready_for_test? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/msf/core/analyze/result.rb', line 93

def ready_for_test?
  @prerequisites_evaluated && @missing.empty? && @invalid.empty?
end

#state ⇒ Object

Returns state for module readiness.

| State | Detailed Reason | |————————-|——————————————————————————————————————————————————————————–| | READY_FOR_TEST | Ready for Test - All required options have defaults | | REQUIRES_CRED | Requires DB Credentials - Required options have defaults except credential values - if db contains known credentials for required fields validation is possible | | REUSE_PREVIOUS_OPTIONS | Reuse Previous Options- Taken as an analysis option, process existing module runs to gather options set for same module on other hosts | | MISSING_REQUIRED_OPTION | Missing Required Options - Some options are not available requiring manual configuration | | MISSING_PAYLOAD | Missing Compatible Payload - Known host details and payload restrictions exclude all payloads | | REQUIRES_SESSION | Requires Session - Modules that require an existing session can cannot be executed as first entry point on targets | | NEEDS_TARGET_ACTION | Needs target action - Module that either start a service and need the target to respond in a way that may require user interaction. (Browser exploit, needs target reboot.…) | | INVALID_OPTION | Options used in Result evaluation are invalid | | NOT_APPLICABLE | Module is not applicable to the host |

Returns:

• :sym the stateful result one of:

  • :READY_FOR_TEST, :REQUIRES_CRED, :REUSE_PREVIOUS_OPTIONS, :MISSING_REQUIRED_OPTION, :MISSING_PAYLOAD, :REQUIRES_SESSION, :NEEDS_TARGET_ACTION, :INVALID_OPTION, :NOT_APPLICABLE

# File 'lib/msf/core/analyze/result.rb', line 48

def state
  if ready_for_test? || (@missing.empty? && @invalid.empty?)
    :READY_FOR_TEST
    # TODO: result eval can look for previous attempts to determine :REUSE_PREVIOUS_OPTIONS state
  else
    unless @missing.empty?
      if @missing.include?(:credential)
        :REQUIRES_CRED
      elsif @missing.include?(:payload_match)
        :MISSING_PAYLOAD
      elsif @missing.include?(:session)
        :REQUIRES_SESSION
      elsif @missing.include?(:os_match)
        :NOT_APPLICABLE
        # TODO: result eval check for module stance to determine :NEEDS_TARGET_ACTION state?
      else
        :MISSING_REQUIRED_OPTION
      end
    else
      :INVALID_OPTION
    end
  end
end