Module: Msf::Exploit::Remote::HTTP::ManageEngineAdauditPlus::URIs

Includes:

Msf::Exploit::Remote::HttpClient

Included in:

Msf::Exploit::Remote::HTTP::ManageEngineAdauditPlus, Login, TargetInfo

Defined in:

lib/msf/core/exploit/remote/http/manage_engine_adaudit_plus/uris.rb

Instance Attribute Summary

Attributes included from Msf::Exploit::Remote::HttpClient

#client, #cookie_jar

Instance Method Summary

• #adaudit_api_alertprofiles_save_uri ⇒ String

  Returns the URI to save alert profiles on the ManageEngine ADAudit Plus target.

• #adaudit_api_js_message_uri ⇒ String

  Returns the jsMessage URI on the ManageEngine ADAudit Plus target.

• #adaudit_plus_configured_domains_uri ⇒ String

  Returns the configuredDomainsList URI on the ManageEngine ADAudit Plus target.

• #adaudit_plus_gpo_watcher_data_uri ⇒ String

  Returns GPOWatcherData endpoint URI on the ManageEngine ADAudit Plus target.

• #adaudit_plus_jump_to_js_uri ⇒ String

  Returns the JumpTo.js URI on the ManageEngine ADAudit Plus target.

• #adaudit_plus_license_details_uri ⇒ String

  Returns the License Details URI on the ManageEngine ADAudit Plus target.

• #adaudit_plus_login_uri ⇒ String

  Returns the Login URI on the ManageEngine ADAudit Plus target.

Methods included from Msf::Exploit::Remote::HttpClient

#basic_auth, #cleanup, #configure_http_login_scanner, #connect, #connect_ws, #deregister_http_client_options, #disconnect, #download, #full_uri, #handler, #http_fingerprint, #initialize, #lookup_http_fingerprints, #normalize_uri, #path_from_uri, #peer, #proxies, #reconfig_redirect_opts!, #request_opts_from_url, #request_url, #rhost, #rport, #send_request_cgi, #send_request_cgi!, #send_request_raw, #service_details, #setup, #ssl, #ssl_version, #strip_tags, #target_uri, #validate_fingerprint, #vhost

Methods included from Auxiliary::LoginScanner

#configure_login_scanner

Methods included from Auxiliary::Report

#active_db?, #create_cracked_credential, #create_credential, #create_credential_and_login, #create_credential_login, #db, #db_warning_given?, #get_client, #get_host, #inside_workspace_boundary?, #invalidate_login, #mytask, #myworkspace, #myworkspace_id, #report_auth_info, #report_client, #report_exploit, #report_host, #report_loot, #report_note, #report_service, #report_vuln, #report_web_form, #report_web_page, #report_web_site, #report_web_vuln, #store_cred, #store_local, #store_loot

Methods included from Metasploit::Framework::Require

optionally, optionally_active_record_railtie, optionally_include_metasploit_credential_creation, #optionally_include_metasploit_credential_creation, optionally_require_metasploit_db_gem_engines

Instance Method Details

#adaudit_api_alertprofiles_save_uri ⇒ String

Returns the URI to save alert profiles on the ManageEngine ADAudit Plus target.

Returns:

• (String) —

  ManageEngine ADAudit Plus URI to save alert profiles

# File 'lib/msf/core/exploit/remote/http/manage_engine_adaudit_plus/uris.rb', line 52

def adaudit_api_alertprofiles_save_uri
  normalize_uri(target_uri.path, 'api', 'json', 'config', 'alertprofiles', 'save')
end

#adaudit_api_js_message_uri ⇒ String

Returns the jsMessage URI on the ManageEngine ADAudit Plus target.

Returns:

• (String) —

  ManageEngine ADAudit Plus jsMessage URI

# File 'lib/msf/core/exploit/remote/http/manage_engine_adaudit_plus/uris.rb', line 45

def adaudit_api_js_message_uri
  normalize_uri(target_uri.path, 'api', 'json', 'jsMessage')
end

#adaudit_plus_configured_domains_uri ⇒ String

Returns the configuredDomainsList URI on the ManageEngine ADAudit Plus target.

Returns:

• (String) —

  ManageEngine ADAudit Plus configuredDomainsList URI

# File 'lib/msf/core/exploit/remote/http/manage_engine_adaudit_plus/uris.rb', line 38

def adaudit_plus_configured_domains_uri
  normalize_uri(target_uri.path, 'api', 'json', 'configuredDomainsList')
end

#adaudit_plus_gpo_watcher_data_uri ⇒ String

Returns GPOWatcherData endpoint URI on the ManageEngine ADAudit Plus target.

Returns:

• (String) —

  ManageEngine ADAudit Plus GPOWatcherData endpoint URI

# File 'lib/msf/core/exploit/remote/http/manage_engine_adaudit_plus/uris.rb', line 10

def adaudit_plus_gpo_watcher_data_uri
  normalize_uri(target_uri.path, 'api', 'agent', 'tabs', 'agentGPOWatcherData')
end

#adaudit_plus_jump_to_js_uri ⇒ String

Returns the JumpTo.js URI on the ManageEngine ADAudit Plus target.

Returns:

• (String) —

  ManageEngine ADAudit Plus JumpTo.js URI

# File 'lib/msf/core/exploit/remote/http/manage_engine_adaudit_plus/uris.rb', line 31

def adaudit_plus_jump_to_js_uri
  normalize_uri(target_uri.path, 'adsf', 'js', 'common', 'JumpTo.js')
end

#adaudit_plus_license_details_uri ⇒ String

Returns the License Details URI on the ManageEngine ADAudit Plus target.

Returns:

• (String) —

  ManageEngine ADAudit Plus License Details URI

# File 'lib/msf/core/exploit/remote/http/manage_engine_adaudit_plus/uris.rb', line 24

def adaudit_plus_license_details_uri
  normalize_uri(target_uri.path, 'api', 'json', 'tabs', 'showLicenseDetails')
end

#adaudit_plus_login_uri ⇒ String

Returns the Login URI on the ManageEngine ADAudit Plus target.

Returns:

• (String) —

  ManageEngine ADAudit Plus Login URI

# File 'lib/msf/core/exploit/remote/http/manage_engine_adaudit_plus/uris.rb', line 17

def adaudit_plus_login_uri
  normalize_uri(target_uri.path, 'j_security_check')
end