├── spec
├── dummy
│ ├── log
│ │ └── .gitkeep
│ ├── app
│ │ ├── mailers
│ │ │ └── .gitkeep
│ │ ├── models
│ │ │ ├── .gitkeep
│ │ │ └── application_record.rb
│ │ ├── assets
│ │ │ ├── config
│ │ │ │ └── manifest.js
│ │ │ ├── stylesheets
│ │ │ │ └── application.css
│ │ │ └── javascripts
│ │ │ │ └── application.js
│ │ ├── helpers
│ │ │ └── application_helper.rb
│ │ ├── controllers
│ │ │ └── application_controller.rb
│ │ └── views
│ │ │ └── layouts
│ │ │ └── application.html.erb
│ ├── lib
│ │ └── assets
│ │ │ └── .gitkeep
│ ├── public
│ │ ├── favicon.ico
│ │ ├── 500.html
│ │ ├── 422.html
│ │ └── 404.html
│ ├── config
│ │ ├── routes.rb
│ │ ├── initializers
│ │ │ ├── cookies_serializer.rb
│ │ │ ├── session_store.rb
│ │ │ ├── mime_types.rb
│ │ │ ├── active_record_migrations.rb
│ │ │ ├── filter_parameter_logging.rb
│ │ │ ├── backtrace_silencers.rb
│ │ │ ├── wrap_parameters.rb
│ │ │ └── inflections.rb
│ │ ├── storage.yml
│ │ ├── environment.rb
│ │ ├── boot.rb
│ │ ├── locales
│ │ │ └── en.yml
│ │ ├── database.yml.example
│ │ ├── database.yml.github_actions
│ │ └── environments
│ │ │ └── development.rb
│ ├── bin
│ │ ├── rake
│ │ ├── bundle
│ │ └── rails
│ ├── config.ru
│ ├── Rakefile
│ └── script
│ │ └── rails
├── app
│ └── models
│ │ ├── mdm
│ │ ├── macro_spec.rb
│ │ ├── api_key_spec.rb
│ │ ├── mod_ref_spec.rb
│ │ ├── profile_spec.rb
│ │ ├── wmap_target_spec.rb
│ │ ├── wmap_request_spec.rb
│ │ ├── module
│ │ │ ├── arch_spec.rb
│ │ │ ├── mixin_spec.rb
│ │ │ ├── action_spec.rb
│ │ │ ├── platform_spec.rb
│ │ │ ├── target_spec.rb
│ │ │ └── author_spec.rb
│ │ ├── route_spec.rb
│ │ ├── vuln_ref_spec.rb
│ │ ├── client_spec.rb
│ │ ├── session_event_spec.rb
│ │ └── web_form_spec.rb
│ │ └── metasploit_data_models
│ │ ├── search
│ │ ├── operator
│ │ │ └── ip_address_spec.rb
│ │ ├── operation
│ │ │ └── port
│ │ │ │ └── number_spec.rb
│ │ └── visitor
│ │ │ └── method_spec.rb
│ │ ├── ip_address
│ │ └── v4
│ │ │ └── segment
│ │ │ └── segmented_spec.rb
│ │ └── automatic_exploitation
│ │ └── match_spec.rb
├── factories
│ ├── mdm
│ │ ├── payloads.rb
│ │ ├── clients.rb
│ │ ├── vuln_refs.rb
│ │ ├── web_sites.rb
│ │ ├── host_details.rb
│ │ ├── vuln_attempts.rb
│ │ ├── vuln_details.rb
│ │ ├── exploit_attempts.rb
│ │ ├── refs.rb
│ │ ├── exploited_hosts.rb
│ │ ├── fingerprints
│ │ │ ├── nessus_fingerprints.rb
│ │ │ ├── retina_fingerprints.rb
│ │ │ ├── session_fingerprints.rb
│ │ │ ├── nexpose_fingerprints.rb
│ │ │ └── nmap_fingerprints.rb
│ │ ├── session_events.rb
│ │ ├── host_tags.rb
│ │ ├── addresses.rb
│ │ ├── service_links.rb
│ │ ├── task_creds.rb
│ │ ├── task_hosts.rb
│ │ ├── task_services.rb
│ │ ├── task_sessions.rb
│ │ ├── loots.rb
│ │ ├── notes.rb
│ │ ├── task.rb
│ │ ├── module
│ │ │ ├── refs.rb
│ │ │ ├── archs.rb
│ │ │ ├── mixins.rb
│ │ │ ├── actions.rb
│ │ │ ├── platforms.rb
│ │ │ ├── targets.rb
│ │ │ └── authors.rb
│ │ ├── listeners.rb
│ │ ├── tags.rb
│ │ ├── sessions.rb
│ │ ├── events.rb
│ │ ├── creds.rb
│ │ ├── nexpose_consoles.rb
│ │ ├── vulns.rb
│ │ ├── workspaces.rb
│ │ ├── users.rb
│ │ ├── web_forms.rb
│ │ ├── routes.rb
│ │ └── services.rb
│ ├── metasploit_data_models
│ │ └── automatic_exploitation
│ │ │ ├── runs.rb
│ │ │ ├── match_results.rb
│ │ │ ├── match_sets.rb
│ │ │ └── matches.rb
│ └── module_runs.rb
├── lib
│ ├── metasploit_data_models_spec.rb
│ ├── ipaddr_spec.rb
│ └── metasploit_data_models
│ │ └── match
│ │ └── child_spec.rb
└── support
│ ├── shared
│ ├── contexts
│ │ └── rex
│ │ │ └── text.rb
│ └── examples
│ │ ├── coerces_inet_column_type_to_string.rb
│ │ ├── mdm
│ │ └── module
│ │ │ └── detail
│ │ │ ├── does_not_support_stance_with_mtype.rb
│ │ │ └── supports_stance_with_mtype.rb
│ │ └── metasploit_data_models
│ │ └── search
│ │ └── visitor
│ │ ├── includes
│ │ └── visit
│ │ │ ├── with_metasploit_model_search_operation_base.rb
│ │ │ └── with_children.rb
│ │ └── where
│ │ └── visit
│ │ ├── with_equality.rb
│ │ └── with_metasploit_model_search_group_base.rb
│ └── matchers
│ └── match_regex_exactly.rb
├── .rspec
├── UPGRADING.md
├── .yardopts
├── CHANGELOG.md
├── db
└── migrate
│ ├── 20161227212223_add_os_family_to_hosts.rb
│ ├── 20130516204810_making_vulns_refs_a_real_ar_model.rb
│ ├── 20140905031549_add_detected_arch_to_host.rb
│ ├── 20190507120211_remove_payload_workspaces.rb
│ ├── 20130531144949_making_host_tags_a_real_ar_model.rb
│ ├── 20130717150737_remove_pname_validation.rb
│ ├── 20150205192745_drop_service_uniqueness_index.rb
│ ├── 20150209195939_add_vuln_id_to_note.rb
│ ├── 20250716155919_add_resource_to_mdm_vuln.rb
│ ├── 20160415153312_remove_not_null_from_web_vuln_p_arams.rb
│ ├── 20250717170556_add_resource_to_services.rb
│ ├── 20250720082201_drop_service_uniqueness_index2.rb
│ ├── 20161004165612_add_fingerprinted_to_workspace.rb
│ ├── 013_add_tasks_result.rb
│ ├── 016_add_host_purpose.rb
│ ├── 009_add_loots_ctype.rb
│ ├── 20111210000000_add_scope_to_hosts.rb
│ ├── 20150226151459_add_module_run_fk_to_loot.rb
│ ├── 20110425095900_add_last_seen_to_sessions.rb
│ ├── 20110922000000_expand_notes.rb
│ ├── 020_add_user_preferences.rb
│ ├── 022_enlarge_event_info.rb
│ ├── 20150219215039_add_module_run_to_session.rb
│ ├── 023_add_report_downloaded_at.rb
│ ├── 20100908001428_add_owner_to_workspaces.rb
│ ├── 20101008111800_add_clients_to_campaigns.rb
│ ├── 20120126110000_add_virtual_host_to_hosts.rb
│ ├── 20110527000000_add_task_id_to_reports_table.rb
│ ├── 20110622000000_add_settings_to_tasks_table.rb
│ ├── 20110112154300_add_module_uuid_to_tasks.rb
│ ├── 20110414180600_add_local_id_to_session_table.rb
│ ├── 20110625000001_add_macro_to_listeners_table.rb
│ ├── 20130525015035_remove_campaign_id_from_clients.rb
│ ├── 20150312155312_add_module_full_name_to_match.rb
│ ├── 20120411173220_rename_workspace_members.rb
│ ├── 20101203000001_expand_host_comment.rb
│ ├── 20110527000001_add_api_keys_table.rb
│ ├── 20110727163801_expand_cred_ptype_column.rb
│ ├── 024_convert_service_info_to_text.rb
│ ├── 014_add_loots_fields.rb
│ ├── 20100920012100_add_generate_exe_column.rb
│ ├── 20110630000002_add_name_to_nexpose_consoles_table.rb
│ ├── 20101002000000_add_query.rb
│ ├── 20130522001343_create_task_creds.rb
│ ├── 20130522032517_create_task_hosts.rb
│ ├── 20101009023300_add_campaign_attachments.rb
│ ├── 20130522041110_create_task_services.rb
│ ├── 20130604145732_create_task_sessions.rb
│ ├── 20101206212033_add_limit_to_network_to_workspaces.rb
│ ├── 20130510021637_remove_campaigns.rb
│ ├── 015_rename_user.rb
│ ├── 20111203000000_inet_columns.rb
│ ├── 20131008213344_create_automatic_exploitation_runs.rb
│ ├── 20120625000008_add_fail_message.rb
│ ├── 20110606000001_add_macros_table.rb
│ ├── 20110717000001_add_profiles_table.rb
│ ├── 20120718202805_add_owner_and_payload_to_web_vulns.rb
│ ├── 004_add_events_table.rb
│ ├── 20150514182921_add_origin_to_mdm_vuln.rb
│ ├── 20100926214000_add_template_prefs.rb
│ ├── 20131017150735_create_automatic_exploitation_match_results.rb
│ ├── 008_create_users.rb
│ ├── 20110415175705_add_routes_table.rb
│ ├── 20190308134512_create_async_callbacks.rb
│ ├── 20131011184338_module_detail_on_automatic_exploitation_match.rb
│ ├── 011_add_reports.rb
│ ├── 20250718122714_create_service_links.rb
│ ├── 20100916151530_require_admin_flag.rb
│ ├── 20131002004641_create_automatic_exploitation_matches.rb
│ ├── 20131021185657_make_match_polymorphic.rb
│ ├── 20100911122000_add_report_templates.rb
│ ├── 010_add_alert_fields.rb
│ ├── 20101104135100_add_imported_creds.rb
│ ├── 20120625000001_add_host_details.rb
│ ├── 20130525212420_drop_table_imported_creds.rb
│ ├── 20131002164449_create_automatic_exploitation_match_sets.rb
│ ├── 20150326183742_add_missing_ae_indices.rb
│ ├── 007_add_loots.rb
│ ├── 021_standardize_info_and_data.rb
│ ├── 20110928101300_add_mod_ref_table.rb
│ ├── 20100824151500_add_exploited_table.rb
│ ├── 019_add_workspace_desc.rb
│ ├── 025_add_user_admin.rb
│ ├── 20101007000000_add_vuln_info.rb
│ ├── 20110624000001_add_listeners_table.rb
│ ├── 20120625000002_expand_details.rb
│ ├── 20120625000005_add_vuln_and_host_counter_caches.rb
│ ├── 026_add_creds_table.rb
│ ├── 20130430151353_change_required_columns_to_null_false_in_hosts.rb
│ ├── 20150112203945_remove_duplicate_services.rb
│ ├── 20150212214222_remove_duplicate_services2.rb
│ ├── 20110630000001_add_nexpose_consoles_table.rb
│ ├── 003_move_notes.rb
│ ├── 012_add_tasks.rb
│ ├── 20180904120211_create_payloads.rb
│ ├── 20250721114306_remove_duplicate_services3.rb
│ ├── 20110812000001_prune_indexes.rb
│ ├── 018_add_workspace_user_info.rb
│ ├── 20111011110000_add_display_name_to_reports_table.rb
│ ├── 20111204000000_more_inet_columns.rb
│ ├── 20150219173821_create_module_runs.rb
│ ├── 20130228214900_change_required_columns_to_null_false_in_web_vulns.rb
│ ├── 20110204112800_add_host_tags.rb
│ ├── 20110517160800_rename_and_prune_nessus_vulns.rb
│ ├── 20120601152442_add_counter_caches_to_hosts.rb
│ ├── 20150421211719_rename_automatic_exploitation_index.rb
│ ├── 20110513143900_track_successful_exploits.rb
│ ├── 20130423211152_add_creds_counter_cache.rb
│ ├── 20130412174719_change_foreign_key_in_module_refs.rb
│ ├── 20130412171844_change_foreign_key_in_module_archs.rb
│ ├── 20130412173640_change_foreign_key_in_module_mixins.rb
│ ├── 20120625000004_add_vuln_attempts.rb
│ ├── 20130412154159_change_foreign_key_in_module_actions.rb
│ ├── 20130412173121_change_foreign_key_in_module_authors.rb
│ ├── 20130412175040_change_foreign_key_in_module_targets.rb
│ ├── 20130412174254_change_foreign_key_in_module_platforms.rb
│ ├── 001_add_wmap_tables.rb
│ ├── 20120625000003_expand_details2.rb
│ ├── 002_add_workspaces.rb
│ ├── 006_add_timestamps.rb
│ ├── 20130515172727_valid_mdm_web_vuln_params.rb
│ ├── 20101203000000_fix_web_tables.rb
│ ├── 20120625000007_add_exploit_attempts.rb
│ ├── 20130515164311_change_web_vulns_confidence_to_integer.rb
│ ├── 005_expand_info.rb
│ ├── 017_expand_info2.rb
│ ├── 20120625000000_add_vuln_details.rb
│ ├── 20101001000000_add_web_tables.rb
│ └── 20150317145455_rename_module_indices.rb
├── console_db.yml
├── lib
├── metasploit_data_models
│ ├── search
│ │ ├── operator
│ │ │ └── port.rb
│ │ ├── operator.rb
│ │ ├── operation.rb
│ │ ├── visitor.rb
│ │ └── operation
│ │ │ └── port.rb
│ ├── ip_address
│ │ ├── v4
│ │ │ ├── segment.rb
│ │ │ └── segment
│ │ │ │ └── nmap.rb
│ │ └── v4.rb
│ ├── search.rb
│ ├── version.rb
│ ├── ip_address.rb
│ ├── match.rb
│ ├── change_required_columns_to_null_false.rb
│ ├── serialized_prefs.rb
│ ├── automatic_exploitation.rb
│ ├── yaml.rb
│ └── engine.rb
├── mdm
│ └── module.rb
├── metasploit_data_models.rb
└── mdm.rb
├── script
└── rails
├── app
└── models
│ ├── metasploit_data_models
│ ├── ip_address
│ │ └── v4
│ │ │ ├── range.rb
│ │ │ ├── segment
│ │ │ └── nmap
│ │ │ │ └── range.rb
│ │ │ ├── nmap.rb
│ │ │ └── cidr.rb
│ ├── search
│ │ ├── visitor
│ │ │ ├── method.rb
│ │ │ ├── attribute.rb
│ │ │ └── includes.rb
│ │ ├── operation
│ │ │ ├── port
│ │ │ │ └── number.rb
│ │ │ └── range.rb
│ │ └── operator
│ │ │ └── ip_address.rb
│ └── automatic_exploitation
│ │ ├── run.rb
│ │ └── match_set.rb
│ └── mdm
│ ├── vuln_ref.rb
│ ├── module
│ ├── arch.rb
│ ├── platform.rb
│ ├── mixin.rb
│ ├── author.rb
│ ├── target.rb
│ ├── action.rb
│ └── ref.rb
│ ├── mod_ref.rb
│ ├── route.rb
│ ├── task_host.rb
│ ├── task_service.rb
│ ├── task_session.rb
│ ├── client.rb
│ ├── session_event.rb
│ ├── host_tag.rb
│ ├── api_key.rb
│ ├── exploited_host.rb
│ ├── wmap_target.rb
│ ├── task_cred.rb
│ ├── service_link.rb
│ ├── profile.rb
│ └── web_form.rb
├── cortex.yaml
├── bin
└── rails
├── config
└── initializers
│ └── ipaddr.rb
├── .gitignore
├── .github
└── workflows
│ └── verify.yml
├── .simplecov
└── LICENSE
/spec/dummy/log/.gitkeep:
--------------------------------------------------------------------------------
1 |
--------------------------------------------------------------------------------
/spec/dummy/app/mailers/.gitkeep:
--------------------------------------------------------------------------------
1 |
--------------------------------------------------------------------------------
/spec/dummy/app/models/.gitkeep:
--------------------------------------------------------------------------------
1 |
--------------------------------------------------------------------------------
/spec/dummy/lib/assets/.gitkeep:
--------------------------------------------------------------------------------
1 |
--------------------------------------------------------------------------------
/spec/dummy/public/favicon.ico:
--------------------------------------------------------------------------------
1 |
--------------------------------------------------------------------------------
/spec/dummy/app/assets/config/manifest.js:
--------------------------------------------------------------------------------
1 | {}
2 |
--------------------------------------------------------------------------------
/.rspec:
--------------------------------------------------------------------------------
1 | --color
2 | --format documentation
3 | --require spec_helper
4 |
--------------------------------------------------------------------------------
/spec/dummy/config/routes.rb:
--------------------------------------------------------------------------------
1 | Rails.application.routes.draw do
2 | end
3 |
--------------------------------------------------------------------------------
/spec/dummy/app/helpers/application_helper.rb:
--------------------------------------------------------------------------------
1 | module ApplicationHelper
2 | end
3 |
--------------------------------------------------------------------------------
/UPGRADING.md:
--------------------------------------------------------------------------------
1 | No Deprecations or Incompatible Changes have been introduced at this time
--------------------------------------------------------------------------------
/.yardopts:
--------------------------------------------------------------------------------
1 | --markup markdown
2 | --plugin yard-metasploit-erd
3 | --protected
4 | {app,lib}/**/*.rb
5 |
--------------------------------------------------------------------------------
/CHANGELOG.md:
--------------------------------------------------------------------------------
1 | # Next Release
2 |
3 | * Enhancements
4 | * Bug Fixes
5 | * Deprecations
6 | * Incompatible Changes
7 |
--------------------------------------------------------------------------------
/spec/dummy/bin/rake:
--------------------------------------------------------------------------------
1 | #!/usr/bin/env ruby
2 | require_relative '../config/boot'
3 | require 'rake'
4 | Rake.application.run
5 |
--------------------------------------------------------------------------------
/spec/app/models/mdm/macro_spec.rb:
--------------------------------------------------------------------------------
1 | RSpec.describe Mdm::Macro, type: :model do
2 | it_should_behave_like 'Metasploit::Concern.run'
3 | end
--------------------------------------------------------------------------------
/spec/app/models/mdm/api_key_spec.rb:
--------------------------------------------------------------------------------
1 | RSpec.describe Mdm::ApiKey, type: :model do
2 | it_should_behave_like 'Metasploit::Concern.run'
3 | end
--------------------------------------------------------------------------------
/spec/app/models/mdm/mod_ref_spec.rb:
--------------------------------------------------------------------------------
1 | RSpec.describe Mdm::ModRef, type: :model do
2 | it_should_behave_like 'Metasploit::Concern.run'
3 | end
--------------------------------------------------------------------------------
/spec/app/models/mdm/profile_spec.rb:
--------------------------------------------------------------------------------
1 | RSpec.describe Mdm::Profile, type: :model do
2 | it_should_behave_like 'Metasploit::Concern.run'
3 | end
--------------------------------------------------------------------------------
/spec/dummy/app/controllers/application_controller.rb:
--------------------------------------------------------------------------------
1 | class ApplicationController < ActionController::Base
2 | protect_from_forgery
3 | end
4 |
--------------------------------------------------------------------------------
/spec/dummy/bin/bundle:
--------------------------------------------------------------------------------
1 | #!/usr/bin/env ruby
2 | ENV['BUNDLE_GEMFILE'] ||= File.expand_path('../../Gemfile', __FILE__)
3 | load Gem.bin_path('bundler', 'bundle')
4 |
--------------------------------------------------------------------------------
/spec/dummy/bin/rails:
--------------------------------------------------------------------------------
1 | #!/usr/bin/env ruby
2 | APP_PATH = File.expand_path('../../config/application', __FILE__)
3 | require_relative '../config/boot'
4 | require 'rails/commands'
5 |
--------------------------------------------------------------------------------
/db/migrate/20161227212223_add_os_family_to_hosts.rb:
--------------------------------------------------------------------------------
1 | class AddOsFamilyToHosts < ActiveRecord::Migration[4.2]
2 | def change
3 | add_column :hosts, :os_family, :string
4 | end
5 | end
6 |
--------------------------------------------------------------------------------
/spec/dummy/config.ru:
--------------------------------------------------------------------------------
1 | # This file is used by Rack-based servers to start the application.
2 |
3 | require ::File.expand_path('../config/environment', __FILE__)
4 | run Dummy::Application
5 |
--------------------------------------------------------------------------------
/spec/dummy/config/initializers/cookies_serializer.rb:
--------------------------------------------------------------------------------
1 | # Be sure to restart your server when you modify this file.
2 |
3 | Rails.application.config.action_dispatch.cookies_serializer = :marshal
--------------------------------------------------------------------------------
/spec/dummy/config/storage.yml:
--------------------------------------------------------------------------------
1 | test:
2 | service: Disk
3 | root: <%= Rails.root.join("tmp/storage") %>
4 |
5 | local:
6 | service: Disk
7 | root: <%= Rails.root.join("storage") %>
8 |
--------------------------------------------------------------------------------
/spec/dummy/config/initializers/session_store.rb:
--------------------------------------------------------------------------------
1 | # Be sure to restart your server when you modify this file.
2 |
3 | Rails.application.config.session_store :cookie_store, key: '_dummy_session'
4 |
--------------------------------------------------------------------------------
/spec/factories/mdm/payloads.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_payload, :aliases => [:payload], :class => Mdm::Payload do
3 | #
4 | # Associations
5 | #
6 | end
7 | end
8 |
--------------------------------------------------------------------------------
/spec/dummy/config/environment.rb:
--------------------------------------------------------------------------------
1 | # Load the Rails application.
2 | require File.expand_path('../application', __FILE__)
3 |
4 | # Initialize the Rails application.
5 | Rails.application.initialize!
6 |
--------------------------------------------------------------------------------
/console_db.yml:
--------------------------------------------------------------------------------
1 | development:
2 | adapter: postgresql
3 | database: msf3_dev
4 | host: localhost
5 | port: 5432
6 | username: msf3
7 | password: pass123
8 | pool: 5
9 | timeout: 5
10 |
--------------------------------------------------------------------------------
/spec/dummy/app/models/application_record.rb:
--------------------------------------------------------------------------------
1 | class ApplicationRecord < ActiveRecord::Base
2 | self.abstract_class = true
3 | include ArelHelpers::ArelTable
4 | include ArelHelpers::JoinAssociation
5 | end
6 |
--------------------------------------------------------------------------------
/spec/dummy/config/boot.rb:
--------------------------------------------------------------------------------
1 | # Set up gems listed in the Gemfile.
2 | ENV['BUNDLE_GEMFILE'] ||= File.expand_path('../../Gemfile', __FILE__)
3 |
4 | require 'bundler/setup' if File.exist?(ENV['BUNDLE_GEMFILE'])
5 |
--------------------------------------------------------------------------------
/db/migrate/20130516204810_making_vulns_refs_a_real_ar_model.rb:
--------------------------------------------------------------------------------
1 | class MakingVulnsRefsARealArModel < ActiveRecord::Migration[4.2]
2 | def change
3 | add_column :vulns_refs, :id, :primary_key
4 | end
5 | end
6 |
--------------------------------------------------------------------------------
/db/migrate/20140905031549_add_detected_arch_to_host.rb:
--------------------------------------------------------------------------------
1 | class AddDetectedArchToHost < ActiveRecord::Migration[4.2]
2 | def change
3 | add_column :hosts, :detected_arch, :string, :null => true
4 | end
5 | end
6 |
--------------------------------------------------------------------------------
/db/migrate/20190507120211_remove_payload_workspaces.rb:
--------------------------------------------------------------------------------
1 | class RemovePayloadWorkspaces < ActiveRecord::Migration[4.2]
2 | def change
3 | remove_column :payloads, :workspace_id, :references
4 | end
5 | end
6 |
--------------------------------------------------------------------------------
/spec/dummy/config/initializers/mime_types.rb:
--------------------------------------------------------------------------------
1 | # Be sure to restart your server when you modify this file.
2 |
3 | # Add new mime types for use in respond_to blocks:
4 | # Mime::Type.register "text/richtext", :rtf
5 |
--------------------------------------------------------------------------------
/spec/factories/mdm/clients.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_client, :class => Mdm::Client do
3 | #
4 | # Associations
5 | #
6 | association :host, :factory => :mdm_host
7 | end
8 | end
9 |
--------------------------------------------------------------------------------
/db/migrate/20130531144949_making_host_tags_a_real_ar_model.rb:
--------------------------------------------------------------------------------
1 | class MakingHostTagsARealArModel < ActiveRecord::Migration[4.2]
2 | def change
3 | add_column :hosts_tags, :id, :primary_key
4 | end
5 |
6 | end
7 |
--------------------------------------------------------------------------------
/db/migrate/20130717150737_remove_pname_validation.rb:
--------------------------------------------------------------------------------
1 | class RemovePnameValidation < ActiveRecord::Migration[4.2]
2 |
3 | def change
4 | change_column :web_vulns, :pname, :text, :null => true
5 | end
6 |
7 | end
8 |
--------------------------------------------------------------------------------
/db/migrate/20150205192745_drop_service_uniqueness_index.rb:
--------------------------------------------------------------------------------
1 | class DropServiceUniquenessIndex < ActiveRecord::Migration[4.2]
2 | def change
3 | remove_index(:services, :host_id_and_port_and_proto)
4 | end
5 | end
6 |
--------------------------------------------------------------------------------
/db/migrate/20150209195939_add_vuln_id_to_note.rb:
--------------------------------------------------------------------------------
1 | class AddVulnIdToNote < ActiveRecord::Migration[4.2]
2 | def change
3 | add_column :notes, :vuln_id, :integer
4 | add_index :notes, :vuln_id
5 | end
6 | end
7 |
--------------------------------------------------------------------------------
/db/migrate/20250716155919_add_resource_to_mdm_vuln.rb:
--------------------------------------------------------------------------------
1 | class AddResourceToMdmVuln < ActiveRecord::Migration[7.0]
2 | def change
3 | add_column :vulns, :resource, :jsonb, null: false, default: {}
4 | end
5 | end
6 |
--------------------------------------------------------------------------------
/lib/metasploit_data_models/search/operator/port.rb:
--------------------------------------------------------------------------------
1 | # Namespace for search operator for ports.
2 | module MetasploitDataModels::Search::Operator::Port
3 | extend ActiveSupport::Autoload
4 |
5 | autoload :List
6 | end
--------------------------------------------------------------------------------
/spec/factories/mdm/vuln_refs.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_vuln_ref, :class => Mdm::VulnRef do
3 | association :ref, factory: :mdm_ref
4 | association :vuln, factory: :mdm_vuln
5 | end
6 | end
7 |
--------------------------------------------------------------------------------
/db/migrate/20160415153312_remove_not_null_from_web_vuln_p_arams.rb:
--------------------------------------------------------------------------------
1 | class RemoveNotNullFromWebVulnPArams < ActiveRecord::Migration[4.2]
2 | def change
3 | change_column_null(:web_vulns, :params, true)
4 | end
5 | end
6 |
--------------------------------------------------------------------------------
/db/migrate/20250717170556_add_resource_to_services.rb:
--------------------------------------------------------------------------------
1 | class AddResourceToServices < ActiveRecord::Migration[7.0]
2 | def change
3 | add_column :services, :resource, :jsonb, null: false, default: {}
4 | end
5 | end
6 |
--------------------------------------------------------------------------------
/db/migrate/20250720082201_drop_service_uniqueness_index2.rb:
--------------------------------------------------------------------------------
1 | class DropServiceUniquenessIndex2 < ActiveRecord::Migration[7.0]
2 | def change
3 | remove_index(:services, :host_id_and_port_and_proto)
4 | end
5 | end
6 |
--------------------------------------------------------------------------------
/spec/app/models/mdm/wmap_target_spec.rb:
--------------------------------------------------------------------------------
1 | RSpec.describe Mdm::WmapTarget, type: :model do
2 | it_should_behave_like 'Metasploit::Concern.run'
3 |
4 | it_should_behave_like 'coerces inet column type to string', :address
5 | end
--------------------------------------------------------------------------------
/spec/factories/mdm/web_sites.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_web_site, :class => Mdm::WebSite do
3 | #
4 | # Associations
5 | #
6 | association :service, :factory => :mdm_service
7 | end
8 | end
9 |
--------------------------------------------------------------------------------
/spec/app/models/mdm/wmap_request_spec.rb:
--------------------------------------------------------------------------------
1 | RSpec.describe Mdm::WmapRequest, type: :model do
2 | it_should_behave_like 'Metasploit::Concern.run'
3 |
4 | it_should_behave_like 'coerces inet column type to string', :address
5 | end
--------------------------------------------------------------------------------
/spec/factories/mdm/host_details.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_host_detail, :class => Mdm::HostDetail do
3 | #
4 | # Associations
5 | #
6 | association :host, :factory => :mdm_host
7 | end
8 | end
9 |
--------------------------------------------------------------------------------
/spec/factories/mdm/vuln_attempts.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_vuln_attempt, :class => Mdm::VulnAttempt do
3 | #
4 | # Associations
5 | #
6 | association :vuln, :factory => :mdm_vuln
7 | end
8 | end
9 |
--------------------------------------------------------------------------------
/spec/factories/mdm/vuln_details.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_vuln_detail, :class => Mdm::VulnDetail do
3 | #
4 | # Associations
5 | #
6 | association :vuln, :factory => :mdm_vuln
7 | end
8 | end
9 |
--------------------------------------------------------------------------------
/db/migrate/20161004165612_add_fingerprinted_to_workspace.rb:
--------------------------------------------------------------------------------
1 | class AddFingerprintedToWorkspace < ActiveRecord::Migration[4.2]
2 | def change
3 | add_column :workspaces, :import_fingerprint, :boolean, default: false
4 | end
5 | end
6 |
--------------------------------------------------------------------------------
/spec/factories/mdm/exploit_attempts.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_exploit_attempt, :class => Mdm::ExploitAttempt do
3 | #
4 | # Associations
5 | #
6 | association :host, :factory => :mdm_host
7 | end
8 | end
9 |
--------------------------------------------------------------------------------
/spec/factories/mdm/refs.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_ref, :class => Mdm::Ref do
3 | name { generate :mdm_ref_name }
4 | end
5 |
6 | sequence :mdm_ref_name do |n|
7 | "Mdm::Ref#name #{n}"
8 | end
9 | end
10 |
--------------------------------------------------------------------------------
/db/migrate/013_add_tasks_result.rb:
--------------------------------------------------------------------------------
1 | class AddTasksResult < ActiveRecord::Migration[4.2]
2 | def self.up
3 | add_column :tasks, :result, :text
4 | end
5 |
6 | def self.down
7 | remove_column :tasks, :result
8 | end
9 | end
10 |
11 |
--------------------------------------------------------------------------------
/db/migrate/016_add_host_purpose.rb:
--------------------------------------------------------------------------------
1 | class AddHostPurpose < ActiveRecord::Migration[4.2]
2 | def self.up
3 | add_column :hosts, :purpose, :text
4 | end
5 |
6 | def self.down
7 | remove_column :hosts, :purpose
8 | end
9 | end
10 |
11 |
--------------------------------------------------------------------------------
/lib/metasploit_data_models/ip_address/v4/segment.rb:
--------------------------------------------------------------------------------
1 | # A segment (or octet) in an IPv4 address format.
2 | module MetasploitDataModels::IPAddress::V4::Segment
3 | extend ActiveSupport::Autoload
4 |
5 | autoload :Nmap
6 | autoload :Single
7 | end
--------------------------------------------------------------------------------
/lib/metasploit_data_models/search.rb:
--------------------------------------------------------------------------------
1 | # Namespace that deals with search {Mdm} models.
2 | module MetasploitDataModels::Search
3 | extend ActiveSupport::Autoload
4 |
5 | autoload :Operation
6 | autoload :Operator
7 | autoload :Visitor
8 | end
--------------------------------------------------------------------------------
/spec/dummy/config/initializers/active_record_migrations.rb:
--------------------------------------------------------------------------------
1 | # remove Dummy's db/migrate, which doesn't exists and replace it with gem's
2 | ActiveRecord::Migrator.migrations_paths = [
3 | MetasploitDataModels.root.join('db', 'migrate').to_path
4 | ]
--------------------------------------------------------------------------------
/spec/factories/mdm/exploited_hosts.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_exploited_host, :class => Mdm::ExploitedHost do
3 |
4 | association :host, :factory => :mdm_host
5 | association :service, :factory => :mdm_service
6 | end
7 | end
8 |
--------------------------------------------------------------------------------
/spec/factories/mdm/fingerprints/nessus_fingerprints.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_nessus_fingerprint, :parent => :mdm_note do
3 | ntype { 'host.os.nessus_fingerprint' }
4 | data { {:os=>"Microsoft Windows XP SP3"} }
5 | end
6 | end
7 |
--------------------------------------------------------------------------------
/db/migrate/009_add_loots_ctype.rb:
--------------------------------------------------------------------------------
1 | class AddLootsCtype < ActiveRecord::Migration[4.2]
2 | def self.up
3 | add_column :loots, :content_type, :string
4 | end
5 |
6 | def self.down
7 | remove_column :loots, :content_type
8 | end
9 | end
10 |
11 |
--------------------------------------------------------------------------------
/db/migrate/20111210000000_add_scope_to_hosts.rb:
--------------------------------------------------------------------------------
1 | class AddScopeToHosts < ActiveRecord::Migration[4.2]
2 | def self.up
3 | add_column :hosts, :scope, :text
4 | end
5 |
6 | def self.down
7 | remove_column :hosts, :scope
8 | end
9 | end
10 |
--------------------------------------------------------------------------------
/db/migrate/20150226151459_add_module_run_fk_to_loot.rb:
--------------------------------------------------------------------------------
1 | class AddModuleRunFkToLoot < ActiveRecord::Migration[4.2]
2 | def change
3 | change_table(:loots) do |t|
4 | t.integer :module_run_id
5 | t.index :module_run_id
6 | end
7 | end
8 | end
9 |
--------------------------------------------------------------------------------
/spec/dummy/config/initializers/filter_parameter_logging.rb:
--------------------------------------------------------------------------------
1 | # Be sure to restart your server when you modify this file.
2 |
3 | # Configure sensitive parameters which will be filtered from the log file.
4 | Rails.application.config.filter_parameters += [:password]
5 |
--------------------------------------------------------------------------------
/db/migrate/20110425095900_add_last_seen_to_sessions.rb:
--------------------------------------------------------------------------------
1 | class AddLastSeenToSessions < ActiveRecord::Migration[4.2]
2 | def self.up
3 | add_column :sessions, :last_seen, :timestamp
4 | end
5 | def self.down
6 | remove_column :sessions, :last_seen
7 | end
8 | end
9 |
--------------------------------------------------------------------------------
/db/migrate/20110922000000_expand_notes.rb:
--------------------------------------------------------------------------------
1 | class ExpandNotes < ActiveRecord::Migration[4.2]
2 | def self.up
3 | change_column :notes, :data, :text
4 | end
5 | def self.down
6 | change_column :notes, :data, :string, :limit => 65536
7 | end
8 | end
9 |
10 |
--------------------------------------------------------------------------------
/spec/factories/mdm/session_events.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_session_event, :aliases => [:session_event], :class => Mdm::SessionEvent do
3 | #
4 | # Associations
5 | #
6 | association :session, :factory => :mdm_session
7 | end
8 | end
9 |
--------------------------------------------------------------------------------
/lib/metasploit_data_models/search/operator.rb:
--------------------------------------------------------------------------------
1 | # Namespace for search operators for {MetasploitDataModels}.
2 | module MetasploitDataModels::Search::Operator
3 | extend ActiveSupport::Autoload
4 |
5 | autoload :IPAddress
6 | autoload :Multitext
7 | autoload :Port
8 | end
--------------------------------------------------------------------------------
/spec/factories/mdm/fingerprints/retina_fingerprints.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_retina_fingerprint, :parent => :mdm_note do
3 | ntype { 'host.os.retina_fingerprint' }
4 | data { { :os=>"Windows Server 2003 (X64), Service Pack 2"} }
5 | end
6 | end
7 |
--------------------------------------------------------------------------------
/spec/factories/mdm/host_tags.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_host_tag, :class => Mdm::HostTag do
3 | #
4 | # Associations
5 | #
6 | association :host, :factory => :mdm_host
7 | association :tag, :factory => :mdm_tag
8 | end
9 | end
10 |
--------------------------------------------------------------------------------
/db/migrate/020_add_user_preferences.rb:
--------------------------------------------------------------------------------
1 | class AddUserPreferences < ActiveRecord::Migration[4.2]
2 | def self.up
3 | add_column :users, :prefs, :string, :limit => 524288
4 | end
5 |
6 | def self.down
7 | remove_column :users, :prefs
8 | end
9 |
10 | end
11 |
12 |
--------------------------------------------------------------------------------
/db/migrate/022_enlarge_event_info.rb:
--------------------------------------------------------------------------------
1 | class EnlargeEventInfo < ActiveRecord::Migration[4.2]
2 | def self.up
3 | change_column :events, :info, :text
4 | end
5 |
6 | def self.down
7 | change_column :events, :info, :string, :limit => 65535
8 | end
9 | end
10 |
11 |
--------------------------------------------------------------------------------
/db/migrate/20150219215039_add_module_run_to_session.rb:
--------------------------------------------------------------------------------
1 | class AddModuleRunToSession < ActiveRecord::Migration[4.2]
2 | def change
3 | change_table :sessions do |t|
4 | t.integer :module_run_id
5 | end
6 | add_index :sessions, :module_run_id
7 | end
8 | end
9 |
--------------------------------------------------------------------------------
/spec/factories/mdm/fingerprints/session_fingerprints.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_session_fingerprint, :parent => :mdm_note do
3 | ntype { 'host.os.session_fingerprint' }
4 | data { { :os => "Microsoft Windows XP SP3", :arch => 'x86' } }
5 | end
6 | end
7 |
--------------------------------------------------------------------------------
/db/migrate/023_add_report_downloaded_at.rb:
--------------------------------------------------------------------------------
1 | class AddReportDownloadedAt < ActiveRecord::Migration[4.2]
2 | def self.up
3 | add_column :reports, :downloaded_at, :timestamp
4 | end
5 |
6 | def self.down
7 | remove_column :reports, :downloaded_at
8 | end
9 | end
10 |
11 |
--------------------------------------------------------------------------------
/lib/metasploit_data_models/version.rb:
--------------------------------------------------------------------------------
1 | module MetasploitDataModels
2 | # VERSION is managed by GemRelease
3 | VERSION = '6.0.12'
4 |
5 | # @return [String]
6 | #
7 | # returns the VERSION
8 | #
9 |
10 | def self.version
11 | VERSION
12 | end
13 | end
14 |
--------------------------------------------------------------------------------
/spec/factories/mdm/addresses.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | sequence :mdm_ipv4_address do |n|
3 | max = 255
4 |
5 | "192.168.#{(n / max).to_i}.#{n % max}"
6 | end
7 |
8 | sequence :mdm_tcp_port do |n|
9 | max = 65535
10 | n % max
11 | end
12 | end
13 |
--------------------------------------------------------------------------------
/db/migrate/20100908001428_add_owner_to_workspaces.rb:
--------------------------------------------------------------------------------
1 | class AddOwnerToWorkspaces < ActiveRecord::Migration[4.2]
2 | def self.up
3 | add_column :workspaces, :owner_id, :integer
4 | end
5 |
6 | def self.down
7 | remove_column :workspaces, :owner_id
8 | end
9 | end
10 |
--------------------------------------------------------------------------------
/db/migrate/20101008111800_add_clients_to_campaigns.rb:
--------------------------------------------------------------------------------
1 |
2 | class AddClientsToCampaigns < ActiveRecord::Migration[4.2]
3 | def self.up
4 | add_column :clients, :campaign_id, :integer
5 | end
6 |
7 | def self.down
8 | remove_column :clients, :campaign_id
9 | end
10 | end
11 |
--------------------------------------------------------------------------------
/db/migrate/20120126110000_add_virtual_host_to_hosts.rb:
--------------------------------------------------------------------------------
1 | class AddVirtualHostToHosts < ActiveRecord::Migration[4.2]
2 | def self.up
3 | add_column :hosts, :virtual_host, :text
4 | end
5 |
6 | def self.down
7 | remove_column :hosts, :viritual_host
8 | end
9 | end
10 |
--------------------------------------------------------------------------------
/db/migrate/20110527000000_add_task_id_to_reports_table.rb:
--------------------------------------------------------------------------------
1 | class AddTaskIdToReportsTable < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | add_column :reports, :task_id, :integer
5 | end
6 |
7 | def self.down
8 | remove_column :reports, :task_id
9 | end
10 |
11 | end
12 |
--------------------------------------------------------------------------------
/db/migrate/20110622000000_add_settings_to_tasks_table.rb:
--------------------------------------------------------------------------------
1 | class AddSettingsToTasksTable < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | add_column :tasks, :settings, :binary
5 | end
6 |
7 | def self.down
8 | remove_column :tasks, :settings
9 | end
10 |
11 | end
12 |
13 |
--------------------------------------------------------------------------------
/db/migrate/20110112154300_add_module_uuid_to_tasks.rb:
--------------------------------------------------------------------------------
1 | class AddModuleUuidToTasks < ActiveRecord::Migration[4.2]
2 | def self.up
3 | add_column :tasks, :module_uuid, :string, :limit => 8
4 | end
5 |
6 | def self.down
7 | remove_column :tasks, :module_uuid
8 | end
9 | end
10 |
--------------------------------------------------------------------------------
/db/migrate/20110414180600_add_local_id_to_session_table.rb:
--------------------------------------------------------------------------------
1 | class AddLocalIdToSessionTable < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | add_column :sessions, :local_id, :integer
5 | end
6 |
7 | def self.down
8 | remove_column :sessions, :local_id
9 | end
10 |
11 | end
12 |
--------------------------------------------------------------------------------
/db/migrate/20110625000001_add_macro_to_listeners_table.rb:
--------------------------------------------------------------------------------
1 | class AddMacroToListenersTable < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | add_column :listeners, :macro, :text
5 | end
6 |
7 | def self.down
8 | remove_column :listeners, :macro
9 | end
10 |
11 | end
12 |
13 |
--------------------------------------------------------------------------------
/db/migrate/20130525015035_remove_campaign_id_from_clients.rb:
--------------------------------------------------------------------------------
1 | class RemoveCampaignIdFromClients < ActiveRecord::Migration[4.2]
2 | def up
3 | remove_column :clients, :campaign_id
4 | end
5 |
6 | def down
7 | remove_column :clients, :campaign_id, :integer
8 | end
9 | end
10 |
--------------------------------------------------------------------------------
/db/migrate/20150312155312_add_module_full_name_to_match.rb:
--------------------------------------------------------------------------------
1 | class AddModuleFullNameToMatch < ActiveRecord::Migration[4.2]
2 | def change
3 | add_column :automatic_exploitation_matches, :module_fullname, :text
4 | add_index :automatic_exploitation_matches, :module_fullname
5 | end
6 | end
7 |
--------------------------------------------------------------------------------
/db/migrate/20120411173220_rename_workspace_members.rb:
--------------------------------------------------------------------------------
1 | class RenameWorkspaceMembers < ActiveRecord::Migration[4.2]
2 | def up
3 | rename_table :project_members, :workspace_members
4 | end
5 |
6 | def down
7 | rename_table :workspace_members, :project_members
8 | end
9 | end
10 |
--------------------------------------------------------------------------------
/spec/factories/mdm/fingerprints/nexpose_fingerprints.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_nexpose_fingerprint, :parent => :mdm_note do
3 | ntype { 'host.os.nexpose_fingerprint' }
4 | data { {:family=>"Windows", :certainty=>"0.67", :vendor=>"Microsoft", :arch=>"x86"} }
5 | end
6 | end
7 |
--------------------------------------------------------------------------------
/db/migrate/20101203000001_expand_host_comment.rb:
--------------------------------------------------------------------------------
1 | class ExpandHostComment < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | change_column :hosts, :comments, :text
5 | end
6 |
7 | def self.down
8 | change_column :hosts, :comments, :string, :limit => 4096
9 | end
10 | end
11 |
12 |
13 |
--------------------------------------------------------------------------------
/db/migrate/20110527000001_add_api_keys_table.rb:
--------------------------------------------------------------------------------
1 | class AddApiKeysTable < ActiveRecord::Migration[4.2]
2 | def self.up
3 | create_table :api_keys do |t|
4 | t.text :token
5 | t.timestamps null: false
6 | end
7 | end
8 | def self.down
9 | drop_table :api_keys
10 | end
11 | end
12 |
13 |
--------------------------------------------------------------------------------
/db/migrate/20110727163801_expand_cred_ptype_column.rb:
--------------------------------------------------------------------------------
1 | class ExpandCredPtypeColumn < ActiveRecord::Migration[4.2]
2 | def self.up
3 | change_column :creds, :ptype, :string, :limit => 256
4 | end
5 | def self.down
6 | change_column :creds, :ptype, :string, :limit => 16
7 | end
8 | end
9 |
10 |
--------------------------------------------------------------------------------
/db/migrate/024_convert_service_info_to_text.rb:
--------------------------------------------------------------------------------
1 | class ConvertServiceInfoToText < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | change_column :services, :info, :text
5 | end
6 |
7 | def self.down
8 | change_column :services, :info, :string, :limit => 65536
9 | end
10 |
11 | end
12 |
13 |
--------------------------------------------------------------------------------
/spec/dummy/Rakefile:
--------------------------------------------------------------------------------
1 | #!/usr/bin/env rake
2 | # Add your own tasks in files placed in lib/tasks ending in .rake,
3 | # for example lib/tasks/capistrano.rake, and they will automatically be available to Rake.
4 |
5 | require File.expand_path('../config/application', __FILE__)
6 |
7 | Dummy::Application.load_tasks
8 |
--------------------------------------------------------------------------------
/spec/factories/mdm/fingerprints/nmap_fingerprints.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_nmap_fingerprint, :parent => :mdm_note do
3 | ntype { 'host.os.nmap_fingerprint' }
4 | data { { :os_accuracy => 100, :os_family=> 'Windows', :os_vendor=> 'Microsoft', :os_version => 'XP' } }
5 | end
6 | end
7 |
--------------------------------------------------------------------------------
/db/migrate/014_add_loots_fields.rb:
--------------------------------------------------------------------------------
1 | class AddLootsFields < ActiveRecord::Migration[4.2]
2 | def self.up
3 | add_column :loots, :name, :text
4 | add_column :loots, :info, :text
5 | end
6 |
7 | def self.down
8 | remove_column :loots, :name
9 | remove_column :loots, :info
10 | end
11 | end
12 |
13 |
--------------------------------------------------------------------------------
/db/migrate/20100920012100_add_generate_exe_column.rb:
--------------------------------------------------------------------------------
1 | class AddGenerateExeColumn < ActiveRecord::Migration[4.2]
2 | def self.up
3 | add_column :email_templates, :generate_exe, :boolean, :null => false, :default => false
4 | end
5 | def self.down
6 | remove_column :email_templates, :generate_exe
7 | end
8 | end
9 |
--------------------------------------------------------------------------------
/db/migrate/20110630000002_add_name_to_nexpose_consoles_table.rb:
--------------------------------------------------------------------------------
1 | class AddNameToNexposeConsolesTable < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | add_column :nexpose_consoles, :name, :text
5 | end
6 |
7 | def self.down
8 | remove_column :nexpose_consoles, :name
9 | end
10 |
11 | end
12 |
13 |
--------------------------------------------------------------------------------
/lib/metasploit_data_models/ip_address.rb:
--------------------------------------------------------------------------------
1 | # Namespace for models for validating various IPv4 formats beyond those supported by the Ruby standard library's
2 | # `IPAddr`.
3 | module MetasploitDataModels::IPAddress
4 | extend ActiveSupport::Autoload
5 |
6 | autoload :CIDR
7 | autoload :Range
8 | autoload :V4
9 | end
--------------------------------------------------------------------------------
/lib/metasploit_data_models/ip_address/v4/segment/nmap.rb:
--------------------------------------------------------------------------------
1 | # A segment in Nmap's IPv4 address format: either a {List comma separated list} or a {Range hyphenated range}.
2 | module MetasploitDataModels::IPAddress::V4::Segment::Nmap
3 | extend ActiveSupport::Autoload
4 |
5 | autoload :List
6 | autoload :Range
7 | end
--------------------------------------------------------------------------------
/db/migrate/20101002000000_add_query.rb:
--------------------------------------------------------------------------------
1 | class AddQuery < ActiveRecord::Migration[4.2]
2 | def self.up
3 | add_column :web_forms, :query, :text
4 | add_column :web_vulns, :query, :text
5 | end
6 | def self.down
7 | remove_column :web_forms, :query
8 | remove_column :web_vulns, :query
9 | end
10 | end
11 |
--------------------------------------------------------------------------------
/db/migrate/20130522001343_create_task_creds.rb:
--------------------------------------------------------------------------------
1 | class CreateTaskCreds < ActiveRecord::Migration[4.2]
2 | def change
3 | create_table :task_creds do |t|
4 | t.references :task, :null => false
5 | t.references :cred, :null => false
6 | t.timestamps null: false
7 | end
8 | end
9 | end
10 |
--------------------------------------------------------------------------------
/db/migrate/20130522032517_create_task_hosts.rb:
--------------------------------------------------------------------------------
1 | class CreateTaskHosts < ActiveRecord::Migration[4.2]
2 | def change
3 | create_table :task_hosts do |t|
4 | t.references :task, :null => false
5 | t.references :host, :null => false
6 | t.timestamps null: false
7 | end
8 | end
9 | end
10 |
--------------------------------------------------------------------------------
/spec/factories/mdm/service_links.rb:
--------------------------------------------------------------------------------
1 | # Read about factories at https://github.com/thoughtbot/factory_bot
2 |
3 | FactoryBot.define do
4 | factory :mdm_service_link, :class => 'Mdm::ServiceLink' do
5 | association :parent, :factory => :mdm_service
6 | association :child, :factory => :mdm_service
7 | end
8 | end
9 |
--------------------------------------------------------------------------------
/spec/factories/mdm/task_creds.rb:
--------------------------------------------------------------------------------
1 | # Read about factories at https://github.com/thoughtbot/factory_bot
2 |
3 | FactoryBot.define do
4 | factory :mdm_task_cred, :class => 'Mdm::TaskCred' do
5 |
6 | association :task, :factory => :mdm_task
7 | association :cred, :factory => :mdm_cred
8 | end
9 | end
10 |
--------------------------------------------------------------------------------
/spec/factories/mdm/task_hosts.rb:
--------------------------------------------------------------------------------
1 | # Read about factories at https://github.com/thoughtbot/factory_bot
2 |
3 | FactoryBot.define do
4 | factory :mdm_task_host, :class => 'Mdm::TaskHost' do
5 |
6 | association :task, :factory => :mdm_task
7 | association :host, :factory => :mdm_host
8 | end
9 | end
10 |
--------------------------------------------------------------------------------
/spec/factories/mdm/task_services.rb:
--------------------------------------------------------------------------------
1 | # Read about factories at https://github.com/thoughtbot/factory_bot
2 |
3 | FactoryBot.define do
4 | factory :mdm_task_service, :class => 'Mdm::TaskService' do
5 | association :task, :factory => :mdm_task
6 | association :service, :factory => :mdm_service
7 | end
8 | end
9 |
--------------------------------------------------------------------------------
/spec/factories/mdm/task_sessions.rb:
--------------------------------------------------------------------------------
1 | # Read about factories at https://github.com/thoughtbot/factory_bot
2 |
3 | FactoryBot.define do
4 | factory :mdm_task_session, :class => 'Mdm::TaskSession' do
5 | association :task, :factory => :mdm_task
6 | association :session, :factory => :mdm_session
7 | end
8 | end
9 |
--------------------------------------------------------------------------------
/db/migrate/20101009023300_add_campaign_attachments.rb:
--------------------------------------------------------------------------------
1 |
2 |
3 | class AddCampaignAttachments < ActiveRecord::Migration[4.2]
4 |
5 | def self.up
6 | add_column :attachments, :campaign_id, :integer
7 | end
8 |
9 | def self.down
10 | remove_column :attachments, :campaign_id
11 | end
12 |
13 | end
14 |
15 |
16 |
--------------------------------------------------------------------------------
/lib/metasploit_data_models/ip_address/v4.rb:
--------------------------------------------------------------------------------
1 | # Namespace for IPv4 Address format models.
2 | module MetasploitDataModels::IPAddress::V4
3 | extend ActiveSupport::Autoload
4 |
5 | autoload :CIDR
6 | autoload :Nmap
7 | autoload :Range
8 | autoload :Segment
9 | autoload :Segmented
10 | autoload :Single
11 | end
--------------------------------------------------------------------------------
/db/migrate/20130522041110_create_task_services.rb:
--------------------------------------------------------------------------------
1 | class CreateTaskServices < ActiveRecord::Migration[4.2]
2 | def change
3 | create_table :task_services do |t|
4 | t.references :task, :null => false
5 | t.references :service, :null => false
6 | t.timestamps null: false
7 | end
8 | end
9 | end
10 |
--------------------------------------------------------------------------------
/db/migrate/20130604145732_create_task_sessions.rb:
--------------------------------------------------------------------------------
1 | class CreateTaskSessions < ActiveRecord::Migration[4.2]
2 | def change
3 | create_table :task_sessions do |t|
4 | t.references :task, :null => false
5 | t.references :session, :null => false
6 | t.timestamps null: false
7 | end
8 | end
9 | end
10 |
--------------------------------------------------------------------------------
/lib/mdm/module.rb:
--------------------------------------------------------------------------------
1 | # Namespace for all models dealing with module caching.
2 | module Mdm::Module
3 | extend ActiveSupport::Autoload
4 |
5 | autoload :Action
6 | autoload :Arch
7 | autoload :Author
8 | autoload :Detail
9 | autoload :Mixin
10 | autoload :Platform
11 | autoload :Ref
12 | autoload :Target
13 | end
--------------------------------------------------------------------------------
/spec/dummy/script/rails:
--------------------------------------------------------------------------------
1 | #!/usr/bin/env ruby
2 | # This command will automatically be run when you run "rails" with Rails 3 gems installed from the root of your application.
3 |
4 | APP_PATH = File.expand_path('../../config/application', __FILE__)
5 | require File.expand_path('../../config/boot', __FILE__)
6 | require 'rails/commands'
7 |
--------------------------------------------------------------------------------
/lib/metasploit_data_models/match.rb:
--------------------------------------------------------------------------------
1 | # Namespace for {MetasploitDataModels::Match::Parent#match_child dispatching} to
2 | # {MetasploitDataModels::Match::Child#match children based on if their Regexp matches}.
3 | module MetasploitDataModels::Match
4 | extend ActiveSupport::Autoload
5 |
6 | autoload :Child
7 | autoload :Parent
8 | end
9 |
--------------------------------------------------------------------------------
/lib/metasploit_data_models/search/operation.rb:
--------------------------------------------------------------------------------
1 | # Search operations ({MetasploitDataModels::Search::Operator operator}:operand) on {Mdm} and {MetasploitDataModels}
2 | # models.
3 | module MetasploitDataModels::Search::Operation
4 | extend ActiveSupport::Autoload
5 |
6 | autoload :IPAddress
7 | autoload :Port
8 | autoload :Range
9 | end
--------------------------------------------------------------------------------
/spec/dummy/app/views/layouts/application.html.erb:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 | Dummy
5 | <%= stylesheet_link_tag "application", :media => "all" %>
6 | <%= javascript_include_tag "application" %>
7 | <%= csrf_meta_tags %>
8 |
9 |
10 |
11 | <%= yield %>
12 |
13 |
14 |
15 |
--------------------------------------------------------------------------------
/db/migrate/20101206212033_add_limit_to_network_to_workspaces.rb:
--------------------------------------------------------------------------------
1 | class AddLimitToNetworkToWorkspaces < ActiveRecord::Migration[4.2]
2 | def self.up
3 | add_column :workspaces, :limit_to_network, :boolean, :null => false, :default => false
4 | end
5 |
6 | def self.down
7 | remove_column :workspaces, :limit_to_network
8 | end
9 | end
10 |
--------------------------------------------------------------------------------
/spec/factories/mdm/loots.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_loot, :aliases => [:loot], :class => Mdm::Loot do
3 | #
4 | # Associations
5 | #
6 | association :service, :factory => :mdm_service
7 | association :workspace, :factory => :mdm_workspace
8 | association :host, :factory => :mdm_host
9 |
10 | end
11 | end
12 |
--------------------------------------------------------------------------------
/db/migrate/20130510021637_remove_campaigns.rb:
--------------------------------------------------------------------------------
1 | class RemoveCampaigns < ActiveRecord::Migration[4.2]
2 | def up
3 | drop_table :attachments
4 | drop_table :attachments_email_templates
5 | drop_table :email_addresses
6 | drop_table :email_templates
7 | drop_table :web_templates
8 | drop_table :campaigns
9 | end
10 |
11 | end
12 |
--------------------------------------------------------------------------------
/spec/factories/mdm/notes.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_note, :aliases => [:note], :class => Mdm::Note do
3 | #
4 | # Associations
5 | #
6 | association :workspace, :factory => :mdm_workspace
7 | association :host, :factory => :mdm_host
8 | association :service, :factory => :mdm_service
9 |
10 |
11 | end
12 | end
13 |
--------------------------------------------------------------------------------
/script/rails:
--------------------------------------------------------------------------------
1 | #!/usr/bin/env ruby
2 | # This command will automatically be run when you run "rails" with Rails 3 gems installed from the root of your application.
3 |
4 | ENGINE_ROOT = File.expand_path('../..', __FILE__)
5 | ENGINE_PATH = File.expand_path('../../lib/metasploit_data_models/engine', __FILE__)
6 |
7 | require 'rails/all'
8 | require 'rails/engine/commands'
--------------------------------------------------------------------------------
/spec/factories/mdm/task.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_task, :aliases => [:task], :class => 'Mdm::Task' do
3 | #
4 | # Associations
5 | #
6 | association :workspace, :factory => :mdm_workspace
7 |
8 | #
9 | # Attributes
10 | #
11 | created_at { Time.now }
12 | updated_at { Time.now }
13 |
14 |
15 | end
16 | end
17 |
--------------------------------------------------------------------------------
/db/migrate/015_rename_user.rb:
--------------------------------------------------------------------------------
1 | class RenameUser < ActiveRecord::Migration[4.2]
2 | def self.up
3 | remove_column :events, :user
4 | change_table :events do |t|
5 | t.string :username
6 | end
7 | end
8 |
9 | def self.down
10 | remove_column :events, :username
11 | change_table :events do |t|
12 | t.string :user
13 | end
14 | end
15 | end
16 |
17 |
--------------------------------------------------------------------------------
/db/migrate/20111203000000_inet_columns.rb:
--------------------------------------------------------------------------------
1 | class InetColumns < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | change_column :hosts, :address, 'INET using address::INET'
5 | remove_column :hosts, :address6
6 | end
7 |
8 | def self.down
9 | change_column :hosts, :address, :text
10 | add_column :hosts, :address6, :text
11 | end
12 |
13 | end
14 |
--------------------------------------------------------------------------------
/db/migrate/20131008213344_create_automatic_exploitation_runs.rb:
--------------------------------------------------------------------------------
1 | class CreateAutomaticExploitationRuns < ActiveRecord::Migration[4.2]
2 | def change
3 | create_table :automatic_exploitation_runs do |t|
4 | t.integer :workspace_id
5 | t.integer :user_id
6 | t.integer :match_set_id
7 |
8 | t.timestamps null: false
9 | end
10 | end
11 | end
12 |
--------------------------------------------------------------------------------
/spec/factories/metasploit_data_models/automatic_exploitation/runs.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :automatic_exploitation_run, :class => MetasploitDataModels::AutomaticExploitation::Run do
3 | association :workspace, factory: :mdm_workspace
4 | association :user, factory: :mdm_user
5 | association :match_set, factory: :automatic_exploitation_match_set
6 | end
7 | end
8 |
--------------------------------------------------------------------------------
/db/migrate/20120625000008_add_fail_message.rb:
--------------------------------------------------------------------------------
1 | class AddFailMessage < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | add_column :vuln_attempts, :fail_detail, :text
5 | add_column :exploit_attempts, :fail_detail, :text
6 | end
7 |
8 | def self.down
9 | remove_column :vuln_attempts, :fail_detail
10 | remove_column :exploit_attempts, :fail_detail
11 | end
12 | end
13 |
--------------------------------------------------------------------------------
/lib/metasploit_data_models/search/visitor.rb:
--------------------------------------------------------------------------------
1 | # Namespace for all visitors of `Metasploit::Model::Search::Query` that help search {Mdm} models.
2 | module MetasploitDataModels::Search::Visitor
3 | extend ActiveSupport::Autoload
4 |
5 | autoload :Attribute
6 | autoload :Includes
7 | autoload :Joins
8 | autoload :Method
9 | autoload :Relation
10 | autoload :Where
11 | end
--------------------------------------------------------------------------------
/spec/lib/metasploit_data_models_spec.rb:
--------------------------------------------------------------------------------
1 | RSpec.describe MetasploitDataModels do
2 | context 'CONSTANTS' do
3 | context 'VERSION' do
4 | subject(:version) {
5 | described_class::VERSION
6 | }
7 |
8 | it 'is Metasploit::ERD::Version.full' do
9 | expect(version).to eq(MetasploitDataModels::VERSION)
10 | end
11 | end
12 | end
13 | end
14 |
--------------------------------------------------------------------------------
/db/migrate/20110606000001_add_macros_table.rb:
--------------------------------------------------------------------------------
1 | class AddMacrosTable < ActiveRecord::Migration[4.2]
2 | def self.up
3 | create_table :macros do |t|
4 | t.timestamps null: false
5 | t.text :owner
6 | t.text :name
7 | t.text :description
8 | t.binary :actions
9 | t.binary :prefs
10 | end
11 | end
12 | def self.down
13 | drop_table :macros
14 | end
15 | end
16 |
17 |
--------------------------------------------------------------------------------
/db/migrate/20110717000001_add_profiles_table.rb:
--------------------------------------------------------------------------------
1 | class AddProfilesTable < ActiveRecord::Migration[4.2]
2 | def self.up
3 | create_table :profiles do |t|
4 | t.timestamps null: false
5 | t.boolean :active, :default => true
6 | t.text :name
7 | t.text :owner
8 | t.binary :settings
9 | end
10 | end
11 | def self.down
12 | drop_table :profiles
13 | end
14 | end
15 |
16 |
--------------------------------------------------------------------------------
/spec/factories/mdm/module/refs.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_module_ref, :class => Mdm::Module::Ref do
3 | name { generate :mdm_module_ref_name }
4 |
5 | #
6 | # Associations
7 | #
8 | association :detail, :factory => :mdm_module_detail
9 | end
10 |
11 | sequence :mdm_module_ref_name do |n|
12 | "Mdm::Module::Ref#name #{n}"
13 | end
14 | end
15 |
--------------------------------------------------------------------------------
/db/migrate/20120718202805_add_owner_and_payload_to_web_vulns.rb:
--------------------------------------------------------------------------------
1 | class AddOwnerAndPayloadToWebVulns < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | add_column :web_vulns, :owner, :string
5 | add_column :web_vulns, :payload, :text
6 | end
7 |
8 | def self.down
9 | remove_column :web_vulns, :owner
10 | remove_column :web_vulns, :payload
11 | end
12 |
13 | end
14 |
--------------------------------------------------------------------------------
/spec/factories/mdm/module/archs.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_module_arch, :class => Mdm::Module::Arch do
3 | name { generate :mdm_module_arch_name }
4 |
5 | #
6 | # Associations
7 | #
8 | association :detail, :factory => :mdm_module_detail
9 | end
10 |
11 | sequence :mdm_module_arch_name do |n|
12 | "Mdm::Module::Arch#name #{n}"
13 | end
14 | end
15 |
--------------------------------------------------------------------------------
/spec/factories/metasploit_data_models/automatic_exploitation/match_results.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :automatic_exploitation_match_result, :class => 'MetasploitDataModels::AutomaticExploitation::MatchResult' do
3 | association :match, factory: :automatic_exploitation_match
4 | association :run, factory: :automatic_exploitation_run
5 | state { "succeeded" }
6 | end
7 | end
8 |
--------------------------------------------------------------------------------
/db/migrate/004_add_events_table.rb:
--------------------------------------------------------------------------------
1 | class AddEventsTable < ActiveRecord::Migration[4.2]
2 | def self.up
3 | create_table :events do |t|
4 | t.integer :workspace_id
5 | t.integer :host_id
6 | t.timestamp :created_at
7 | t.string :user
8 | t.string :name
9 | t.string :info
10 | end
11 | end
12 | def self.down
13 | drop_table :events
14 | end
15 | end
16 |
17 |
--------------------------------------------------------------------------------
/db/migrate/20150514182921_add_origin_to_mdm_vuln.rb:
--------------------------------------------------------------------------------
1 | class AddOriginToMdmVuln < ActiveRecord::Migration[4.2]
2 | def up
3 | add_column :vulns, :origin_id, :integer
4 | add_column :vulns, :origin_type, :string
5 |
6 | add_index :vulns, :origin_id
7 | end
8 |
9 | def down
10 | remove_column :vulns, :origin_id
11 | remove_column :vulns, :origin_type
12 | end
13 | end
14 |
--------------------------------------------------------------------------------
/spec/factories/mdm/listeners.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_listener, :aliases => [:listener], :class => Mdm::Listener do
3 | #
4 | # Associations
5 | #
6 | association :workspace, :factory => :mdm_workspace
7 | association :task, :factory => :mdm_task
8 |
9 | address { generate :mdm_ipv4_address }
10 | port { generate :mdm_tcp_port }
11 | end
12 | end
13 |
--------------------------------------------------------------------------------
/spec/factories/metasploit_data_models/automatic_exploitation/match_sets.rb:
--------------------------------------------------------------------------------
1 | # Read about factories at https://github.com/thoughtbot/factory_bot
2 |
3 | FactoryBot.define do
4 | factory :automatic_exploitation_match_set, :class => MetasploitDataModels::AutomaticExploitation::MatchSet do
5 | association :workspace, factory: :mdm_workspace
6 | association :user, factory: :mdm_user
7 | end
8 | end
9 |
--------------------------------------------------------------------------------
/spec/factories/metasploit_data_models/automatic_exploitation/matches.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :automatic_exploitation_match, :class => MetasploitDataModels::AutomaticExploitation::Match do
3 | association :module_detail, factory: :mdm_module_detail
4 | association :match_set, factory: :automatic_exploitation_match_set
5 | association :matchable, factory: :mdm_vuln
6 | end
7 | end
8 |
--------------------------------------------------------------------------------
/db/migrate/20100926214000_add_template_prefs.rb:
--------------------------------------------------------------------------------
1 | class AddTemplatePrefs < ActiveRecord::Migration[4.2]
2 | def self.up
3 | remove_column :email_templates, :generate_exe
4 | add_column :email_templates, :prefs, :text
5 | add_column :web_templates, :prefs, :text
6 | end
7 | def self.down
8 | remove_column :email_templates, :prefs
9 | remove_column :web_templates, :prefs
10 | end
11 | end
12 |
--------------------------------------------------------------------------------
/db/migrate/20131017150735_create_automatic_exploitation_match_results.rb:
--------------------------------------------------------------------------------
1 | class CreateAutomaticExploitationMatchResults < ActiveRecord::Migration[4.2]
2 | def change
3 | create_table :automatic_exploitation_match_results do |t|
4 | t.integer :match_id
5 | t.integer :run_id
6 | t.string :state, null: false
7 |
8 | t.timestamps null: false
9 | end
10 | end
11 | end
12 |
--------------------------------------------------------------------------------
/spec/factories/mdm/module/mixins.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_module_mixin, :class => Mdm::Module::Mixin do
3 | name { generate :mdm_module_mixin_name }
4 |
5 | #
6 | # Associations
7 | #
8 | association :detail, :factory => :mdm_module_detail
9 | end
10 |
11 | sequence :mdm_module_mixin_name do |n|
12 | "Mdm::Module::Mixin#name #{n}"
13 | end
14 | end
15 |
--------------------------------------------------------------------------------
/db/migrate/008_create_users.rb:
--------------------------------------------------------------------------------
1 | class CreateUsers < ActiveRecord::Migration[4.2]
2 | def self.up
3 | create_table :users do |t|
4 | t.string :username
5 | t.string :crypted_password
6 | t.string :password_salt
7 | t.string :persistence_token
8 |
9 | t.timestamps null: false
10 | end
11 | end
12 |
13 | def self.down
14 | drop_table :users
15 | end
16 | end
17 |
--------------------------------------------------------------------------------
/spec/factories/mdm/module/actions.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_module_action, :class => Mdm::Module::Action do
3 | name { generate :mdm_module_action_name }
4 |
5 | #
6 | # Associations
7 | #
8 | association :detail, :factory => :mdm_module_detail
9 | end
10 |
11 | sequence :mdm_module_action_name do |n|
12 | "Mdm::Module::Action#name #{n}"
13 | end
14 | end
15 |
--------------------------------------------------------------------------------
/spec/factories/mdm/tags.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_tag, :class => Mdm::Tag do
3 | association :user, factory: :mdm_user
4 | desc { generate :mdm_tag_desc }
5 | name { generate :mdm_tag_name }
6 | end
7 |
8 | sequence :mdm_tag_desc do |n|
9 | "Mdm::Tag#description #{n}"
10 | end
11 |
12 | sequence :mdm_tag_name do |n|
13 | "mdm_tag_name#{n}"
14 | end
15 | end
16 |
--------------------------------------------------------------------------------
/spec/factories/mdm/module/platforms.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_module_platform, :class => Mdm::Module::Platform do
3 | name { generate :mdm_module_platform_name }
4 |
5 | #
6 | # Associations
7 | #
8 | association :detail, :factory => :mdm_module_detail
9 | end
10 |
11 | sequence :mdm_module_platform_name do |n|
12 | "Mdm::Module::Platform#name #{n}"
13 | end
14 | end
15 |
--------------------------------------------------------------------------------
/spec/factories/mdm/sessions.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_session, :aliases => [:session], :class => Mdm::Session do
3 | #
4 | # Associations
5 | #
6 | association :host, :factory => :mdm_host
7 | association :originating_module_run, :factory => :metasploit_data_models_module_run
8 |
9 | #
10 | # Attributes
11 | #
12 | opened_at { DateTime.now }
13 | end
14 | end
15 |
--------------------------------------------------------------------------------
/db/migrate/20110415175705_add_routes_table.rb:
--------------------------------------------------------------------------------
1 | class AddRoutesTable < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | create_table :routes do |t|
5 | t.integer :session_id
6 | t.string :subnet
7 | t.string :netmask
8 | end
9 |
10 | remove_column :sessions, :routes
11 | end
12 |
13 | def self.down
14 | drop_table :routes
15 |
16 | add_column :sessions, :routes, :string
17 | end
18 | end
19 |
--------------------------------------------------------------------------------
/lib/metasploit_data_models/search/operation/port.rb:
--------------------------------------------------------------------------------
1 | # Search operation on IP port formats: either
2 | # {MetasploitDataModels::Search::Operation::Port::Number an individual port number} or
3 | # {MetasploitDataModels::Search::Operation::Port::Range a hyphenated range of port numbers}.
4 | module MetasploitDataModels::Search::Operation::Port
5 | extend ActiveSupport::Autoload
6 |
7 | autoload :Number
8 | autoload :Range
9 | end
--------------------------------------------------------------------------------
/app/models/metasploit_data_models/ip_address/v4/range.rb:
--------------------------------------------------------------------------------
1 | # A range of complete IPv4 addresses, separated by a `-`.
2 | class MetasploitDataModels::IPAddress::V4::Range < Metasploit::Model::Base
3 | extend MetasploitDataModels::Match::Child
4 |
5 | include MetasploitDataModels::IPAddress::Range
6 |
7 | #
8 | # Range Extremes
9 | #
10 |
11 | extremes class_name: 'MetasploitDataModels::IPAddress::V4::Single'
12 | end
13 |
--------------------------------------------------------------------------------
/db/migrate/20190308134512_create_async_callbacks.rb:
--------------------------------------------------------------------------------
1 | class CreateAsyncCallbacks < ActiveRecord::Migration[4.2]
2 | def change
3 | create_table :async_callbacks do |t|
4 | t.string :uuid, :null => false
5 | t.integer :timestamp, :null => false
6 | t.string :listener_uri
7 | t.string :target_host
8 | t.string :target_port
9 |
10 | t.timestamps null: false
11 | end
12 | end
13 | end
14 |
--------------------------------------------------------------------------------
/spec/factories/mdm/events.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_event, :aliases => [:event], :class => Mdm::Event do
3 | name { FactoryBot.generate :mdm_event_name }
4 |
5 | trait :workspace do
6 | association :workspace, :factory => :mdm_workspace
7 | end
8 |
9 | factory :mdm_workspace_event, :traits => [:workspace]
10 | end
11 |
12 | sequence :mdm_event_name do |n|
13 | "Event #{n}"
14 | end
15 | end
16 |
--------------------------------------------------------------------------------
/db/migrate/20131011184338_module_detail_on_automatic_exploitation_match.rb:
--------------------------------------------------------------------------------
1 | class ModuleDetailOnAutomaticExploitationMatch < ActiveRecord::Migration[4.2]
2 | def up
3 | rename_column :automatic_exploitation_matches, :ref_id, :module_detail_id
4 | add_column :automatic_exploitation_matches, :match_set_id, :integer
5 | end
6 |
7 | def down
8 | rename_column :automatic_exploitation_matches, :module_detail_id, :ref_id
9 | end
10 | end
11 |
--------------------------------------------------------------------------------
/cortex.yaml:
--------------------------------------------------------------------------------
1 | ---
2 | info:
3 | title: Metasploit Data Models
4 | description: MSF database code, gemified
5 | x-cortex-git:
6 | github:
7 | alias: r7org
8 | repository: rapid7/metasploit_data_models
9 | x-cortex-tag: metasploit-data-models
10 | x-cortex-type: service
11 | x-cortex-domain-parents:
12 | - tag: metasploit
13 | x-cortex-groups:
14 | - exposure:external-ship
15 | openapi: 3.0.1
16 | servers:
17 | - url: "/"
18 |
--------------------------------------------------------------------------------
/db/migrate/011_add_reports.rb:
--------------------------------------------------------------------------------
1 | class AddReports < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | create_table :reports do |t|
5 | t.integer :workspace_id, :null => false, :default => 1
6 | t.string :created_by
7 | t.string :rtype
8 | t.string :path, :limit => 1024
9 | t.text :options
10 | t.timestamps null: false
11 | end
12 | end
13 |
14 | def self.down
15 | drop_table :reports
16 | end
17 |
18 | end
19 |
20 |
--------------------------------------------------------------------------------
/db/migrate/20250718122714_create_service_links.rb:
--------------------------------------------------------------------------------
1 | class CreateServiceLinks < ActiveRecord::Migration[7.0]
2 | def change
3 | create_table :service_links do |t|
4 | t.references :parent, null: false, foreign_key: { to_table: :services }
5 | t.references :child, null: false, foreign_key: { to_table: :services }
6 | t.timestamps
7 | end
8 | add_index :service_links, [:parent_id, :child_id], unique: true
9 | end
10 | end
11 |
12 |
--------------------------------------------------------------------------------
/spec/factories/mdm/creds.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_cred, :aliases => [:cred], :class => Mdm::Cred do
3 | #
4 | # Associations
5 | #
6 | association :service, :factory => :mdm_service
7 |
8 | active { true }
9 | pass{ generate :mdm_cred_pass }
10 | ptype { 'password' }
11 | user{ generate :mdm_user_username }
12 | end
13 |
14 | sequence :mdm_cred_pass do |n|
15 | "mahp455w3rd!-#{n}"
16 | end
17 | end
18 |
--------------------------------------------------------------------------------
/db/migrate/20100916151530_require_admin_flag.rb:
--------------------------------------------------------------------------------
1 | class RequireAdminFlag < ActiveRecord::Migration[4.2]
2 |
3 | # Make the admin flag required.
4 | def self.up
5 | # update any existing records
6 | Mdm::User.where(:admin => true).update_all(:admin => nil)
7 |
8 | change_column :users, :admin, :boolean, :null => false, :default => true
9 | end
10 |
11 | def self.down
12 | change_column :users, :admin, :boolean, :default => true
13 | end
14 |
15 | end
16 |
--------------------------------------------------------------------------------
/db/migrate/20131002004641_create_automatic_exploitation_matches.rb:
--------------------------------------------------------------------------------
1 | class CreateAutomaticExploitationMatches < ActiveRecord::Migration[4.2]
2 | def change
3 | create_table :automatic_exploitation_matches do |t|
4 | t.integer :ref_id
5 | t.string :state
6 | t.integer :nexpose_data_vulnerability_definition_id
7 |
8 | t.timestamps null: false
9 | end
10 |
11 | add_index :automatic_exploitation_matches, :ref_id
12 | end
13 | end
14 |
--------------------------------------------------------------------------------
/db/migrate/20131021185657_make_match_polymorphic.rb:
--------------------------------------------------------------------------------
1 | class MakeMatchPolymorphic < ActiveRecord::Migration[4.2]
2 | def up
3 | add_column :automatic_exploitation_matches, :matchable_type, :string
4 | add_column :automatic_exploitation_matches, :matchable_id, :integer
5 | end
6 |
7 | def down
8 | remove_column :automatic_exploitation_matches, :matchable_type
9 | remove_column :automatic_exploitation_matches, :matchable_id
10 | end
11 | end
12 |
--------------------------------------------------------------------------------
/db/migrate/20100911122000_add_report_templates.rb:
--------------------------------------------------------------------------------
1 | class AddReportTemplates < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | create_table :report_templates do |t|
5 | t.integer :workspace_id, :null => false, :default => 1
6 | t.string :created_by
7 | t.string :path, :limit => 1024
8 | t.text :name
9 | t.timestamps null: false
10 | end
11 | end
12 |
13 | def self.down
14 | drop_table :reports
15 | end
16 |
17 | end
18 |
19 |
--------------------------------------------------------------------------------
/spec/dummy/config/initializers/backtrace_silencers.rb:
--------------------------------------------------------------------------------
1 | # Be sure to restart your server when you modify this file.
2 |
3 | # You can add backtrace silencers for libraries that you're using but don't wish to see in your backtraces.
4 | # Rails.backtrace_cleaner.add_silencer { |line| line =~ /my_noisy_library/ }
5 |
6 | # You can also remove all the silencers if you're trying to debug a problem that might stem from framework code.
7 | # Rails.backtrace_cleaner.remove_silencers!
8 |
--------------------------------------------------------------------------------
/db/migrate/010_add_alert_fields.rb:
--------------------------------------------------------------------------------
1 | class AddAlertFields < ActiveRecord::Migration[4.2]
2 | def self.up
3 | add_column :notes, :critical, :boolean
4 | add_column :notes, :seen, :boolean
5 | add_column :events, :critical, :boolean
6 | add_column :events, :seen, :boolean
7 | end
8 |
9 | def self.down
10 | remove_column :notes, :critical
11 | remove_column :notes, :seen
12 | remove_column :events, :critical
13 | remove_column :events, :seen
14 | end
15 | end
16 |
17 |
--------------------------------------------------------------------------------
/db/migrate/20101104135100_add_imported_creds.rb:
--------------------------------------------------------------------------------
1 | class AddImportedCreds < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | create_table :imported_creds do |t|
5 | t.integer :workspace_id, :null => false, :default => 1
6 | t.string :user, :limit => 512
7 | t.string :pass, :limit => 512
8 | t.string :ptype, :limit => 16, :default => "password"
9 | end
10 | end
11 |
12 | def self.down
13 | drop_table :imported_creds
14 | end
15 |
16 | end
17 |
18 |
--------------------------------------------------------------------------------
/db/migrate/20120625000001_add_host_details.rb:
--------------------------------------------------------------------------------
1 | class AddHostDetails < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | create_table :host_details do |t|
5 | t.integer :host_id # Host table reference
6 |
7 | # Nexpose-specific fields
8 | t.integer :nx_console_id # NexposeConsole table reference
9 | t.integer :nx_device_id # Reference from the Nexpose side
10 | end
11 | end
12 |
13 | def self.down
14 | drop_table :host_details
15 | end
16 | end
17 |
--------------------------------------------------------------------------------
/db/migrate/20130525212420_drop_table_imported_creds.rb:
--------------------------------------------------------------------------------
1 | class DropTableImportedCreds < ActiveRecord::Migration[4.2]
2 | def up
3 | drop_table :imported_creds
4 | end
5 |
6 | def down
7 | create_table :imported_creds do |t|
8 | t.integer :workspace_id, :null => false, :default => 1
9 | t.string :user, :limit => 512
10 | t.string :pass, :limit => 512
11 | t.string :ptype, :limit => 16, :default => "password"
12 | end
13 | end
14 | end
15 |
--------------------------------------------------------------------------------
/db/migrate/20131002164449_create_automatic_exploitation_match_sets.rb:
--------------------------------------------------------------------------------
1 | class CreateAutomaticExploitationMatchSets < ActiveRecord::Migration[4.2]
2 | def change
3 | create_table :automatic_exploitation_match_sets do |t|
4 | t.integer :workspace_id
5 | t.integer :user_id
6 |
7 | t.timestamps null: false
8 | end
9 | add_index :automatic_exploitation_match_sets, :user_id
10 | add_index :automatic_exploitation_match_sets, :workspace_id
11 | end
12 | end
13 |
--------------------------------------------------------------------------------
/db/migrate/20150326183742_add_missing_ae_indices.rb:
--------------------------------------------------------------------------------
1 | class AddMissingAeIndices < ActiveRecord::Migration[4.2]
2 | def up
3 | add_index :automatic_exploitation_match_results, :match_id
4 | add_index :automatic_exploitation_match_results, :run_id
5 |
6 | add_index :automatic_exploitation_runs, :match_set_id
7 | add_index :automatic_exploitation_runs, :user_id
8 | add_index :automatic_exploitation_runs, :workspace_id
9 | end
10 |
11 | def down
12 | end
13 | end
14 |
--------------------------------------------------------------------------------
/db/migrate/007_add_loots.rb:
--------------------------------------------------------------------------------
1 | class AddLoots < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | create_table :loots do |t|
5 | t.integer :workspace_id, :null => false, :default => 1
6 | t.integer :host_id
7 | t.integer :service_id
8 | t.string :ltype, :limit => 512
9 | t.string :path, :limit => 1024
10 | t.text :data
11 | t.timestamps null: false
12 | end
13 | end
14 |
15 | def self.down
16 | drop_table :loots
17 | end
18 |
19 | end
20 |
21 |
--------------------------------------------------------------------------------
/db/migrate/021_standardize_info_and_data.rb:
--------------------------------------------------------------------------------
1 | class StandardizeInfoAndData < ActiveRecord::Migration[4.2]
2 | def self.up
3 | # Remove the host requirement. We'll add the column back in below.
4 | remove_column :vulns, :data
5 | change_table :vulns do |t|
6 | t.string :info, :limit => 65536
7 | end
8 | end
9 |
10 | def self.down
11 | remove_column :vulns, :info
12 | change_table :notes do |t|
13 | t.string :data, :limit => 65536
14 |
15 | end
16 | end
17 | end
18 |
19 |
--------------------------------------------------------------------------------
/db/migrate/20110928101300_add_mod_ref_table.rb:
--------------------------------------------------------------------------------
1 | # Probably temporary, a spot to stash module names and their associated refs
2 | # Don't count on it being populated at any given moment.
3 | class AddModRefTable < ActiveRecord::Migration[4.2]
4 |
5 | def self.up
6 | create_table :mod_refs do |t|
7 | t.string :module, :limit => 1024
8 | t.string :mtype, :limit => 128
9 | t.text :ref
10 | end
11 | end
12 |
13 | def self.down
14 | drop_table :mod_refs
15 | end
16 |
17 | end
18 |
--------------------------------------------------------------------------------
/app/models/metasploit_data_models/ip_address/v4/segment/nmap/range.rb:
--------------------------------------------------------------------------------
1 | # A range of segment number composed of a {#begin} and {#end} segment number, separated by a `-`.
2 | class MetasploitDataModels::IPAddress::V4::Segment::Nmap::Range < Metasploit::Model::Base
3 | extend MetasploitDataModels::Match::Child
4 |
5 | include MetasploitDataModels::IPAddress::Range
6 |
7 | #
8 | # Range Extremes
9 | #
10 |
11 | extremes class_name: 'MetasploitDataModels::IPAddress::V4::Segment::Single'
12 | end
--------------------------------------------------------------------------------
/db/migrate/20100824151500_add_exploited_table.rb:
--------------------------------------------------------------------------------
1 | class AddExploitedTable < ActiveRecord::Migration[4.2]
2 | def self.up
3 | create_table :exploited_hosts do |t|
4 | t.integer :host_id, :null => false
5 | t.integer :service_id
6 | t.string :session_uuid, :limit => 8
7 | t.string :name, :limit => 2048
8 | t.string :payload, :limit => 2048
9 | t.timestamps null: false
10 | end
11 | end
12 | def self.down
13 | drop_table :exploited_hosts
14 | end
15 | end
16 |
17 |
--------------------------------------------------------------------------------
/spec/factories/mdm/nexpose_consoles.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_nexpose_console, :aliases => [:nexpose_console], :class => Mdm::NexposeConsole do
3 | name { generate :mdm_nexpose_console_name }
4 | port { generate :mdm_tcp_port }
5 | address { generate :mdm_ipv4_address }
6 | username {'ConsoleUser'}
7 | password { 's0meH4rdP4ssW0rd' }
8 | end
9 |
10 | sequence :mdm_nexpose_console_name do |n|
11 | "Nexpose Console Name #{n}"
12 | end
13 |
14 |
15 | end
16 |
--------------------------------------------------------------------------------
/spec/app/models/metasploit_data_models/search/operator/ip_address_spec.rb:
--------------------------------------------------------------------------------
1 | RSpec.describe MetasploitDataModels::Search::Operator::IPAddress, type: :model do
2 | subject(:operator) {
3 | described_class.new
4 | }
5 |
6 | context '#operate_on' do
7 | subject(:operate_on) {
8 | operator.operate_on(formatted_value)
9 | }
10 |
11 | let(:formatted_value) {
12 | nil
13 | }
14 |
15 | it { is_expected.to be_a MetasploitDataModels::Search::Operation::IPAddress }
16 | end
17 | end
--------------------------------------------------------------------------------
/db/migrate/019_add_workspace_desc.rb:
--------------------------------------------------------------------------------
1 | class AddWorkspaceDesc < ActiveRecord::Migration[4.2]
2 | def self.up
3 | change_table :workspaces do |t|
4 | t.string :description, :limit => 4096
5 | end
6 |
7 | change_table :hosts do |t|
8 | t.string :comments, :limit => 4096
9 | end
10 | end
11 |
12 | def self.down
13 | change_table :workspaces do |t|
14 | t.remove :description
15 | end
16 |
17 | change_table :hosts do |t|
18 | t.remove :comments
19 | end
20 | end
21 |
22 | end
23 |
24 |
--------------------------------------------------------------------------------
/db/migrate/025_add_user_admin.rb:
--------------------------------------------------------------------------------
1 | class AddUserAdmin < ActiveRecord::Migration[4.2]
2 |
3 | # Add user admin flag and project member list.
4 | def self.up
5 | add_column :users, :admin, :boolean, :default => true
6 |
7 | create_table :project_members, :id => false do |t|
8 | t.integer :workspace_id, :null => false
9 | t.integer :user_id, :null => false
10 | end
11 | end
12 |
13 | def self.down
14 | remove_column :users, :admin
15 |
16 | drop_table :project_members
17 | end
18 | end
19 |
20 |
--------------------------------------------------------------------------------
/db/migrate/20101007000000_add_vuln_info.rb:
--------------------------------------------------------------------------------
1 | class AddVulnInfo < ActiveRecord::Migration[4.2]
2 | def self.up
3 | add_column :web_vulns, :category, :text
4 | add_column :web_vulns, :confidence, :text
5 | add_column :web_vulns, :description, :text
6 | add_column :web_vulns, :blame, :text
7 | end
8 | def self.down
9 | remove_column :web_forms, :category
10 | remove_column :web_vulns, :confidence
11 | remove_column :web_vulns, :description
12 | remove_column :web_vulns, :blame
13 | end
14 | end
15 |
16 |
--------------------------------------------------------------------------------
/db/migrate/20110624000001_add_listeners_table.rb:
--------------------------------------------------------------------------------
1 | class AddListenersTable < ActiveRecord::Migration[4.2]
2 | def self.up
3 | create_table :listeners do |t|
4 | t.timestamps null: false
5 | t.integer :workspace_id, :null => false, :default => 1
6 | t.integer :task_id
7 | t.boolean :enabled, :default => true
8 | t.text :owner
9 | t.text :payload
10 | t.text :address
11 | t.integer :port
12 | t.binary :options
13 | end
14 | end
15 | def self.down
16 | drop_table :listeners
17 | end
18 | end
19 |
20 |
--------------------------------------------------------------------------------
/spec/support/shared/contexts/rex/text.rb:
--------------------------------------------------------------------------------
1 | RSpec.shared_context 'Rex::Text' do
2 | before(:example) do
3 | rex_text = Module.new do
4 | def self.ascii_safe_hex(str, whitespace=false)
5 | if whitespace
6 | str.gsub(/([\x00-\x20\x80-\xFF])/n){ |x| "\\x%.2x" % x.unpack("C*")[0] }
7 | else
8 | str.gsub(/([\x00-\x08\x0b\x0c\x0e-\x1f\x80-\xFF])/n){ |x| "\\x%.2x" % x.unpack("C*")[0]}
9 | end
10 | end
11 | end
12 |
13 | stub_const('Rex::Text', rex_text)
14 | end
15 | end
--------------------------------------------------------------------------------
/spec/factories/mdm/module/targets.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_module_target, :class => Mdm::Module::Target do
3 | index { generate :mdm_module_target_index }
4 | name { generate :mdm_module_target_name }
5 |
6 | #
7 | # Associations
8 | #
9 | association :detail, :factory => :mdm_module_detail
10 | end
11 |
12 | sequence :mdm_module_target_index do |n|
13 | n
14 | end
15 |
16 | sequence :mdm_module_target_name do |n|
17 | "Mdm::Module::Target#name #{n}"
18 | end
19 | end
20 |
--------------------------------------------------------------------------------
/db/migrate/20120625000002_expand_details.rb:
--------------------------------------------------------------------------------
1 | class ExpandDetails < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | add_column :vuln_details, :nx_vuln_status, :text
5 | add_column :vuln_details, :nx_proof_key, :text
6 | add_column :vuln_details, :src, :string
7 | add_column :host_details, :src, :string
8 | end
9 |
10 | def self.down
11 | remove_column :vuln_details, :nx_vuln_status
12 | remove_column :vuln_details, :nx_proof_key
13 | remove_column :vuln_details, :src
14 | remove_column :host_details, :src
15 | end
16 | end
17 |
--------------------------------------------------------------------------------
/spec/factories/mdm/vulns.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_vuln, :class => Mdm::Vuln do
3 | name { generate :mdm_vuln_name }
4 |
5 | trait :host do
6 | association :host, :factory => :mdm_host
7 | end
8 |
9 | trait :service do
10 | association :service, :factory => :mdm_service
11 | end
12 |
13 | factory :mdm_host_vuln, :traits => [:host]
14 | factory :mdm_service_vuln, :traits => [:service]
15 | end
16 |
17 | sequence :mdm_vuln_name do |n|
18 | "Mdm::Vuln#name #{n}"
19 | end
20 | end
21 |
--------------------------------------------------------------------------------
/spec/support/shared/examples/coerces_inet_column_type_to_string.rb:
--------------------------------------------------------------------------------
1 | RSpec.shared_examples_for 'coerces inet column type to string' do |column|
2 | raise ArgumentError, 'must pass the column name' unless column
3 |
4 | context 'with an inet column' do
5 | let(:address) { '10.0.0.1' }
6 |
7 | before(:example) do
8 | subject.update_attribute column, address
9 | end
10 |
11 | it 'should cast the column as a string when fetching from the database' do
12 | expect(subject.send(column)).to eq(address)
13 | end
14 | end
15 | end
--------------------------------------------------------------------------------
/db/migrate/20120625000005_add_vuln_and_host_counter_caches.rb:
--------------------------------------------------------------------------------
1 | class AddVulnAndHostCounterCaches < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | add_column :hosts, :host_detail_count, :integer, :default => 0
5 | add_column :vulns, :vuln_detail_count, :integer, :default => 0
6 | add_column :vulns, :vuln_attempt_count, :integer, :default => 0
7 | end
8 |
9 | def self.down
10 | remove_column :hosts, :host_detail_count
11 | remove_column :vulns, :vuln_detail_count
12 | remove_column :vulns, :vuln_attempt_count
13 | end
14 | end
15 |
--------------------------------------------------------------------------------
/db/migrate/026_add_creds_table.rb:
--------------------------------------------------------------------------------
1 | class AddCredsTable < ActiveRecord::Migration[4.2]
2 | def self.up
3 | create_table :creds do |t|
4 | t.integer :service_id, :null => false
5 | t.timestamps null: false
6 | t.string :user, :limit => 2048
7 | t.string :pass, :limit => 4096
8 | t.boolean :active, :default => true
9 | t.string :proof, :limit => 4096
10 | t.string :ptype, :limit => 16
11 | t.integer :source_id
12 | t.string :source_type
13 | end
14 | end
15 | def self.down
16 | drop_table :creds
17 | end
18 | end
19 |
20 |
--------------------------------------------------------------------------------
/db/migrate/20130430151353_change_required_columns_to_null_false_in_hosts.rb:
--------------------------------------------------------------------------------
1 | # Changes all the {COLUMNS} in the hosts table that are required for {Mdm::Host}, but were previously `:null => true`.
2 | class ChangeRequiredColumnsToNullFalseInHosts < MetasploitDataModels::ChangeRequiredColumnsToNullFalse
3 | # Columns that were previously `:null => true`, but are actually required to be non-null, so should be
4 | # `:null => false`
5 | COLUMNS = [
6 | :address,
7 | :workspace_id
8 | ]
9 | # Table in which {COLUMNS} are.
10 | TABLE_NAME = :hosts
11 | end
12 |
--------------------------------------------------------------------------------
/db/migrate/20150112203945_remove_duplicate_services.rb:
--------------------------------------------------------------------------------
1 | class RemoveDuplicateServices < ActiveRecord::Migration[4.2]
2 | def change
3 | select_mgr = Mdm::Service.arel_table.project(
4 | Mdm::Service[:host_id],
5 | Mdm::Service[:proto],
6 | Mdm::Service[:port].count
7 | ).group(
8 | 'host_id',
9 | 'port',
10 | 'proto'
11 | ).having(Mdm::Service[:port].count.gt(1))
12 |
13 | Mdm::Service.find_by_sql(select_mgr).each(&:destroy)
14 |
15 | add_index :services, [:host_id, :port, :proto], unique: true
16 | end
17 | end
18 |
--------------------------------------------------------------------------------
/db/migrate/20150212214222_remove_duplicate_services2.rb:
--------------------------------------------------------------------------------
1 | class RemoveDuplicateServices2 < ActiveRecord::Migration[4.2]
2 | def change
3 | select_mgr = Mdm::Service.arel_table.project(
4 | Mdm::Service[:host_id],
5 | Mdm::Service[:proto],
6 | Mdm::Service[:port].count
7 | ).group(
8 | 'host_id',
9 | 'port',
10 | 'proto'
11 | ).having(Mdm::Service[:port].count.gt(1))
12 |
13 | Mdm::Service.find_by_sql(select_mgr).each(&:destroy)
14 |
15 | add_index :services, [:host_id, :port, :proto], unique: true
16 | end
17 | end
18 |
--------------------------------------------------------------------------------
/db/migrate/20110630000001_add_nexpose_consoles_table.rb:
--------------------------------------------------------------------------------
1 | class AddNexposeConsolesTable < ActiveRecord::Migration[4.2]
2 | def self.up
3 | create_table :nexpose_consoles do |t|
4 | t.timestamps null: false
5 | t.boolean :enabled, :default => true
6 | t.text :owner
7 | t.text :address
8 | t.integer :port, :default => 3780
9 | t.text :username
10 | t.text :password
11 | t.text :status
12 | t.text :version
13 | t.text :cert
14 | t.binary :cached_sites
15 | end
16 | end
17 | def self.down
18 | drop_table :nexpose_consoles
19 | end
20 | end
21 |
22 |
--------------------------------------------------------------------------------
/app/models/mdm/vuln_ref.rb:
--------------------------------------------------------------------------------
1 | # Join model between {Mdm::Vuln} and {Mdm::Ref}.
2 | class Mdm::VulnRef < ApplicationRecord
3 | self.table_name = 'vulns_refs'
4 |
5 | #
6 | # Associations
7 | #
8 |
9 | # {Mdm::Ref Reference} to {#vuln}.
10 | belongs_to :ref,
11 | class_name: 'Mdm::Ref',
12 | inverse_of: :vulns_refs
13 |
14 | # {Mdm::Vuln Vulnerability} imported or discovered by metasploit.
15 | belongs_to :vuln,
16 | class_name: 'Mdm::Vuln',
17 | inverse_of: :vulns_refs
18 |
19 | Metasploit::Concern.run(self)
20 | end
21 |
22 |
--------------------------------------------------------------------------------
/app/models/metasploit_data_models/ip_address/v4/nmap.rb:
--------------------------------------------------------------------------------
1 | # Nmap's octet range format composed of segments of comma separated list of segment numbers and segment number ranges.
2 | #
3 | # @example Nmap octect range format
4 | # # equivalent to ['1.5.6.7', '3.5.6.7', '4.5.6.7']
5 | # '1,3-4.5.6.7'
6 | #
7 | # @see http://nmap.org/book/man-target-specification.html
8 | class MetasploitDataModels::IPAddress::V4::Nmap < MetasploitDataModels::IPAddress::V4::Segmented
9 | #
10 | # Segments
11 | #
12 |
13 | segment class_name: 'MetasploitDataModels::IPAddress::V4::Segment::Nmap::List'
14 | end
--------------------------------------------------------------------------------
/db/migrate/003_move_notes.rb:
--------------------------------------------------------------------------------
1 | class MoveNotes < ActiveRecord::Migration[4.2]
2 | def self.up
3 | # Remove the host requirement. We'll add the column back in below.
4 | remove_column :notes, :host_id
5 | change_table :notes do |t|
6 | t.integer :workspace_id, :null => false, :default => 1
7 | t.integer :service_id
8 | t.integer :host_id
9 | end
10 | end
11 |
12 | def self.down
13 | remove_column :notes, :workspace_id
14 | remove_column :notes, :service_id
15 | change_table :notes do |t|
16 | t.integer :host_id, :null => false
17 | end
18 | end
19 | end
20 |
21 |
--------------------------------------------------------------------------------
/db/migrate/012_add_tasks.rb:
--------------------------------------------------------------------------------
1 | class AddTasks < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | create_table :tasks do |t|
5 | t.integer :workspace_id, :null => false, :default => 1
6 | t.string :created_by
7 | t.string :module
8 | t.datetime :completed_at
9 | t.string :path, :limit => 1024
10 | t.string :info
11 | t.string :description
12 | t.integer :progress
13 | t.text :options
14 | t.text :error
15 | t.timestamps null: false
16 | end
17 | end
18 |
19 | def self.down
20 | drop_table :tasks
21 | end
22 |
23 | end
24 |
25 |
--------------------------------------------------------------------------------
/db/migrate/20180904120211_create_payloads.rb:
--------------------------------------------------------------------------------
1 | class CreatePayloads < ActiveRecord::Migration[4.2]
2 | def change
3 | create_table :payloads do |t|
4 | t.string :name
5 | t.string :uuid
6 | t.integer :uuid_mask
7 | t.integer :timestamp
8 | t.string :arch
9 | t.string :platform
10 | t.string :urls
11 | t.string :description
12 | t.references :workspace
13 | t.string :raw_payload
14 | t.string :raw_payload_hash
15 | t.string :build_status
16 | t.string :build_opts
17 |
18 | t.timestamps null: false
19 | end
20 | end
21 | end
22 |
--------------------------------------------------------------------------------
/spec/dummy/config/initializers/wrap_parameters.rb:
--------------------------------------------------------------------------------
1 | # Be sure to restart your server when you modify this file.
2 |
3 | # This file contains settings for ActionController::ParamsWrapper which
4 | # is enabled by default.
5 |
6 | # Enable parameter wrapping for JSON. You can disable this by setting :format to an empty array.
7 | ActiveSupport.on_load(:action_controller) do
8 | wrap_parameters format: [:json] if respond_to?(:wrap_parameters)
9 | end
10 |
11 | # To enable root element in JSON for ActiveRecord objects.
12 | # ActiveSupport.on_load(:active_record) do
13 | # self.include_root_in_json = true
14 | # end
15 |
--------------------------------------------------------------------------------
/bin/rails:
--------------------------------------------------------------------------------
1 | #!/usr/bin/env ruby
2 | # This command will automatically be run when you run "rails" with Rails gems
3 | # installed from the root of your application.
4 |
5 | ENGINE_ROOT = File.expand_path('..', __dir__)
6 | ENGINE_PATH = File.expand_path('../lib/metasploit_data_models/engine', __dir__)
7 | APP_PATH = File.expand_path('../test/dummy/config/application', __dir__)
8 |
9 | # Set up gems listed in the Gemfile.
10 | ENV['BUNDLE_GEMFILE'] ||= File.expand_path('../Gemfile', __dir__)
11 | require 'bundler/setup' if File.exist?(ENV['BUNDLE_GEMFILE'])
12 |
13 | require 'rails/all'
14 | require 'rails/engine/commands'
15 |
--------------------------------------------------------------------------------
/spec/factories/mdm/module/authors.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_module_author, :class => Mdm::Module::Author do
3 | name { generate :mdm_module_author_name }
4 |
5 | #
6 | # Associations
7 | #
8 | association :detail, :factory => :mdm_module_detail
9 |
10 | factory :full_mdm_module_author do
11 | email { generate :mdm_module_author_name }
12 | end
13 | end
14 |
15 | sequence :mdm_module_author_name do |n|
16 | "Mdm::Module::Author#name #{n}"
17 | end
18 |
19 | sequence :mdm_module_author_email do |n|
20 | "Mdm::Module::Author#email #{n}"
21 | end
22 | end
23 |
--------------------------------------------------------------------------------
/spec/factories/mdm/workspaces.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_workspace, :class => Mdm::Workspace do
3 | #
4 | # Associations
5 | #
6 | association :owner, :factory => :mdm_user
7 |
8 | #
9 | # Attributes
10 | #
11 | boundary { generate :mdm_ipv4_address }
12 | description { generate :mdm_workspace_description }
13 | name { generate :mdm_workspace_name }
14 | end
15 |
16 | sequence :mdm_workspace_description do |n|
17 | "Mdm::Workspace description #{n}"
18 | end
19 |
20 | sequence :mdm_workspace_name do |n|
21 | "Mdm::Workspace Name #{n}"
22 | end
23 | end
24 |
--------------------------------------------------------------------------------
/db/migrate/20250721114306_remove_duplicate_services3.rb:
--------------------------------------------------------------------------------
1 | class RemoveDuplicateServices3 < ActiveRecord::Migration[7.0]
2 | def change
3 | select_mgr = Mdm::Service.arel_table.project(
4 | Mdm::Service[:host_id],
5 | Mdm::Service[:proto],
6 | Mdm::Service[:port].count
7 | ).group(
8 | 'host_id',
9 | 'port',
10 | 'proto'
11 | ).having(Mdm::Service[:port].count.gt(1))
12 |
13 | Mdm::Service.find_by_sql(select_mgr).each(&:destroy)
14 |
15 | add_index :services, [:host_id, :port, :proto, :name, :resource], unique: true, name: 'index_services_on_5_columns'
16 | end
17 | end
18 |
--------------------------------------------------------------------------------
/app/models/metasploit_data_models/search/visitor/method.rb:
--------------------------------------------------------------------------------
1 | # Extracts which AREL method to use as a translation for `Metasploit::Model::Search::Group::Base` subclasses.
2 | class MetasploitDataModels::Search::Visitor::Method
3 | include Metasploit::Model::Visitation::Visit
4 |
5 | visit 'Metasploit::Model::Search::Group::Intersection',
6 | 'Metasploit::Model::Search::Operation::Group::Intersection' do
7 | :and
8 | end
9 |
10 | visit 'Metasploit::Model::Search::Group::Union',
11 | 'Metasploit::Model::Search::Operation::Group::Union' do
12 | :or
13 | end
14 |
15 | Metasploit::Concern.run(self)
16 | end
17 |
--------------------------------------------------------------------------------
/db/migrate/20110812000001_prune_indexes.rb:
--------------------------------------------------------------------------------
1 | class PruneIndexes < ActiveRecord::Migration[4.2]
2 | def self.up
3 |
4 | if indexes(:hosts).map{|x| x.columns }.flatten.include?("comments")
5 | remove_index :hosts, :comments
6 | end
7 |
8 | if indexes(:services).map{|x| x.columns }.flatten.include?("info")
9 | remove_index :services, :info
10 | end
11 |
12 | if indexes(:vulns).map{|x| x.columns }.flatten.include?("info")
13 | remove_index :vulns, :info
14 | end
15 | end
16 |
17 | def self.down
18 | add_index :hosts, :comments
19 | add_index :services, :info
20 | add_index :vulns, :info
21 | end
22 | end
23 |
24 |
--------------------------------------------------------------------------------
/spec/dummy/app/assets/stylesheets/application.css:
--------------------------------------------------------------------------------
1 | /*
2 | * This is a manifest file that'll be compiled into application.css, which will include all the files
3 | * listed below.
4 | *
5 | * Any CSS and SCSS file within this directory, lib/assets/stylesheets, vendor/assets/stylesheets,
6 | * or vendor/assets/stylesheets of plugins, if any, can be referenced here using a relative path.
7 | *
8 | * You're free to add application-wide styles to this file and they'll appear at the top of the
9 | * compiled file, but it's generally better to create a new file per style scope.
10 | *
11 | *= require_self
12 | *= require_tree .
13 | */
14 |
--------------------------------------------------------------------------------
/config/initializers/ipaddr.rb:
--------------------------------------------------------------------------------
1 | module IPAddrExtensions
2 | extend ActiveSupport::Concern
3 |
4 | def coerce(other)
5 | begin
6 | case other
7 | when IPAddr
8 | other
9 | when String
10 | self.class.new(other)
11 | else
12 | self.class.new(other, @family)
13 | end
14 | rescue ArgumentError => e
15 | OpenStruct.new(family: false, to_i: false)
16 | end
17 | end
18 |
19 | def include?(other)
20 | begin
21 | super(other)
22 | rescue IPAddr::InvalidAddressError
23 | false
24 | end
25 | end
26 |
27 | end
28 |
29 | IPAddr.send(:prepend, IPAddrExtensions)
30 |
--------------------------------------------------------------------------------
/app/models/mdm/module/arch.rb:
--------------------------------------------------------------------------------
1 | # A supported architecture for a given {Mdm::Module::Detail Metasploit Module}
2 | class Mdm::Module::Arch < ApplicationRecord
3 | self.table_name = 'module_archs'
4 |
5 | #
6 | # Associations
7 | #
8 |
9 | belongs_to :detail, :class_name => 'Mdm::Module::Detail'
10 |
11 | #
12 | # Attributes
13 | #
14 |
15 | # @!attribute name
16 | # The architecture abbreviation, such as `'x86'`
17 | #
18 | # @return [String]
19 |
20 | #
21 | # Validations
22 | #
23 |
24 | validates :detail, :presence => true
25 | validates :name, :presence => true
26 |
27 | Metasploit::Concern.run(self)
28 | end
29 |
--------------------------------------------------------------------------------
/db/migrate/018_add_workspace_user_info.rb:
--------------------------------------------------------------------------------
1 | class AddWorkspaceUserInfo < ActiveRecord::Migration[4.2]
2 | def self.up
3 | change_table :workspaces do |t|
4 | t.string :boundary, :limit => 4096
5 | end
6 |
7 | change_table :users do |t|
8 | t.string :fullname
9 | t.string :email
10 | t.string :phone
11 | t.string :company
12 | end
13 | end
14 |
15 | def self.down
16 | change_table :workspaces do |t|
17 | t.remove :boundary
18 | end
19 |
20 | change_table :users do |t|
21 | t.remove :fullname
22 | t.remove :email
23 | t.remove :phone
24 | t.remove :company
25 | end
26 | end
27 |
28 | end
29 |
30 |
--------------------------------------------------------------------------------
/spec/factories/mdm/users.rb:
--------------------------------------------------------------------------------
1 | FactoryBot.define do
2 | factory :mdm_user, :class => Mdm::User do
3 | admin { true }
4 | company { "Interplanetary Teleportation, LTD" }
5 | email { "rwillingham@itl.com" }
6 | fullname { generate :mdm_user_fullname }
7 | phone { "5123334444" }
8 | username { generate :mdm_user_username }
9 | end
10 |
11 | factory :non_admin_mdm_user, :parent => :mdm_user do
12 | admin { false }
13 | end
14 |
15 | sequence :mdm_user_fullname do |n|
16 | "Mdm User Fullname the #{n.ordinalize}"
17 | end
18 |
19 | sequence :mdm_user_username do |n|
20 | "mdm_user_username#{n}"
21 | end
22 | end
23 |
--------------------------------------------------------------------------------
/spec/support/shared/examples/mdm/module/detail/does_not_support_stance_with_mtype.rb:
--------------------------------------------------------------------------------
1 | RSpec.shared_examples_for 'Mdm::Module::Detail does not support stance with mtype' do |mtype|
2 | context "with #{mtype.inspect}" do
3 | # define as a let so that lets from outer context can access option to set detail.
4 | let(:mtype) do
5 | mtype
6 | end
7 |
8 | it 'should return false for supports_stance?' do
9 | expect(detail.supports_stance?).to eq(false)
10 | end
11 |
12 | context 'with nil stance' do
13 | let(:stance) do
14 | nil
15 | end
16 |
17 | it { is_expected.to be_valid }
18 | end
19 | end
20 | end
--------------------------------------------------------------------------------
/db/migrate/20111011110000_add_display_name_to_reports_table.rb:
--------------------------------------------------------------------------------
1 | class AddDisplayNameToReportsTable < ActiveRecord::Migration[4.2]
2 |
3 | class Report < ApplicationRecord
4 | end
5 |
6 | def self.up
7 |
8 | add_column :reports, :name, :string, :limit => 63
9 |
10 | # Migrate to have a default name.
11 |
12 | Report.all.each do |report|
13 | rtype = report.rtype.to_s =~ /^([A-Z0-9]+)\x2d/i ? $1 : "AUDIT"
14 | default_name = rtype[0,57].downcase.capitalize + "-" + report.id.to_s[0,5]
15 | report.name = default_name
16 | report.save
17 | end
18 | end
19 |
20 | def self.down
21 | remove_column :reports, :name
22 | end
23 |
24 | end
25 |
--------------------------------------------------------------------------------
/app/models/metasploit_data_models/ip_address/v4/cidr.rb:
--------------------------------------------------------------------------------
1 | # An IPv4 CIDR (Classless InterDomain Routing) block composed of a
2 | # {MetasploitDataModels::IPAddress::V4::Single IPv4} {MetasploitDataModels::IPAddress::CIDR#address address} and
3 | # {MetasploitDataModels::IPAddress::CIDR#prefix_length prefix_length} written in the form `'a.b.c.d/prefix_length'`.
4 | #
5 | # @see https://en.wikipedia.org/wiki/Cidr#IPv6_CIDR_blocks
6 | class MetasploitDataModels::IPAddress::V4::CIDR < Metasploit::Model::Base
7 | include MetasploitDataModels::IPAddress::CIDR
8 |
9 | #
10 | # CIDR
11 | #
12 |
13 | cidr address_class: MetasploitDataModels::IPAddress::V4::Single
14 | end
15 |
--------------------------------------------------------------------------------
/app/models/mdm/mod_ref.rb:
--------------------------------------------------------------------------------
1 | # Joins a {Mdm::Module::Detail} and {Mdm::Ref} indirectly through the {Mdm::Module::Detail#refname} matching {#module},
2 | # {Mdm::Module::Detail#mtype} matching {#mtype}, and {Mdm::Ref#name} matching {#ref}.
3 | class Mdm::ModRef < ApplicationRecord
4 | #
5 | # Attributes
6 | #
7 |
8 | # @!attribute module
9 | # An {Mdm::Module::Detail#refname}.
10 | #
11 | # @return [String]
12 |
13 | # @!attribute mtype
14 | # An {Mdm::Module::Detail#mtype}.
15 | #
16 | # @return [String]
17 |
18 | # @!attribute ref
19 | # An {Mdm::Ref#name}.
20 | #
21 | # @return [String]
22 |
23 | Metasploit::Concern.run(self)
24 | end
25 |
--------------------------------------------------------------------------------
/db/migrate/20111204000000_more_inet_columns.rb:
--------------------------------------------------------------------------------
1 | class MoreInetColumns < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | change_column :wmap_requests, :address, 'INET using address::INET'
5 | remove_column :wmap_requests, :address6
6 | change_column :wmap_targets, :address, 'INET using address::INET'
7 | remove_column :wmap_targets, :address6
8 | end
9 |
10 | def self.down
11 | change_column :wmap_requests, :address, :string, :limit => 16
12 | add_column :wmap_requests, :address6, :string, :limit => 255
13 | change_column :wmap_targets, :address, :string, :limit => 16
14 | add_column :wmap_targets, :address6, :string, :limit => 255
15 | end
16 |
17 | end
18 |
--------------------------------------------------------------------------------
/app/models/mdm/route.rb:
--------------------------------------------------------------------------------
1 | # Network route that goes through a {#session} to allow accessing IPs on the remote end of the session.
2 | class Mdm::Route < ApplicationRecord
3 |
4 | #
5 | # Associations
6 | #
7 |
8 | # The session over which this route traverses.
9 | belongs_to :session,
10 | class_name: 'Mdm::Session',
11 | inverse_of: :routes
12 |
13 | #
14 | # Attributes
15 | #
16 |
17 | # @!attribute netmask
18 | # The netmask for this route.
19 | #
20 | # @return [String]
21 |
22 | # @!attribute subnet
23 | # The subnet for this route.
24 | #
25 | # @return [String]
26 |
27 | Metasploit::Concern.run(self)
28 | end
29 |
--------------------------------------------------------------------------------
/db/migrate/20150219173821_create_module_runs.rb:
--------------------------------------------------------------------------------
1 | class CreateModuleRuns < ActiveRecord::Migration[4.2]
2 | def change
3 | create_table :module_runs do |t|
4 | t.datetime :attempted_at
5 | t.text :fail_detail
6 | t.string :fail_reason
7 | t.text :module_fullname
8 | t.integer :port
9 | t.string :proto
10 | t.integer :session_id
11 | t.string :status
12 | t.integer :trackable_id
13 | t.string :trackable_type
14 | t.integer :user_id
15 | t.string :username
16 |
17 | t.timestamps null: false
18 | end
19 |
20 | add_index :module_runs, :session_id
21 | add_index :module_runs, :user_id
22 | end
23 | end
24 |
--------------------------------------------------------------------------------
/app/models/mdm/module/platform.rb:
--------------------------------------------------------------------------------
1 | # {#name Platform} on which the {#detail Metasploit Module} can run.
2 | class Mdm::Module::Platform < ApplicationRecord
3 | self.table_name = 'module_platforms'
4 |
5 | #
6 | # Associations
7 | #
8 |
9 | # The Metasploit Module that can run on the {#name named} platform.
10 | belongs_to :detail, :class_name => 'Mdm::Module::Detail'
11 |
12 | #
13 | # Attributes
14 | #
15 |
16 | # @!attribute name
17 | # The name of the platform.
18 | #
19 | # @return [String]
20 |
21 | #
22 | # Validations
23 | #
24 |
25 | validates :detail, :presence => true
26 | validates :name, :presence => true
27 |
28 | Metasploit::Concern.run(self)
29 | end
30 |
--------------------------------------------------------------------------------
/db/migrate/20130228214900_change_required_columns_to_null_false_in_web_vulns.rb:
--------------------------------------------------------------------------------
1 | # Changes all the {COLUMNS} in the web_vulns table that are required for {Mdm::WebVuln}, but were previously
2 | # :null => true
3 | class ChangeRequiredColumnsToNullFalseInWebVulns < MetasploitDataModels::ChangeRequiredColumnsToNullFalse
4 | # Columns that were previously :null => true, but are actually required to be non-null, so should be
5 | # :null => false
6 | COLUMNS = [
7 | :category,
8 | :confidence,
9 | :method,
10 | :name,
11 | :params,
12 | :path,
13 | :pname,
14 | :proof,
15 | :risk
16 | ]
17 | # Table in which {COLUMNS} are.
18 | TABLE_NAME = :web_vulns
19 | end
20 |
--------------------------------------------------------------------------------
/db/migrate/20110204112800_add_host_tags.rb:
--------------------------------------------------------------------------------
1 | class AddHostTags < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 |
5 | create_table :tags do |t|
6 | t.integer :user_id
7 | t.string :name, :limit => 1024
8 | t.text :desc
9 | t.boolean :report_summary, :null => false, :default => false
10 | t.boolean :report_detail, :null => false, :default => false
11 | t.boolean :critical, :null => false, :default => false
12 | t.timestamps null: false
13 | end
14 |
15 | create_table :hosts_tags, :id => false do |t|
16 | t.integer :host_id
17 | t.integer :tag_id
18 | end
19 |
20 | end
21 |
22 | def self.down
23 | drop_table :hosts_tags
24 | drop_table :tags
25 | end
26 |
27 | end
28 |
29 |
--------------------------------------------------------------------------------
/db/migrate/20110517160800_rename_and_prune_nessus_vulns.rb:
--------------------------------------------------------------------------------
1 | class RenameAndPruneNessusVulns < ActiveRecord::Migration[4.2]
2 |
3 | class Vuln < ApplicationRecord
4 | end
5 |
6 | # No table changes, just vuln renaming to drop the NSS id
7 | # from those vulns that have it and a descriptive name.
8 | def self.up
9 | Vuln.all.each do |v|
10 | if v.name =~ /^NSS-0?\s*$/
11 | v.delete
12 | next
13 | end
14 | next unless(v.name =~ /^NSS-[0-9]+\s(.+)/)
15 | new_name = $1
16 | next if(new_name.nil? || new_name.strip.empty?)
17 | v.name = new_name
18 | v.save!
19 | end
20 | end
21 |
22 | def self.down
23 | say "Cannot un-rename and un-prune NSS vulns for migration 20110517160800."
24 | end
25 |
26 | end
27 |
--------------------------------------------------------------------------------
/spec/app/models/metasploit_data_models/ip_address/v4/segment/segmented_spec.rb:
--------------------------------------------------------------------------------
1 | RSpec.describe MetasploitDataModels::IPAddress::V4::Segmented, type: :model do
2 | context 'CONSTANTS' do
3 | context 'SEGMENT_COUNT' do
4 | subject(:segment_count) {
5 | described_class::SEGMENT_COUNT
6 | }
7 |
8 | it { is_expected.to eq(4) }
9 | end
10 |
11 | context 'SEPARATOR' do
12 | subject(:separator) {
13 | described_class::SEPARATOR
14 | }
15 |
16 | it { is_expected.to eq('.') }
17 | end
18 | end
19 |
20 | context 'segment_count' do
21 | subject(:segment_count) {
22 | described_class.segment_count
23 | }
24 |
25 | it { is_expected.to eq(4) }
26 | end
27 | end
--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
1 | # bundler configuration
2 | .bundle
3 | # Mac OS X folder attributes
4 | .DS_Store
5 | # built gems
6 | *.gem
7 | # Rubymine project configuration
8 | .idea
9 | # logs
10 | *.log
11 | # Don't check in new rvm version and gemset files
12 | .ruby-gemset
13 | .ruby-version
14 | # Don't check in rvmrc since this is a gem
15 | .rvmrc
16 | # YARD database
17 | .yardoc
18 | # coverage report directory for simplecov/Rubymine
19 | coverage
20 | # generated yardocs
21 | doc
22 | # Installed gem versions. Not stored for the same reasons as .rvmrc
23 | Gemfile.lock
24 | # Packaging directory for builds
25 | pkg/*
26 | # Database configuration (with passwords) for specs
27 | spec/dummy/config/database.yml
28 | # Secrets
29 | spec/dummy/tmp/*
30 |
--------------------------------------------------------------------------------
/spec/dummy/app/assets/javascripts/application.js:
--------------------------------------------------------------------------------
1 | // This is a manifest file that'll be compiled into application.js, which will include all the files
2 | // listed below.
3 | //
4 | // Any JavaScript/Coffee file within this directory, lib/assets/javascripts, vendor/assets/javascripts,
5 | // or vendor/assets/javascripts of plugins, if any, can be referenced here using a relative path.
6 | //
7 | // It's not advisable to add code directly here, but if you do, it'll appear at the bottom of the
8 | // the compiled file.
9 | //
10 | // WARNING: THE FIRST BLANK LINE MARKS THE END OF WHAT'S TO BE PROCESSED, ANY BLANK LINE SHOULD
11 | // GO AFTER THE REQUIRES BELOW.
12 | //
13 | //= require jquery
14 | //= require jquery_ujs
15 | //= require_tree .
16 |
--------------------------------------------------------------------------------
/app/models/metasploit_data_models/search/visitor/attribute.rb:
--------------------------------------------------------------------------------
1 | # Extracts the `Arel::Attribute` objects from `Metasploit::Model::Search::Operator::Base` subclasses.
2 | class MetasploitDataModels::Search::Visitor::Attribute
3 | include Metasploit::Model::Visitation::Visit
4 |
5 | visit 'Metasploit::Model::Search::Operator::Association' do |operator|
6 | visit operator.source_operator
7 | end
8 |
9 | visit 'Metasploit::Model::Search::Operator::Attribute',
10 | 'MetasploitDataModels::Search::Operator::IPAddress',
11 | 'MetasploitDataModels::Search::Operator::Port::List' do |operator|
12 | table = operator.klass.arel_table
13 | table[operator.attribute]
14 | end
15 |
16 | Metasploit::Concern.run(self)
17 | end
18 |
--------------------------------------------------------------------------------
/spec/dummy/config/initializers/inflections.rb:
--------------------------------------------------------------------------------
1 | # Be sure to restart your server when you modify this file.
2 |
3 | # Add new inflection rules using the following format. Inflections
4 | # are locale specific, and you may define rules for as many different
5 | # locales as you wish. All of these examples are active by default:
6 | # ActiveSupport::Inflector.inflections(:en) do |inflect|
7 | # inflect.plural /^(ox)$/i, '\1en'
8 | # inflect.singular /^(ox)en/i, '\1'
9 | # inflect.irregular 'person', 'people'
10 | # inflect.uncountable %w( fish sheep )
11 | # end
12 |
13 | # These inflection rules are supported but not enabled by default:
14 | # ActiveSupport::Inflector.inflections(:en) do |inflect|
15 | # inflect.acronym 'RESTful'
16 | # end
17 |
--------------------------------------------------------------------------------
/spec/dummy/config/locales/en.yml:
--------------------------------------------------------------------------------
1 | # Files in the config/locales directory are used for internationalization
2 | # and are automatically loaded by Rails. If you want to use locales other
3 | # than English, add the necessary files in this directory.
4 | #
5 | # To use the locales, use `I18n.t`:
6 | #
7 | # I18n.t 'hello'
8 | #
9 | # In views, this is aliased to just `t`:
10 | #
11 | # <%= t('hello') %>
12 | #
13 | # To use a different locale, set it with `I18n.locale`:
14 | #
15 | # I18n.locale = :es
16 | #
17 | # This would use the information in config/locales/es.yml.
18 | #
19 | # To learn more, please read the Rails Internationalization guide
20 | # available at http://guides.rubyonrails.org/i18n.html.
21 |
22 | en:
23 | hello: "Hello world"
24 |
--------------------------------------------------------------------------------
/app/models/mdm/module/mixin.rb:
--------------------------------------------------------------------------------
1 | # @deprecated Never populated by metasploit-framework.
2 | #
3 | # Module mixed into a {#detail Metasploit Module}.
4 | class Mdm::Module::Mixin < ApplicationRecord
5 | self.table_name = 'module_mixins'
6 |
7 | #
8 | # Associations
9 | #
10 |
11 | # Metasploit Module the {#name named} `Module` was mixed in.
12 | belongs_to :detail, :class_name => 'Mdm::Module::Detail'
13 |
14 | #
15 | # Attributes
16 | #
17 |
18 | # @!attribute name
19 | # The `Module#name` of the mixed in `Module`.
20 | #
21 | # @return [String]
22 |
23 | #
24 | # Validation
25 | #
26 |
27 | validates :detail, :presence => true
28 | validates :name, :presence => true
29 |
30 | Metasploit::Concern.run(self)
31 | end
32 |
--------------------------------------------------------------------------------
/db/migrate/20120601152442_add_counter_caches_to_hosts.rb:
--------------------------------------------------------------------------------
1 | class AddCounterCachesToHosts < ActiveRecord::Migration[4.2]
2 |
3 | def self.up
4 | add_column :hosts, :note_count, :integer, :default => 0
5 | add_column :hosts, :vuln_count, :integer, :default => 0
6 | add_column :hosts, :service_count, :integer, :default => 0
7 |
8 | Mdm::Host.reset_column_information
9 | Mdm::Host.all.each do |h|
10 | Mdm::Host.reset_counters h.id, :notes
11 | Mdm::Host.reset_counters h.id, :vulns
12 | Mdm::Host.reset_counters h.id, :services
13 | end
14 | end
15 |
16 | def self.down
17 | remove_column :hosts, :note_count
18 | remove_column :hosts, :vuln_count
19 | remove_column :hosts, :service_count
20 | end
21 | end
22 |
--------------------------------------------------------------------------------
/spec/dummy/public/500.html:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 | We're sorry, but something went wrong (500)
5 |
17 |
18 |
19 |
20 |
21 |
22 |
We're sorry, but something went wrong.
23 |
24 |
25 |
26 |
--------------------------------------------------------------------------------
/app/models/metasploit_data_models/search/operation/port/number.rb:
--------------------------------------------------------------------------------
1 | # Search operation on an attribute that holds a port number and is being searched with a single Integer port number.
2 | class MetasploitDataModels::Search::Operation::Port::Number < Metasploit::Model::Search::Operation::Integer
3 | #
4 | # CONSTANTS
5 | #
6 |
7 | # The number of bits in a port number
8 | BITS = 16
9 | # The maximum port number
10 | MAXIMUM = (1 << BITS) - 1
11 | # The minimum port number
12 | MINIMUM = 0
13 |
14 | # The range of valid port numbers from {MINIMUM} to {MAXIMUM}, inclusive.
15 | RANGE = (MINIMUM..MAXIMUM)
16 |
17 | #
18 | # Validations
19 | #
20 |
21 | validates :value,
22 | inclusion: {
23 | in: RANGE
24 | }
25 | end
--------------------------------------------------------------------------------
/app/models/mdm/module/author.rb:
--------------------------------------------------------------------------------
1 | # The {#email} and {#name} of an author of a {#detail Metasploit Module}.
2 | class Mdm::Module::Author < ApplicationRecord
3 | self.table_name = 'module_authors'
4 |
5 | #
6 | # Associations
7 | #
8 |
9 | # The authored Metasploit Module.
10 | belongs_to :detail, :class_name => 'Mdm::Module::Detail'
11 |
12 | #
13 | # Attributes
14 | #
15 |
16 | # @!attribute email
17 | # The email address of the author.
18 | #
19 | # @return [String]
20 |
21 | # @!attribute name
22 | # The name of the author.
23 | #
24 | # @return [String]
25 |
26 | #
27 | # Validations
28 | #
29 |
30 | validates :detail, :presence => true
31 | validates :name, :presence => true
32 |
33 | Metasploit::Concern.run(self)
34 | end
35 |
--------------------------------------------------------------------------------
/db/migrate/20150421211719_rename_automatic_exploitation_index.rb:
--------------------------------------------------------------------------------
1 | class RenameAutomaticExploitationIndex < ActiveRecord::Migration[4.2]
2 | def up
3 | if index_name_exists? :automatic_exploitation_matches, :index_automatic_exploitation_matches_on_ref_id
4 | rename_index :automatic_exploitation_matches,
5 | :index_automatic_exploitation_matches_on_ref_id,
6 | :index_automatic_exploitation_matches_on_module_detail_id
7 | end
8 | end
9 | def down
10 | if index_name_exists? :automatic_exploitation_matches, :index_automatic_exploitation_matches_on_module_detail_id
11 | rename_index :automatic_exploitation_matches,
12 | :index_automatic_exploitation_matches_on_module_detail_id,
13 | :index_automatic_exploitation_matches_on_ref_id
14 | end
15 | end
16 | end
17 |
--------------------------------------------------------------------------------
/spec/dummy/config/database.yml.example:
--------------------------------------------------------------------------------
1 | # Please only use postgresql bound to a TCP port.
2 | development: &pgsql
3 | adapter: postgresql
4 | database: metasploit_data_models_development
5 | username: metasploit_data_models_development
6 | password: __________________________________
7 | host: localhost
8 | port: 5432
9 | pool: 5
10 | timeout: 5
11 |
12 | # Warning: The database defined as "test" will be erased and
13 | # re-generated from your development database when you run "rake".
14 | # Do not set this db to the same as development or production.
15 | #
16 | # Note also, sqlite3 is totally unsupported by Metasploit now.
17 | test:
18 | <<: *pgsql
19 | database: metasploit_data_models_test
20 | username: metasploit_data_models_test
21 | password: ___________________________
22 |
23 |
--------------------------------------------------------------------------------
/spec/support/matchers/match_regex_exactly.rb:
--------------------------------------------------------------------------------
1 | # Checks that the string matches the
2 | RSpec::Matchers.define :match_string_exactly do |string|
3 | failure_message do |regexp|
4 | match = regexp.match(string)
5 |
6 | failure_message = "expected #{regexp} to match #{string}"
7 |
8 | if match
9 | failure_message << ', but'
10 |
11 | unless match.pre_match.empty?
12 | failure_message << " pre-match is #{match.pre_match}"
13 | end
14 |
15 | unless match.post_match.empty?
16 | failure_message << " post-match is #{match.post_match}"
17 | end
18 | end
19 |
20 | failure_message
21 | end
22 |
23 | match do |regexp|
24 | match = regexp.match(string)
25 |
26 | match && match.pre_match.empty? && match.post_match.empty?
27 | end
28 | end
--------------------------------------------------------------------------------
/spec/dummy/public/422.html:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 | The change you wanted was rejected (422)
5 |
17 |
18 |
19 |
20 |
21 |
22 |
The change you wanted was rejected.
23 |
Maybe you tried to change something you didn't have access to.
24 |
22 |
The page you were looking for doesn't exist.
23 |
You may have mistyped the address or the page may have moved.
24 |