--- -- A minimal CVS (Concurrent Versions System) pserver protocol implementation which currently only supports authentication. -- -- @author Patrik Karlsson -- @copyright Same as Nmap--See https://nmap.org/book/man-legal.html -- -- Version 0.1 -- Created 07/13/2011 - v0.1 - created by Patrik Karlsson local nmap = require "nmap" local stdnse = require "stdnse" local string = require "string" local table = require "table" _ENV = stdnse.module("cvs", stdnse.seeall) Helper = { new = function(self, host, port) local o = { host = host, port = port } setmetatable(o, self) self.__index = self return o end, connect = function(self) self.socket = nmap.new_socket() return self.socket:connect(self.host, self.port) end, login = function(self, repo, user, pass ) local auth_tab = {} assert(repo, "No repository was specified") assert(user, "No user was specified") assert(pass, "No pass was specified") -- Add a leading slash if it's missing if ( repo:sub(1,1) ~= "/" ) then repo = "/" .. repo end table.insert(auth_tab, "BEGIN AUTH REQUEST") table.insert(auth_tab, repo) table.insert(auth_tab, user) table.insert(auth_tab, Util.pwscramble(pass)) table.insert(auth_tab, "END AUTH REQUEST") local data = stdnse.strjoin("\n", auth_tab) .. "\n" local status = self.socket:send(data) if ( not(status) ) then return false, "Failed to send login request" end local status, response = self.socket:receive() if ( not(status) ) then return false, "Failed to read login response" end if ( response == "I LOVE YOU\n" ) then return true end return false, response end, close = function(self) return self.socket:close() end } Util = { --- Scrambles a password -- -- @param password string containing the password to scramble pwscramble = function(password) local shifts = { 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 114,120, 53, 79, 96,109, 72,108, 70, 64, 76, 67,116, 74, 68, 87, 111, 52, 75,119, 49, 34, 82, 81, 95, 65,112, 86,118,110,122,105, 41, 57, 83, 43, 46,102, 40, 89, 38,103, 45, 50, 42,123, 91, 35, 125, 55, 54, 66,124,126, 59, 47, 92, 71,115, 78, 88,107,106, 56, 36,121,117,104,101,100, 69, 73, 99, 63, 94, 93, 39, 37, 61, 48, 58,113, 32, 90, 44, 98, 60, 51, 33, 97, 62, 77, 84, 80, 85,223, 225,216,187,166,229,189,222,188,141,249,148,200,184,136,248,190, 199,170,181,204,138,232,218,183,255,234,220,247,213,203,226,193, 174,172,228,252,217,201,131,230,197,211,145,238,161,179,160,212, 207,221,254,173,202,146,224,151,140,196,205,130,135,133,143,246, 192,159,244,239,185,168,215,144,139,165,180,157,147,186,214,176, 227,231,219,169,175,156,206,198,129,164,150,210,154,177,134,127, 182,128,158,208,162,132,167,209,149,241,153,251,237,236,171,195, 243,233,253,240,194,250,191,155,142,137,245,235,163,242,178,152 }; return 'A' .. string.gsub(password, ".", function(c) return string.char(shifts[c:byte()+1]) end) end } return _ENV;