Hi here two plugins for Sybase info gathering
todo: modify the plugins in order to perform the request also over ssl.
# OpenVAS Vulnerability Test
# $Id$
# Description: This script ensure that the FileMaker database server is
installed
#
# Author:
# Christian Eric Edjenguele <[EMAIL PROTECTED]>
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2 and later,
# as published by the Free Software Foundation
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
#
if(description)
{
script_id(00000);
name["english"] = "Sybase Enterprise Application Server service detection";
script_name(english:name["english"]);
desc["english"] = "
The remote host is running the Sybase Enterprise Application Server.
Solution :
It's recommended to allow connection to this host only from trusted host or
networks,
or disable the service if not used.
Risk factor : None";
script_description(english:desc["english"]);
summary["english"] = "Sybase EAServer is the open application server from
Sybase Inc an enterprise software and services company exclusively focused on
managing and mobilizing information. ";
script_summary(english:summary["english"]);
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is under GPL v2 +");
family["english"] = "Service detection";
script_family(english:family["english"]);
exit(0);
}
#
# The script code starts here
#
include("http_func.inc");
include("http_keepalive.inc");
port = get_http_port(default:80);
if ( ! port ) exit(0);
if(!get_port_state(port))exit(0);
buf = http_get(item:"/", port:port);
r = http_keepalive_send_recv(port:port, data:buf, bodyonly:1);
if( r == NULL )exit(0);
if(("<TITLE>076Sybase EAServer<" >< r || egrep(pattern:"076Sybase EAServer",
string:r)))
security_note(port);
# OpenVAS Vulnerability Test
# $Id$
# Description: This script ensure that the FileMaker database server is
installed
#
# Author:
# Christian Eric Edjenguele <[EMAIL PROTECTED]>
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2 and later,
# as published by the Free Software Foundation
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
#
if(description)
{
script_id(00000);
name["english"] = "Sybase Enterprise Application Server service detection";
script_name(english:name["english"]);
desc["english"] = "
The remote host is running the Sybase Enterprise Application Server JSP
Administration Console.
Solution :
It's recommended to allow connection to this host only from trusted host or
networks,
or disable the service if not used.
Risk factor : None";
script_description(english:desc["english"]);
summary["english"] = "Sybase EAServer is the open application server from
Sybase Inc an enterprise software and services company exclusively focused on
managing and mobilizing information. ";
script_summary(english:summary["english"]);
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is under GPL v2 +");
family["english"] = "Service detection";
script_family(english:family["english"]);
exit(0);
}
#
# The script code starts here
#
include("http_func.inc");
include("http_keepalive.inc");
port = get_http_port(default:80);
if ( ! port ) exit(0);
if(!get_port_state(port))exit(0);
buf = http_get(item:"/WebConsole/Login.jsp", port:port);
r = http_keepalive_send_recv(port:port, data:buf, bodyonly:1);
if( r == NULL )exit(0);
if(("<TITLE>076Sybase Management Console Login<" >< r ||
egrep(pattern:"076Sybase Management Console Login", string:r)))
security_note(port);
===
Christian Eric Edjenguele
IT Security Software Developer & Researcher
tel. +39 3408580513
View my linkedin profile: http://www.linkedin.com/in/edjenguele
My blog: http://www.edjenguele.blogspot.com
---
Management, Developers, Security Professionals – can only result in one thing……
better security.
http://www.owasp.org/index.php/OWASP_NYC_AppSec_2008_Conference Sept 22nd-25th
2008
__________________________________________________
Do You Yahoo!?
Poco spazio e tanto spam? Yahoo! Mail ti protegge dallo spam e ti da tanto
spazio gratuito per i tuoi file e i messaggi
http://mail.yahoo.it
_______________________________________________
Openvas-plugins mailing list
Openvas-plugins@wald.intevation.org
http://lists.wald.intevation.org/mailman/listinfo/openvas-plugins
