forked from rapid7/metasploit-framework
-
Notifications
You must be signed in to change notification settings - Fork 3
Metasploit 模块参考标识
L edited this page May 10, 2020
·
1 revision
Metasploit 模块中的参考是与该模块相关的信息源. 这可以是到漏洞咨询, 新闻文章, 关于模块使用的特定技术的博客文章, 特定推文等的链接. 你拥有的越多越好, 但不应将其用作广告.
| ID | Source | Code Example |
|---|---|---|
| CVE | cvedetails.com | ['CVE', '2014-9999'] |
| CWE | cwe.mitre.org | ['CWE', '90'] |
| BID | securityfocus.com | ['BID', '1234'] |
| MSB | technet.microsoft.com | ['MSB', 'MS13-055'] |
| EDB | exploit-db.com | ['EDB', '1337'] |
| US-CERT-VU | kb.cert.org | ['US-CERT-VU', '800113'] |
| ZDI | zerodayinitiative.com | ['ZDI', '10-123'] |
| WPVDB | wpvulndb.com | ['WPVDB', '7615'] |
| PACKETSTORM | packetstormsecurity.com | ['PACKETSTORM', '132721'] |
| URL | anything | ['URL', 'http://example.com/blog.php?id=123'] |
| AKA (deprecated*) | anything | ['AKA', 'shellshock'] |
*注意: 模块的 AKA 名称不再存储为参考标识符, 而是存储在 Notes 元数据字段中, 如下例所示.
require 'msf/core'
class MetasploitModule < Msf::Exploit::Remote
Rank = NormalRanking
def initialize(info={})
super(update_info(info,
'Name' => "Code Example",
'Description' => %q{
This is an example of a module using references
},
'License' => MSF_LICENSE,
'Author' => [ 'Unknown' ],
'References' =>
[
['CVE', '2014-9999' ],
['BID', '1234'],
['URL', 'http://example.com/blog.php?id=123']
],
'Platform' => 'win',
'Targets' =>
[
[ 'Example', { 'Ret' => 0x41414141 } ]
],
'Payload' =>
{
'BadChars' => "\x00"
},
'Privileged' => false,
'DisclosureDate' => "Apr 1 2014",
'DefaultTarget' => 0,
'Notes' => {
'AKA' => [ 'shellshock' ]
}
))
end
def exploit
print_debug('Hello, world')
end
end