OXIESEC PANEL

Name	Size	Modified	Perms
📁 ..	-	08/07/2020 12:36:00 PM	rwxr-xr-x
📄 afp.lua	71.92 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 ajp.lua	16.69 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 amqp.lua	10.5 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 anyconnect.lua	4.45 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 asn1.lua	14.57 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 base32.lua	7.33 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 base64.lua	5.67 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 bin.lua	12.89 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 bit.lua	2.43 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 bitcoin.lua	16.99 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 bits.lua	1.82 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 bittorrent.lua	40.77 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 bjnp.lua	9.45 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 brute.lua	50.04 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 cassandra.lua	5.78 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 citrixxml.lua	16 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 coap.lua	76.24 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 comm.lua	10.75 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 creds.lua	18.22 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 cvs.lua	3.13 KB	04/16/2018 01:11:39 AM	rw-r--r--
📁 data	-	08/07/2020 12:36:00 PM	rwxr-xr-x
📄 datafiles.lua	11.05 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 datetime.lua	1.16 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 dhcp.lua	29.17 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 dhcp6.lua	19.87 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 dns.lua	51.44 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 dnsbl.lua	19.02 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 dnssd.lua	12.57 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 drda.lua	24.2 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 eap.lua	7.64 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 eigrp.lua	14.47 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 formulas.lua	5.35 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 ftp.lua	9.03 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 geoip.lua	1.71 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 giop.lua	18.44 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 gps.lua	3.05 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 http.lua	105.81 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 httpspider.lua	36.15 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 iax2.lua	9.6 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 ike.lua	15.02 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 imap.lua	9.59 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 informix.lua	39.76 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 ipOps.lua	26.92 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 ipmi.lua	10.02 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 ipp.lua	12.54 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 irc.lua	757 bytes	04/16/2018 01:11:39 AM	rw-r--r--
📄 iscsi.lua	21.45 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 isns.lua	15.34 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 jdwp.lua	43.57 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 json.lua	11.65 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 ldap.lua	31.86 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 lfs.luadoc	1.68 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 libssh2-utility.lua	4.39 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 libssh2.luadoc	4.75 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 listop.lua	4.66 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 lpeg-utility.lua	5.64 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 lpeg.luadoc	351 bytes	04/16/2018 01:11:39 AM	rw-r--r--
📄 ls.lua	10.96 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 match.lua	2.05 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 membase.lua	9.88 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 mobileme.lua	8.46 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 mongodb.lua	21.29 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 mqtt.lua	28.95 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 msrpc.lua	179.93 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 msrpcperformance.lua	29.72 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 msrpctypes.lua	167.61 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 mssql.lua	110.87 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 multicast.lua	6.1 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 mysql.lua	17.09 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 natpmp.lua	5.04 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 ncp.lua	36 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 ndmp.lua	11.58 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 netbios.lua	13.9 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 nmap.luadoc	40.34 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 nrpc.lua	4.42 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 nsedebug.lua	3.49 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 omp2.lua	4.77 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 openssl.luadoc	7.08 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 ospf.lua	15.29 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 packet.lua	36.65 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 pcre.luadoc	6.79 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 pgsql.lua	20.61 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 pop3.lua	5.7 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 pppoe.lua	29.95 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 proxy.lua	12.04 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 rdp.lua	11.05 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 re.lua	8.22 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 redis.lua	3.59 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 rmi.lua	47.89 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 rpc.lua	106.22 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 rpcap.lua	11.19 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 rsync.lua	5.19 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 rtsp.lua	8.67 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 sasl.lua	16.38 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 shortport.lua	8.01 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 sip.lua	30.56 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 slaxml.lua	17.9 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 smb.lua	175.85 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 smb2.lua	16.32 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 smbauth.lua	37.53 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 smtp.lua	19.81 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 snmp.lua	15.99 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 socks.lua	8.26 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 srvloc.lua	12.25 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 ssh1.lua	8.88 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 ssh2.lua	11.88 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 sslcert.lua	33.34 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 sslv2.lua	9.63 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 stdnse.lua	45.93 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 strbuf.lua	4.52 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 strict.lua	2.53 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 stun.lua	11.51 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 tab.lua	3.35 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 target.lua	3.93 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 tftp.lua	9.38 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 tls.lua	56.16 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 tn3270.lua	43.75 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 tns.lua	64.17 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 unicode.lua	14.32 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 unittest.lua	12.33 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 unpwdb.lua	10.08 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 upnp.lua	11.18 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 url.lua	12.09 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 versant.lua	8.6 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 vnc.lua	23.3 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 vulns.lua	76.29 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 vuzedht.lua	16.62 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 wsdd.lua	12.03 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 xdmcp.lua	11.9 KB	04/16/2018 01:11:39 AM	rw-r--r--
📄 xmpp.lua	15.88 KB	04/16/2018 01:11:39 AM	rw-r--r--

Editing: stun.lua

---
-- A library that implements the basics of the STUN protocol (Session
-- Traversal Utilities for NAT) per RFC3489 and RFC5389. A protocol
-- overview is available at http://en.wikipedia.org/wiki/STUN.
--
-- @args stun.mode Mode container to use. Supported containers: "modern"
--                 (default) or "classic"
--
-- @author Patrik Karlsson <patrik@cqure.net>
--

local bin = require "bin"
local ipOps = require "ipOps"
local match = require "match"
local math = require "math"
local nmap = require "nmap"
local stdnse = require "stdnse"
local string = require "string"
local table = require "table"
_ENV = stdnse.module("stun", stdnse.seeall)

-- The supported request types
MessageType = {
  BINDING_REQUEST = 0x0001,
  BINDING_RESPONSE = 0x0101,
}

-- The header used in both request and responses
Header = {

-- the header size in bytes
  size = 20,

--- creates a new instance of Header
  -- @param type number the request/response type
  -- @param trans_id string the 128-bit transaction id
  -- @param length number the packet length
  -- @return new instance of Header
  -- @name Header.new
  new = function(self, type, trans_id, length)
    local o = { type = type, trans_id = trans_id, length = length or 0 }
    setmetatable(o, self)
    self.__index = self
    return o
  end,

--- parses an opaque string and creates a new Header instance
  -- @param data opaque string
  -- @return new instance of Header
  -- @name Header.parse
  parse = function(data)
    local header = Header:new()
    local pos
    pos, header.type, header.length, header.trans_id = bin.unpack(">SSA16", data)
    return header
  end,

-- converts the header to an opaque string
  -- @return string containing the header instance
  __tostring = function(self)
    return bin.pack(">SSA", self.type, self.length, self.trans_id)
  end,
}

Request = {

-- The binding request
  Bind = {

--- Creates a new Bind request
    -- @param trans_id string containing the 128 bit transaction ID
    -- @return new instance of the Bind request
    -- @name Request.Bind.new
    new = function(self, trans_id)
      local o = {
        header = Header:new(MessageType.BINDING_REQUEST, trans_id),
        attributes = {}
      }
      setmetatable(o, self)
      self.__index = self
      return o
    end,

-- converts the instance to an opaque string
    -- @return string containing the Bind request as string
    __tostring = function(self)
      local data = ""
      for _, attrib in ipairs(self.attributes) do
        data = data .. tostring(attrib)
      end
      self.header.length = #data
      return tostring(self.header) .. data
    end,
  }

}

-- The attribute class
Attribute = {

MAPPED_ADDRESS = 0x0001,
  RESPONSE_ADDRESS = 0x0002,
  CHANGE_REQUEST = 0x0003,
  SOURCE_ADDRESS = 0x0004,
  CHANGED_ADDRESS = 0x0005,
  USERNAME = 0x0006,
  PASSWORD = 0x0007,
  MESSAGE_INTEGRITY = 0x0008,
  ERROR_CODE = 0x0009,
  UNKNOWN_ATTRIBUTES = 0x000a,
  REFLECTED_FROM = 0x000b,
  SERVER = 0x8022,

--- creates a new attribute instance
  -- @param type number containing the attribute type
  -- @param data string containing the attribute value
  -- @return instance of attribute
  -- @name Attribute.new
  new = function(self, type, data)
    local o = {
      type = type,
      length = (data and #data or 0),
      data = data,
    }
    setmetatable(o, self)
    self.__index = self
    return o
  end,

--- parses a string and creates an Attribute instance
  -- @param data string containing the raw attribute
  -- @return new attribute instance
  -- @name Attribute.parse
  parse = function(data)
    local attr = Attribute:new()
    local pos = 1

pos, attr.type, attr.length = bin.unpack(">SS", data, pos)

local function parseAddress(data, pos)
      local _, addr = nil, {}
      pos, _, addr.family, addr.port, addr.ip = bin.unpack(">CCSI", data, pos)
      if ( addr.ip ) then
        addr.ip = ipOps.fromdword(addr.ip)
      end
      return addr
    end

if ( ( attr.type == Attribute.MAPPED_ADDRESS ) or
      ( attr.type == Attribute.RESPONSE_ADDRESS ) or
      ( attr.type == Attribute.SOURCE_ADDRESS ) or
      ( attr.type == Attribute.CHANGED_ADDRESS ) ) then
      if ( attr.length ~= 8 ) then
        stdnse.debug2("Incorrect attribute length")
      end
      attr.addr = parseAddress(data, pos)
    elseif( attr.type == Attribute.SERVER ) then
      pos, attr.server = bin.unpack("A" .. attr.length-1, data, pos)
    end

return attr
  end,

-- converts an attribute to string
  -- @return string containing the serialized attribute
  __tostring = function(self)
    return bin.pack(">SSA", self.type, self.length, self.data or "")
  end,

}

-- Response class container
Response = {

-- Bind response class
  Bind = {

--- creates a new instance of the Bind response
    -- @param trans_id string containing the 128 bit transaction id
    -- @return new Bind instance
    -- @name Response.Bind.new
    new = function(self, trans_id)
      local o = { header = Header:new(MessageType.BINDING_RESPONSE, trans_id) }
      setmetatable(o, self)
      self.__index = self
      return o
    end,

--- parses a raw string and creates a new Bind instance
    -- @param data string containing the raw data
    -- @return a new Bind instance
    -- @name Response.Bind.parse
    parse = function(data)
      local resp = Response.Bind:new()
      local pos = Header.size

resp.header = Header.parse(data)
      resp.attributes = {}

while( pos < #data ) do
        local attr = Attribute.parse(data:sub(pos))
        table.insert(resp.attributes, attr)
        pos = pos + attr.length + 4
      end
      return resp
    end
  }
}

-- The communication class
Comm = {

--- creates a new Comm instance
  -- @param host table
  -- @param port table
  -- @param options table, currently supporting:
  --        <code>timeout</code> - socket timeout in ms.
  -- @return new instance of Comm
  -- @name Comm.new
  new = function(self, host, port, options)
    local o = {
      host = host,
      port = port,
      options = options or { timeout = 10000 },
      socket = nmap.new_socket(),
    }
    setmetatable(o, self)
    self.__index = self
    return o
  end,

--- connects the socket to the server
  -- @return status true on success, false on failure
  -- @return err string containing an error message, if status is false
  -- @name Comm.connect
  connect = function(self)
    self.socket:set_timeout(self.options.timeout)
    return self.socket:connect(self.host, self.port)
  end,

--- sends a request to the server
  -- @return status true on success, false on failure
  -- @return err string containing an error message, if status is false
  -- @name Comm.send
  send = function(self, data)
    return self.socket:send(data)
  end,

--- receives a response from the server
  -- @return status true on success, false on failure
  -- @return response containing a response instance, or
  --         err string containing an error message, if status is false
  -- @name Comm.recv
  recv = function(self)
    local status, hdr_data = self.socket:receive_buf(match.numbytes(Header.size), false)
    if ( not(status) ) then
      return false, "Failed to receive response from server"
    end

local header = Header.parse(hdr_data)
    if ( not(header) ) then
      return false, "Failed to parse response header"
    end

local status, data = self.socket:receive_buf(match.numbytes(header.length), false)
    if ( header.type == MessageType.BINDING_RESPONSE ) then
      local resp = Response.Bind.parse(hdr_data .. data)
      return true, resp
    end

return false, "Unknown response message received"
  end,

--- sends the request instance to the server and receives the response
  -- @param req request class instance
  -- @return status true on success, false on failure
  -- @return response containing a response instance, or
  --         err string containing an error message, if status is false
  -- @name Comm.exch
  exch = function(self, req)
    local status, err = self:send(tostring(req))
    if ( not(status) ) then
      return false, "Failed to send request to server"
    end
    return self:recv()
  end,

--- closes the connection to the server
  -- @return status true on success, false on failure
  -- @return err string containing an error message, if status is false
  -- @name Comm.close
  close = function(self)
    self.socket:close()
  end,
}

-- The Util class
Util = {

--- creates a random string
  -- @param len number containing the length of the generated random string
  -- @return str containing the random string
  -- @name Util.randomString
  randomString = function(len)
    local str = {}
    for i=1, len do str[i] = string.char(math.random(255)) end
    return table.concat(str)
  end

}

-- The Helper class
Helper = {

--- creates a new Helper instance
  -- @param host table
  -- @param port table
  -- @param options table, currently supporting:
  --        <code>timeout</code> - socket timeout in ms.
  -- @param mode containing the mode container. Supported containers: "modern"
  --             (default) or "classic"
  -- @return o new instance of Helper
  -- @name Helper.new
  new = function(self, host, port, options, mode)
    local o = {
      mode = mode or stdnse.get_script_args("stun.mode") or "modern",
      comm = Comm:new(host, port, options),
    }
    assert(o.mode == "modern" or o.mode == "classic", "Unsupported mode")
    setmetatable(o, self)
    self.__index = self
    return o
  end,

--- connects to the server
  -- @return status true on success, false on failure
  -- @return err string containing an error message, if status is false
  -- @name Helper.connect
  connect = function(self)
    return self.comm:connect()
  end,

--- Gets the external public IP
  -- @return status true on success, false on failure
  -- @return result containing the IP as string
  -- @name Helper.getExternalAddress
  getExternalAddress = function(self)
    local trans_id

if ( self.mode == "classic" ) then
      trans_id = Util.randomString(16)
    else
      trans_id = bin.pack("HA","2112A442", Util.randomString(12))
    end
    local req = Request.Bind:new(trans_id)

local status, response = self.comm:exch(req)
    if ( not(status) ) then
      return false, "Failed to send data to server"
    end

local result
    for k, attr in pairs(response.attributes) do
      if (attr.type == Attribute.MAPPED_ADDRESS ) then
        result = ( attr.addr and attr.addr.ip or "<unknown>" )
      end
      if ( attr.type == Attribute.SERVER ) then
        self.cache = self.cache or {}
        self.cache.server = attr.server
      end
    end

if ( not(result) and not(self.cache) ) then
      return false, "Server returned no response"
    end

return status, result
  end,

--- Gets the server version if it was returned by the server
  -- @return status true on success, false on failure
  -- @return version string containing the server product and version
  -- @name Helper.getVersion
  getVersion = function(self)
    local status, response = false, nil
    -- check if the server version was cached
    if ( not(self.cache) or not(self.cache.version) ) then
      local status, response = self:getExternalAddress()
      if ( status ) then
        return true, (self.cache and self.cache.server or "")
      end
      return false, response
    end
    return true, (self.cache and self.cache.server or "")
  end,

--- closes the connection to the server
  -- @return status true on success, false on failure
  -- @return err string containing an error message, if status is false
  -- @name Helper.close
  close = function(self)
    return self.comm:close()
  end,

}

return _ENV;