Merge pull request #15 from Ostorlab/fix/incorrect_references_message

Fix incorrect message formatting + references.
Ostorlab · Dec 18, 2023 · 21a7e76 · 21a7e76
2 parents 74fe01e + 8c70217
commit 21a7e76
Show file tree

Hide file tree

Showing 2 changed files with 24 additions and 5 deletions.
diff --git a/agent/metasploit_agent.py b/agent/metasploit_agent.py
@@ -28,6 +28,11 @@
 MODULE_TIMEOUT = 300
 VULNERABLE_STATUSES = ["vulnerable", "appears"]
 METASPLOIT_AGENT_KEY = b"agent_metasploit_asset"
+REFERENCES = {
+    "CVE": "https://nvd.nist.gov/vuln/detail/CVE-{ID}",
+    "CWE": "https://cwe.mitre.org/data/definitions/{ID}.html",
+    "EDB": "https://www.exploit-db.com/exploits/{ID}",
+}
 
 
 class Error(Exception):
@@ -122,7 +127,9 @@ def process(self, message: m.Message) -> None:
                 ):
                     technical_detail = f"Using `{module_instance.moduletype}` module `{module_instance.modulename}`\n"
                     technical_detail += f"Target: {vhost}:{rport}\n"
-                    technical_detail += f'Message: \n```{results["message"]}```'
+                    technical_detail += (
+                        f'Message: \n```shell\n{results["message"]}\n```'
+                    )
 
                     self._emit_results(module_instance, technical_detail)
 
@@ -198,7 +205,11 @@ def _emit_results(
         msf_references = {}
         for reference in module_instance.references:
             if isinstance(reference, list) and len(reference) == 2:
-                msf_references[reference[0]] = reference[1]
+                if reference[0] == "URL":
+                    msf_references[reference[1]] = reference[1]
+                elif reference[0] in REFERENCES:
+                    url = REFERENCES[reference[0]].format(ID=reference[1])
+                    msf_references[url] = url
         entry = kb.Entry(
             title=entry_title,
             risk_rating="HIGH",
@@ -251,12 +262,10 @@ def _set_module_args(
             arg_name = arg["name"]
             if arg_name in selected_module.options:
                 selected_module[arg_name] = arg["value"]
-
         if len(selected_module.missing_required) > 0:
             raise ValueError(
                 f"The following arguments are missing: {str(selected_module.missing_required)}"
             )
-
         return selected_module
 
 

diff --git a/tests/metasploit_agent_test.py b/tests/metasploit_agent_test.py
@@ -78,8 +78,18 @@ def testExploit_whenVulnerable_returnFindings(
         "Using `exploit` module `unix/misc/distcc_exec`\n"
         "Target: 192.168.1.17:443\n"
         "Message: \n"
-        "```The target is vulnerable.```"
+        "```shell\nThe target is vulnerable.\n```"
     )
+    assert vulnerability_finding["references"] == [
+        {
+            "title": "https://nvd.nist.gov/vuln/detail/CVE-2004-2687",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2004-2687",
+        },
+        {
+            "title": "http://distcc.samba.org/security.html",
+            "url": "http://distcc.samba.org/security.html",
+        },
+    ]
 
 
 @pytest.mark.parametrize(