Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

detect unifi in ssh sessions #11558

Merged
merged 1 commit into from
Mar 14, 2019
Merged

detect unifi in ssh sessions #11558

merged 1 commit into from
Mar 14, 2019

Conversation

h00die
Copy link
Contributor

@h00die h00die commented Mar 13, 2019

When SSHing to Ubiquiti Unifi devices, there was no detection of the platform.
We tack on the unifi OS version and board name (model) to the proof as well.

Pre:

resource (ubnt.rb)> run
[+] 111.111.1.111:22 - Success: 'admin:1111111111111111' 'uid=0(admin) gid=0(admin) Linux US-24 3.6.5 #1 SMP Fri Jan 25 16:34:35 MST 2019 armv7l GNU/Linux'
[*] Command shell session 1 opened (222.222.2.222:41243 -> 111.111.1.111:22) at 2019-03-12 20:34:06 -0400
[*] Scanned 1 of 1 hosts (100% complete)
[*] Auxiliary module execution completed
[*] Starting persistent handler(s)...
msf5 auxiliary(scanner/ssh/ssh_login) > sessions

Active sessions
===============

  Id  Name  Type         Information                                    Connection
  --  ----  ----         -----------                                    ----------
  1         shell linux  SSH admin:1111111111111111 (111.111.1.111:22)  222.222.2.222:37601 -> 111.111.1.111:22 (111.111.1.111)

Post:

resource (ubnt.rb)> run
[+] 111.111.1.111:22 - Success: 'admin:1111111111111111' 'uid=0(admin) gid=0(admin) Linux US-24 3.6.5 #1 SMP Fri Jan 25 16:34:35 MST 2019 armv7l GNU/Linux unifi.version=5.10.19 board.name=USW-24 '
[*] Command shell session 1 opened (222.222.2.222:41243 -> 111.111.1.111:22) at 2019-03-12 20:34:06 -0400
[*] Scanned 1 of 1 hosts (100% complete)
[*] Auxiliary module execution completed
[*] Starting persistent handler(s)...
msf5 auxiliary(scanner/ssh/ssh_login) > sessions

Active sessions
===============

  Id  Name  Type         Information                                    Connection
  --  ----  ----         -----------                                    ----------
  1         shell unifi  SSH admin:1111111111111111 (111.111.1.111:22)  222.222.2.222:37601 -> 111.111.1.111:22 (111.111.1.111)
msf5 auxiliary(scanner/ssh/ssh_login) > hosts

Hosts
=====

address        mac  name  os_name  os_flavor  os_sp  purpose  info  comments
-------        ---  ----  -------  ---------  -----  -------  ----  --------
111.111.1.111             unifi

wvu
wvu approved these changes Mar 14, 2019
View reviewed changes
Copy link
Contributor

@wvu wvu left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think I handled your last one, and this looks reasonable to me.

wvu added a commit to wvu/metasploit-framework that referenced this pull request Mar 14, 2019
@wvu
Land rapid7#11558, Ubiquiti UniFi for SSH LoginScanner
173f251
@wvu wvu merged commit a0b1ca1 into rapid7:master Mar 14, 2019
@wvu
Copy link
Contributor

wvu commented Mar 14, 2019

Release Notes

This adds Ubiquiti UniFi platform detection to the SSH LoginScanner.

msjenkins-r7 pushed a commit that referenced this pull request Mar 14, 2019
@wvu @msjenkins-r7
Land #11558, Ubiquiti UniFi for SSH LoginScanner
022fa4d
@h00die h00die deleted the sshubnt branch March 16, 2019 12:34
@h00die h00die mentioned this pull request Mar 17, 2019
Merged
@gdavidson-r7 gdavidson-r7 added the rn-enhancement release notes enhancement label Mar 19, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@wvu wvu wvu approved these changes

Assignees
No one assigned
Labels
rn-enhancement release notes enhancement
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@h00die @wvu @gdavidson-r7