Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
Add Urgent/11 vulnerability scanner #12399
This is a quick port of the Urgent/11 vulnerability scanner from https://github.com/ArmisSecurity/urgent11-detector as an external Metasploit module. This set of vulnerabilities has been getting a lot of attention lately, so having a scanner in Metasploit might be useful.
Note, I don't have an actual vulnerable target yet, so I'm not sure if this works in reality. Also, the module wants to do some iptables tweaking, which I made conditional on the python3 platform being Linux, since iptables is Linux-only. This module might also be portable to Ruby directly, but I was more interested in being able to track upstream changes to the detector with minimal effort.
On second glance, the license of this module might require some clean-room reimplementation, since I don't think we have any AGPL code elsewhere and generally avoid GPL. I think external modules avoid any kind of linking problems, trying to decide if this is worth it. The port blocking code feels like something packetfu should be able to do as well in a more portable way as well...