rapid7 · gwillcox-r7 · Dec 16, 2021 · Dec 15, 2021
diff --git a/lib/msf/core/rhosts_walker.rb b/lib/msf/core/rhosts_walker.rb
@@ -19,6 +19,7 @@ class RhostsWalker
       postgres
       smb
       ssh
+      tcp
     ].freeze
     private_constant :SUPPORTED_SCHEMAS
 
@@ -296,6 +297,27 @@ def parse_ssh_uri(value, datastore)
       result
     end
 
+    # Parses a uri string such as tcp://user:password@example.com into a hash
+    # which can safely be merged with a [Msf::DataStore] datastore for setting options.
+    #
+    # @param value [String] the uri string
+    # @return [Hash] A hash where keys match the required datastore options associated with
+    #   the uri value
+    def parse_tcp_uri(value, datastore)
+      uri = ::Addressable::URI.parse(value)
+      result = {}
+
+      result['RHOSTS'] = uri.hostname
+      if uri.port
+        result['RPORT'] = uri.port
+      end
+
+      set_username(datastore, result, uri.user) if uri.user
+      set_password(datastore, result, uri.password) if uri.password
+
+      result
+    end
+
     protected
 
     def set_username(datastore, result, username)

diff --git a/spec/lib/msf/core/rhosts_walker_spec.rb b/spec/lib/msf/core/rhosts_walker_spec.rb
@@ -775,6 +775,18 @@ def create_tempfile(content)
       end
     end
 
+    context 'when using the tcp scheme' do
+      it 'enumerates tcp schemes' do
+        ssh_mod.datastore['RHOSTS'] = '"tcp://user:a b c@example.com" "tcp://example.com:3000"'
+        expected = [
+          { 'RHOSTS' => '192.0.2.2', 'RPORT' => 22, 'USERNAME' => 'user', 'PASSWORD' => 'a b c' },
+          { 'RHOSTS' => '192.0.2.2', 'RPORT' => 3000, 'USERNAME' => nil, 'PASSWORD' => nil },
+        ]
+        expect(each_error_for(ssh_mod)).to be_empty
+        expect(each_host_for(ssh_mod)).to have_datastore_values(expected)
+      end
+    end
+
     context 'when using the ssh scheme' do
       it 'enumerates ssh schemes' do
         ssh_mod.datastore['RHOSTS'] = '"ssh://user:a b c@example.com/"'