# frozen_string_literal: true

##
# This file is part of WhatWeb and may be subject to
# redistribution and commercial restrictions. Please see the WhatWeb
# web site for more information on licensing and terms of use.
# http://www.morningstarsecurity.com/research/whatweb
##
WhatWeb::Plugin.define "Winmail-Server" do
  @author = "Brendan Coles <bcoles@gmail.com>" # 2011-06-27
  @version = "0.1"
  @description = "Winmail Server is an enterprise class mail server software system offering a robust feature set, including extensive security measures. Winmail Server supports SMTP, POP3, IMAP, Webmail, LDAP, multiple domains, SMTP authentication, spam protection, anti-virus protection, SSL/TLS security, RBL ,SPF, SpamAssassin, Network Storage, remote access, Web-based administration, and a wide array of standard email options such as filtering, signatures, real-time monitoring, archiving, and public email folders."
  @website = "http://www.magicwinmail.net/"

  # Google results as at 2011-06-27 #
  # 343 for intitle:"Powered by Winmail Server - Login" +Username +Password

  # Dorks #
  @dorks = [
    'intitle:"Powered by Winmail Server - Login" "Username" "Password"'
  ]

  # Matches #
  @matches = [

    # Title
    { text: '<title>WebMail | Powered by Winmail Server - Login</title>' },
    { text: '<title>Web Administration | Powered by Winmail Server - Login</title>' },

    # Register Page
    { text: '<td class=default>&nbsp;<input type=password name=f_password size=30 maxlength=64 onkeyup="javascript: EvalPwd(this.value);" onchange="javascript: EvalPwd(this.value);" class="textbox"><font color=#ff0000>*</font></td>' },

    # Login Page # Powered by text
    { text: '<a target="_blank" href="http://www.magicwinmail.net?sid=winmailcust">Powered by Winmail Server</a>&nbsp;' },

    # Admin Page # Powered by text
    { text: '<td align="right" class="hometext"><a href="http://www.magicwinmail.net?sid=winmailcust" target=_blank>Powered by Winmail Server</a></td>' },

    # Logo
    { text: '<td rowspan=2 width="264" bgcolor="#FFFFFF"><img src="themes/default/images/mail_pic.jpg" width="264" height="102"></td>' },

    # Mail Server Detection
    { string: /<td style="color:#888888; font-size: 11px;">&nbsp;&nbsp;&nbsp;&nbsp;POP3,SMTP Server: <font color=red>([^\s^<]+)<\/font><\/td><\/tr>/ },

    # Remember me link
    { text: '<input type=checkbox name=f_autologin value="1"><acronym style="cursor: hand;" OnClick="f_autologin.click()">Automatically login at next time</acronym>' },

    # Version Detection # HTML Comment
    { version: /<!--[\s]+&copy 20[\d]{2}(-[\d]{4})? AMAX Information Technologies Inc\. All Rights Reserved\.[\s]+WebMail \| Powered by Winmail Server ([^\s]+)[\s]+-->/, offset: 1 },

  ]

  # Passive #
  def passive(target)
    m = []

    # magicwinmail_default_language cookie
    m << { name: "magicwinmail_default_language cookie" } if target.headers["set-cookie"] =~ /magicwinmail_default_language=[^;]+;/

    # magicwinmail_domain_name cookie
    m << { name: "magicwinmail_domain_name cookie" } if target.headers["set-cookie"] =~ /magicwinmail_domain_name=[^;]+;/

    # magicwinmail_login_userid cookie
    m << { name: "magicwinmail_login_userid cookie" } if target.headers["set-cookie"] =~ /magicwinmail_login_userid=[^;]+;/

    # Return passive matches
    m
  end
end