Sha256: 4ed858b97f1dc16d4d79762e21f00093e761e9d704587e086663a38bd0ec0d87

Contents?: true

Size: 1.26 KB

Versions: 6

Compression:

Stored size: 1.26 KB

Contents

# frozen_string_literal: true

##
# This file is part of WhatWeb and may be subject to
# redistribution and commercial restrictions. Please see the WhatWeb
# web site for more information on licensing and terms of use.
# http://www.morningstarsecurity.com/research/whatweb
##
WhatWeb::Plugin.define "TeamSpeak-Server-Log" do
  @author = "Brendan Coles <bcoles@gmail.com>" # 2010-10-15
  @version = "0.1"
  @description = "This plugin extracts the username and password from TeamSpeak server.log files."

  # 15 results for "WARNING,Info,SERVER" ext:log @ 2010-10-15

  @matches = [

    # Server version detection
    { version: /^[0-9]{2}-[0-9]{2}-[0-9]{2} [0-9]{2}:[0-9]{2}:[0-9]{2},ALL,Info,server,[\s]+Server version: ([^\r^\n]+)/ },

  ]

  # Extract passwords
  def passive(target)
    m = []

    if /-------------- log started at /.match?(target.body)

      if /^[0-9]{2}-[0-9]{2}-[0-9]{2} [0-9]{2}:[0-9]{2}:[0-9]{2},WARNING,Info,SERVER,	[super]*admin account info: username: [^\s]+ password: ([^\r^\n]+)/.match?(target.body)
        accounts = target.body.scan(/^[0-9]{2}-[0-9]{2}-[0-9]{2} [0-9]{2}:[0-9]{2}:[0-9]{2},WARNING,Info,SERVER,	[super]*admin account info: username: [^\s]+ password: ([^\r^\n]+)/)
        m << { account: accounts }
      end

    end

    m
  end
end

Version data entries

6 entries across 6 versions & 1 rubygems

Version Path
simple_whatweb-0.4.1 lib/whatweb/plugins/teamspeak-server-log.rb
simple_whatweb-0.4.0 lib/whatweb/plugins/teamspeak-server-log.rb
simple_whatweb-0.3.0 lib/whatweb/plugins/teamspeak-server-log.rb
simple_whatweb-0.2.1 lib/whatweb/plugins/teamspeak-server-log.rb
simple_whatweb-0.2.0 lib/whatweb/plugins/teamspeak-server-log.rb
simple_whatweb-0.1.0 lib/whatweb/plugins/teamspeak-server-log.rb