/plugins/BMC-Remedy.rb

https://github.com/eliasdorneles/WhatWeb · Ruby · 75 lines · 45 code · 12 blank · 18 comment · 1 complexity · 931de826dc21546b01ee3550e8b2e821 MD5 · raw file 

    

  1. ##
    2. 

  2. # This file is part of WhatWeb and may be subject to
    3. 

  3. # redistribution and commercial restrictions. Please see the WhatWeb
    4. 

  4. # web site for more information on licensing and terms of use.
    5. 

  5. # http://www.morningstarsecurity.com/research/whatweb
    6. 

  6. ##
    7. 

  7. Plugin.define "BMC-Remedy" do
    8. 

  8. author "Brendan Coles <bcoles@gmail.com>" # 2011-07-11
    9. 

  9. version "0.1"
    10. 

  10. description "BMC Remedy Action Request System (also known as Remedy, AR System and ARS) is a client-server software application development environment from BMC Software (originally developed by Remedy Corporation). BMC Remedy Mid-Tier is a server component in the Action Request System for web access. - Homepage: http://www.bmc.com/products/offering/itsm-premise-ondemand.html"
    11. 

  11. 

  12. # More Info #
    13. 

  13. # http://en.wikipedia.org/wiki/BMC_Remedy_Action_Request_System
    14. 

  14. # http://en.wikipedia.org/wiki/AR_Mid-Tier
    15. 

  15. 

  16. # Google results as at 2011-07-11 #
    17. 

  17. # 103 for intitle:"Remedy Mid Tier" "User Name" +Password
    18. 

  18. 

  19. # Dorks #
    20. 

  20. dorks [
    21. 

  21. 'intitle:"Remedy Mid Tier" "User Name" "Password"'
    22. 

  22. ]
    23. 

  23. 

  24. # Examples #
    25. 

  25. examples %w|
    26. 

  26. soporte.quitze.com.mx/arsys/shared/login.jsp
    27. 

  27. str.bsnl.co.in:8014/arsys/shared/login.jsp
    28. 

  28. hcl-remedy.hcl.in
    29. 

  29. remedy.perceptis.com
    30. 

  30. hibajegy.invitel.co.hu
    31. 

  31. servicedesk.servicegruppen.dk
    32. 

  32. support.koan-it.com
    33. 

  33. v-rem-lnx1.nwu.ac.za:8080/MidTier/
    34. 

  34. supportportal.tideworks.com
    35. 

  35. remedysupport.globecommsystems.com/arsys/
    36. 

  36. https://help.afsv.net/
    37. 

  37. https://servicios.itsm.ejie.net/arsys/shared/login.jsp
    38. 

  38. https://csdpmt1.k12.hi.us/
    39. 

  39. https://remedy.its.ws
    40. 

  40. ccconline.nwpg.gov.za/arsys/shared/login.jsp
    41. 

  41. https://its.support.nc.gov/
    42. 

  42. https://itsm.ca.gov/arsys/home
    43. 

  43. gemini.srv.cs.cmu.edu
    44. 

  44. support.utoledo.edu
    45. 

  45. itsm.uws.edu.au
    46. 

  46. support.utoledo.edu
    47. 

  47. https://helpdesk.uh.edu/arsys/
    48. 

  48. https://remedy.ccit.arizona.edu:8081/arsys/
    49. 

  49. https://helpdesk.ksu.edu/arsys/shared/login.jsp
    50. 

  50. https://hd.kc.us.army.mil/
    51. 

  51. https://remedy1.afbudsys.disa.mil/arsys/home
    52. 

  52. https://mt1.afrc.af.mil/arsys/
    53. 

  53. |
    54. 

  54. 

  55. # Matches #
    56. 

  56. matches [
    57. 

  57. 

  58. # Login Page # HTML Comment
    59. 

  59. { :text=>'<!-- common to all login jsps - not localized information -->' },
    60. 

  60. 

  61. # Login Page # HTML Comment
    62. 

  62. { :text=>'<!-- Added to prevent iFrame exploit. Need to comment out for portlet to work -->' },
    63. 

  63. 

  64. # Login Page # Clear form button
    65. 

  65. { :text=>'<input type="button" name="clear" value="Clear" class="Login" onClick="clearLogin();"><!--;-->' },
    66. 

  66. { :text=>'<input type="button" name="clear" value="Clear" onClick="clearLogin();"><!--;-->' },
    67. 

  67. 

  68. # Version Detection # Title
    69. 

  69. { :version=>/<title>(BMC&nbsp;)?Remedy&nbsp;Mid&nbsp;Tier&nbsp;([^\s]+) - (Error page|Login)<\/title><!--;-->/, :offset=>1 },
    70. 

  70. { :version=>/<title>(BMC )?Remedy Mid Tier ([^\s]+) - (Error page|Login)<\/title>/, :offset=>1 },
    71. 

  71. 

  72. ]
    73. 

  73. 

  74. end
    75.