From 0d47952611198ef6b1163f366dc03922d20b1475 Mon Sep 17 00:00:00 2001
From: Daniel Baumann <daniel.baumann@progress-linux.org>
Date: Wed, 17 Apr 2024 09:42:04 +0200
Subject: Adding upstream version 7.94+git20230807.3be01efb1+dfsg.

Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
---
 scripts/http-svn-info.nse | 130 ++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 130 insertions(+)
 create mode 100644 scripts/http-svn-info.nse

(limited to 'scripts/http-svn-info.nse')

diff --git a/scripts/http-svn-info.nse b/scripts/http-svn-info.nse
new file mode 100644
index 0000000..257d38c
--- /dev/null
+++ b/scripts/http-svn-info.nse
@@ -0,0 +1,130 @@
+local http = require "http"
+local shortport = require "shortport"
+local slaxml = require "slaxml"
+local stdnse = require "stdnse"
+
+description = [[Requests information from a Subversion repository.
+]]
+
+---
+-- @usage nmap --script http-svn-info <target>
+--
+-- @args http-svn-info.url This is a URL relative to the scanned host eg. /default.html (default: /)
+--
+-- @output
+-- 443/tcp open  https   syn-ack
+-- | http-svn-info:
+-- |   Path: .
+-- |   URL: https://svn.nmap.org/
+-- |   Relative URL: ^/
+-- |   Repository Root: https://svn.nmap.org
+-- |   Repository UUID: e0a8ed71-7df4-0310-8962-fdc924857419
+-- |   Revision: 34938
+-- |   Node Kind: directory
+-- |   Last Changed Author: yang
+-- |   Last Changed Rev: 34938
+-- |_  Last Changed Date: Sun, 19 Jul 2015 13:49:59 GMT--
+--
+-- @xmloutput
+-- <elem key="Path">.</elem>
+-- <elem key="URL">https://svn.nmap.org/</elem>
+-- <elem key="Relative URL">^/</elem>
+-- <elem key="Repository Root">https://svn.nmap.org</elem>
+-- <elem key="Repository UUID">e0a8ed71-7df4-0310-8962-fdc924857419</elem>
+-- <elem key="Revision">34938</elem>
+-- <elem key="Node Kind">directory</elem>
+-- <elem key="Last Changed Author">yang</elem>
+-- <elem key="Last Changed Rev">34938</elem>
+-- <elem key="Last Changed Date">Sun, 19 Jul 2015 13:49:59 GMT</elem>
+
+
+author = "Gyanendra Mishra"
+
+license = "Same as Nmap--See https://nmap.org/book/man-legal.html"
+
+categories = {"default", "discovery", "safe"}
+
+
+portrule = shortport.http
+
+local ELEMENTS = {
+    ["repository-uuid"] =  "Repository UUID",
+    ["version-name"] = "Last Changed Rev",
+    ["creator-displayname"] = "Last Changed Author",
+    ["getlastmodified"] = "Last Changed Date",
+    ["baseline-relative-path"] = "Relative URL",
+    ["href"] = "Repository Root",
+    ["getcontentlength"] = "file"
+}
+
+local output_order = {
+  "Last Changed Author",
+  "Last Changed Rev",
+  "Last Changed Date",
+}
+
+local function get_text_callback(store, name)
+  if ELEMENTS[name] == nil then return end
+  return function(content) store[ELEMENTS[name]] = content end
+end
+
+action = function(host, port)
+
+  local url = stdnse.get_script_args(SCRIPT_NAME .. ".url") or "/"
+  local output = {}
+  local ordered_output = stdnse.output_table()
+
+  local options = {
+    header = {
+      ["Depth"] = 0,
+    },
+  }
+
+  local response = http.generic_request(host, port, "PROPFIND", url, options)
+  if response and response.status == 207 then
+
+    local parser = slaxml.parser:new()
+    parser._call = {startElement = function(name)
+      parser._call.text = get_text_callback(output, name) end,
+      closeElement = function(name) parser._call.text = function() return nil end end
+    }
+    parser:parseSAX(response.body, {stripWhitespace=true})
+
+    if next(output) then
+
+      ordered_output["Path"] = url:match("/([^/]*)$"):len() > 0 and url:match("/([^/]*)$") or url:match("/([^/]*)/$") or "."
+      if output["file"] then
+        ordered_output["Name"] = url:match("/([^/]*)$")
+      end
+
+      ordered_output["URL"] = host.targetname and port.service .. "://" .. host.targetname .. url
+      ordered_output["Relative URL"] = output["Relative URL"] and "^/" .. output["Relative URL"] or "^/"
+      output["Repository Root"] = output["Repository Root"]:gsub("%/%!svn.*", ""):len() > 0 and output["Repository Root"]:gsub("%/%!svn.*", "")  or "/"
+      ordered_output["Repository Root"] = port.service .. "://" .. host.targetname .. output["Repository Root"]
+      ordered_output["Repository UUID"] = output["Repository UUID"]
+      if url ~= output["Repository Root"] then
+        local temp_output = {}
+        response = http.generic_request(host, port, "PROPFIND", output["Repository Root"], options)
+        if response and response.status == 207 then
+          parser._call.startElement = function(name) parser._call.text = get_text_callback(temp_output, name) end
+          parser:parseSAX(response.body, {stripWhitespace=true})
+          ordered_output["Revision"] = temp_output["Last Changed Rev"]
+        end
+      else
+        ordered_output["Revision"] = output["Last Changed Rev"]
+      end
+
+      if not output["file"] then
+        ordered_output["Node Kind"] = "directory"
+      else
+        ordered_output["Node Kind"] = "file"
+      end
+
+      for _, value in ipairs(output_order) do
+        ordered_output[value] = output[value]
+      end
+
+      return ordered_output
+    end
+  end
+end
-- 
cgit v1.2.3