summaryrefslogtreecommitdiffstats
path: root/scripts/bitcoin-getaddr.nse
blob: a4d6d3f2fcb51c5763b90d608cd68d8523baa53b (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
local datetime = require "datetime"
local shortport = require "shortport"
local stdnse = require "stdnse"
local tab = require "tab"
local target = require "target"

local bitcoin = stdnse.silent_require "bitcoin"

description = [[
Queries a Bitcoin server for a list of known Bitcoin nodes
]]

---
-- @usage
-- nmap -p 8333 --script bitcoin-getaddr <ip>
--
-- @output
-- PORT     STATE SERVICE
-- 8333/tcp open  unknown
-- | bitcoin-getaddr:
-- |   ip                    timestamp
-- |   10.10.10.10:8333      11/09/11 17:38:00
-- |   10.10.10.11:8333      11/09/11 17:42:39
-- |   10.10.10.12:8333      11/09/11 19:34:07
-- |   10.10.10.13:8333      11/09/11 17:37:45
-- |_  10.10.10.14:8333      11/09/11 17:37:12

author = "Patrik Karlsson"
license = "Same as Nmap--See https://nmap.org/book/man-legal.html"
categories = {"discovery", "safe"}


--
-- Version 0.1
--
-- Created 11/09/2011 - v0.1 - created by Patrik Karlsson <patrik@cqure.net>
--

portrule = shortport.port_or_service(8333, "bitcoin", "tcp" )

local function fail(err) return stdnse.format_output(false, err) end

action = function(host, port)

  local bcoin = bitcoin.Helper:new(host, port, { timeout = 20000 })
  local status = bcoin:connect()

  if ( not(status) ) then
    return fail("Failed to connect to server")
  end

  local status, ver = bcoin:exchVersion()
  if ( not(status) ) then
    return fail("Failed to extract version information: " .. ver)
  end

  local status, nodes = bcoin:getNodes()
  if ( not(status) ) then
    return fail("Failed to extract address information" .. nodes)
  end
  bcoin:close()

  local response = tab.new(2)
  tab.addrow(response, "ip", "timestamp")

  for _, node in ipairs(nodes or {}) do
    if ( target.ALLOW_NEW_TARGETS ) then
      target.add(node.address.host)
    end
    tab.addrow(response, ("%s:%d"):format(node.address.host, node.address.port), datetime.format_timestamp(node.ts))
  end

  if ( #response > 1 ) then
    return stdnse.format_output(true, tab.dump(response) )
  end
end