Module: Msf::Exploit::Remote::HTTP::Splunk::URIs

Included in:

Msf::Exploit::Remote::HTTP::Splunk

Defined in:

lib/msf/core/exploit/remote/http/splunk/uris.rb

Overview

Module with methods for commonly used splunk URLs

Instance Method Summary

• #splunk_home ⇒ String

  Returns the URL for splunk home page.

• #splunk_upload_url ⇒ String

  Returns the URL for splunk upload page.

• #splunk_url_login ⇒ String

  Returns the Splunk Login URL.

• #splunk_user_page(username = nil) ⇒ String

  Returns the Splunk URL for the user’s page.

Instance Method Details

#splunk_home ⇒ String

Returns the URL for splunk home page

Returns:

• (String) —

  Splunk home page URL

# File 'lib/msf/core/exploit/remote/http/splunk/uris.rb', line 24

def splunk_home
  normalize_uri(target_uri.path, 'en-US', 'app', 'launcher', 'home')
end

#splunk_upload_url ⇒ String

Returns the URL for splunk upload page

Returns:

• (String) —

  Splunk upload page URL

# File 'lib/msf/core/exploit/remote/http/splunk/uris.rb', line 31

def splunk_upload_url
  normalize_uri(target_uri.path, 'en-US', 'manager', 'appinstall', '_upload')
end

#splunk_url_login ⇒ String

Returns the Splunk Login URL

Returns:

• (String) —

  Splunk Login URL

# File 'lib/msf/core/exploit/remote/http/splunk/uris.rb', line 8

def splunk_url_login
  normalize_uri(target_uri.path, 'en-US', 'account', 'login')
end

#splunk_user_page(username = nil) ⇒ String

Returns the Splunk URL for the user’s page

Parameters:

• username (String) (defaults to: nil) —

  username of the account

Returns:

• (String) —

  Splunk user URL

# File 'lib/msf/core/exploit/remote/http/splunk/uris.rb', line 16

def splunk_user_page(username = nil)
  username = datastore['USERNAME'] if username.nil?
  normalize_uri(target_uri.path, 'en-US', 'splunkd', '__raw', 'services', 'authentication', 'users', username)
end