Class: Mdm::VulnAttempt

Inherits:

ApplicationRecord

• Object
• ApplicationRecord
• Mdm::VulnAttempt

Defined in:

app/models/mdm/vuln_attempt.rb

Overview

An attempt to exploit a #vuln.

Instance Attribute Summary

• #attempted_at ⇒ DateTime

  When this attempt was made.

• #check_code ⇒ String^?

  The check code returned by the module's check method, if this attempt was a vulnerability check rather than an exploitation attempt.

• #check_detail ⇒ String^?

  The human-readable message from the module's check method describing why the target was determined to be vulnerable, safe, etc.

• #exploited ⇒ true, false

  Whether this attempt was successful.

• #fail_detail ⇒ String^?

  Long details about why this attempt failed.

• #fail_reason ⇒ String^?

  Short reason why this attempt failed.

• #module ⇒ String

  Full name of exploit Metasploit Module that was used in this attempt.

• #username ⇒ String

  The name of the user that made this attempt.

Instance Method Summary

• #loot ⇒ Mdm::Loot^?

  Loot gathered from this attempt.

• #session ⇒ Mdm::Session^?

  The session opened by this attempt.

• #vuln ⇒ Mdm::Vuln

  The vulnerability that this attempt was exploiting.

Instance Attribute Details

#attempted_at ⇒ DateTime

When this attempt was made.

Returns:

• (DateTime)

# File 'app/models/mdm/vuln_attempt.rb', line 38

#check_code ⇒ String^?

The check code returned by the module's check method, if this attempt was a vulnerability check rather than an exploitation attempt.

Returns:

• (String) —

  one of 'vulnerable', 'appears', 'safe', 'detected', 'unknown'

• (nil) —

  if this was an exploitation attempt, not a check

# File 'app/models/mdm/vuln_attempt.rb', line 66

#check_detail ⇒ String^?

The human-readable message from the module's check method describing why the target was determined to be vulnerable, safe, etc.

Returns:

• (String) —

  if #check_code is present.

• (nil) —

  if this was an exploitation attempt, not a check

# File 'app/models/mdm/vuln_attempt.rb', line 73

#exploited ⇒ true, false

Whether this attempt was successful.

Returns:

• (true) —

  if #vuln was exploited.

• (false) —

  if #vuln was not exploited.

# File 'app/models/mdm/vuln_attempt.rb', line 43

#fail_detail ⇒ String^?

Long details about why this attempt failed.

Returns:

• (String) —

  if #exploited is false.

• (nil) —

  if #exploited is true.

# File 'app/models/mdm/vuln_attempt.rb', line 49

#fail_reason ⇒ String^?

Short reason why this attempt failed.

Returns:

• (String) —

  if #exploited is false.

• (nil) —

  if #exploited is true

# File 'app/models/mdm/vuln_attempt.rb', line 55

#module ⇒ String

Full name of exploit Metasploit Module that was used in this attempt.

Returns:

• (String)

# File 'app/models/mdm/vuln_attempt.rb', line 61

#username ⇒ String

The name of the user that made this attempt.

Returns:

• (String)

# File 'app/models/mdm/vuln_attempt.rb', line 80

Instance Method Details

#loot ⇒ Mdm::Loot^?

Loot gathered from this attempt.

Returns:

• (Mdm::Loot) —

  if #exploited is true.

• (nil) —

  if #exploited is false.

# File 'app/models/mdm/vuln_attempt.rb', line 12

belongs_to :loot,
class_name: 'Mdm::Loot',
optional: true,
inverse_of: :vuln_attempt

#session ⇒ Mdm::Session^?

The session opened by this attempt.

Returns:

• (Mdm::Session) —

  if #exploited is true.

• (nil) —

  if #exploited is false.

# File 'app/models/mdm/vuln_attempt.rb', line 21

belongs_to :session,
class_name: 'Mdm::Session',
optional: true,
inverse_of: :vuln_attempt

#vuln ⇒ Mdm::Vuln

The vulnerability that this attempt was exploiting.

Returns:

• (Mdm::Vuln)

# File 'app/models/mdm/vuln_attempt.rb', line 29

belongs_to :vuln,
class_name: 'Mdm::Vuln',
counter_cache: :vuln_attempt_count,
inverse_of: :vuln_attempts