feat: added support for mac address in NmapHost and cascaded attribute support in NmapDiff

savon-noir · savon-noir · commit 204c8e391896 · 2020-12-06T21:38:28.000+01:00
diff --git a/.gitignore b/.gitignore
@@ -1,5 +1,6 @@
 *.py[cod]
 *.swp
+.pylintrc
 *~
 *.lock
 *.DS_Store
diff --git a/TODO b/TODO
@@ -1,11 +1,12 @@
 0.7.1: - clean-up blacked code and pylint it 
 0.7.1: - add unittest for defusedxml to fix billionlaugh and external entities security issues
-0.7.1: - add CSV backend support
 0.7.1: - Change License from CC-BY to Apache 2.0
-0.7.1: - Update readme file to reflect the xml fixed issue + how to install it
+0.7.1: - Enabled defusedxml support as preferred option for parsing ()
 0.7.1: - add extra_requires for plugins deps and defusedxml
 0.7.1: - Remove code duplication in sudo_run and sudo_run_background from process.py
-0.7.1: - Merge PR79 from Shouren to fix empty nmap outputs
+0.7.1: - Fix empty nmap outputs due to subprocess race condition (Merge PR79 from @Shouren)
+0.7.1: - Added banner_dict support + unittest (Merge edited PR from @cfoulds)
+0.7.2: - add CSV backend support
 0.7.2: improve API for NSE scripts
 0.7.2: add support for post,pre and host scripts
 0.7.2: add a Contribution guideline page
diff --git a/libnmap/objects/host.py b/libnmap/objects/host.py
@@ -113,6 +113,7 @@ def __hash__(self):
         return (
             hash(self.status)
             ^ hash(self.address)
+            ^ hash(self._mac_addr)
             ^ hash(frozenset(self._services))
             ^ hash(frozenset(" ".join(self._hostnames)))
         )
diff --git a/libnmap/test/files/1_host_ping.xml b/libnmap/test/files/1_host_ping.xml
@@ -0,0 +1,19 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE nmaprun>
+<?xml-stylesheet href="file:///usr/bin/../share/nmap/nmap.xsl" type="text/xsl"?>
+<!-- Nmap 7.91 scan initiated Sun Dec  6 19:15:35 2020 as: nmap -sP -oX /tmp/a.xml dionaea -->
+<nmaprun scanner="nmap" args="nmap -sP -oX /tmp/a.xml dionaea" start="1607282135" startstr="Sun Dec  6 19:15:35 2020" version="7.91" xmloutputversion="1.05">
+<verbose level="0"/>
+<debugging level="0"/>
+<host><status state="up" reason="arp-response" reason_ttl="0"/>
+<address addr="172.28.1.3" addrtype="ipv4"/>
+<address addr="02:42:AC:1C:01:03" addrtype="mac"/>
+<hostnames>
+<hostname name="dionaea" type="user"/>
+<hostname name="dionaea.honeynet_testing_net" type="PTR"/>
+</hostnames>
+<times srtt="44" rttvar="5000" to="100000"/>
+</host>
+<runstats><finished time="1607282136" timestr="Sun Dec  6 19:15:36 2020" summary="Nmap done at Sun Dec  6 19:15:36 2020; 1 IP address (1 host up) scanned in 0.19 seconds" elapsed="0.19" exit="success"/><hosts up="1" down="0" total="1"/>
+</runstats>
+</nmaprun>
diff --git a/libnmap/test/files/diff_1_host_ping_mac_changed.xml b/libnmap/test/files/diff_1_host_ping_mac_changed.xml
@@ -0,0 +1,19 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE nmaprun>
+<?xml-stylesheet href="file:///usr/bin/../share/nmap/nmap.xsl" type="text/xsl"?>
+<!-- Nmap 7.91 scan initiated Sun Dec  6 19:15:35 2020 as: nmap -sP -oX /tmp/a.xml dionaea -->
+<nmaprun scanner="nmap" args="nmap -sP -oX /tmp/a.xml dionaea" start="1607282135" startstr="Sun Dec  6 19:15:35 2020" version="7.91" xmloutputversion="1.05">
+<verbose level="0"/>
+<debugging level="0"/>
+<host><status state="up" reason="arp-response" reason_ttl="0"/>
+<address addr="172.28.1.3" addrtype="ipv4"/>
+<address addr="02:42:AC:1C:01:04" addrtype="mac"/>
+<hostnames>
+<hostname name="dionaea" type="user"/>
+<hostname name="dionaea.honeynet_testing_net" type="PTR"/>
+</hostnames>
+<times srtt="44" rttvar="5000" to="100000"/>
+</host>
+<runstats><finished time="1607282136" timestr="Sun Dec  6 19:15:36 2020" summary="Nmap done at Sun Dec  6 19:15:36 2020; 1 IP address (1 host up) scanned in 0.19 seconds" elapsed="0.19" exit="success"/><hosts up="1" down="0" total="1"/>
+</runstats>
+</nmaprun>
diff --git a/libnmap/test/test_host.py b/libnmap/test/test_host.py
@@ -1,6 +1,7 @@
 #!/usr/bin/env python
 # -*- coding: utf-8 -*-
 
+import os
 import unittest
 
 from libnmap.parser import NmapParser
@@ -111,6 +112,7 @@
 <times srtt="2100" rttvar="688" to="100000"/>
 </host>
 """
+
 host4 = """
 <host starttime="77" endtime="13">
 <status state="up" reason="locaonse"/>
@@ -151,7 +153,7 @@
 class TestNmapHost(unittest.TestCase):
     def setUp(self):
         self.fdir = os.path.dirname(os.path.realpath(__file__))
-        self.dionaea_path = "{0}/files/dionaea_scan.xml"
+        self.dionaea_path = "{0}/files/dionaea_scan.xml".format(self.fdir)
 
     def test_eq_host(self):
         h1 = NmapParser.parse(host1)
diff --git a/libnmap/test/test_report.py b/libnmap/test/test_report.py
@@ -249,10 +249,28 @@ def test_host_address_unchanged(self):
                     "NmapService::tcp.3306",
                     "address",
                     "NmapService::tcp.25",
+                    "mac_addr",
                 ]
             ),
         )
 
+    def test_diff_mac(self):
+        fdir = os.path.dirname(os.path.realpath(__file__))
+        host_ping = "{0}/files/1_host_ping.xml".format(fdir)
+        host_ping_mac_changed = (
+            "{0}/files/diff_1_host_ping_mac_changed.xml".format(fdir)
+        )
+
+        report_mac_original = NmapParser.parse_fromfile(host_ping)
+        report_mac_changed = NmapParser.parse_fromfile(host_ping_mac_changed)
+
+        report_diff = report_mac_original.diff(report_mac_changed)
+        self.assertEqual(report_diff.changed(), set(["NmapHost::172.28.1.3"]))
+        host_original = report_mac_original.hosts[0]
+        host_mac_changed = report_mac_changed.hosts[0]
+        host_diff = host_original.diff(host_mac_changed)
+        self.assertEqual(host_diff.changed(), set(["mac_addr"]))
+
 
 if __name__ == "__main__":
     test_suite = [

Original file line number	Diff line number	Diff line change
`@@ -113,6 +113,7 @@ def __hash__(self):`
`113`	`113`	`return (`
`114`	`114`	`hash(self.status)`
`115`	`115`	`^ hash(self.address)`
	`116`	`+ ^ hash(self._mac_addr)`
`116`	`117`	`^ hash(frozenset(self._services))`
`117`	`118`	`^ hash(frozenset(" ".join(self._hostnames)))`
`118`	`119`	`)`