feat(module): Add to specify multiple targets for the module check function

TuuuNya · TuuuNya · commit 94f5ef7564a6 · 2019-03-07T13:44:08.000+08:00
diff --git a/lib/Pocket.py b/lib/Pocket.py
@@ -281,6 +281,62 @@ def do_check(self, args):
                 self._print_item(error, Fore.RED)
             return False
 
+        # 处理指定多个目标的情况
+        if self.module_instance.multi_target:
+            # 读取多个目标
+            target_type = self.module_instance.target_type
+            target_field = None
+
+            if target_type == "tcp":
+                target_field = "HOST"
+            elif target_type == "http":
+                target_field = "URL"
+
+            target_filename = self.module_instance.options.get_option(target_field)
+
+            try:
+                target_file = open(target_filename, 'r')
+                self.module_instance.targets = []
+                for line in target_file.readlines():
+                    self.module_instance.targets.append(line.strip())
+                self.module_instance.multi_target = True
+            except IOError as e:
+                self._print_item(e, color=Fore.RED)
+                return False
+
+            # 将targets数组中的目标写到队列中
+            targets = self.module_instance.targets
+            targets_queue = Queue()
+            for target in targets:
+                targets_queue.put(target)
+
+            while not targets_queue.empty():
+                [target, port] = module.parse_ip_port(targets_queue.get())
+                exp = self.module_class.Exploit()
+                exp.options.set_option(target_field, target)
+                exp.options.set_option("TIMEOUT", self.module_instance.options.get_option("TIMEOUT"))
+                if port:
+                    exp.options.set_option("PORT", port)
+                else:
+                    exp.options.set_option("PORT", self.module_instance.options.get_option("PORT"))
+
+                exploit_result = exp.check()
+
+                if exploit_result is None:
+                    self._print_item("Check Error: check function no results returned")
+                    return None
+
+                if exploit_result.status:
+                    self._print_item(exploit_result.success_message)
+                else:
+                    self._print_item(exploit_result.error_message, color=Fore.RED)
+
+            self.poutput("{style}[*]{style_end} module execution completed".format(
+                style=Fore.BLUE + Style.BRIGHT,
+                style_end=Style.RESET_ALL
+            ))
+            return None
+
         exploit_result = self.module_instance.check()
 
         if exploit_result is None:
