sitecore_scan 0.0.2 → 0.0.4

checksums.yaml

@@ -1,15 +1,7 @@
 ---
-!binary "U0hBMQ==":
-  metadata.gz: !binary |-
-    OGExOWRjNzc1NjRiNWYzZmQ5NjYyMGZjOTk4MmQ4ZDRjY2YyNWRkMw==
-  data.tar.gz: !binary |-
-    NDU2NWU1ZTc0MWNhZDEyNmY3NzMwNDdkNmFlZWM4YjU3NDZlNjE2MQ==
+SHA256:
+  metadata.gz: b678037d9c8815435b9e010914c27478105b0edb7b5d3c894cfb1fccb7cb3107
+  data.tar.gz: 7da2e224e3427c8e9f8f34b42acc1970e5ccfd3ccfccbd7e27b956e53a1efdf7
 SHA512:
-  metadata.gz: !binary |-
-    Y2Q2NGU2MjMzNjJlODlhNmM5OGQxM2ZiMWJiOWE3ZGUzOTlmZDgyNGE3OTc0
-    Zjk2N2YyODJlN2Y1YzhjYjBkYTVhMmQ4MzhhNGYxYWZiZDliODUwNzVmMDQ5
-    MmMyYWE3OTE0Y2ZmYWRkNTUxZGNkNmRlNzYwMzBhMGRkM2EyNzA=
-  data.tar.gz: !binary |-
-    MDFiM2QyYmZmZGY0NWNiNjNhNzJjMWE3NGY1ODRiNmE4MDk1ZGQxMTlhN2E4
-    MDJkNGRmMzZmMDJhYzJlMDI5NDg3OTk0ZmRjODYwYmE3M2QzZDkyMmY0NTM3
-    MzQ3MjQxYWI3ZmVmZTVkOWJlZjEyNjYyNGVhZmYyZTE2NDFhNjM=
+  metadata.gz: 487fb1c72d1adf02654b5b22d887bc0d1774f5521ff299c04dfbf8f57e2ecf819bcc2cc732bef59bad37cf1c026bbe701716432c0d67c793ec2717768aa3ac85
+  data.tar.gz: ae6bb06f1925ab086b744ea4cd46768028a95af647da39c240cc64a8d59b5bd569044fe338f2a9d2e6f7473622054cdec110d0004a23195dca7ed319a58a2582

data/bin/sitecore-scan

@@ -16,7 +16,7 @@ def banner
   \\___ \\| | __/ _ \\/ __/ _ \\| '__/ _ \\\\___ \\ / __/ _` | '_ \\ 
   ____) | | ||  __/ (_| (_) | | |  __/____) | (_| (_| | | | |
  |_____/|_|\\__\\___|\\___\\___/|_|  \\___|_____/ \\___\\__,_|_| |_|
-                                               version 0.0.2"
+                                               version #{SitecoreScan::VERSION}"
   puts
   puts '-' * 60
 end
@@ -93,8 +93,7 @@ def scan(url, check: true, insecure: false, verbose: false)
 
   # Check if the URL is Sitecore
   if check
-    is_sitecore = SitecoreScan::detectSitecore(url)
-    unless is_sitecore
+    unless SitecoreScan::detectSitecore(url)
       puts '- Sitecore not found'
       exit(1)
     end
@@ -106,20 +105,19 @@ def scan(url, check: true, insecure: false, verbose: false)
   puts "+ Version: #{version}" if version
 
   # Check if Glimpse debugging is enabled
-  glimpse = SitecoreScan::glimpseDebugging(url)
-  puts "+ Glimpse debugging is enabled" if glimpse
+  puts "+ Glimpse debugging is enabled" if SitecoreScan::glimpseDebugging(url)
 
   # Check if SOAP API is accessible
-  soap_api = SitecoreScan::soapApi(url)
-  puts "+ SOAP API is available" if soap_api
+  puts "+ SOAP API is available" if SitecoreScan::soapApi(url)
+
+  # Check if MVC Device Simulator allows file disclosure
+  puts "+ MVC Device Simulator allows file disclosure" if SitecoreScan::mvcDeviceSimulatorFileDisclosure(url)
 
   # Check if Executive Insight Dashboard reporting is accessible
-  reporting = SitecoreScan::dashboardReporting(url)
-  puts "+ Executive Insight Dashboard reporting is available" if reporting
+  puts "+ Executive Insight Dashboard reporting is available" if SitecoreScan::dashboardReporting(url)
 
   # Check if Telerik Web UI is accessible
-  telerik = SitecoreScan::telerikWebUi(url)
-  puts "+ Telerik Web Ui is available" if telerik
+  puts "+ Telerik Web Ui is available" if SitecoreScan::telerikWebUi(url)
 
   puts "Scan finished at #{Time.now.getutc}"
   puts '-' * 60

data/lib/sitecore_scan.rb

@@ -8,9 +8,10 @@ require 'cgi'
 require 'logger'
 require 'net/http'
 require 'openssl'
+require 'stringio'
 
 class SitecoreScan
-  VERSION = '0.0.2'.freeze
+  VERSION = '0.0.4'.freeze
 
   def self.logger
     @logger
@@ -29,13 +30,27 @@ class SitecoreScan
   end
 
   #
-  # Check if URL is running Sitecore using edit mode
+  # Check if URL is running Sitecore
   #
   # @param [String] URL
   #
   # @return [Boolean]
   #
   def self.detectSitecore(url)
+    return true if detectSitecoreEditMode(url)
+    return true if detectSitecoreErrorRedirect(url)
+
+    false
+  end
+
+  #
+  # Check if URL is running Sitecore using edit mode
+  #
+  # @param [String] URL
+  #
+  # @return [Boolean]
+  #
+  def self.detectSitecoreEditMode(url)
     url += '/' unless url.to_s.end_with? '/'
     res = sendHttpRequest("#{url}?sc_mode=edit")
 
@@ -48,6 +63,25 @@ class SitecoreScan
     false
   end
 
+  #
+  # Check if URL is running Sitecore using error redirect
+  #
+  # @param [String] URL
+  #
+  # @return [Boolean]
+  #
+  def self.detectSitecoreErrorRedirect(url)
+    url += '/' unless url.to_s.end_with? '/'
+    res = sendHttpRequest("#{url}#{('a'..'z').to_a.shuffle[0,8].join}.aspx")
+
+    return false unless res
+
+    return true if res['sitecore-item']
+    return true if res.code.to_i == 302 && res['location'].to_s.downcase.include?('sitecore/service/notfound.aspx')
+
+    false
+  end
+
   #
   # Retrieve Sitecore version from Login page
   #
@@ -65,7 +99,11 @@ class SitecoreScan
 
     return version if version
 
-    res.body.to_s.scan(%r{<iframe src="https://sdn.sitecore.net/startpage.aspx\?[^"]+v=([\d\.]+)"}).flatten.first
+    version = res.body.to_s.scan(%r{<iframe src="https://sdn.sitecore.net/startpage.aspx\?[^"]+v=([\d.]+)"}).flatten.first
+
+    return version if version
+
+    nil
   end
 
   #
@@ -99,7 +137,29 @@ class SitecoreScan
 
     return false unless res
     return false unless res.code.to_i == 200
-    return false unless res.body.to_s.include? 'Visual Sitecore Service Web Service'
+    return false unless res.body.to_s.include?('Visual Sitecore Service Web Service')
+
+    true
+  end
+
+  #
+  # Check if MVC Device Simulator allows file disclosure (SC2023-001-568150)
+  # https://support.sitecore.com/kb?id=kb_article_view&sysparm_article=KB1002925
+  # https://blog.assetnote.io/2023/05/10/sitecore-round-two/
+  #
+  # @param [String] URL
+  #
+  # @return [Boolean]
+  #
+  def self.mvcDeviceSimulatorFileDisclosure(url)
+    url += '/' unless url.to_s.end_with? '/'
+    res = sendHttpRequest("#{url}api/sitecore/Sitecore.Mvc.DeviceSimulator.Controllers.SimulatorController,Sitecore.Mvc.DeviceSimulator.dll/Preview?previewPath=/App_Data/license.xml")
+
+    return false unless res
+    return false unless res.code.to_i == 200
+    return false unless res.body.to_s.include?('<?xml')
+    return false unless res.body.to_s.include?('sitecore')
+    return false unless res.body.to_s.include?('signedlicense')
 
     true
   end
@@ -118,7 +178,7 @@ class SitecoreScan
 
     return false unless res
     return false unless res.code.to_i == 200
-    return false unless res.body.to_s.include? 'Sitecore.Analytics.Reporting'
+    return false unless res.body.to_s.include?('Sitecore.Analytics.Reporting')
 
     true
   end

metadata

@@ -1,29 +1,29 @@
 --- !ruby/object:Gem::Specification
 name: sitecore_scan
 version: !ruby/object:Gem::Version
-  version: 0.0.2
+  version: 0.0.4
 platform: ruby
 authors:
 - Brendan Coles
-autorequire: 
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2021-11-07 00:00:00.000000000 Z
+date: 2024-05-29 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: logger
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.4'
+        version: '1.6'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.4'
+        version: '1.6'
 description: A simple remote scanner for Sitecore CMS
 email: bcoles@gmail.com
 executables:
@@ -37,25 +37,23 @@ homepage: https://github.com/bcoles/sitecore_scan
 licenses:
 - MIT
 metadata: {}
-post_install_message: 
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
-  - - ! '>='
+  - - ">="
     - !ruby/object:Gem::Version
-      version: 2.0.0
+      version: 2.5.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
-  - - ! '>='
+  - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.2.2
-signing_key: 
+rubygems_version: 3.3.26
+signing_key:
 specification_version: 4
 summary: Sitecore scanner
 test_files: []
-has_rdoc: