Merge pull request #5 from GrahamMThomas/MetasploitAdapter

Add the metasploit attack adapter and 2 example use cases

Author: iallison

gauntlt/attack_adapters/metasploit.rb

@@ -0,0 +1,22 @@
+When /^"metasploit" is installed$/ do
+ensure_cli_installed("msfconsole")
+end
+
+When /^I launch (?:a|an) "metasploit" attack with:$/ do |command|
+ if command.include? "exit"
+ run_with_profile command
+ else 
+ run_with_profile command + " exit;"
+ end
+end
+
+When /^I launch (?:a|an) "metasploit" vulnerability check with:$/ do |command|
+ if !(command.include? "check")
+ command += "check;"
+ end
+ if !(command.include? "exit")
+ command += "exit;"
+ end
+ run_with_profile command
+end
+

gauntlt/attacks/metasploit-UDP-sweep.attack

@@ -0,0 +1,22 @@
+@slow 
+
+Feature: Test a UDP sweep
+Background:
+Given "metasploit" is installed
+And the following profile:
+| name | value |
+| RHOSTS | localhost |
+
+Scenario: Attempt a UDP sweep with msfconsole
+
+
+When I launch a "metasploit" attack with:
+"""
+msfconsole -x "use auxiliary/scanner/discovery/udp_sweep;set RHOSTS <RHOSTS>; exploit; exit"
+
+"""
+
+Then it should pass with:
+"""
+Auxiliary module execution completed
+"""

gauntlt/attacks/metasploit-ms-08_067-check.attack

@@ -0,0 +1,21 @@
+@slow
+
+Feature: Test if RHOST is vulnerable to ms08_067 exploit
+Background:
+Given "metasploit" is installed
+And the following profile:
+| name | value |
+| RHOST | 192.168.1.218 |
+
+Scenario: Check if RHOST is vulnerable
+
+
+When I launch a "metasploit" vulnerability check with:
+"""
+msfconsole -x "use exploit/windows/smb/ms08_067_netapi; set RHOST <RHOST>; check;"
+"""
+
+Then it should pass with:
+"""
+The target is not exploitable.
+"""