metasploit-framework
https://github.com/rapid7/metasploit-framework
Ruby
Metasploit Framework
Msf::Exploit::Remote::BrowserAutopwn2#get_suitable_exploits
Returns a list of suitable exploits for the current client based on what #sort_bap_exploits gives us. It will do a global exploitable requirement check (the best it can do). There's actually a target-specific exploitable requirement check too, but that is performed in BrowserExploitServer while the exploit is being served. In other words, it is possible #get_suitable_exploits might not be 100% accurate (but pretty good, it depends on how the exploit dev accurately defines his/her global requirements), but the exploit always has a choice to bail at the last second if it decides it is actually not suitable for the client. That way we don't risk being too wreckless with our attack.
Edit
git clone [email protected]:rapid7/metasploit-framework.git
cd metasploit-framework
open lib/msf/core/exploit/browser_autopwn2.rb
Contribute
# Make a new branchgit checkout -b -your-name--update-docs-Msf--Exploit--Remote--BrowserAutopwn2-get_suitable_exploits-for-pr
# Commit to gitgit add lib/msf/core/exploit/browser_autopwn2.rbgit commit -m "better docs for Msf::Exploit::Remote::BrowserAutopwn2#get_suitable_exploits"
# Open pull requestgem install hub # on a mac you can `brew install hub`
hub fork
git push <your name> -your-name--update-docs-Msf--Exploit--Remote--BrowserAutopwn2-get_suitable_exploits-for-pr
hub pull-request
# Celebrate!