vsftpd_232: Add report_service & report_note

g0tmi1k · g0tmi1k · commit 40ba707924a7 · 2026-05-06T11:15:50.000+01:00
diff --git a/modules/auxiliary/dos/ftp/vsftpd_232.rb b/modules/auxiliary/dos/ftp/vsftpd_232.rb
@@ -6,6 +6,7 @@
 class MetasploitModule < Msf::Auxiliary
   include Msf::Exploit::Remote::Ftp
   include Msf::Auxiliary::Dos
+  include Msf::Auxiliary::Report
 
   def initialize(info = {})
     super(
@@ -43,6 +44,10 @@ def initialize(info = {})
     ])
   end
 
+  def sanitize_ftp_response(str)
+    Rex::Text.to_hex_ascii(str.to_s.gsub(/^\d{3}[\s-]/, '').strip.gsub(/\A\(|\)\z/, ''))
+  end
+
   def check
     # attempt to connect
     begin
@@ -51,6 +56,27 @@ def check
         return Exploit::CheckCode::Unknown('Failed to connect or authenticate via FTP')
       end
 
+      if banner
+        vprint_status("FTP banner: #{sanitize_ftp_response(banner)}")
+
+        # Cleaned up FTP banner
+        report_service(
+          host: rhost,
+          port: rport,
+          proto: 'tcp',
+          name: 'ftp',
+          info: sanitize_ftp_response(banner)
+        )
+
+        # Raw FTP banner
+        report_note(
+          host: rhost,
+          port: rport,
+          proto: 'tcp',
+          type: 'ftp.banner',
+          data: { banner: banner.strip }
+        )
+      end
     rescue Rex::ConnectionRefused
       print_error('Connection refused')
       return Exploit::CheckCode::Unknown('Connection refused by the target')
