Software / code / prosody-modules
Changeset
6315:cc42d3548452
mod_version_spoofed: add new evil module
| author | Nicholas George <wirlaburla@worlio.com> |
|---|---|
| date | Tue, 01 Jul 2025 19:14:58 -0500 |
| parents | 6314:706867e05809 |
| children | 6316:0bd63c52bbed |
| files | mod_version_spoofed/README.md mod_version_spoofed/mod_version_spoofed.lua |
| diffstat | 2 files changed, 83 insertions(+), 0 deletions(-) [+] |
line wrap: on
line diff
--- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/mod_version_spoofed/README.md Tue Jul 01 19:14:58 2025 -0500 @@ -0,0 +1,23 @@ +# Introduction + +This module is a fork of the built-in mod_version that adds spoofing options. Please do not use this module to mess with services that provide statistics and information. Instead, contact the hosts of such services and request blacklisting. + +# Configuration + + Name Description Type Default value + ---------------------- --------------------------------------------------- -------- --------------- + server\_name the reported name of the server software string "Prosody" + server\_version the reported version of the server software string `prosody.version` + server\_os the reported platform of the server software string nil + +This replaces mod_version, so you must disable mod_version when enabling or the modules might conflict. Unconfigured, this module acts the same as mod_version. + +As a tip if you want complete spoofing, you should use the `name` option under your VirtualHost and components to hide mentions of Prosody. + +Compatibility +============= + + version note + --------- --------------------------------------------------------------------------- + 13 Should work + 0.12 Works
--- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/mod_version_spoofed/mod_version_spoofed.lua Tue Jul 01 19:14:58 2025 -0500 @@ -0,0 +1,60 @@ +-- Prosody IM +-- Copyright (C) 2025-2025 Nicholas George +-- Original mod_version copyright +-- Copyright (C) 2008-2010 Matthew Wild +-- Copyright (C) 2008-2010 Waqas Hussain +-- +-- This project is MIT/X11 licensed. Please see the +-- COPYING file in the source package for more information. +-- +-- This is a fork of mod_version that implements the ability to spoof server information. +-- This should replace mod_version in the modules_enabled list. Do not load both as they +-- will conflict. + +local st = require "util.stanza"; + +module:add_feature("jabber:iq:version"); + +local query = st.stanza("query", {xmlns = "jabber:iq:version"}) + :text_tag("name", module:get_option_string("server_name", "Prosody")) + :text_tag("version", module:get_option_string("server_version", prosody.version)); + +if not module:get_option_boolean("hide_os_type") then + local platform; + local spoofed_platform = module:get_option_string("server_platform", nil); + if not spoofed_platform then + if os.getenv("WINDIR") then + platform = "Windows"; + else + local os_version_command = module:get_option_string("os_version_command"); + local ok, pposix = pcall(require, "prosody.util.pposix"); + if not os_version_command and (ok and pposix and pposix.uname) then + local uname, err = pposix.uname(); + if not uname then + module:log("debug", "Could not retrieve OS name: %s", err); + else + platform = uname.sysname; + end + end + if not platform then + local uname = io.popen(os_version_command or "uname"); + if uname then + platform = uname:read("*a"); + end + uname:close(); + end + end + if platform then + platform = platform:match("^%s*(.-)%s*$") or platform; + query:text_tag("os", platform); + end + else + query:text_tag("os", spoofed_platform); + end +end + +module:hook("iq-get/host/jabber:iq:version:query", function(event) + local origin, stanza = event.origin, event.stanza; + origin.send(st.reply(stanza):add_child(query)); + return true; +end); \ No newline at end of file
