Steps to reproduce

``` msf > use auxiliary/scanner/http/ciscoironportenum msf auxiliary(ciscoironportenum) >run RHOST 127.0.0.1 msf auxiliary(ciscoironportenum) > run

[+] 127.0.0.1:443 - Server is responsive... [-] 127.0.0.1:443 - Connection failed, Aborting... [] Scanned 1 of 1 hosts (100% complete) [] Auxiliary module execution completed ```

This fixes a undefined method `length' for nil:NilClass bug when msfconsole tries to load the autowin32multihandler RC script.

Verification

• [ ] In a terminal, do: ./msfconsole -r scripts/resource/auto_win32_multihandler.rc
• [ ] You should see that a meterpreter is generated
• [ ] In msfconsole, do jobs, you should see that there is a listener/handler running.

Tell us what this change does. If you're fixing a bug, please mention the github issue number.

Verification

List the steps needed to make sure this thing works

• [ ] Start msfconsole
• [ ] use auxiliary/scanner/http/cisco_ironport_enum
• [ ] set RHOST 127.0.0.1
• [ ] run
• [ ] verify we get [+] 127.0.0.1:443 - Server is responsive... [+] 127.0.0.1:443 - Running Cisco IronPort Security Management Appliances (SMA) - AsyncOS v10.2 [*] 127.0.0.1:443 - Starting login brute force... [*] 127.0.0.1:443 - [1/1] - Trying username:"admin" with password:"ironport" [+] 127.0.0.1:443 - SUCCESSFUL LOGIN - "admin":"ironport" [!] No active DB -- Credential data will not be saved! [*] Scanned 1 of 1 hosts (100% complete) [*] Auxiliary module execution completed

Make sure we return 1 in check_conn method.

Tell us what this change does. If you're fixing a bug, please mention the github issue number.

Verification

List the steps needed to make sure this thing works

• [ ] Start msfconsole
• [ ] use auxiliary/scanner/http/cisco_nac_manager_traversal
• [ ] show options
• [ ] verify that SSL option is true by default ``` Module options (auxiliary/scanner/http/cisconacmanager_traversal):

Name Current Setting Required Description

FILE /etc/passwd yes The file to traverse for MAXDIRS 7 yes The maximum directory depth to search Proxies no A proxy chain of format type:host:port[,type:host:port][...] RHOSTS 127.0.0.1 yes The target address range or CIDR identifier RPORT 443 yes The target port SSL true no Negotiate SSL/TLS for outgoing connections THREADS 1 yes The number of concurrent threads VHOST no HTTP server virtual host ```

Set the SSL option to be on by default.

Steps to reproduce

This module has the default RPORT as 443 but the SSL is not turned on by default. So when running it, it will send plain HTTP to server port 443.

``` msf > use auxiliary/scanner/http/cisconacmanagertraversal msf auxiliary(cisconacmanagertraversal) > show options

Module options (auxiliary/scanner/http/cisconacmanager_traversal):

Name Current Setting Required Description

FILE /etc/passwd yes The file to traverse for MAXDIRS 7 yes The maximum directory depth to search Proxies no A proxy chain of format type:host:port[,type:host:port][...] RHOSTS 127.0.0.1 yes The target address range or CIDR identifier RPORT 443 yes The target port SSL false no Negotiate SSL/TLS for outgoing connections THREADS 1 yes The number of concurrent threads VHOST no HTTP server virtual host ``` This section should also tell us any relevant information about the environment; for example, if an exploit that used to work is failing, tell us the victim operating system and service versions.