RubyGems - librex - Versions diffs - 0.0.1 - Mend

librex 0.0.1

Files changed (370) hide show

data/README +4 -0
data/lib/rex.rb +101 -0
data/lib/rex.rb.ts.rb +70 -0
data/lib/rex/LICENSE +29 -0
data/lib/rex/arch.rb +103 -0
data/lib/rex/arch/sparc.rb +75 -0
data/lib/rex/arch/sparc.rb.ut.rb +18 -0
data/lib/rex/arch/x86.rb +513 -0
data/lib/rex/arch/x86.rb.ut.rb +93 -0
data/lib/rex/assembly/nasm.rb +100 -0
data/lib/rex/assembly/nasm.rb.ut.rb +22 -0
data/lib/rex/codepage.map +104 -0
data/lib/rex/compat.rb +281 -0
data/lib/rex/constants.rb +113 -0
data/lib/rex/elfparsey.rb +11 -0
data/lib/rex/elfparsey/elf.rb +123 -0
data/lib/rex/elfparsey/elfbase.rb +260 -0
data/lib/rex/elfparsey/exceptions.rb +27 -0
data/lib/rex/elfscan.rb +12 -0
data/lib/rex/elfscan/scanner.rb +207 -0
data/lib/rex/elfscan/search.rb +46 -0
data/lib/rex/encoder/alpha2.rb +31 -0
data/lib/rex/encoder/alpha2/alpha_mixed.rb +68 -0
data/lib/rex/encoder/alpha2/alpha_upper.rb +79 -0
data/lib/rex/encoder/alpha2/generic.rb +113 -0
data/lib/rex/encoder/alpha2/unicode_mixed.rb +117 -0
data/lib/rex/encoder/alpha2/unicode_upper.rb +129 -0
data/lib/rex/encoder/ndr.rb +89 -0
data/lib/rex/encoder/ndr.rb.ut.rb +44 -0
data/lib/rex/encoder/nonalpha.rb +61 -0
data/lib/rex/encoder/nonupper.rb +64 -0
data/lib/rex/encoder/xdr.rb +106 -0
data/lib/rex/encoder/xdr.rb.ut.rb +29 -0
data/lib/rex/encoder/xor.rb +69 -0
data/lib/rex/encoder/xor/dword.rb +13 -0
data/lib/rex/encoder/xor/dword_additive.rb +13 -0
data/lib/rex/encoders/xor_dword.rb +35 -0
data/lib/rex/encoders/xor_dword_additive.rb +53 -0
data/lib/rex/encoders/xor_dword_additive.rb.ut.rb +12 -0
data/lib/rex/encoding/xor.rb +20 -0
data/lib/rex/encoding/xor.rb.ts.rb +14 -0
data/lib/rex/encoding/xor/byte.rb +15 -0
data/lib/rex/encoding/xor/byte.rb.ut.rb +21 -0
data/lib/rex/encoding/xor/dword.rb +21 -0
data/lib/rex/encoding/xor/dword.rb.ut.rb +15 -0
data/lib/rex/encoding/xor/dword_additive.rb +92 -0
data/lib/rex/encoding/xor/dword_additive.rb.ut.rb +15 -0
data/lib/rex/encoding/xor/exceptions.rb +17 -0
data/lib/rex/encoding/xor/generic.rb +146 -0
data/lib/rex/encoding/xor/generic.rb.ut.rb +120 -0
data/lib/rex/encoding/xor/qword.rb +15 -0
data/lib/rex/encoding/xor/word.rb +21 -0
data/lib/rex/encoding/xor/word.rb.ut.rb +13 -0
data/lib/rex/exceptions.rb +275 -0
data/lib/rex/exceptions.rb.ut.rb +44 -0
data/lib/rex/exploitation/cmdstager.rb +133 -0
data/lib/rex/exploitation/egghunter.rb +143 -0
data/lib/rex/exploitation/egghunter.rb.ut.rb +25 -0
data/lib/rex/exploitation/encryptjs.rb +77 -0
data/lib/rex/exploitation/heaplib.js.b64 +331 -0
data/lib/rex/exploitation/heaplib.rb +94 -0
data/lib/rex/exploitation/javascriptosdetect.rb +735 -0
data/lib/rex/exploitation/obfuscatejs.rb +335 -0
data/lib/rex/exploitation/opcodedb.rb +818 -0
data/lib/rex/exploitation/opcodedb.rb.ut.rb +279 -0
data/lib/rex/exploitation/seh.rb +92 -0
data/lib/rex/exploitation/seh.rb.ut.rb +19 -0
data/lib/rex/file.rb +84 -0
data/lib/rex/file.rb.ut.rb +16 -0
data/lib/rex/image_source.rb +12 -0
data/lib/rex/image_source/disk.rb +60 -0
data/lib/rex/image_source/image_source.rb +46 -0
data/lib/rex/image_source/memory.rb +37 -0
data/lib/rex/io/bidirectional_pipe.rb +157 -0
data/lib/rex/io/datagram_abstraction.rb +35 -0
data/lib/rex/io/stream.rb +313 -0
data/lib/rex/io/stream_abstraction.rb +186 -0
data/lib/rex/io/stream_server.rb +211 -0
data/lib/rex/job_container.rb +202 -0
data/lib/rex/logging.rb +4 -0
data/lib/rex/logging/log_dispatcher.rb +179 -0
data/lib/rex/logging/log_sink.rb +42 -0
data/lib/rex/logging/sinks/flatfile.rb +55 -0
data/lib/rex/logging/sinks/stderr.rb +43 -0
data/lib/rex/machparsey.rb +9 -0
data/lib/rex/machparsey/exceptions.rb +34 -0
data/lib/rex/machparsey/mach.rb +209 -0
data/lib/rex/machparsey/machbase.rb +408 -0
data/lib/rex/machscan.rb +9 -0
data/lib/rex/machscan/scanner.rb +217 -0
data/lib/rex/mime.rb +9 -0
data/lib/rex/mime/header.rb +75 -0
data/lib/rex/mime/message.rb +112 -0
data/lib/rex/mime/part.rb +20 -0
data/lib/rex/nop/opty2.rb +108 -0
data/lib/rex/nop/opty2.rb.ut.rb +23 -0
data/lib/rex/nop/opty2_tables.rb +300 -0
data/lib/rex/ole.rb +128 -0
data/lib/rex/ole/clsid.rb +47 -0
data/lib/rex/ole/difat.rb +141 -0
data/lib/rex/ole/directory.rb +230 -0
data/lib/rex/ole/direntry.rb +240 -0
data/lib/rex/ole/fat.rb +99 -0
data/lib/rex/ole/header.rb +204 -0
data/lib/rex/ole/minifat.rb +77 -0
data/lib/rex/ole/samples/create_ole.rb +27 -0
data/lib/rex/ole/samples/dir.rb +35 -0
data/lib/rex/ole/samples/dump_stream.rb +34 -0
data/lib/rex/ole/samples/ole_info.rb +23 -0
data/lib/rex/ole/storage.rb +395 -0
data/lib/rex/ole/stream.rb +53 -0
data/lib/rex/ole/substorage.rb +49 -0
data/lib/rex/ole/util.rb +157 -0
data/lib/rex/parser/arguments.rb +97 -0
data/lib/rex/parser/arguments.rb.ut.rb +67 -0
data/lib/rex/parser/ini.rb +185 -0
data/lib/rex/parser/ini.rb.ut.rb +29 -0
data/lib/rex/parser/nmap_xml.rb +111 -0
data/lib/rex/payloads.rb +1 -0
data/lib/rex/payloads/win32.rb +2 -0
data/lib/rex/payloads/win32/common.rb +26 -0
data/lib/rex/payloads/win32/kernel.rb +53 -0
data/lib/rex/payloads/win32/kernel/common.rb +54 -0
data/lib/rex/payloads/win32/kernel/migration.rb +12 -0
data/lib/rex/payloads/win32/kernel/recovery.rb +50 -0
data/lib/rex/payloads/win32/kernel/stager.rb +171 -0
data/lib/rex/peparsey.rb +12 -0
data/lib/rex/peparsey/exceptions.rb +32 -0
data/lib/rex/peparsey/pe.rb +188 -0
data/lib/rex/peparsey/pe_memdump.rb +63 -0
data/lib/rex/peparsey/pebase.rb +1655 -0
data/lib/rex/peparsey/section.rb +136 -0
data/lib/rex/pescan.rb +13 -0
data/lib/rex/pescan/analyze.rb +309 -0
data/lib/rex/pescan/scanner.rb +206 -0
data/lib/rex/pescan/search.rb +56 -0
data/lib/rex/platforms.rb +1 -0
data/lib/rex/platforms/windows.rb +51 -0
data/lib/rex/poly.rb +132 -0
data/lib/rex/poly/block.rb +468 -0
data/lib/rex/poly/register.rb +100 -0
data/lib/rex/poly/register/x86.rb +40 -0
data/lib/rex/post.rb +8 -0
data/lib/rex/post/dir.rb +51 -0
data/lib/rex/post/file.rb +172 -0
data/lib/rex/post/file_stat.rb +220 -0
data/lib/rex/post/gen.pl +13 -0
data/lib/rex/post/io.rb +182 -0
data/lib/rex/post/meterpreter.rb +4 -0
data/lib/rex/post/meterpreter/channel.rb +438 -0
data/lib/rex/post/meterpreter/channel_container.rb +54 -0
data/lib/rex/post/meterpreter/channels/pool.rb +160 -0
data/lib/rex/post/meterpreter/channels/pools/file.rb +62 -0
data/lib/rex/post/meterpreter/channels/pools/stream_pool.rb +103 -0
data/lib/rex/post/meterpreter/channels/stream.rb +87 -0
data/lib/rex/post/meterpreter/client.rb +335 -0
data/lib/rex/post/meterpreter/client_core.rb +274 -0
data/lib/rex/post/meterpreter/dependencies.rb +3 -0
data/lib/rex/post/meterpreter/extension.rb +32 -0
data/lib/rex/post/meterpreter/extensions/espia/espia.rb +58 -0
data/lib/rex/post/meterpreter/extensions/espia/tlv.rb +16 -0
data/lib/rex/post/meterpreter/extensions/incognito/incognito.rb +94 -0
data/lib/rex/post/meterpreter/extensions/incognito/tlv.rb +21 -0
data/lib/rex/post/meterpreter/extensions/priv/fs.rb +118 -0
data/lib/rex/post/meterpreter/extensions/priv/passwd.rb +61 -0
data/lib/rex/post/meterpreter/extensions/priv/priv.rb +104 -0
data/lib/rex/post/meterpreter/extensions/priv/tlv.rb +28 -0
data/lib/rex/post/meterpreter/extensions/sniffer/sniffer.rb +100 -0
data/lib/rex/post/meterpreter/extensions/sniffer/tlv.rb +24 -0
data/lib/rex/post/meterpreter/extensions/stdapi/constants.rb +333 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/dir.rb +273 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb +235 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/file_stat.rb +103 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/io.rb +48 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/config.rb +144 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/interface.rb +73 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/route.rb +56 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket.rb +137 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket_subsystem/tcp_client_channel.rb +167 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket_subsystem/tcp_server_channel.rb +167 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket_subsystem/udp_channel.rb +192 -0
data/lib/rex/post/meterpreter/extensions/stdapi/stdapi.rb +139 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/config.rb +97 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/event_log.rb +184 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/event_log_subsystem/event_record.rb +41 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/power.rb +61 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process.rb +361 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/image.rb +129 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/io.rb +55 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/memory.rb +336 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/thread.rb +141 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry.rb +279 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry_subsystem/registry_key.rb +182 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry_subsystem/registry_value.rb +102 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/thread.rb +174 -0
data/lib/rex/post/meterpreter/extensions/stdapi/tlv.rb +185 -0
data/lib/rex/post/meterpreter/extensions/stdapi/ui.rb +227 -0
data/lib/rex/post/meterpreter/inbound_packet_handler.rb +30 -0
data/lib/rex/post/meterpreter/object_aliases.rb +83 -0
data/lib/rex/post/meterpreter/packet.rb +596 -0
data/lib/rex/post/meterpreter/packet_dispatcher.rb +409 -0
data/lib/rex/post/meterpreter/packet_parser.rb +94 -0
data/lib/rex/post/meterpreter/packet_response_waiter.rb +83 -0
data/lib/rex/post/meterpreter/ui/console.rb +135 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher.rb +62 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/core.rb +595 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/espia.rb +108 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/incognito.rb +241 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv.rb +61 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/elevate.rb +98 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/passwd.rb +51 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/timestomp.rb +132 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/sniffer.rb +187 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi.rb +63 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/fs.rb +376 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/net.rb +270 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/sys.rb +484 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/ui.rb +315 -0
data/lib/rex/post/meterpreter/ui/console/interactive_channel.rb +95 -0
data/lib/rex/post/permission.rb +26 -0
data/lib/rex/post/process.rb +57 -0
data/lib/rex/post/thread.rb +57 -0
data/lib/rex/post/ui.rb +52 -0
data/lib/rex/proto.rb +12 -0
data/lib/rex/proto.rb.ts.rb +8 -0
data/lib/rex/proto/dcerpc.rb +6 -0
data/lib/rex/proto/dcerpc.rb.ts.rb +9 -0
data/lib/rex/proto/dcerpc/client.rb +358 -0
data/lib/rex/proto/dcerpc/client.rb.ut.rb +491 -0
data/lib/rex/proto/dcerpc/exceptions.rb +150 -0
data/lib/rex/proto/dcerpc/handle.rb +47 -0
data/lib/rex/proto/dcerpc/handle.rb.ut.rb +85 -0
data/lib/rex/proto/dcerpc/ndr.rb +72 -0
data/lib/rex/proto/dcerpc/ndr.rb.ut.rb +41 -0
data/lib/rex/proto/dcerpc/packet.rb +253 -0
data/lib/rex/proto/dcerpc/packet.rb.ut.rb +56 -0
data/lib/rex/proto/dcerpc/response.rb +186 -0
data/lib/rex/proto/dcerpc/response.rb.ut.rb +15 -0
data/lib/rex/proto/dcerpc/uuid.rb +84 -0
data/lib/rex/proto/dcerpc/uuid.rb.ut.rb +46 -0
data/lib/rex/proto/drda.rb +5 -0
data/lib/rex/proto/drda.rb.ts.rb +17 -0
data/lib/rex/proto/drda/constants.rb +49 -0
data/lib/rex/proto/drda/constants.rb.ut.rb +23 -0
data/lib/rex/proto/drda/packet.rb +252 -0
data/lib/rex/proto/drda/packet.rb.ut.rb +109 -0
data/lib/rex/proto/drda/utils.rb +123 -0
data/lib/rex/proto/drda/utils.rb.ut.rb +84 -0
data/lib/rex/proto/http.rb +5 -0
data/lib/rex/proto/http.rb.ts.rb +12 -0
data/lib/rex/proto/http/client.rb +817 -0
data/lib/rex/proto/http/client.rb.ut.rb +93 -0
data/lib/rex/proto/http/handler.rb +46 -0
data/lib/rex/proto/http/handler/erb.rb +128 -0
data/lib/rex/proto/http/handler/erb.rb.ut.rb +21 -0
data/lib/rex/proto/http/handler/erb.rb.ut.rb.rhtml +1 -0
data/lib/rex/proto/http/handler/proc.rb +54 -0
data/lib/rex/proto/http/handler/proc.rb.ut.rb +24 -0
data/lib/rex/proto/http/header.rb +161 -0
data/lib/rex/proto/http/header.rb.ut.rb +46 -0
data/lib/rex/proto/http/packet.rb +394 -0
data/lib/rex/proto/http/packet.rb.ut.rb +165 -0
data/lib/rex/proto/http/request.rb +356 -0
data/lib/rex/proto/http/request.rb.ut.rb +214 -0
data/lib/rex/proto/http/response.rb +85 -0
data/lib/rex/proto/http/response.rb.ut.rb +149 -0
data/lib/rex/proto/http/server.rb +367 -0
data/lib/rex/proto/http/server.rb.ut.rb +79 -0
data/lib/rex/proto/smb.rb +7 -0
data/lib/rex/proto/smb.rb.ts.rb +8 -0
data/lib/rex/proto/smb/client.rb +1733 -0
data/lib/rex/proto/smb/client.rb.ut.rb +223 -0
data/lib/rex/proto/smb/constants.rb +1062 -0
data/lib/rex/proto/smb/constants.rb.ut.rb +18 -0
data/lib/rex/proto/smb/crypt.rb +95 -0
data/lib/rex/proto/smb/crypt.rb.ut.rb +20 -0
data/lib/rex/proto/smb/evasions.rb +65 -0
data/lib/rex/proto/smb/exceptions.rb +846 -0
data/lib/rex/proto/smb/simpleclient.rb +292 -0
data/lib/rex/proto/smb/simpleclient.rb.ut.rb +128 -0
data/lib/rex/proto/smb/utils.rb +514 -0
data/lib/rex/proto/smb/utils.rb.ut.rb +20 -0
data/lib/rex/proto/sunrpc.rb +1 -0
data/lib/rex/proto/sunrpc/client.rb +195 -0
data/lib/rex/script.rb +42 -0
data/lib/rex/script/base.rb +59 -0
data/lib/rex/script/meterpreter.rb +9 -0
data/lib/rex/script/shell.rb +9 -0
data/lib/rex/service.rb +48 -0
data/lib/rex/service_manager.rb +141 -0
data/lib/rex/service_manager.rb.ut.rb +32 -0
data/lib/rex/services/local_relay.rb +423 -0
data/lib/rex/socket.rb +586 -0
data/lib/rex/socket.rb.ut.rb +86 -0
data/lib/rex/socket/comm.rb +119 -0
data/lib/rex/socket/comm/local.rb +409 -0
data/lib/rex/socket/comm/local.rb.ut.rb +75 -0
data/lib/rex/socket/ip.rb +129 -0
data/lib/rex/socket/parameters.rb +345 -0
data/lib/rex/socket/parameters.rb.ut.rb +51 -0
data/lib/rex/socket/range_walker.rb +295 -0
data/lib/rex/socket/range_walker.rb.ut.rb +55 -0
data/lib/rex/socket/ssl_tcp.rb +184 -0
data/lib/rex/socket/ssl_tcp.rb.ut.rb +39 -0
data/lib/rex/socket/ssl_tcp_server.rb +122 -0
data/lib/rex/socket/ssl_tcp_server.rb.ut.rb +51 -0
data/lib/rex/socket/subnet_walker.rb +75 -0
data/lib/rex/socket/subnet_walker.rb.ut.rb +28 -0
data/lib/rex/socket/switch_board.rb +272 -0
data/lib/rex/socket/switch_board.rb.ut.rb +52 -0
data/lib/rex/socket/tcp.rb +76 -0
data/lib/rex/socket/tcp.rb.ut.rb +64 -0
data/lib/rex/socket/tcp_server.rb +67 -0
data/lib/rex/socket/tcp_server.rb.ut.rb +44 -0
data/lib/rex/socket/udp.rb +157 -0
data/lib/rex/socket/udp.rb.ut.rb +44 -0
data/lib/rex/struct2.rb +5 -0
data/lib/rex/struct2/c_struct.rb +181 -0
data/lib/rex/struct2/c_struct_template.rb +39 -0
data/lib/rex/struct2/constant.rb +26 -0
data/lib/rex/struct2/element.rb +44 -0
data/lib/rex/struct2/generic.rb +73 -0
data/lib/rex/struct2/restraint.rb +54 -0
data/lib/rex/struct2/s_string.rb +72 -0
data/lib/rex/struct2/s_struct.rb +111 -0
data/lib/rex/sync.rb +6 -0
data/lib/rex/sync/event.rb +94 -0
data/lib/rex/sync/read_write_lock.rb +176 -0
data/lib/rex/sync/ref.rb +57 -0
data/lib/rex/sync/thread_safe.rb +82 -0
data/lib/rex/test.rb +35 -0
data/lib/rex/text.rb +1029 -0
data/lib/rex/text.rb.ut.rb +168 -0
data/lib/rex/time.rb +65 -0
data/lib/rex/transformer.rb +115 -0
data/lib/rex/transformer.rb.ut.rb +38 -0
data/lib/rex/ui.rb +21 -0
data/lib/rex/ui/interactive.rb +252 -0
data/lib/rex/ui/output.rb +80 -0
data/lib/rex/ui/output/none.rb +18 -0
data/lib/rex/ui/progress_tracker.rb +96 -0
data/lib/rex/ui/subscriber.rb +149 -0
data/lib/rex/ui/text/color.rb +97 -0
data/lib/rex/ui/text/color.rb.ut.rb +18 -0
data/lib/rex/ui/text/dispatcher_shell.rb +382 -0
data/lib/rex/ui/text/input.rb +117 -0
data/lib/rex/ui/text/input/buffer.rb +75 -0
data/lib/rex/ui/text/input/readline.rb +129 -0
data/lib/rex/ui/text/input/socket.rb +95 -0
data/lib/rex/ui/text/input/stdio.rb +45 -0
data/lib/rex/ui/text/irb_shell.rb +55 -0
data/lib/rex/ui/text/output.rb +80 -0
data/lib/rex/ui/text/output/buffer.rb +65 -0
data/lib/rex/ui/text/output/file.rb +37 -0
data/lib/rex/ui/text/output/socket.rb +43 -0
data/lib/rex/ui/text/output/stdio.rb +40 -0
data/lib/rex/ui/text/progress_tracker.rb +56 -0
data/lib/rex/ui/text/progress_tracker.rb.ut.rb +34 -0
data/lib/rex/ui/text/shell.rb +321 -0
data/lib/rex/ui/text/table.rb +254 -0
data/lib/rex/ui/text/table.rb.ut.rb +55 -0
data/lib/rex/zip.rb +93 -0
data/lib/rex/zip/archive.rb +91 -0
data/lib/rex/zip/blocks.rb +182 -0
data/lib/rex/zip/entry.rb +95 -0
data/lib/rex/zip/samples/comment.rb +32 -0
data/lib/rex/zip/samples/mkwar.rb +138 -0
data/lib/rex/zip/samples/mkzip.rb +19 -0
data/lib/rex/zip/samples/recursive.rb +58 -0
metadata +435 -0

data/lib/rex/exploitation/opcodedb.rb.ut.rb ADDED

@@ -0,0 +1,279 @@
+#!/usr/bin/env ruby
+$:.unshift(File.join(File.dirname(__FILE__), '..', '..'))
+require 'test/unit'
+require 'rex/exploitation/opcodedb'
+require 'rex/socket'
+class Rex::Exploitation::OpcodeDb::UnitTest < Test::Unit::TestCase
+	Klass = Rex::Exploitation::OpcodeDb::Client
+	SrvPort = 60000
+	def test_meta_types
+		srv_cli
+		begin
+			proc_req_resp(%q{<Array><Hash><Entry name="id">1</Entry><Entry name="name">foo</Entry></Hash><Hash><Entry name="id">2</Entry><Entry name="name">dog</Entry></Hash></Array>})
+			mt = @r.meta_types
+			assert_kind_of(Array, mt)
+			assert_equal(2, mt.length)
+			assert_equal(1, mt[0].id)
+			assert_equal("foo", mt[0].name)
+			assert_equal(2, mt[1].id)
+			assert_equal("dog", mt[1].name)
+		ensure
+			@s.close
+		end
+	end
+	def test_groups
+		srv_cli
+		begin
+			proc_req_resp(%q{<Array><Hash><Entry name="id">47</Entry><Entry name="name">foo</Entry></Hash><Hash><Entry name="id">2</Entry><Entry name="name">dog</Entry></Hash></Array>})
+			mt = @r.groups
+			assert_kind_of(Array, mt)
+			assert_equal(2, mt.length)
+			assert_equal(47, mt[0].id)
+			assert_equal("foo", mt[0].name)
+			assert_equal(2, mt[1].id)
+			assert_equal("dog", mt[1].name)
+		ensure
+			@s.close
+		end
+	end
+	def test_platforms
+		srv_cli
+		begin
+			proc_req_resp(%q{<Array><Hash><Entry name="id">12</Entry><Entry name="name">Windows XP SP2</Entry><Entry name="desc">Windows Coolness</Entry><Entry name="maj_ver">5</Entry><Entry name="min_ver">1</Entry><Entry name="maj_patch_level">2</Entry><Entry name="min_patch_level">0</Entry><Entry name="modules">10</Entry></Hash></Array>})
+			osv = @r.platforms
+			assert_kind_of(Array, osv)
+			assert_equal(1, osv.length)
+			assert_equal(12, osv[0].id)
+			assert_equal("Windows XP SP2", osv[0].name)
+			assert_equal("Windows Coolness", osv[0].desc)
+			assert_equal(5, osv[0].maj_ver)
+			assert_equal(1, osv[0].min_ver)
+			assert_equal(2, osv[0].maj_patch_level)
+			assert_equal(0, osv[0].min_patch_level)
+			assert_equal(10, osv[0].modules)
+		ensure
+			@s.close
+		end
+	end
+	def test_modules
+		srv_cli
+		begin
+			proc_req_resp(%q{<Array><Hash>
+				<Entry name="id">1</Entry>
+				<Entry name="name">kernel32.dll</Entry>
+				<Entry name="locale">
+					<Hash>
+						<Entry name="id">4</Entry>
+						<Entry name="name">English</Entry>
+					</Hash>
+				</Entry>
+				<Entry name="maj_maj_ver">4</Entry>
+				<Entry name="maj_min_ver">100</Entry>
+				<Entry name="min_maj_ver">2</Entry>
+				<Entry name="min_min_ver">7</Entry>
+				<Entry name="timestamp">403242822</Entry>
+				<Entry name="base_address">100000000</Entry>
+				<Entry name="image_size">40000</Entry>
+				<Entry name="segments">
+					<Array>
+						<Hash>
+							<Entry name="type">text</Entry>
+							<Entry name="base_address">3228094</Entry>
+							<Entry name="segment_size">4000</Entry>
+							<Entry name="writable">true</Entry>
+							<Entry name="readable">true</Entry>
+							<Entry name="executable">false</Entry>
+						</Hash>
+					</Array>
+				</Entry>
+				<Entry name="imports">
+					<Array>
+						<Hash>
+							<Entry name="name">FoolFunction</Entry>
+							<Entry name="address">3242344</Entry>
+							<Entry name="ordinal">5</Entry>
+						</Hash>
+					</Array>
+				</Entry>
+				<Entry name="exports">
+					<Array>
+						<Hash>
+							<Entry name="name">FoolFunctionExport</Entry>
+							<Entry name="address">32423445</Entry>
+							<Entry name="ordinal">51</Entry>
+						</Hash>
+					</Array>
+				</Entry>
+				</Hash></Array>})
+			m = @r.modules
+			assert_kind_of(Array, m)
+			assert_equal(1, m[0].id)
+			assert_equal("kernel32.dll", m[0].name)
+			assert_equal(4, m[0].locale.id)
+			assert_equal("English", m[0].locale.name)
+			assert_equal(4, m[0].maj_maj_ver)
+			assert_equal(100, m[0].maj_min_ver)
+			assert_equal(2, m[0].min_maj_ver)
+			assert_equal(7, m[0].min_min_ver)
+			assert_equal(403242822, m[0].timestamp.to_i)
+			assert_equal(100000000, m[0].base_address)
+			assert_equal(40000, m[0].image_size)
+			assert_kind_of(Array, m[0].segments)
+			assert_equal("text", m[0].segments[0].type)
+			assert_equal(3228094, m[0].segments[0].base_address)
+			assert_equal(4000, m[0].segments[0].size)
+			assert_equal(true, m[0].segments[0].writable)
+			assert_equal(true, m[0].segments[0].readable)
+			assert_equal(false, m[0].segments[0].executable)
+			assert_kind_of(Array, m[0].imports)
+			assert_equal("FoolFunction", m[0].imports[0].name)
+			assert_equal(3242344, m[0].imports[0].address)
+			assert_equal(5, m[0].imports[0].ordinal)
+			assert_kind_of(Array, m[0].exports)
+			assert_equal("FoolFunctionExport", m[0].exports[0].name)
+			assert_equal(32423445, m[0].exports[0].address)
+			assert_equal(51, m[0].exports[0].ordinal)
+		ensure
+			@s.close
+		end
+	end
+	def test_locales
+		srv_cli
+		begin
+			proc_req_resp(%q{<Array><Hash>
+				<Entry name="id">4</Entry>
+				<Entry name="name">English</Entry>
+			</Hash>
+			<Hash>
+				<Entry name="id">5</Entry>
+				<Entry name="name">French</Entry>
+			</Hash></Array>})
+			l = @r.locales
+			assert_kind_of(Array, l)
+			assert_equal(2, l.length)
+			assert_equal(4, l[0].id)
+			assert_equal("English", l[0].name)
+			assert_equal(5, l[1].id)
+			assert_equal("French", l[1].name)
+		ensure
+			@s.close
+		end
+	end
+	def test_search
+		srv_cli
+		begin
+			proc_req_resp(%q{
+				<Array>
+					<Hash>
+						<Entry name="id">400</Entry>
+						<Entry name="address">34242324</Entry>
+						<Entry name="type">
+							<Hash>
+								<Entry name="id">4</Entry>
+								<Entry name="name">jmp esp</Entry>
+						<Entry name="group">
+							<Hash>
+								<Entry name="id">40</Entry>
+								<Entry name="name">reg</Entry>
+							</Hash>
+						</Entry>
+							</Hash>
+						</Entry>
+					</Hash>
+				</Array>})
+			o = @r.search
+			assert_kind_of(Array, o)
+			assert_equal(1, o.length)
+			assert_equal(400, o[0].id)
+			assert_equal(34242324, o[0].address)
+			assert_equal(4, o[0].type.id)
+			assert_equal("jmp esp", o[0].type.name)
+			assert_equal(40, o[0].group.id)
+			assert_equal("reg", o[0].group.name)
+		ensure
+			@s.close
+		end
+	end
+	def test_statistics
+		srv_cli
+		begin
+			proc_req_resp(%q{
+				<Hash>
+					<Entry name="modules">40</Entry>
+					<Entry name="opcodes">50</Entry>
+					<Entry name="opcode_types">60</Entry>
+					<Entry name="platforms">70</Entry>
+					<Entry name="architectures">80</Entry>
+					<Entry name="module_segments">90</Entry>
+					<Entry name="module_imports">100</Entry>
+					<Entry name="module_exports">110</Entry>
+					<Entry name="last_update">120</Entry>
+				</Hash>
+				})
+			s = @r.statistics
+			assert_equal(40, s.modules)
+			assert_equal(50, s.opcodes)
+			assert_equal(60, s.opcode_types)
+			assert_equal(70, s.platforms)
+			assert_equal(80, s.architectures)
+			assert_equal(90, s.module_segments)
+			assert_equal(100, s.module_imports)
+			assert_equal(110, s.module_exports)
+			assert_equal(120, s.last_update.to_i)
+		ensure
+			@s.close
+		end
+	end
+protected
+	def srv_cli
+		@r = Klass.new('127.0.0.1', SrvPort)
+		@s = Rex::Socket::TcpServer.create(
+			'LocalHost' => '127.0.0.1',
+			'LocalPort' => SrvPort)
+	end
+	def proc_req_resp(buf)
+		thr = Thread.new {
+			cli = @s.accept
+			@buffer = cli.get
+			cli.put("HTTP/1.0 200 OK\r\nConnection: close\r\n\r\n#{buf}")
+			cli.close
+		}
+	end
+end

data/lib/rex/exploitation/seh.rb ADDED

@@ -0,0 +1,92 @@
+require 'rex/text'
+require 'rex/arch/x86'
+module Rex
+module Exploitation
+###
+#
+# This class provides methods for generating SEH registration records
+# in a dynamic and flexible fashion.  The records can be generated with
+# the short jump at a random offset into the next pointer and with random
+# padding in between the handler and the attacker's payload.
+#
+###
+class Seh
+	#
+	# Creates a new instance of the class and initializes it with the supplied
+	# bad character list.  The space argument denotes how much room is
+	# available for random padding and the NOP argument can be used to generate
+	# a random NOP sled that is better than 0x90.
+	#
+	def initialize(badchars = nil, space = nil, nop = nil)
+		self.badchars = badchars || ''
+		self.space    = (space && space > 121) ? 121 : space
+		self.nop      = nop
+	end
+	#
+	# Generates an SEH record
+	#
+	def generate_seh_record(handler, dynamic=false)
+		if (dynamic)
+			generate_dynamic_seh_record(handler)
+		else
+			generate_static_seh_record(handler)
+		end
+	end
+	#
+	# Generates a fake SEH registration record with the supplied handler
+	# address for the handler, and a nop generator to use when generating
+	# padding inside the next pointer.  The NOP generator must implement the
+	# 'generate_sled' method that takes a length and a list of bad
+	# characters.
+	#
+	def generate_dynamic_seh_record(handler)
+		# Generate the padding up to the size specified or 121 characters
+		# maximum to account for the maximum range of a short jump plus the
+		# record size.
+		pad    = rand(space || 121)
+		rsize  = pad + 8
+		# Calculate the random index into the next ptr to store the short jump
+		# instruction
+		jmpidx = rand(3)
+		# Build the prefixed sled for the bytes that come before the short jump
+		# instruction
+		sled = (nop) ? nop.generate_sled(jmpidx, badchars) : ("\x90" * jmpidx)
+		# Seed the record and any space after the record with random text
+		record = Rex::Text.rand_text(rsize, badchars)
+		# Build the next pointer and short jump instruction
+		record[jmpidx, 2] = Rex::Arch::X86.jmp_short((rsize - jmpidx) - 2)
+		record[0, jmpidx] = sled
+		# Set the handler in the registration record
+		record[4, 4]      = [ handler ].pack('V')
+		# Return the generated record to the caller
+		record
+	end
+	#
+	# Generates a static SEH registration record with a specific handler and
+	# next pointer.
+	#
+	def generate_static_seh_record(handler)
+		"\xeb\x06" + Rex::Text.rand_text(2, badchars) + [ handler ].pack('V')
+	end
+protected
+	attr_accessor :badchars, :space, :nop # :nodoc:
+end
+end
+end

data/lib/rex/exploitation/seh.rb.ut.rb ADDED

@@ -0,0 +1,19 @@
+#!/usr/bin/env ruby
+$:.unshift(File.join(File.dirname(__FILE__), '..', '..'))
+require 'test/unit'
+require 'rex/exploitation/seh'
+class Rex::Exploitation::Seh::UnitTest < Test::Unit::TestCase
+	Klass = Rex::Exploitation::Seh
+	def test_static_record
+		r = Klass.new
+		record = r.generate_static_seh_record(0x41414141)
+		assert_equal("\xeb\x06", record[0, 2])
+		assert_equal("\x41\x41\x41\x41", record[4, 4])
+	end
+end

data/lib/rex/file.rb ADDED

@@ -0,0 +1,84 @@
+require 'find'
+require 'rex/compat'
+module Rex
+###
+#
+# This class provides helper methods for dealing with files that are not
+# supplied by the standard ruby API.
+#
+###
+module FileUtils
+	#
+	# This method searches the PATH environment variable for
+	# a fully qualified path to the supplied file name.
+	#
+	def self.find_full_path(file_name)
+		# Check for the absolute fast first
+		if (file_name[0,1] == "/" and ::File.exists?(file_name) and ::File::Stat.new(file_name))
+			return file_name
+		end
+		path = Rex::Compat.getenv('PATH')
+		if (path)
+			path.split(::File::PATH_SEPARATOR).each { |base|
+				begin
+					path = base + ::File::SEPARATOR + file_name
+					if (::File::Stat.new(path))
+						return path
+					end
+				rescue
+				end
+			}
+		end
+		return nil
+	end
+end
+module Find
+  #
+  # Identical to Find.find from Ruby, but follows symlinks to directories.
+  # See http://blade.nagaokaut.ac.jp/cgi-bin/scat.rb/ruby/ruby-talk/68671
+  #
+  def self.find(*paths)
+    paths.collect!{|d| d.dup}
+    while file = paths.shift
+      catch(:prune) do
+        yield file.dup.taint
+        next unless File.exist? file
+        begin
+          if File.stat(file).directory? then
+            d = Dir.open(file)
+            begin
+              for f in d
+                next if f == "." or f == ".."
+                if File::ALT_SEPARATOR and file =~ /^(?:[\/\\]|[A-Za-z]:[\/\\]?)$/ then
+                  f = file + f
+                elsif file == "/" then
+                  f = "/" + f
+                else
+                  f = File.join(file, f)
+                end
+                paths.unshift f.untaint
+              end
+            ensure
+              d.close
+            end
+          end
+        rescue Errno::ENOENT, Errno::EACCES
+        end
+      end
+    end
+  end
+  def self.prune
+    throw :prune
+  end
+end
+end