RubyGems - librex - Versions diffs - 0.0.1 - Mend

librex 0.0.1

Files changed (370) hide show

data/README +4 -0
data/lib/rex.rb +101 -0
data/lib/rex.rb.ts.rb +70 -0
data/lib/rex/LICENSE +29 -0
data/lib/rex/arch.rb +103 -0
data/lib/rex/arch/sparc.rb +75 -0
data/lib/rex/arch/sparc.rb.ut.rb +18 -0
data/lib/rex/arch/x86.rb +513 -0
data/lib/rex/arch/x86.rb.ut.rb +93 -0
data/lib/rex/assembly/nasm.rb +100 -0
data/lib/rex/assembly/nasm.rb.ut.rb +22 -0
data/lib/rex/codepage.map +104 -0
data/lib/rex/compat.rb +281 -0
data/lib/rex/constants.rb +113 -0
data/lib/rex/elfparsey.rb +11 -0
data/lib/rex/elfparsey/elf.rb +123 -0
data/lib/rex/elfparsey/elfbase.rb +260 -0
data/lib/rex/elfparsey/exceptions.rb +27 -0
data/lib/rex/elfscan.rb +12 -0
data/lib/rex/elfscan/scanner.rb +207 -0
data/lib/rex/elfscan/search.rb +46 -0
data/lib/rex/encoder/alpha2.rb +31 -0
data/lib/rex/encoder/alpha2/alpha_mixed.rb +68 -0
data/lib/rex/encoder/alpha2/alpha_upper.rb +79 -0
data/lib/rex/encoder/alpha2/generic.rb +113 -0
data/lib/rex/encoder/alpha2/unicode_mixed.rb +117 -0
data/lib/rex/encoder/alpha2/unicode_upper.rb +129 -0
data/lib/rex/encoder/ndr.rb +89 -0
data/lib/rex/encoder/ndr.rb.ut.rb +44 -0
data/lib/rex/encoder/nonalpha.rb +61 -0
data/lib/rex/encoder/nonupper.rb +64 -0
data/lib/rex/encoder/xdr.rb +106 -0
data/lib/rex/encoder/xdr.rb.ut.rb +29 -0
data/lib/rex/encoder/xor.rb +69 -0
data/lib/rex/encoder/xor/dword.rb +13 -0
data/lib/rex/encoder/xor/dword_additive.rb +13 -0
data/lib/rex/encoders/xor_dword.rb +35 -0
data/lib/rex/encoders/xor_dword_additive.rb +53 -0
data/lib/rex/encoders/xor_dword_additive.rb.ut.rb +12 -0
data/lib/rex/encoding/xor.rb +20 -0
data/lib/rex/encoding/xor.rb.ts.rb +14 -0
data/lib/rex/encoding/xor/byte.rb +15 -0
data/lib/rex/encoding/xor/byte.rb.ut.rb +21 -0
data/lib/rex/encoding/xor/dword.rb +21 -0
data/lib/rex/encoding/xor/dword.rb.ut.rb +15 -0
data/lib/rex/encoding/xor/dword_additive.rb +92 -0
data/lib/rex/encoding/xor/dword_additive.rb.ut.rb +15 -0
data/lib/rex/encoding/xor/exceptions.rb +17 -0
data/lib/rex/encoding/xor/generic.rb +146 -0
data/lib/rex/encoding/xor/generic.rb.ut.rb +120 -0
data/lib/rex/encoding/xor/qword.rb +15 -0
data/lib/rex/encoding/xor/word.rb +21 -0
data/lib/rex/encoding/xor/word.rb.ut.rb +13 -0
data/lib/rex/exceptions.rb +275 -0
data/lib/rex/exceptions.rb.ut.rb +44 -0
data/lib/rex/exploitation/cmdstager.rb +133 -0
data/lib/rex/exploitation/egghunter.rb +143 -0
data/lib/rex/exploitation/egghunter.rb.ut.rb +25 -0
data/lib/rex/exploitation/encryptjs.rb +77 -0
data/lib/rex/exploitation/heaplib.js.b64 +331 -0
data/lib/rex/exploitation/heaplib.rb +94 -0
data/lib/rex/exploitation/javascriptosdetect.rb +735 -0
data/lib/rex/exploitation/obfuscatejs.rb +335 -0
data/lib/rex/exploitation/opcodedb.rb +818 -0
data/lib/rex/exploitation/opcodedb.rb.ut.rb +279 -0
data/lib/rex/exploitation/seh.rb +92 -0
data/lib/rex/exploitation/seh.rb.ut.rb +19 -0
data/lib/rex/file.rb +84 -0
data/lib/rex/file.rb.ut.rb +16 -0
data/lib/rex/image_source.rb +12 -0
data/lib/rex/image_source/disk.rb +60 -0
data/lib/rex/image_source/image_source.rb +46 -0
data/lib/rex/image_source/memory.rb +37 -0
data/lib/rex/io/bidirectional_pipe.rb +157 -0
data/lib/rex/io/datagram_abstraction.rb +35 -0
data/lib/rex/io/stream.rb +313 -0
data/lib/rex/io/stream_abstraction.rb +186 -0
data/lib/rex/io/stream_server.rb +211 -0
data/lib/rex/job_container.rb +202 -0
data/lib/rex/logging.rb +4 -0
data/lib/rex/logging/log_dispatcher.rb +179 -0
data/lib/rex/logging/log_sink.rb +42 -0
data/lib/rex/logging/sinks/flatfile.rb +55 -0
data/lib/rex/logging/sinks/stderr.rb +43 -0
data/lib/rex/machparsey.rb +9 -0
data/lib/rex/machparsey/exceptions.rb +34 -0
data/lib/rex/machparsey/mach.rb +209 -0
data/lib/rex/machparsey/machbase.rb +408 -0
data/lib/rex/machscan.rb +9 -0
data/lib/rex/machscan/scanner.rb +217 -0
data/lib/rex/mime.rb +9 -0
data/lib/rex/mime/header.rb +75 -0
data/lib/rex/mime/message.rb +112 -0
data/lib/rex/mime/part.rb +20 -0
data/lib/rex/nop/opty2.rb +108 -0
data/lib/rex/nop/opty2.rb.ut.rb +23 -0
data/lib/rex/nop/opty2_tables.rb +300 -0
data/lib/rex/ole.rb +128 -0
data/lib/rex/ole/clsid.rb +47 -0
data/lib/rex/ole/difat.rb +141 -0
data/lib/rex/ole/directory.rb +230 -0
data/lib/rex/ole/direntry.rb +240 -0
data/lib/rex/ole/fat.rb +99 -0
data/lib/rex/ole/header.rb +204 -0
data/lib/rex/ole/minifat.rb +77 -0
data/lib/rex/ole/samples/create_ole.rb +27 -0
data/lib/rex/ole/samples/dir.rb +35 -0
data/lib/rex/ole/samples/dump_stream.rb +34 -0
data/lib/rex/ole/samples/ole_info.rb +23 -0
data/lib/rex/ole/storage.rb +395 -0
data/lib/rex/ole/stream.rb +53 -0
data/lib/rex/ole/substorage.rb +49 -0
data/lib/rex/ole/util.rb +157 -0
data/lib/rex/parser/arguments.rb +97 -0
data/lib/rex/parser/arguments.rb.ut.rb +67 -0
data/lib/rex/parser/ini.rb +185 -0
data/lib/rex/parser/ini.rb.ut.rb +29 -0
data/lib/rex/parser/nmap_xml.rb +111 -0
data/lib/rex/payloads.rb +1 -0
data/lib/rex/payloads/win32.rb +2 -0
data/lib/rex/payloads/win32/common.rb +26 -0
data/lib/rex/payloads/win32/kernel.rb +53 -0
data/lib/rex/payloads/win32/kernel/common.rb +54 -0
data/lib/rex/payloads/win32/kernel/migration.rb +12 -0
data/lib/rex/payloads/win32/kernel/recovery.rb +50 -0
data/lib/rex/payloads/win32/kernel/stager.rb +171 -0
data/lib/rex/peparsey.rb +12 -0
data/lib/rex/peparsey/exceptions.rb +32 -0
data/lib/rex/peparsey/pe.rb +188 -0
data/lib/rex/peparsey/pe_memdump.rb +63 -0
data/lib/rex/peparsey/pebase.rb +1655 -0
data/lib/rex/peparsey/section.rb +136 -0
data/lib/rex/pescan.rb +13 -0
data/lib/rex/pescan/analyze.rb +309 -0
data/lib/rex/pescan/scanner.rb +206 -0
data/lib/rex/pescan/search.rb +56 -0
data/lib/rex/platforms.rb +1 -0
data/lib/rex/platforms/windows.rb +51 -0
data/lib/rex/poly.rb +132 -0
data/lib/rex/poly/block.rb +468 -0
data/lib/rex/poly/register.rb +100 -0
data/lib/rex/poly/register/x86.rb +40 -0
data/lib/rex/post.rb +8 -0
data/lib/rex/post/dir.rb +51 -0
data/lib/rex/post/file.rb +172 -0
data/lib/rex/post/file_stat.rb +220 -0
data/lib/rex/post/gen.pl +13 -0
data/lib/rex/post/io.rb +182 -0
data/lib/rex/post/meterpreter.rb +4 -0
data/lib/rex/post/meterpreter/channel.rb +438 -0
data/lib/rex/post/meterpreter/channel_container.rb +54 -0
data/lib/rex/post/meterpreter/channels/pool.rb +160 -0
data/lib/rex/post/meterpreter/channels/pools/file.rb +62 -0
data/lib/rex/post/meterpreter/channels/pools/stream_pool.rb +103 -0
data/lib/rex/post/meterpreter/channels/stream.rb +87 -0
data/lib/rex/post/meterpreter/client.rb +335 -0
data/lib/rex/post/meterpreter/client_core.rb +274 -0
data/lib/rex/post/meterpreter/dependencies.rb +3 -0
data/lib/rex/post/meterpreter/extension.rb +32 -0
data/lib/rex/post/meterpreter/extensions/espia/espia.rb +58 -0
data/lib/rex/post/meterpreter/extensions/espia/tlv.rb +16 -0
data/lib/rex/post/meterpreter/extensions/incognito/incognito.rb +94 -0
data/lib/rex/post/meterpreter/extensions/incognito/tlv.rb +21 -0
data/lib/rex/post/meterpreter/extensions/priv/fs.rb +118 -0
data/lib/rex/post/meterpreter/extensions/priv/passwd.rb +61 -0
data/lib/rex/post/meterpreter/extensions/priv/priv.rb +104 -0
data/lib/rex/post/meterpreter/extensions/priv/tlv.rb +28 -0
data/lib/rex/post/meterpreter/extensions/sniffer/sniffer.rb +100 -0
data/lib/rex/post/meterpreter/extensions/sniffer/tlv.rb +24 -0
data/lib/rex/post/meterpreter/extensions/stdapi/constants.rb +333 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/dir.rb +273 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb +235 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/file_stat.rb +103 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/io.rb +48 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/config.rb +144 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/interface.rb +73 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/route.rb +56 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket.rb +137 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket_subsystem/tcp_client_channel.rb +167 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket_subsystem/tcp_server_channel.rb +167 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket_subsystem/udp_channel.rb +192 -0
data/lib/rex/post/meterpreter/extensions/stdapi/stdapi.rb +139 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/config.rb +97 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/event_log.rb +184 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/event_log_subsystem/event_record.rb +41 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/power.rb +61 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process.rb +361 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/image.rb +129 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/io.rb +55 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/memory.rb +336 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/thread.rb +141 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry.rb +279 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry_subsystem/registry_key.rb +182 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry_subsystem/registry_value.rb +102 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/thread.rb +174 -0
data/lib/rex/post/meterpreter/extensions/stdapi/tlv.rb +185 -0
data/lib/rex/post/meterpreter/extensions/stdapi/ui.rb +227 -0
data/lib/rex/post/meterpreter/inbound_packet_handler.rb +30 -0
data/lib/rex/post/meterpreter/object_aliases.rb +83 -0
data/lib/rex/post/meterpreter/packet.rb +596 -0
data/lib/rex/post/meterpreter/packet_dispatcher.rb +409 -0
data/lib/rex/post/meterpreter/packet_parser.rb +94 -0
data/lib/rex/post/meterpreter/packet_response_waiter.rb +83 -0
data/lib/rex/post/meterpreter/ui/console.rb +135 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher.rb +62 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/core.rb +595 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/espia.rb +108 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/incognito.rb +241 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv.rb +61 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/elevate.rb +98 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/passwd.rb +51 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/timestomp.rb +132 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/sniffer.rb +187 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi.rb +63 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/fs.rb +376 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/net.rb +270 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/sys.rb +484 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/ui.rb +315 -0
data/lib/rex/post/meterpreter/ui/console/interactive_channel.rb +95 -0
data/lib/rex/post/permission.rb +26 -0
data/lib/rex/post/process.rb +57 -0
data/lib/rex/post/thread.rb +57 -0
data/lib/rex/post/ui.rb +52 -0
data/lib/rex/proto.rb +12 -0
data/lib/rex/proto.rb.ts.rb +8 -0
data/lib/rex/proto/dcerpc.rb +6 -0
data/lib/rex/proto/dcerpc.rb.ts.rb +9 -0
data/lib/rex/proto/dcerpc/client.rb +358 -0
data/lib/rex/proto/dcerpc/client.rb.ut.rb +491 -0
data/lib/rex/proto/dcerpc/exceptions.rb +150 -0
data/lib/rex/proto/dcerpc/handle.rb +47 -0
data/lib/rex/proto/dcerpc/handle.rb.ut.rb +85 -0
data/lib/rex/proto/dcerpc/ndr.rb +72 -0
data/lib/rex/proto/dcerpc/ndr.rb.ut.rb +41 -0
data/lib/rex/proto/dcerpc/packet.rb +253 -0
data/lib/rex/proto/dcerpc/packet.rb.ut.rb +56 -0
data/lib/rex/proto/dcerpc/response.rb +186 -0
data/lib/rex/proto/dcerpc/response.rb.ut.rb +15 -0
data/lib/rex/proto/dcerpc/uuid.rb +84 -0
data/lib/rex/proto/dcerpc/uuid.rb.ut.rb +46 -0
data/lib/rex/proto/drda.rb +5 -0
data/lib/rex/proto/drda.rb.ts.rb +17 -0
data/lib/rex/proto/drda/constants.rb +49 -0
data/lib/rex/proto/drda/constants.rb.ut.rb +23 -0
data/lib/rex/proto/drda/packet.rb +252 -0
data/lib/rex/proto/drda/packet.rb.ut.rb +109 -0
data/lib/rex/proto/drda/utils.rb +123 -0
data/lib/rex/proto/drda/utils.rb.ut.rb +84 -0
data/lib/rex/proto/http.rb +5 -0
data/lib/rex/proto/http.rb.ts.rb +12 -0
data/lib/rex/proto/http/client.rb +817 -0
data/lib/rex/proto/http/client.rb.ut.rb +93 -0
data/lib/rex/proto/http/handler.rb +46 -0
data/lib/rex/proto/http/handler/erb.rb +128 -0
data/lib/rex/proto/http/handler/erb.rb.ut.rb +21 -0
data/lib/rex/proto/http/handler/erb.rb.ut.rb.rhtml +1 -0
data/lib/rex/proto/http/handler/proc.rb +54 -0
data/lib/rex/proto/http/handler/proc.rb.ut.rb +24 -0
data/lib/rex/proto/http/header.rb +161 -0
data/lib/rex/proto/http/header.rb.ut.rb +46 -0
data/lib/rex/proto/http/packet.rb +394 -0
data/lib/rex/proto/http/packet.rb.ut.rb +165 -0
data/lib/rex/proto/http/request.rb +356 -0
data/lib/rex/proto/http/request.rb.ut.rb +214 -0
data/lib/rex/proto/http/response.rb +85 -0
data/lib/rex/proto/http/response.rb.ut.rb +149 -0
data/lib/rex/proto/http/server.rb +367 -0
data/lib/rex/proto/http/server.rb.ut.rb +79 -0
data/lib/rex/proto/smb.rb +7 -0
data/lib/rex/proto/smb.rb.ts.rb +8 -0
data/lib/rex/proto/smb/client.rb +1733 -0
data/lib/rex/proto/smb/client.rb.ut.rb +223 -0
data/lib/rex/proto/smb/constants.rb +1062 -0
data/lib/rex/proto/smb/constants.rb.ut.rb +18 -0
data/lib/rex/proto/smb/crypt.rb +95 -0
data/lib/rex/proto/smb/crypt.rb.ut.rb +20 -0
data/lib/rex/proto/smb/evasions.rb +65 -0
data/lib/rex/proto/smb/exceptions.rb +846 -0
data/lib/rex/proto/smb/simpleclient.rb +292 -0
data/lib/rex/proto/smb/simpleclient.rb.ut.rb +128 -0
data/lib/rex/proto/smb/utils.rb +514 -0
data/lib/rex/proto/smb/utils.rb.ut.rb +20 -0
data/lib/rex/proto/sunrpc.rb +1 -0
data/lib/rex/proto/sunrpc/client.rb +195 -0
data/lib/rex/script.rb +42 -0
data/lib/rex/script/base.rb +59 -0
data/lib/rex/script/meterpreter.rb +9 -0
data/lib/rex/script/shell.rb +9 -0
data/lib/rex/service.rb +48 -0
data/lib/rex/service_manager.rb +141 -0
data/lib/rex/service_manager.rb.ut.rb +32 -0
data/lib/rex/services/local_relay.rb +423 -0
data/lib/rex/socket.rb +586 -0
data/lib/rex/socket.rb.ut.rb +86 -0
data/lib/rex/socket/comm.rb +119 -0
data/lib/rex/socket/comm/local.rb +409 -0
data/lib/rex/socket/comm/local.rb.ut.rb +75 -0
data/lib/rex/socket/ip.rb +129 -0
data/lib/rex/socket/parameters.rb +345 -0
data/lib/rex/socket/parameters.rb.ut.rb +51 -0
data/lib/rex/socket/range_walker.rb +295 -0
data/lib/rex/socket/range_walker.rb.ut.rb +55 -0
data/lib/rex/socket/ssl_tcp.rb +184 -0
data/lib/rex/socket/ssl_tcp.rb.ut.rb +39 -0
data/lib/rex/socket/ssl_tcp_server.rb +122 -0
data/lib/rex/socket/ssl_tcp_server.rb.ut.rb +51 -0
data/lib/rex/socket/subnet_walker.rb +75 -0
data/lib/rex/socket/subnet_walker.rb.ut.rb +28 -0
data/lib/rex/socket/switch_board.rb +272 -0
data/lib/rex/socket/switch_board.rb.ut.rb +52 -0
data/lib/rex/socket/tcp.rb +76 -0
data/lib/rex/socket/tcp.rb.ut.rb +64 -0
data/lib/rex/socket/tcp_server.rb +67 -0
data/lib/rex/socket/tcp_server.rb.ut.rb +44 -0
data/lib/rex/socket/udp.rb +157 -0
data/lib/rex/socket/udp.rb.ut.rb +44 -0
data/lib/rex/struct2.rb +5 -0
data/lib/rex/struct2/c_struct.rb +181 -0
data/lib/rex/struct2/c_struct_template.rb +39 -0
data/lib/rex/struct2/constant.rb +26 -0
data/lib/rex/struct2/element.rb +44 -0
data/lib/rex/struct2/generic.rb +73 -0
data/lib/rex/struct2/restraint.rb +54 -0
data/lib/rex/struct2/s_string.rb +72 -0
data/lib/rex/struct2/s_struct.rb +111 -0
data/lib/rex/sync.rb +6 -0
data/lib/rex/sync/event.rb +94 -0
data/lib/rex/sync/read_write_lock.rb +176 -0
data/lib/rex/sync/ref.rb +57 -0
data/lib/rex/sync/thread_safe.rb +82 -0
data/lib/rex/test.rb +35 -0
data/lib/rex/text.rb +1029 -0
data/lib/rex/text.rb.ut.rb +168 -0
data/lib/rex/time.rb +65 -0
data/lib/rex/transformer.rb +115 -0
data/lib/rex/transformer.rb.ut.rb +38 -0
data/lib/rex/ui.rb +21 -0
data/lib/rex/ui/interactive.rb +252 -0
data/lib/rex/ui/output.rb +80 -0
data/lib/rex/ui/output/none.rb +18 -0
data/lib/rex/ui/progress_tracker.rb +96 -0
data/lib/rex/ui/subscriber.rb +149 -0
data/lib/rex/ui/text/color.rb +97 -0
data/lib/rex/ui/text/color.rb.ut.rb +18 -0
data/lib/rex/ui/text/dispatcher_shell.rb +382 -0
data/lib/rex/ui/text/input.rb +117 -0
data/lib/rex/ui/text/input/buffer.rb +75 -0
data/lib/rex/ui/text/input/readline.rb +129 -0
data/lib/rex/ui/text/input/socket.rb +95 -0
data/lib/rex/ui/text/input/stdio.rb +45 -0
data/lib/rex/ui/text/irb_shell.rb +55 -0
data/lib/rex/ui/text/output.rb +80 -0
data/lib/rex/ui/text/output/buffer.rb +65 -0
data/lib/rex/ui/text/output/file.rb +37 -0
data/lib/rex/ui/text/output/socket.rb +43 -0
data/lib/rex/ui/text/output/stdio.rb +40 -0
data/lib/rex/ui/text/progress_tracker.rb +56 -0
data/lib/rex/ui/text/progress_tracker.rb.ut.rb +34 -0
data/lib/rex/ui/text/shell.rb +321 -0
data/lib/rex/ui/text/table.rb +254 -0
data/lib/rex/ui/text/table.rb.ut.rb +55 -0
data/lib/rex/zip.rb +93 -0
data/lib/rex/zip/archive.rb +91 -0
data/lib/rex/zip/blocks.rb +182 -0
data/lib/rex/zip/entry.rb +95 -0
data/lib/rex/zip/samples/comment.rb +32 -0
data/lib/rex/zip/samples/mkwar.rb +138 -0
data/lib/rex/zip/samples/mkzip.rb +19 -0
data/lib/rex/zip/samples/recursive.rb +58 -0
metadata +435 -0

data/lib/rex/post/meterpreter/extensions/stdapi/sys/power.rb ADDED

@@ -0,0 +1,61 @@
+#!/usr/bin/env ruby
+require 'rex/post/process'
+require 'rex/post/meterpreter/packet'
+require 'rex/post/meterpreter/client'
+require 'rex/post/meterpreter/extensions/stdapi/constants'
+require 'rex/post/meterpreter/extensions/stdapi/stdapi'
+module Rex
+module Post
+module Meterpreter
+module Extensions
+module Stdapi
+module Sys
+###
+#
+# This class provides access to the power of the remote machine (reboot, etc).
+#
+###
+class Power
+	class <<self
+		attr_accessor :client
+	end
+	#
+	# Calls ExitWindows on the remote machine with the supplied parameters.
+	#
+	def Power._exitwindows(flags, reason = 0) # :nodoc:
+		request = Packet.create_request('stdapi_sys_power_exitwindows')
+		request.add_tlv(TLV_TYPE_POWER_FLAGS, flags);
+		request.add_tlv(TLV_TYPE_POWER_REASON, reason);
+		response = client.send_request(request)
+		return self
+	end
+	#
+	# Reboots the remote machine.
+	#
+	def Power.reboot(reason = 0)
+		self._exitwindows(EWX_REBOOT, reason)
+	end
+	#
+	# Shuts down the remote machine.
+	#
+	def Power.shutdown(force = 0, reason = 0)
+		flags  = EWX_POWEROFF
+		flags |= EWX_FORCEIFHUNG if force == 1
+		flags |= EWX_FORCE       if force == 2
+		self._exitwindows(flags, reason)
+	end
+end
+end end end end end end

data/lib/rex/post/meterpreter/extensions/stdapi/sys/process.rb ADDED

@@ -0,0 +1,361 @@
+#!/usr/bin/env ruby
+require 'rex/post/process'
+require 'rex/post/meterpreter/packet'
+require 'rex/post/meterpreter/client'
+require 'rex/post/meterpreter/channels/pools/stream_pool'
+require 'rex/post/meterpreter/extensions/stdapi/stdapi'
+require 'rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/image'
+require 'rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/io'
+require 'rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/memory'
+require 'rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/thread'
+module Rex
+module Post
+module Meterpreter
+module Extensions
+module Stdapi
+module Sys
+##
+#
+# This class implements the Rex::Post::Process interface.
+#
+##
+class Process < Rex::Post::Process
+	include Rex::Post::Meterpreter::ObjectAliasesContainer
+	##
+	#
+	# Class methods
+	#
+	##
+	class << self
+		attr_accessor :client
+	end
+	#
+	# Returns the process identifier of the process supplied in key if it's
+	# valid.
+	#
+	def Process.[](key)
+		each_process { |p|
+			if (p['name'].downcase == key.downcase)
+				return p['pid']
+			end
+		}
+		return nil
+	end
+	#
+	# Attachs to the supplied process with a given set of permissions.
+	#
+	def Process.open(pid = nil, perms = nil)
+		real_perms = 0
+		if (perms == nil)
+			perms = PROCESS_ALL
+		end
+		if (perms & PROCESS_READ)
+			real_perms |= PROCESS_VM_OPERATION | PROCESS_VM_READ | PROCESS_QUERY_INFORMATION
+		end
+		if (perms & PROCESS_WRITE)
+			real_perms |= PROCESS_SET_SESSIONID | PROCESS_VM_WRITE | PROCESS_DUP_HANDLE | PROCESS_SET_QUOTA | PROCESS_SET_INFORMATION
+		end
+		if (perms & PROCESS_EXECUTE)
+			real_perms |= PROCESS_TERMINATE | PROCESS_CREATE_THREAD | PROCESS_CREATE_PROCESS | PROCESS_SUSPEND_RESUME
+		end
+		return _open(pid, real_perms)
+	end
+	#
+	# Low-level process open.
+	#
+	def Process._open(pid, perms, inherit = false)
+		request = Packet.create_request('stdapi_sys_process_attach')
+		if (pid == nil)
+			pid = 0
+		end
+		# Populate the request
+		request.add_tlv(TLV_TYPE_PID, pid)
+		request.add_tlv(TLV_TYPE_PROCESS_PERMS, perms)
+		request.add_tlv(TLV_TYPE_INHERIT, inherit)
+		# Transmit the request
+		response = self.client.send_request(request)
+		handle   = response.get_tlv_value(TLV_TYPE_HANDLE)
+		# If the handle is valid, allocate a process instance and return it
+		if (handle != nil)
+			return self.new(pid, handle)
+		end
+		return nil
+	end
+	#
+	# Executes an application using the arguments provided
+	#
+	# Hash arguments supported:
+	#
+	#   Hidden      => true/false
+	#   Channelized => true/false
+	#   Suspended   => true/false
+	#   InMemory    => true/false
+	#
+	def Process.execute(path, arguments = nil, opts = nil)
+		request = Packet.create_request('stdapi_sys_process_execute')
+		flags   = 0
+		# If we were supplied optional arguments...
+		if (opts != nil)
+			if (opts['Hidden'])
+				flags |= PROCESS_EXECUTE_FLAG_HIDDEN
+			end
+			if (opts['Channelized'])
+				flags |= PROCESS_EXECUTE_FLAG_CHANNELIZED
+			end
+			if (opts['Suspended'])
+				flags |= PROCESS_EXECUTE_FLAG_SUSPENDED
+			end
+			if (opts['UseThreadToken'])
+				flags |= PROCESS_EXECUTE_FLAG_USE_THREAD_TOKEN
+			end
+			if (opts['Desktop'])
+				flags |= PROCESS_EXECUTE_FLAG_DESKTOP
+			end
+			if (opts['Session'])
+				flags |= PROCESS_EXECUTE_FLAG_SESSION
+				request.add_tlv( TLV_TYPE_PROCESS_SESSION, opts['Session'] )
+			end
+			inmem = opts['InMemory']
+			if inmem
+				# add the file contents into the tlv
+				f = ::File.new(path, 'rb')
+				request.add_tlv(TLV_TYPE_VALUE_DATA, f.read(f.stat.size))
+				f.close
+				# replace the path with the "dummy"
+				path = inmem.kind_of?(String) ? inmem : 'cmd'
+			end
+		end
+		request.add_tlv(TLV_TYPE_PROCESS_PATH, path);
+		# If process arguments were supplied
+		if (arguments != nil)
+			request.add_tlv(TLV_TYPE_PROCESS_ARGUMENTS, arguments);
+		end
+		request.add_tlv(TLV_TYPE_PROCESS_FLAGS, flags);
+		response = client.send_request(request)
+		# Get the response parameters
+		pid        = response.get_tlv_value(TLV_TYPE_PID)
+		handle     = response.get_tlv_value(TLV_TYPE_PROCESS_HANDLE)
+		channel_id = response.get_tlv_value(TLV_TYPE_CHANNEL_ID)
+		channel    = nil
+		# If we were creating a channel out of this
+		if (channel_id != nil)
+			channel = Rex::Post::Meterpreter::Channels::Pools::StreamPool.new(client,
+					channel_id, "stdapi_process", CHANNEL_FLAG_SYNCHRONOUS)
+		end
+		# Return a process instance
+		return self.new(pid, handle, channel)
+	end
+	#
+	# Kills one or more processes.
+	#
+	def Process.kill(*args)
+		request = Packet.create_request('stdapi_sys_process_kill')
+		args.each { |id|
+			request.add_tlv(TLV_TYPE_PID, id)
+		}
+		client.send_request(request)
+		return true
+	end
+	#
+	# Gets the process id that the remote side is executing under.
+	#
+	def Process.getpid
+		request = Packet.create_request('stdapi_sys_process_getpid')
+		response = client.send_request(request)
+		return response.get_tlv_value(TLV_TYPE_PID)
+	end
+	#
+	# Enumerates all of the elements in the array returned by get_processes.
+	#
+	def Process.each_process(&block)
+		self.get_processes.each(&block)
+	end
+	#
+	# Returns an array of processes with hash objects that have
+	# keys for 'pid', 'parentid', 'name', 'path', 'user' and 'arch'.
+	#
+	def Process.get_processes
+		request   = Packet.create_request('stdapi_sys_process_get_processes')
+		processes = []
+		response = client.send_request(request)
+		response.each(TLV_TYPE_PROCESS_GROUP) { |p|
+		arch = ""
+		pa = p.get_tlv_value( TLV_TYPE_PROCESS_ARCH )
+		if( pa != nil )
+			if pa == 1 # PROCESS_ARCH_X86
+				arch = ARCH_X86
+			elsif pa == 2 # PROCESS_ARCH_X64
+				arch = ARCH_X86_64
+			end
+		end
+		processes <<
+				{
+					'pid'      => p.get_tlv_value(TLV_TYPE_PID),
+					'parentid' => p.get_tlv_value(TLV_TYPE_PARENT_PID),
+					'name'     => p.get_tlv_value(TLV_TYPE_PROCESS_NAME),
+					'path'     => p.get_tlv_value(TLV_TYPE_PROCESS_PATH),
+					'session'  => p.get_tlv_value(TLV_TYPE_PROCESS_SESSION),
+					'user'     => p.get_tlv_value(TLV_TYPE_USER_NAME),
+					'arch'     => arch
+				}
+		}
+		return processes
+	end
+	#
+	# An alias for get_processes.
+	#
+	def Process.processes
+		self.get_processes
+	end
+	##
+	#
+	# Instance methods
+	#
+	##
+	#
+	# Initializes the process instance and its aliases.
+	#
+	def initialize(pid, handle, channel = nil)
+		self.client  = self.class.client
+		self.handle  = handle
+		self.channel = channel
+		# If the process identifier is zero, then we must lookup the current
+		# process identifier
+		if (pid == 0)
+			self.pid = client.sys.process.getpid
+		else
+			self.pid = pid
+		end
+		initialize_aliases(
+			{
+				'image'  => Rex::Post::Meterpreter::Extensions::Stdapi::Sys::ProcessSubsystem::Image.new(self),
+				'io'     => Rex::Post::Meterpreter::Extensions::Stdapi::Sys::ProcessSubsystem::IO.new(self),
+				'memory' => Rex::Post::Meterpreter::Extensions::Stdapi::Sys::ProcessSubsystem::Memory.new(self),
+				'thread' => Rex::Post::Meterpreter::Extensions::Stdapi::Sys::ProcessSubsystem::Thread.new(self),
+			})
+	end
+	#
+	# Returns the executable name of the process.
+	#
+	def name
+		return get_info()['name']
+	end
+	#
+	# Returns the path to the process' executable.
+	#
+	def path
+		return get_info()['path']
+	end
+	#
+	# Closes the handle to the process that was opened.
+	#
+	def close
+		request = Packet.create_request('stdapi_sys_process_close')
+		request.add_tlv(TLV_TYPE_HANDLE, handle)
+		response = client.send_request(request)
+		handle = nil;
+		return true
+	end
+	#
+	# Block untill this process terminates on the remote side.
+	# By default we choose not to allow a packet responce timeout to
+	# occur as we may be waiting indefinatly for the process to terminate.
+	#
+	def wait( timeout = -1 )
+		request = Packet.create_request('stdapi_sys_process_wait')
+		request.add_tlv(TLV_TYPE_HANDLE, self.handle)
+		response = self.client.send_request(request, timeout)
+		self.handle = nil
+		return true
+	end
+	attr_reader   :client, :handle, :channel, :pid # :nodoc:
+protected
+	attr_writer   :client, :handle, :channel, :pid # :nodoc:
+	#
+	# Gathers information about the process and returns a hash.
+	#
+	def get_info
+		request = Packet.create_request('stdapi_sys_process_get_info')
+		info    = {}
+		request.add_tlv(TLV_TYPE_HANDLE, handle)
+		# Send the request
+		response = client.send_request(request)
+		# Populate the hash
+		info['name'] = response.get_tlv_value(TLV_TYPE_PROCESS_NAME)
+		info['path'] = response.get_tlv_value(TLV_TYPE_PROCESS_PATH)
+		return info
+	end
+end
+end; end; end; end; end; end

data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/image.rb ADDED

@@ -0,0 +1,129 @@
+#!/usr/bin/env ruby
+require 'rex/post/meterpreter/client'
+require 'rex/post/meterpreter/extensions/stdapi/constants'
+module Rex
+module Post
+module Meterpreter
+module Extensions
+module Stdapi
+module Sys
+module ProcessSubsystem
+###
+#
+# Interacts with loading, unloading, enumerating, and querying
+# image files in the context of a given process.
+#
+###
+class Image
+	##
+	#
+	# Constructor
+	#
+	##
+	#
+	# Initializes the image instance.
+	#
+	def initialize(process)
+		self.process = process
+	end
+	#
+	# Returns the image base address associated with the supplied image name.
+	#
+	def [](key)
+		each_image { |i|
+			if (i['name'].downcase == key.downcase)
+				return i['base']
+			end
+		}
+		return nil
+	end
+	#
+	# Loads an image file into the context of the process.
+	#
+	def load(image_path)
+		request = Packet.create_request('stdapi_sys_process_image_load')
+		request.add_tlv(TLV_TYPE_HANDLE, process.handle)
+		request.add_tlv(TLV_TYPE_IMAGE_FILE_PATH, image_path)
+		response = process.client.send_request(request)
+		return response.get_tlv_value(TLV_TYPE_IMAGE_BASE)
+	end
+	#
+	# Returns the address of the procedure that is found in the supplied
+	# library.
+	#
+	def get_procedure_address(image_file, procedure)
+		request = Packet.create_request('stdapi_sys_process_image_get_proc_address')
+		request.add_tlv(TLV_TYPE_HANDLE, process.handle)
+		request.add_tlv(TLV_TYPE_IMAGE_FILE, image_file)
+		request.add_tlv(TLV_TYPE_PROCEDURE_NAME, procedure)
+		response = process.client.send_request(request)
+		return response.get_tlv_value(TLV_TYPE_PROCEDURE_ADDRESS)
+	end
+	#
+	# Unloads an image file that is loaded into the address space of the
+	# process by its base address.
+	#
+	def unload(base)
+		request = Packet.create_request('stdapi_sys_process_image_unload')
+		request.add_tlv(TLV_TYPE_HANDLE, process.handle)
+		request.add_tlv(TLV_TYPE_IMAGE_BASE, base)
+		response = process.client.send_request(request)
+		return true
+	end
+	#
+	# Enumerates through each image in the process.
+	#
+	def each_image(&block)
+		get_images.each(&block)
+	end
+	#
+	# Returns an array of images in the process with hash objects that
+	# have keys for 'name', 'path', and 'base'.
+	#
+	def get_images
+		request = Packet.create_request('stdapi_sys_process_image_get_images')
+		images  = []
+		request.add_tlv(TLV_TYPE_HANDLE, process.handle)
+		response = process.client.send_request(request)
+		response.each(TLV_TYPE_IMAGE_GROUP) { |i|
+			images <<
+				{
+					'name' => i.get_tlv_value(TLV_TYPE_IMAGE_NAME),
+					'base' => i.get_tlv_value(TLV_TYPE_IMAGE_BASE),
+					'path' => i.get_tlv_value(TLV_TYPE_IMAGE_FILE_PATH)
+				}
+		}
+		return images
+	end
+protected
+	attr_accessor :process # :nodoc:
+end
+end; end; end; end; end; end; end