RubyGems - librex - Versions diffs - 0.0.20 → 0.0.21 - Mend

librex 0.0.20 → 0.0.21

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (435) hide show

data/Rakefile +1 -0
data/lib/rex/LICENSE +29 -0
data/lib/rex/arch.rb +103 -0
data/lib/rex/arch/sparc.rb +75 -0
data/lib/rex/arch/sparc.rb.ut.rb +18 -0
data/lib/rex/arch/x86.rb +513 -0
data/lib/rex/arch/x86.rb.ut.rb +93 -0
data/lib/rex/assembly/nasm.rb +104 -0
data/lib/rex/assembly/nasm.rb.ut.rb +22 -0
data/lib/rex/codepage.map +104 -0
data/lib/rex/compat.rb +311 -0
data/lib/rex/constants.rb +113 -0
data/lib/rex/elfparsey.rb +11 -0
data/lib/rex/elfparsey/elf.rb +123 -0
data/lib/rex/elfparsey/elfbase.rb +258 -0
data/lib/rex/elfparsey/exceptions.rb +27 -0
data/lib/rex/elfscan.rb +12 -0
data/lib/rex/elfscan/scanner.rb +207 -0
data/lib/rex/elfscan/search.rb +46 -0
data/lib/rex/encoder/alpha2.rb +31 -0
data/lib/rex/encoder/alpha2/alpha_mixed.rb +68 -0
data/lib/rex/encoder/alpha2/alpha_upper.rb +79 -0
data/lib/rex/encoder/alpha2/generic.rb +114 -0
data/lib/rex/encoder/alpha2/unicode_mixed.rb +117 -0
data/lib/rex/encoder/alpha2/unicode_upper.rb +129 -0
data/lib/rex/encoder/ndr.rb +89 -0
data/lib/rex/encoder/ndr.rb.ut.rb +44 -0
data/lib/rex/encoder/nonalpha.rb +61 -0
data/lib/rex/encoder/nonupper.rb +64 -0
data/lib/rex/encoder/xdr.rb +106 -0
data/lib/rex/encoder/xdr.rb.ut.rb +29 -0
data/lib/rex/encoder/xor.rb +69 -0
data/lib/rex/encoder/xor/dword.rb +13 -0
data/lib/rex/encoder/xor/dword_additive.rb +13 -0
data/lib/rex/encoders/xor_dword.rb +35 -0
data/lib/rex/encoders/xor_dword_additive.rb +53 -0
data/lib/rex/encoders/xor_dword_additive.rb.ut.rb +12 -0
data/lib/rex/encoding/xor.rb +20 -0
data/lib/rex/encoding/xor.rb.ts.rb +14 -0
data/lib/rex/encoding/xor/byte.rb +15 -0
data/lib/rex/encoding/xor/byte.rb.ut.rb +21 -0
data/lib/rex/encoding/xor/dword.rb +21 -0
data/lib/rex/encoding/xor/dword.rb.ut.rb +15 -0
data/lib/rex/encoding/xor/dword_additive.rb +92 -0
data/lib/rex/encoding/xor/dword_additive.rb.ut.rb +15 -0
data/lib/rex/encoding/xor/exceptions.rb +17 -0
data/lib/rex/encoding/xor/generic.rb +146 -0
data/lib/rex/encoding/xor/generic.rb.ut.rb +120 -0
data/lib/rex/encoding/xor/qword.rb +15 -0
data/lib/rex/encoding/xor/word.rb +21 -0
data/lib/rex/encoding/xor/word.rb.ut.rb +13 -0
data/lib/rex/exceptions.rb +275 -0
data/lib/rex/exceptions.rb.ut.rb +44 -0
data/lib/rex/exploitation/cmdstager.rb +9 -0
data/lib/rex/exploitation/cmdstager/base.rb +175 -0
data/lib/rex/exploitation/cmdstager/debug_asm.rb +142 -0
data/lib/rex/exploitation/cmdstager/debug_write.rb +136 -0
data/lib/rex/exploitation/cmdstager/tftp.rb +63 -0
data/lib/rex/exploitation/cmdstager/vbs.rb +128 -0
data/lib/rex/exploitation/egghunter.rb +277 -0
data/lib/rex/exploitation/egghunter.rb.ut.rb +25 -0
data/lib/rex/exploitation/encryptjs.rb +77 -0
data/lib/rex/exploitation/heaplib.js.b64 +331 -0
data/lib/rex/exploitation/heaplib.rb +94 -0
data/lib/rex/exploitation/javascriptosdetect.rb +897 -0
data/lib/rex/exploitation/obfuscatejs.rb +335 -0
data/lib/rex/exploitation/omelet.rb +320 -0
data/lib/rex/exploitation/omelet.rb.ut.rb +13 -0
data/lib/rex/exploitation/opcodedb.rb +818 -0
data/lib/rex/exploitation/opcodedb.rb.ut.rb +279 -0
data/lib/rex/exploitation/seh.rb +92 -0
data/lib/rex/exploitation/seh.rb.ut.rb +19 -0
data/lib/rex/file.rb +112 -0
data/lib/rex/file.rb.ut.rb +16 -0
data/lib/rex/image_source.rb +12 -0
data/lib/rex/image_source/disk.rb +60 -0
data/lib/rex/image_source/image_source.rb +46 -0
data/lib/rex/image_source/memory.rb +37 -0
data/lib/rex/io/bidirectional_pipe.rb +157 -0
data/lib/rex/io/datagram_abstraction.rb +35 -0
data/lib/rex/io/ring_buffer.rb +364 -0
data/lib/rex/io/stream.rb +319 -0
data/lib/rex/io/stream_abstraction.rb +197 -0
data/lib/rex/io/stream_server.rb +211 -0
data/lib/rex/job_container.rb +187 -0
data/lib/rex/logging.rb +4 -0
data/lib/rex/logging/log_dispatcher.rb +179 -0
data/lib/rex/logging/log_sink.rb +42 -0
data/lib/rex/logging/sinks/flatfile.rb +55 -0
data/lib/rex/logging/sinks/stderr.rb +43 -0
data/lib/rex/machparsey.rb +9 -0
data/lib/rex/machparsey/exceptions.rb +34 -0
data/lib/rex/machparsey/mach.rb +209 -0
data/lib/rex/machparsey/machbase.rb +408 -0
data/lib/rex/machscan.rb +9 -0
data/lib/rex/machscan/scanner.rb +217 -0
data/lib/rex/mime.rb +9 -0
data/lib/rex/mime/header.rb +77 -0
data/lib/rex/mime/message.rb +144 -0
data/lib/rex/mime/part.rb +20 -0
data/lib/rex/nop/opty2.rb +108 -0
data/lib/rex/nop/opty2.rb.ut.rb +23 -0
data/lib/rex/nop/opty2_tables.rb +300 -0
data/lib/rex/ole.rb +205 -0
data/lib/rex/ole/clsid.rb +47 -0
data/lib/rex/ole/difat.rb +141 -0
data/lib/rex/ole/directory.rb +231 -0
data/lib/rex/ole/direntry.rb +240 -0
data/lib/rex/ole/docs/dependencies.txt +8 -0
data/lib/rex/ole/docs/references.txt +1 -0
data/lib/rex/ole/fat.rb +99 -0
data/lib/rex/ole/header.rb +204 -0
data/lib/rex/ole/minifat.rb +77 -0
data/lib/rex/ole/propset.rb +144 -0
data/lib/rex/ole/samples/create_ole.rb +27 -0
data/lib/rex/ole/samples/dir.rb +35 -0
data/lib/rex/ole/samples/dump_stream.rb +34 -0
data/lib/rex/ole/samples/ole_info.rb +23 -0
data/lib/rex/ole/storage.rb +395 -0
data/lib/rex/ole/stream.rb +53 -0
data/lib/rex/ole/substorage.rb +49 -0
data/lib/rex/ole/util.rb +157 -0
data/lib/rex/parser/arguments.rb +97 -0
data/lib/rex/parser/arguments.rb.ut.rb +67 -0
data/lib/rex/parser/ini.rb +185 -0
data/lib/rex/parser/ini.rb.ut.rb +29 -0
data/lib/rex/parser/ip360_aspl_xml.rb +102 -0
data/lib/rex/parser/ip360_xml.rb +97 -0
data/lib/rex/parser/nessus_xml.rb +118 -0
data/lib/rex/parser/netsparker_xml.rb +94 -0
data/lib/rex/parser/nexpose_xml.rb +136 -0
data/lib/rex/parser/nmap_xml.rb +137 -0
data/lib/rex/parser/retina_xml.rb +109 -0
data/lib/rex/payloads.rb +1 -0
data/lib/rex/payloads/win32.rb +2 -0
data/lib/rex/payloads/win32/common.rb +26 -0
data/lib/rex/payloads/win32/kernel.rb +53 -0
data/lib/rex/payloads/win32/kernel/common.rb +54 -0
data/lib/rex/payloads/win32/kernel/migration.rb +12 -0
data/lib/rex/payloads/win32/kernel/recovery.rb +50 -0
data/lib/rex/payloads/win32/kernel/stager.rb +194 -0
data/lib/rex/peparsey.rb +12 -0
data/lib/rex/peparsey/exceptions.rb +32 -0
data/lib/rex/peparsey/pe.rb +212 -0
data/lib/rex/peparsey/pe_memdump.rb +63 -0
data/lib/rex/peparsey/pebase.rb +1680 -0
data/lib/rex/peparsey/section.rb +136 -0
data/lib/rex/pescan.rb +13 -0
data/lib/rex/pescan/analyze.rb +309 -0
data/lib/rex/pescan/scanner.rb +206 -0
data/lib/rex/pescan/search.rb +56 -0
data/lib/rex/platforms.rb +1 -0
data/lib/rex/platforms/windows.rb +51 -0
data/lib/rex/poly.rb +132 -0
data/lib/rex/poly/block.rb +477 -0
data/lib/rex/poly/register.rb +100 -0
data/lib/rex/poly/register/x86.rb +40 -0
data/lib/rex/post.rb +8 -0
data/lib/rex/post/dir.rb +51 -0
data/lib/rex/post/file.rb +172 -0
data/lib/rex/post/file_stat.rb +220 -0
data/lib/rex/post/gen.pl +13 -0
data/lib/rex/post/io.rb +182 -0
data/lib/rex/post/meterpreter.rb +4 -0
data/lib/rex/post/meterpreter/channel.rb +445 -0
data/lib/rex/post/meterpreter/channel_container.rb +54 -0
data/lib/rex/post/meterpreter/channels/pool.rb +160 -0
data/lib/rex/post/meterpreter/channels/pools/file.rb +62 -0
data/lib/rex/post/meterpreter/channels/pools/stream_pool.rb +103 -0
data/lib/rex/post/meterpreter/channels/stream.rb +87 -0
data/lib/rex/post/meterpreter/client.rb +364 -0
data/lib/rex/post/meterpreter/client_core.rb +274 -0
data/lib/rex/post/meterpreter/dependencies.rb +3 -0
data/lib/rex/post/meterpreter/extension.rb +32 -0
data/lib/rex/post/meterpreter/extensions/espia/espia.rb +58 -0
data/lib/rex/post/meterpreter/extensions/espia/tlv.rb +16 -0
data/lib/rex/post/meterpreter/extensions/incognito/incognito.rb +94 -0
data/lib/rex/post/meterpreter/extensions/incognito/tlv.rb +21 -0
data/lib/rex/post/meterpreter/extensions/networkpug/networkpug.rb +57 -0
data/lib/rex/post/meterpreter/extensions/networkpug/tlv.rb +15 -0
data/lib/rex/post/meterpreter/extensions/priv/fs.rb +118 -0
data/lib/rex/post/meterpreter/extensions/priv/passwd.rb +61 -0
data/lib/rex/post/meterpreter/extensions/priv/priv.rb +111 -0
data/lib/rex/post/meterpreter/extensions/priv/tlv.rb +28 -0
data/lib/rex/post/meterpreter/extensions/sniffer/sniffer.rb +101 -0
data/lib/rex/post/meterpreter/extensions/sniffer/tlv.rb +26 -0
data/lib/rex/post/meterpreter/extensions/stdapi/constants.rb +333 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/dir.rb +282 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb +266 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/file_stat.rb +103 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/io.rb +48 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/config.rb +144 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/interface.rb +73 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/route.rb +56 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket.rb +137 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket_subsystem/tcp_client_channel.rb +180 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket_subsystem/tcp_server_channel.rb +167 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket_subsystem/udp_channel.rb +208 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun.rb.ts.rb +6 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/api_constants.rb +38106 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/api_constants.rb.ut.rb +31 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/buffer_item.rb +47 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/buffer_item.rb.ut.rb +36 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_advapi32.rb +1818 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_iphlpapi.rb +96 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_kernel32.rb +3848 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_netapi32.rb +26 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_ntdll.rb +153 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_shell32.rb +21 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_user32.rb +3169 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_ws2_32.rb +599 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/dll.rb +318 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/dll_function.rb +100 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/dll_function.rb.ut.rb +42 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/dll_helper.rb +148 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/dll_helper.rb.ut.rb +127 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/multicall.rb +309 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/railgun.rb +204 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/tlv.rb +51 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/util.rb +630 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/win_const_manager.rb +75 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/win_const_manager.rb.ut.rb +103 -0
data/lib/rex/post/meterpreter/extensions/stdapi/stdapi.rb +149 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/config.rb +97 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/event_log.rb +192 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/event_log_subsystem/event_record.rb +41 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/power.rb +61 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process.rb +370 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/image.rb +129 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/io.rb +55 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/memory.rb +336 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/thread.rb +141 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry.rb +279 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry_subsystem/registry_key.rb +193 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry_subsystem/registry_value.rb +102 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/thread.rb +180 -0
data/lib/rex/post/meterpreter/extensions/stdapi/tlv.rb +211 -0
data/lib/rex/post/meterpreter/extensions/stdapi/ui.rb +227 -0
data/lib/rex/post/meterpreter/extensions/stdapi/webcam/webcam.rb +63 -0
data/lib/rex/post/meterpreter/inbound_packet_handler.rb +30 -0
data/lib/rex/post/meterpreter/object_aliases.rb +83 -0
data/lib/rex/post/meterpreter/packet.rb +688 -0
data/lib/rex/post/meterpreter/packet_dispatcher.rb +431 -0
data/lib/rex/post/meterpreter/packet_parser.rb +94 -0
data/lib/rex/post/meterpreter/packet_response_waiter.rb +83 -0
data/lib/rex/post/meterpreter/ui/console.rb +137 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher.rb +62 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/core.rb +730 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/espia.rb +108 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/incognito.rb +241 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/networkpug.rb +231 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv.rb +61 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/elevate.rb +98 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/passwd.rb +51 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/timestomp.rb +132 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/sniffer.rb +187 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi.rb +65 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/fs.rb +442 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/net.rb +298 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/sys.rb +486 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/ui.rb +315 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/webcam.rb +157 -0
data/lib/rex/post/meterpreter/ui/console/interactive_channel.rb +95 -0
data/lib/rex/post/permission.rb +26 -0
data/lib/rex/post/process.rb +57 -0
data/lib/rex/post/thread.rb +57 -0
data/lib/rex/post/ui.rb +52 -0
data/lib/rex/proto.rb +13 -0
data/lib/rex/proto.rb.ts.rb +8 -0
data/lib/rex/proto/dcerpc.rb +6 -0
data/lib/rex/proto/dcerpc.rb.ts.rb +9 -0
data/lib/rex/proto/dcerpc/client.rb +361 -0
data/lib/rex/proto/dcerpc/client.rb.ut.rb +491 -0
data/lib/rex/proto/dcerpc/exceptions.rb +150 -0
data/lib/rex/proto/dcerpc/handle.rb +47 -0
data/lib/rex/proto/dcerpc/handle.rb.ut.rb +85 -0
data/lib/rex/proto/dcerpc/ndr.rb +72 -0
data/lib/rex/proto/dcerpc/ndr.rb.ut.rb +41 -0
data/lib/rex/proto/dcerpc/packet.rb +253 -0
data/lib/rex/proto/dcerpc/packet.rb.ut.rb +56 -0
data/lib/rex/proto/dcerpc/response.rb +187 -0
data/lib/rex/proto/dcerpc/response.rb.ut.rb +15 -0
data/lib/rex/proto/dcerpc/uuid.rb +84 -0
data/lib/rex/proto/dcerpc/uuid.rb.ut.rb +46 -0
data/lib/rex/proto/dhcp.rb +7 -0
data/lib/rex/proto/dhcp/constants.rb +33 -0
data/lib/rex/proto/dhcp/server.rb +292 -0
data/lib/rex/proto/drda.rb +5 -0
data/lib/rex/proto/drda.rb.ts.rb +17 -0
data/lib/rex/proto/drda/constants.rb +49 -0
data/lib/rex/proto/drda/constants.rb.ut.rb +23 -0
data/lib/rex/proto/drda/packet.rb +252 -0
data/lib/rex/proto/drda/packet.rb.ut.rb +109 -0
data/lib/rex/proto/drda/utils.rb +123 -0
data/lib/rex/proto/drda/utils.rb.ut.rb +84 -0
data/lib/rex/proto/http.rb +5 -0
data/lib/rex/proto/http.rb.ts.rb +12 -0
data/lib/rex/proto/http/client.rb +821 -0
data/lib/rex/proto/http/client.rb.ut.rb +95 -0
data/lib/rex/proto/http/handler.rb +46 -0
data/lib/rex/proto/http/handler/erb.rb +128 -0
data/lib/rex/proto/http/handler/erb.rb.ut.rb +21 -0
data/lib/rex/proto/http/handler/erb.rb.ut.rb.rhtml +1 -0
data/lib/rex/proto/http/handler/proc.rb +60 -0
data/lib/rex/proto/http/handler/proc.rb.ut.rb +24 -0
data/lib/rex/proto/http/header.rb +161 -0
data/lib/rex/proto/http/header.rb.ut.rb +46 -0
data/lib/rex/proto/http/packet.rb +407 -0
data/lib/rex/proto/http/packet.rb.ut.rb +165 -0
data/lib/rex/proto/http/request.rb +356 -0
data/lib/rex/proto/http/request.rb.ut.rb +214 -0
data/lib/rex/proto/http/response.rb +90 -0
data/lib/rex/proto/http/response.rb.ut.rb +149 -0
data/lib/rex/proto/http/server.rb +369 -0
data/lib/rex/proto/http/server.rb.ut.rb +79 -0
data/lib/rex/proto/ntlm.rb +7 -0
data/lib/rex/proto/ntlm.rb.ut.rb +177 -0
data/lib/rex/proto/ntlm/base.rb +326 -0
data/lib/rex/proto/ntlm/constants.rb +74 -0
data/lib/rex/proto/ntlm/crypt.rb +415 -0
data/lib/rex/proto/ntlm/exceptions.rb +16 -0
data/lib/rex/proto/ntlm/message.rb +536 -0
data/lib/rex/proto/ntlm/utils.rb +764 -0
data/lib/rex/proto/proxy/socks4a.rb +440 -0
data/lib/rex/proto/rfb.rb +19 -0
data/lib/rex/proto/rfb.rb.ut.rb +37 -0
data/lib/rex/proto/rfb/cipher.rb +84 -0
data/lib/rex/proto/rfb/client.rb +207 -0
data/lib/rex/proto/rfb/constants.rb +52 -0
data/lib/rex/proto/smb.rb +7 -0
data/lib/rex/proto/smb.rb.ts.rb +8 -0
data/lib/rex/proto/smb/client.rb +1952 -0
data/lib/rex/proto/smb/client.rb.ut.rb +223 -0
data/lib/rex/proto/smb/constants.rb +1047 -0
data/lib/rex/proto/smb/constants.rb.ut.rb +18 -0
data/lib/rex/proto/smb/crypt.rb +36 -0
data/lib/rex/proto/smb/evasions.rb +66 -0
data/lib/rex/proto/smb/exceptions.rb +858 -0
data/lib/rex/proto/smb/simpleclient.rb +306 -0
data/lib/rex/proto/smb/simpleclient.rb.ut.rb +128 -0
data/lib/rex/proto/smb/utils.rb +103 -0
data/lib/rex/proto/smb/utils.rb.ut.rb +20 -0
data/lib/rex/proto/sunrpc.rb +1 -0
data/lib/rex/proto/sunrpc/client.rb +195 -0
data/lib/rex/proto/tftp.rb +12 -0
data/lib/rex/proto/tftp/constants.rb +39 -0
data/lib/rex/proto/tftp/server.rb +497 -0
data/lib/rex/proto/tftp/server.rb.ut.rb +28 -0
data/lib/rex/script.rb +42 -0
data/lib/rex/script/base.rb +59 -0
data/lib/rex/script/meterpreter.rb +15 -0
data/lib/rex/script/shell.rb +9 -0
data/lib/rex/service.rb +48 -0
data/lib/rex/service_manager.rb +141 -0
data/lib/rex/service_manager.rb.ut.rb +32 -0
data/lib/rex/services/local_relay.rb +423 -0
data/lib/rex/socket.rb +684 -0
data/lib/rex/socket.rb.ut.rb +107 -0
data/lib/rex/socket/comm.rb +119 -0
data/lib/rex/socket/comm/local.rb +412 -0
data/lib/rex/socket/comm/local.rb.ut.rb +75 -0
data/lib/rex/socket/ip.rb +130 -0
data/lib/rex/socket/parameters.rb +345 -0
data/lib/rex/socket/parameters.rb.ut.rb +51 -0
data/lib/rex/socket/range_walker.rb +346 -0
data/lib/rex/socket/range_walker.rb.ut.rb +55 -0
data/lib/rex/socket/ssl_tcp.rb +184 -0
data/lib/rex/socket/ssl_tcp.rb.ut.rb +39 -0
data/lib/rex/socket/ssl_tcp_server.rb +122 -0
data/lib/rex/socket/ssl_tcp_server.rb.ut.rb +61 -0
data/lib/rex/socket/subnet_walker.rb +75 -0
data/lib/rex/socket/subnet_walker.rb.ut.rb +28 -0
data/lib/rex/socket/switch_board.rb +278 -0
data/lib/rex/socket/switch_board.rb.ut.rb +52 -0
data/lib/rex/socket/tcp.rb +76 -0
data/lib/rex/socket/tcp.rb.ut.rb +64 -0
data/lib/rex/socket/tcp_server.rb +66 -0
data/lib/rex/socket/tcp_server.rb.ut.rb +44 -0
data/lib/rex/socket/udp.rb +164 -0
data/lib/rex/socket/udp.rb.ut.rb +44 -0
data/lib/rex/struct2.rb +5 -0
data/lib/rex/struct2/c_struct.rb +181 -0
data/lib/rex/struct2/c_struct_template.rb +39 -0
data/lib/rex/struct2/constant.rb +26 -0
data/lib/rex/struct2/element.rb +44 -0
data/lib/rex/struct2/generic.rb +73 -0
data/lib/rex/struct2/restraint.rb +54 -0
data/lib/rex/struct2/s_string.rb +72 -0
data/lib/rex/struct2/s_struct.rb +111 -0
data/lib/rex/sync.rb +6 -0
data/lib/rex/sync/event.rb +94 -0
data/lib/rex/sync/read_write_lock.rb +176 -0
data/lib/rex/sync/ref.rb +57 -0
data/lib/rex/sync/thread_safe.rb +82 -0
data/lib/rex/test.rb +35 -0
data/lib/rex/text.rb +1163 -0
data/lib/rex/text.rb.ut.rb +190 -0
data/lib/rex/thread_factory.rb +42 -0
data/lib/rex/time.rb +65 -0
data/lib/rex/transformer.rb +115 -0
data/lib/rex/transformer.rb.ut.rb +38 -0
data/lib/rex/ui.rb +21 -0
data/lib/rex/ui/interactive.rb +298 -0
data/lib/rex/ui/output.rb +78 -0
data/lib/rex/ui/output/none.rb +18 -0
data/lib/rex/ui/progress_tracker.rb +96 -0
data/lib/rex/ui/subscriber.rb +149 -0
data/lib/rex/ui/text/color.rb +97 -0
data/lib/rex/ui/text/color.rb.ut.rb +18 -0
data/lib/rex/ui/text/dispatcher_shell.rb +467 -0
data/lib/rex/ui/text/input.rb +117 -0
data/lib/rex/ui/text/input/buffer.rb +75 -0
data/lib/rex/ui/text/input/readline.rb +129 -0
data/lib/rex/ui/text/input/socket.rb +95 -0
data/lib/rex/ui/text/input/stdio.rb +45 -0
data/lib/rex/ui/text/irb_shell.rb +57 -0
data/lib/rex/ui/text/output.rb +80 -0
data/lib/rex/ui/text/output/buffer.rb +61 -0
data/lib/rex/ui/text/output/file.rb +43 -0
data/lib/rex/ui/text/output/socket.rb +43 -0
data/lib/rex/ui/text/output/stdio.rb +40 -0
data/lib/rex/ui/text/progress_tracker.rb +56 -0
data/lib/rex/ui/text/progress_tracker.rb.ut.rb +34 -0
data/lib/rex/ui/text/shell.rb +328 -0
data/lib/rex/ui/text/table.rb +279 -0
data/lib/rex/ui/text/table.rb.ut.rb +55 -0
data/lib/rex/zip.rb +93 -0
data/lib/rex/zip/archive.rb +184 -0
data/lib/rex/zip/blocks.rb +182 -0
data/lib/rex/zip/entry.rb +104 -0
data/lib/rex/zip/samples/comment.rb +32 -0
data/lib/rex/zip/samples/mkwar.rb +138 -0
data/lib/rex/zip/samples/mkzip.rb +19 -0
data/lib/rex/zip/samples/recursive.rb +58 -0
metadata +434 -1

data/lib/rex/exploitation/opcodedb.rb.ut.rb ADDED

@@ -0,0 +1,279 @@
+#!/usr/bin/env ruby
+$:.unshift(File.join(File.dirname(__FILE__), '..', '..'))
+require 'test/unit'
+require 'rex/exploitation/opcodedb'
+require 'rex/socket'
+class Rex::Exploitation::OpcodeDb::UnitTest < Test::Unit::TestCase
+	Klass = Rex::Exploitation::OpcodeDb::Client
+	SrvPort = 60000
+	def test_meta_types
+		srv_cli
+		begin
+			proc_req_resp(%q{<Array><Hash><Entry name="id">1</Entry><Entry name="name">foo</Entry></Hash><Hash><Entry name="id">2</Entry><Entry name="name">dog</Entry></Hash></Array>})
+			mt = @r.meta_types
+			assert_kind_of(Array, mt)
+			assert_equal(2, mt.length)
+			assert_equal(1, mt[0].id)
+			assert_equal("foo", mt[0].name)
+			assert_equal(2, mt[1].id)
+			assert_equal("dog", mt[1].name)
+		ensure
+			@s.close
+		end
+	end
+	def test_groups
+		srv_cli
+		begin
+			proc_req_resp(%q{<Array><Hash><Entry name="id">47</Entry><Entry name="name">foo</Entry></Hash><Hash><Entry name="id">2</Entry><Entry name="name">dog</Entry></Hash></Array>})
+			mt = @r.groups
+			assert_kind_of(Array, mt)
+			assert_equal(2, mt.length)
+			assert_equal(47, mt[0].id)
+			assert_equal("foo", mt[0].name)
+			assert_equal(2, mt[1].id)
+			assert_equal("dog", mt[1].name)
+		ensure
+			@s.close
+		end
+	end
+	def test_platforms
+		srv_cli
+		begin
+			proc_req_resp(%q{<Array><Hash><Entry name="id">12</Entry><Entry name="name">Windows XP SP2</Entry><Entry name="desc">Windows Coolness</Entry><Entry name="maj_ver">5</Entry><Entry name="min_ver">1</Entry><Entry name="maj_patch_level">2</Entry><Entry name="min_patch_level">0</Entry><Entry name="modules">10</Entry></Hash></Array>})
+			osv = @r.platforms
+			assert_kind_of(Array, osv)
+			assert_equal(1, osv.length)
+			assert_equal(12, osv[0].id)
+			assert_equal("Windows XP SP2", osv[0].name)
+			assert_equal("Windows Coolness", osv[0].desc)
+			assert_equal(5, osv[0].maj_ver)
+			assert_equal(1, osv[0].min_ver)
+			assert_equal(2, osv[0].maj_patch_level)
+			assert_equal(0, osv[0].min_patch_level)
+			assert_equal(10, osv[0].modules)
+		ensure
+			@s.close
+		end
+	end
+	def test_modules
+		srv_cli
+		begin
+			proc_req_resp(%q{<Array><Hash>
+				<Entry name="id">1</Entry>
+				<Entry name="name">kernel32.dll</Entry>
+				<Entry name="locale">
+					<Hash>
+						<Entry name="id">4</Entry>
+						<Entry name="name">English</Entry>
+					</Hash>
+				</Entry>
+				<Entry name="maj_maj_ver">4</Entry>
+				<Entry name="maj_min_ver">100</Entry>
+				<Entry name="min_maj_ver">2</Entry>
+				<Entry name="min_min_ver">7</Entry>
+				<Entry name="timestamp">403242822</Entry>
+				<Entry name="base_address">100000000</Entry>
+				<Entry name="image_size">40000</Entry>
+				<Entry name="segments">
+					<Array>
+						<Hash>
+							<Entry name="type">text</Entry>
+							<Entry name="base_address">3228094</Entry>
+							<Entry name="segment_size">4000</Entry>
+							<Entry name="writable">true</Entry>
+							<Entry name="readable">true</Entry>
+							<Entry name="executable">false</Entry>
+						</Hash>
+					</Array>
+				</Entry>
+				<Entry name="imports">
+					<Array>
+						<Hash>
+							<Entry name="name">FoolFunction</Entry>
+							<Entry name="address">3242344</Entry>
+							<Entry name="ordinal">5</Entry>
+						</Hash>
+					</Array>
+				</Entry>
+				<Entry name="exports">
+					<Array>
+						<Hash>
+							<Entry name="name">FoolFunctionExport</Entry>
+							<Entry name="address">32423445</Entry>
+							<Entry name="ordinal">51</Entry>
+						</Hash>
+					</Array>
+				</Entry>
+				</Hash></Array>})
+			m = @r.modules
+			assert_kind_of(Array, m)
+			assert_equal(1, m[0].id)
+			assert_equal("kernel32.dll", m[0].name)
+			assert_equal(4, m[0].locale.id)
+			assert_equal("English", m[0].locale.name)
+			assert_equal(4, m[0].maj_maj_ver)
+			assert_equal(100, m[0].maj_min_ver)
+			assert_equal(2, m[0].min_maj_ver)
+			assert_equal(7, m[0].min_min_ver)
+			assert_equal(403242822, m[0].timestamp.to_i)
+			assert_equal(100000000, m[0].base_address)
+			assert_equal(40000, m[0].image_size)
+			assert_kind_of(Array, m[0].segments)
+			assert_equal("text", m[0].segments[0].type)
+			assert_equal(3228094, m[0].segments[0].base_address)
+			assert_equal(4000, m[0].segments[0].size)
+			assert_equal(true, m[0].segments[0].writable)
+			assert_equal(true, m[0].segments[0].readable)
+			assert_equal(false, m[0].segments[0].executable)
+			assert_kind_of(Array, m[0].imports)
+			assert_equal("FoolFunction", m[0].imports[0].name)
+			assert_equal(3242344, m[0].imports[0].address)
+			assert_equal(5, m[0].imports[0].ordinal)
+			assert_kind_of(Array, m[0].exports)
+			assert_equal("FoolFunctionExport", m[0].exports[0].name)
+			assert_equal(32423445, m[0].exports[0].address)
+			assert_equal(51, m[0].exports[0].ordinal)
+		ensure
+			@s.close
+		end
+	end
+	def test_locales
+		srv_cli
+		begin
+			proc_req_resp(%q{<Array><Hash>
+				<Entry name="id">4</Entry>
+				<Entry name="name">English</Entry>
+			</Hash>
+			<Hash>
+				<Entry name="id">5</Entry>
+				<Entry name="name">French</Entry>
+			</Hash></Array>})
+			l = @r.locales
+			assert_kind_of(Array, l)
+			assert_equal(2, l.length)
+			assert_equal(4, l[0].id)
+			assert_equal("English", l[0].name)
+			assert_equal(5, l[1].id)
+			assert_equal("French", l[1].name)
+		ensure
+			@s.close
+		end
+	end
+	def test_search
+		srv_cli
+		begin
+			proc_req_resp(%q{
+				<Array>
+					<Hash>
+						<Entry name="id">400</Entry>
+						<Entry name="address">34242324</Entry>
+						<Entry name="type">
+							<Hash>
+								<Entry name="id">4</Entry>
+								<Entry name="name">jmp esp</Entry>
+						<Entry name="group">
+							<Hash>
+								<Entry name="id">40</Entry>
+								<Entry name="name">reg</Entry>
+							</Hash>
+						</Entry>
+							</Hash>
+						</Entry>
+					</Hash>
+				</Array>})
+			o = @r.search
+			assert_kind_of(Array, o)
+			assert_equal(1, o.length)
+			assert_equal(400, o[0].id)
+			assert_equal(34242324, o[0].address)
+			assert_equal(4, o[0].type.id)
+			assert_equal("jmp esp", o[0].type.name)
+			assert_equal(40, o[0].group.id)
+			assert_equal("reg", o[0].group.name)
+		ensure
+			@s.close
+		end
+	end
+	def test_statistics
+		srv_cli
+		begin
+			proc_req_resp(%q{
+				<Hash>
+					<Entry name="modules">40</Entry>
+					<Entry name="opcodes">50</Entry>
+					<Entry name="opcode_types">60</Entry>
+					<Entry name="platforms">70</Entry>
+					<Entry name="architectures">80</Entry>
+					<Entry name="module_segments">90</Entry>
+					<Entry name="module_imports">100</Entry>
+					<Entry name="module_exports">110</Entry>
+					<Entry name="last_update">120</Entry>
+				</Hash>
+				})
+			s = @r.statistics
+			assert_equal(40, s.modules)
+			assert_equal(50, s.opcodes)
+			assert_equal(60, s.opcode_types)
+			assert_equal(70, s.platforms)
+			assert_equal(80, s.architectures)
+			assert_equal(90, s.module_segments)
+			assert_equal(100, s.module_imports)
+			assert_equal(110, s.module_exports)
+			assert_equal(120, s.last_update.to_i)
+		ensure
+			@s.close
+		end
+	end
+protected
+	def srv_cli
+		@r = Klass.new('127.0.0.1', SrvPort)
+		@s = Rex::Socket::TcpServer.create(
+			'LocalHost' => '127.0.0.1',
+			'LocalPort' => SrvPort)
+	end
+	def proc_req_resp(buf)
+		thr = Thread.new {
+			cli = @s.accept
+			@buffer = cli.get
+			cli.put("HTTP/1.0 200 OK\r\nConnection: close\r\n\r\n#{buf}")
+			cli.close
+		}
+	end
+end

data/lib/rex/exploitation/seh.rb ADDED

@@ -0,0 +1,92 @@
+require 'rex/text'
+require 'rex/arch/x86'
+module Rex
+module Exploitation
+###
+#
+# This class provides methods for generating SEH registration records
+# in a dynamic and flexible fashion.  The records can be generated with
+# the short jump at a random offset into the next pointer and with random
+# padding in between the handler and the attacker's payload.
+#
+###
+class Seh
+	#
+	# Creates a new instance of the class and initializes it with the supplied
+	# bad character list.  The space argument denotes how much room is
+	# available for random padding and the NOP argument can be used to generate
+	# a random NOP sled that is better than 0x90.
+	#
+	def initialize(badchars = nil, space = nil, nop = nil)
+		self.badchars = badchars || ''
+		self.space    = (space && space > 121) ? 121 : space
+		self.nop      = nop
+	end
+	#
+	# Generates an SEH record
+	#
+	def generate_seh_record(handler, dynamic=false)
+		if (dynamic)
+			generate_dynamic_seh_record(handler)
+		else
+			generate_static_seh_record(handler)
+		end
+	end
+	#
+	# Generates a fake SEH registration record with the supplied handler
+	# address for the handler, and a nop generator to use when generating
+	# padding inside the next pointer.  The NOP generator must implement the
+	# 'generate_sled' method that takes a length and a list of bad
+	# characters.
+	#
+	def generate_dynamic_seh_record(handler)
+		# Generate the padding up to the size specified or 121 characters
+		# maximum to account for the maximum range of a short jump plus the
+		# record size.
+		pad    = rand(space || 121)
+		rsize  = pad + 8
+		# Calculate the random index into the next ptr to store the short jump
+		# instruction
+		jmpidx = rand(3)
+		# Build the prefixed sled for the bytes that come before the short jump
+		# instruction
+		sled = (nop) ? nop.generate_sled(jmpidx, badchars) : ("\x90" * jmpidx)
+		# Seed the record and any space after the record with random text
+		record = Rex::Text.rand_text(rsize, badchars)
+		# Build the next pointer and short jump instruction
+		record[jmpidx, 2] = Rex::Arch::X86.jmp_short((rsize - jmpidx) - 2)
+		record[0, jmpidx] = sled
+		# Set the handler in the registration record
+		record[4, 4]      = [ handler ].pack('V')
+		# Return the generated record to the caller
+		record
+	end
+	#
+	# Generates a static SEH registration record with a specific handler and
+	# next pointer.
+	#
+	def generate_static_seh_record(handler)
+		"\xeb\x06" + Rex::Text.rand_text(2, badchars) + [ handler ].pack('V')
+	end
+protected
+	attr_accessor :badchars, :space, :nop # :nodoc:
+end
+end
+end

data/lib/rex/exploitation/seh.rb.ut.rb ADDED

@@ -0,0 +1,19 @@
+#!/usr/bin/env ruby
+$:.unshift(File.join(File.dirname(__FILE__), '..', '..'))
+require 'test/unit'
+require 'rex/exploitation/seh'
+class Rex::Exploitation::Seh::UnitTest < Test::Unit::TestCase
+	Klass = Rex::Exploitation::Seh
+	def test_static_record
+		r = Klass.new
+		record = r.generate_static_seh_record(0x41414141)
+		assert_equal("\xeb\x06", record[0, 2])
+		assert_equal("\x41\x41\x41\x41", record[4, 4])
+	end
+end

data/lib/rex/file.rb ADDED

@@ -0,0 +1,112 @@
+require 'find'
+require 'rex/compat'
+require 'tempfile'
+module Rex
+###
+#
+# This class provides helper methods for dealing with files that are not
+# supplied by the standard ruby API.
+#
+###
+module FileUtils
+	#
+	# This methods cleans the supplied path of directory traversal sequences
+	# It must accept path/with/..a/folder../starting/or/ending/in/two/dots
+	# but clean ../something as well as path/with/..\traversal
+	#
+	def self.clean_path(old)
+		path = old
+		while(path.index(/\/..\/|\/..\\|\\..\\|\\..\/|\A..\\|\A..\//) != nil)
+			path.gsub!(/\A..\\|\A..\//,'') #eliminate starting ..\ or ../
+			path.gsub!(/\/..\/|\/..\\/,'/') #clean linux style
+			path.gsub!(/\\..\\|\\..\//,'\\') #clean windows style
+		end
+		path
+	end
+	#
+	# This method searches the PATH environment variable for
+	# a fully qualified path to the supplied file name.
+	#
+	def self.find_full_path(file_name)
+		# Check for the absolute fast first
+		if (file_name[0,1] == "/" and ::File.exists?(file_name) and ::File::Stat.new(file_name))
+			return file_name
+		end
+		path = Rex::Compat.getenv('PATH')
+		if (path)
+			path.split(::File::PATH_SEPARATOR).each { |base|
+				begin
+					# Deal with Windows paths surrounded by quotes.  Prevents
+					# silliness like trying to look for
+					# '"C:\\framework\\nmap"\\nmap.exe' which will always fail.
+					base = $1 if base =~ /^"(.*)"$/
+					path = base + ::File::SEPARATOR + file_name
+					if (::File::Stat.new(path) and not ::File.directory?(path))
+						return path
+					end
+				rescue
+				end
+			}
+		end
+		return nil
+	end
+end
+class Quickfile < ::Tempfile
+	def initialize(*args)
+		super(*args)
+		self.binmode
+		ObjectSpace.undefine_finalizer(self)
+	end
+end
+module Find
+  #
+  # Identical to Find.find from Ruby, but follows symlinks to directories.
+  # See http://blade.nagaokaut.ac.jp/cgi-bin/scat.rb/ruby/ruby-talk/68671
+  #
+  def self.find(*paths)
+    paths.collect!{|d| d.dup}
+    while file = paths.shift
+      catch(:prune) do
+        yield file.dup.taint
+        next unless File.exist? file
+        begin
+          if File.stat(file).directory? then
+            d = Dir.open(file)
+            begin
+              for f in d
+                next if f == "." or f == ".."
+                if File::ALT_SEPARATOR and file =~ /^(?:[\/\\]|[A-Za-z]:[\/\\]?)$/ then
+                  f = file + f
+                elsif file == "/" then
+                  f = "/" + f
+                else
+                  f = File.join(file, f)
+                end
+                paths.unshift f.untaint
+              end
+            ensure
+              d.close
+            end
+          end
+        rescue Errno::ENOENT, Errno::EACCES
+        end
+      end
+    end
+  end
+  def self.prune
+    throw :prune
+  end
+end
+end