RubyGems - librex - Versions diffs - 0.0.20 → 0.0.21 - Mend

librex 0.0.20 → 0.0.21

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (435) hide show

data/Rakefile +1 -0
data/lib/rex/LICENSE +29 -0
data/lib/rex/arch.rb +103 -0
data/lib/rex/arch/sparc.rb +75 -0
data/lib/rex/arch/sparc.rb.ut.rb +18 -0
data/lib/rex/arch/x86.rb +513 -0
data/lib/rex/arch/x86.rb.ut.rb +93 -0
data/lib/rex/assembly/nasm.rb +104 -0
data/lib/rex/assembly/nasm.rb.ut.rb +22 -0
data/lib/rex/codepage.map +104 -0
data/lib/rex/compat.rb +311 -0
data/lib/rex/constants.rb +113 -0
data/lib/rex/elfparsey.rb +11 -0
data/lib/rex/elfparsey/elf.rb +123 -0
data/lib/rex/elfparsey/elfbase.rb +258 -0
data/lib/rex/elfparsey/exceptions.rb +27 -0
data/lib/rex/elfscan.rb +12 -0
data/lib/rex/elfscan/scanner.rb +207 -0
data/lib/rex/elfscan/search.rb +46 -0
data/lib/rex/encoder/alpha2.rb +31 -0
data/lib/rex/encoder/alpha2/alpha_mixed.rb +68 -0
data/lib/rex/encoder/alpha2/alpha_upper.rb +79 -0
data/lib/rex/encoder/alpha2/generic.rb +114 -0
data/lib/rex/encoder/alpha2/unicode_mixed.rb +117 -0
data/lib/rex/encoder/alpha2/unicode_upper.rb +129 -0
data/lib/rex/encoder/ndr.rb +89 -0
data/lib/rex/encoder/ndr.rb.ut.rb +44 -0
data/lib/rex/encoder/nonalpha.rb +61 -0
data/lib/rex/encoder/nonupper.rb +64 -0
data/lib/rex/encoder/xdr.rb +106 -0
data/lib/rex/encoder/xdr.rb.ut.rb +29 -0
data/lib/rex/encoder/xor.rb +69 -0
data/lib/rex/encoder/xor/dword.rb +13 -0
data/lib/rex/encoder/xor/dword_additive.rb +13 -0
data/lib/rex/encoders/xor_dword.rb +35 -0
data/lib/rex/encoders/xor_dword_additive.rb +53 -0
data/lib/rex/encoders/xor_dword_additive.rb.ut.rb +12 -0
data/lib/rex/encoding/xor.rb +20 -0
data/lib/rex/encoding/xor.rb.ts.rb +14 -0
data/lib/rex/encoding/xor/byte.rb +15 -0
data/lib/rex/encoding/xor/byte.rb.ut.rb +21 -0
data/lib/rex/encoding/xor/dword.rb +21 -0
data/lib/rex/encoding/xor/dword.rb.ut.rb +15 -0
data/lib/rex/encoding/xor/dword_additive.rb +92 -0
data/lib/rex/encoding/xor/dword_additive.rb.ut.rb +15 -0
data/lib/rex/encoding/xor/exceptions.rb +17 -0
data/lib/rex/encoding/xor/generic.rb +146 -0
data/lib/rex/encoding/xor/generic.rb.ut.rb +120 -0
data/lib/rex/encoding/xor/qword.rb +15 -0
data/lib/rex/encoding/xor/word.rb +21 -0
data/lib/rex/encoding/xor/word.rb.ut.rb +13 -0
data/lib/rex/exceptions.rb +275 -0
data/lib/rex/exceptions.rb.ut.rb +44 -0
data/lib/rex/exploitation/cmdstager.rb +9 -0
data/lib/rex/exploitation/cmdstager/base.rb +175 -0
data/lib/rex/exploitation/cmdstager/debug_asm.rb +142 -0
data/lib/rex/exploitation/cmdstager/debug_write.rb +136 -0
data/lib/rex/exploitation/cmdstager/tftp.rb +63 -0
data/lib/rex/exploitation/cmdstager/vbs.rb +128 -0
data/lib/rex/exploitation/egghunter.rb +277 -0
data/lib/rex/exploitation/egghunter.rb.ut.rb +25 -0
data/lib/rex/exploitation/encryptjs.rb +77 -0
data/lib/rex/exploitation/heaplib.js.b64 +331 -0
data/lib/rex/exploitation/heaplib.rb +94 -0
data/lib/rex/exploitation/javascriptosdetect.rb +897 -0
data/lib/rex/exploitation/obfuscatejs.rb +335 -0
data/lib/rex/exploitation/omelet.rb +320 -0
data/lib/rex/exploitation/omelet.rb.ut.rb +13 -0
data/lib/rex/exploitation/opcodedb.rb +818 -0
data/lib/rex/exploitation/opcodedb.rb.ut.rb +279 -0
data/lib/rex/exploitation/seh.rb +92 -0
data/lib/rex/exploitation/seh.rb.ut.rb +19 -0
data/lib/rex/file.rb +112 -0
data/lib/rex/file.rb.ut.rb +16 -0
data/lib/rex/image_source.rb +12 -0
data/lib/rex/image_source/disk.rb +60 -0
data/lib/rex/image_source/image_source.rb +46 -0
data/lib/rex/image_source/memory.rb +37 -0
data/lib/rex/io/bidirectional_pipe.rb +157 -0
data/lib/rex/io/datagram_abstraction.rb +35 -0
data/lib/rex/io/ring_buffer.rb +364 -0
data/lib/rex/io/stream.rb +319 -0
data/lib/rex/io/stream_abstraction.rb +197 -0
data/lib/rex/io/stream_server.rb +211 -0
data/lib/rex/job_container.rb +187 -0
data/lib/rex/logging.rb +4 -0
data/lib/rex/logging/log_dispatcher.rb +179 -0
data/lib/rex/logging/log_sink.rb +42 -0
data/lib/rex/logging/sinks/flatfile.rb +55 -0
data/lib/rex/logging/sinks/stderr.rb +43 -0
data/lib/rex/machparsey.rb +9 -0
data/lib/rex/machparsey/exceptions.rb +34 -0
data/lib/rex/machparsey/mach.rb +209 -0
data/lib/rex/machparsey/machbase.rb +408 -0
data/lib/rex/machscan.rb +9 -0
data/lib/rex/machscan/scanner.rb +217 -0
data/lib/rex/mime.rb +9 -0
data/lib/rex/mime/header.rb +77 -0
data/lib/rex/mime/message.rb +144 -0
data/lib/rex/mime/part.rb +20 -0
data/lib/rex/nop/opty2.rb +108 -0
data/lib/rex/nop/opty2.rb.ut.rb +23 -0
data/lib/rex/nop/opty2_tables.rb +300 -0
data/lib/rex/ole.rb +205 -0
data/lib/rex/ole/clsid.rb +47 -0
data/lib/rex/ole/difat.rb +141 -0
data/lib/rex/ole/directory.rb +231 -0
data/lib/rex/ole/direntry.rb +240 -0
data/lib/rex/ole/docs/dependencies.txt +8 -0
data/lib/rex/ole/docs/references.txt +1 -0
data/lib/rex/ole/fat.rb +99 -0
data/lib/rex/ole/header.rb +204 -0
data/lib/rex/ole/minifat.rb +77 -0
data/lib/rex/ole/propset.rb +144 -0
data/lib/rex/ole/samples/create_ole.rb +27 -0
data/lib/rex/ole/samples/dir.rb +35 -0
data/lib/rex/ole/samples/dump_stream.rb +34 -0
data/lib/rex/ole/samples/ole_info.rb +23 -0
data/lib/rex/ole/storage.rb +395 -0
data/lib/rex/ole/stream.rb +53 -0
data/lib/rex/ole/substorage.rb +49 -0
data/lib/rex/ole/util.rb +157 -0
data/lib/rex/parser/arguments.rb +97 -0
data/lib/rex/parser/arguments.rb.ut.rb +67 -0
data/lib/rex/parser/ini.rb +185 -0
data/lib/rex/parser/ini.rb.ut.rb +29 -0
data/lib/rex/parser/ip360_aspl_xml.rb +102 -0
data/lib/rex/parser/ip360_xml.rb +97 -0
data/lib/rex/parser/nessus_xml.rb +118 -0
data/lib/rex/parser/netsparker_xml.rb +94 -0
data/lib/rex/parser/nexpose_xml.rb +136 -0
data/lib/rex/parser/nmap_xml.rb +137 -0
data/lib/rex/parser/retina_xml.rb +109 -0
data/lib/rex/payloads.rb +1 -0
data/lib/rex/payloads/win32.rb +2 -0
data/lib/rex/payloads/win32/common.rb +26 -0
data/lib/rex/payloads/win32/kernel.rb +53 -0
data/lib/rex/payloads/win32/kernel/common.rb +54 -0
data/lib/rex/payloads/win32/kernel/migration.rb +12 -0
data/lib/rex/payloads/win32/kernel/recovery.rb +50 -0
data/lib/rex/payloads/win32/kernel/stager.rb +194 -0
data/lib/rex/peparsey.rb +12 -0
data/lib/rex/peparsey/exceptions.rb +32 -0
data/lib/rex/peparsey/pe.rb +212 -0
data/lib/rex/peparsey/pe_memdump.rb +63 -0
data/lib/rex/peparsey/pebase.rb +1680 -0
data/lib/rex/peparsey/section.rb +136 -0
data/lib/rex/pescan.rb +13 -0
data/lib/rex/pescan/analyze.rb +309 -0
data/lib/rex/pescan/scanner.rb +206 -0
data/lib/rex/pescan/search.rb +56 -0
data/lib/rex/platforms.rb +1 -0
data/lib/rex/platforms/windows.rb +51 -0
data/lib/rex/poly.rb +132 -0
data/lib/rex/poly/block.rb +477 -0
data/lib/rex/poly/register.rb +100 -0
data/lib/rex/poly/register/x86.rb +40 -0
data/lib/rex/post.rb +8 -0
data/lib/rex/post/dir.rb +51 -0
data/lib/rex/post/file.rb +172 -0
data/lib/rex/post/file_stat.rb +220 -0
data/lib/rex/post/gen.pl +13 -0
data/lib/rex/post/io.rb +182 -0
data/lib/rex/post/meterpreter.rb +4 -0
data/lib/rex/post/meterpreter/channel.rb +445 -0
data/lib/rex/post/meterpreter/channel_container.rb +54 -0
data/lib/rex/post/meterpreter/channels/pool.rb +160 -0
data/lib/rex/post/meterpreter/channels/pools/file.rb +62 -0
data/lib/rex/post/meterpreter/channels/pools/stream_pool.rb +103 -0
data/lib/rex/post/meterpreter/channels/stream.rb +87 -0
data/lib/rex/post/meterpreter/client.rb +364 -0
data/lib/rex/post/meterpreter/client_core.rb +274 -0
data/lib/rex/post/meterpreter/dependencies.rb +3 -0
data/lib/rex/post/meterpreter/extension.rb +32 -0
data/lib/rex/post/meterpreter/extensions/espia/espia.rb +58 -0
data/lib/rex/post/meterpreter/extensions/espia/tlv.rb +16 -0
data/lib/rex/post/meterpreter/extensions/incognito/incognito.rb +94 -0
data/lib/rex/post/meterpreter/extensions/incognito/tlv.rb +21 -0
data/lib/rex/post/meterpreter/extensions/networkpug/networkpug.rb +57 -0
data/lib/rex/post/meterpreter/extensions/networkpug/tlv.rb +15 -0
data/lib/rex/post/meterpreter/extensions/priv/fs.rb +118 -0
data/lib/rex/post/meterpreter/extensions/priv/passwd.rb +61 -0
data/lib/rex/post/meterpreter/extensions/priv/priv.rb +111 -0
data/lib/rex/post/meterpreter/extensions/priv/tlv.rb +28 -0
data/lib/rex/post/meterpreter/extensions/sniffer/sniffer.rb +101 -0
data/lib/rex/post/meterpreter/extensions/sniffer/tlv.rb +26 -0
data/lib/rex/post/meterpreter/extensions/stdapi/constants.rb +333 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/dir.rb +282 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb +266 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/file_stat.rb +103 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/io.rb +48 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/config.rb +144 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/interface.rb +73 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/route.rb +56 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket.rb +137 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket_subsystem/tcp_client_channel.rb +180 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket_subsystem/tcp_server_channel.rb +167 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket_subsystem/udp_channel.rb +208 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun.rb.ts.rb +6 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/api_constants.rb +38106 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/api_constants.rb.ut.rb +31 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/buffer_item.rb +47 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/buffer_item.rb.ut.rb +36 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_advapi32.rb +1818 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_iphlpapi.rb +96 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_kernel32.rb +3848 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_netapi32.rb +26 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_ntdll.rb +153 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_shell32.rb +21 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_user32.rb +3169 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_ws2_32.rb +599 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/dll.rb +318 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/dll_function.rb +100 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/dll_function.rb.ut.rb +42 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/dll_helper.rb +148 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/dll_helper.rb.ut.rb +127 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/multicall.rb +309 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/railgun.rb +204 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/tlv.rb +51 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/util.rb +630 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/win_const_manager.rb +75 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/win_const_manager.rb.ut.rb +103 -0
data/lib/rex/post/meterpreter/extensions/stdapi/stdapi.rb +149 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/config.rb +97 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/event_log.rb +192 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/event_log_subsystem/event_record.rb +41 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/power.rb +61 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process.rb +370 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/image.rb +129 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/io.rb +55 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/memory.rb +336 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/thread.rb +141 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry.rb +279 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry_subsystem/registry_key.rb +193 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry_subsystem/registry_value.rb +102 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/thread.rb +180 -0
data/lib/rex/post/meterpreter/extensions/stdapi/tlv.rb +211 -0
data/lib/rex/post/meterpreter/extensions/stdapi/ui.rb +227 -0
data/lib/rex/post/meterpreter/extensions/stdapi/webcam/webcam.rb +63 -0
data/lib/rex/post/meterpreter/inbound_packet_handler.rb +30 -0
data/lib/rex/post/meterpreter/object_aliases.rb +83 -0
data/lib/rex/post/meterpreter/packet.rb +688 -0
data/lib/rex/post/meterpreter/packet_dispatcher.rb +431 -0
data/lib/rex/post/meterpreter/packet_parser.rb +94 -0
data/lib/rex/post/meterpreter/packet_response_waiter.rb +83 -0
data/lib/rex/post/meterpreter/ui/console.rb +137 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher.rb +62 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/core.rb +730 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/espia.rb +108 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/incognito.rb +241 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/networkpug.rb +231 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv.rb +61 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/elevate.rb +98 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/passwd.rb +51 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/timestomp.rb +132 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/sniffer.rb +187 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi.rb +65 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/fs.rb +442 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/net.rb +298 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/sys.rb +486 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/ui.rb +315 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/webcam.rb +157 -0
data/lib/rex/post/meterpreter/ui/console/interactive_channel.rb +95 -0
data/lib/rex/post/permission.rb +26 -0
data/lib/rex/post/process.rb +57 -0
data/lib/rex/post/thread.rb +57 -0
data/lib/rex/post/ui.rb +52 -0
data/lib/rex/proto.rb +13 -0
data/lib/rex/proto.rb.ts.rb +8 -0
data/lib/rex/proto/dcerpc.rb +6 -0
data/lib/rex/proto/dcerpc.rb.ts.rb +9 -0
data/lib/rex/proto/dcerpc/client.rb +361 -0
data/lib/rex/proto/dcerpc/client.rb.ut.rb +491 -0
data/lib/rex/proto/dcerpc/exceptions.rb +150 -0
data/lib/rex/proto/dcerpc/handle.rb +47 -0
data/lib/rex/proto/dcerpc/handle.rb.ut.rb +85 -0
data/lib/rex/proto/dcerpc/ndr.rb +72 -0
data/lib/rex/proto/dcerpc/ndr.rb.ut.rb +41 -0
data/lib/rex/proto/dcerpc/packet.rb +253 -0
data/lib/rex/proto/dcerpc/packet.rb.ut.rb +56 -0
data/lib/rex/proto/dcerpc/response.rb +187 -0
data/lib/rex/proto/dcerpc/response.rb.ut.rb +15 -0
data/lib/rex/proto/dcerpc/uuid.rb +84 -0
data/lib/rex/proto/dcerpc/uuid.rb.ut.rb +46 -0
data/lib/rex/proto/dhcp.rb +7 -0
data/lib/rex/proto/dhcp/constants.rb +33 -0
data/lib/rex/proto/dhcp/server.rb +292 -0
data/lib/rex/proto/drda.rb +5 -0
data/lib/rex/proto/drda.rb.ts.rb +17 -0
data/lib/rex/proto/drda/constants.rb +49 -0
data/lib/rex/proto/drda/constants.rb.ut.rb +23 -0
data/lib/rex/proto/drda/packet.rb +252 -0
data/lib/rex/proto/drda/packet.rb.ut.rb +109 -0
data/lib/rex/proto/drda/utils.rb +123 -0
data/lib/rex/proto/drda/utils.rb.ut.rb +84 -0
data/lib/rex/proto/http.rb +5 -0
data/lib/rex/proto/http.rb.ts.rb +12 -0
data/lib/rex/proto/http/client.rb +821 -0
data/lib/rex/proto/http/client.rb.ut.rb +95 -0
data/lib/rex/proto/http/handler.rb +46 -0
data/lib/rex/proto/http/handler/erb.rb +128 -0
data/lib/rex/proto/http/handler/erb.rb.ut.rb +21 -0
data/lib/rex/proto/http/handler/erb.rb.ut.rb.rhtml +1 -0
data/lib/rex/proto/http/handler/proc.rb +60 -0
data/lib/rex/proto/http/handler/proc.rb.ut.rb +24 -0
data/lib/rex/proto/http/header.rb +161 -0
data/lib/rex/proto/http/header.rb.ut.rb +46 -0
data/lib/rex/proto/http/packet.rb +407 -0
data/lib/rex/proto/http/packet.rb.ut.rb +165 -0
data/lib/rex/proto/http/request.rb +356 -0
data/lib/rex/proto/http/request.rb.ut.rb +214 -0
data/lib/rex/proto/http/response.rb +90 -0
data/lib/rex/proto/http/response.rb.ut.rb +149 -0
data/lib/rex/proto/http/server.rb +369 -0
data/lib/rex/proto/http/server.rb.ut.rb +79 -0
data/lib/rex/proto/ntlm.rb +7 -0
data/lib/rex/proto/ntlm.rb.ut.rb +177 -0
data/lib/rex/proto/ntlm/base.rb +326 -0
data/lib/rex/proto/ntlm/constants.rb +74 -0
data/lib/rex/proto/ntlm/crypt.rb +415 -0
data/lib/rex/proto/ntlm/exceptions.rb +16 -0
data/lib/rex/proto/ntlm/message.rb +536 -0
data/lib/rex/proto/ntlm/utils.rb +764 -0
data/lib/rex/proto/proxy/socks4a.rb +440 -0
data/lib/rex/proto/rfb.rb +19 -0
data/lib/rex/proto/rfb.rb.ut.rb +37 -0
data/lib/rex/proto/rfb/cipher.rb +84 -0
data/lib/rex/proto/rfb/client.rb +207 -0
data/lib/rex/proto/rfb/constants.rb +52 -0
data/lib/rex/proto/smb.rb +7 -0
data/lib/rex/proto/smb.rb.ts.rb +8 -0
data/lib/rex/proto/smb/client.rb +1952 -0
data/lib/rex/proto/smb/client.rb.ut.rb +223 -0
data/lib/rex/proto/smb/constants.rb +1047 -0
data/lib/rex/proto/smb/constants.rb.ut.rb +18 -0
data/lib/rex/proto/smb/crypt.rb +36 -0
data/lib/rex/proto/smb/evasions.rb +66 -0
data/lib/rex/proto/smb/exceptions.rb +858 -0
data/lib/rex/proto/smb/simpleclient.rb +306 -0
data/lib/rex/proto/smb/simpleclient.rb.ut.rb +128 -0
data/lib/rex/proto/smb/utils.rb +103 -0
data/lib/rex/proto/smb/utils.rb.ut.rb +20 -0
data/lib/rex/proto/sunrpc.rb +1 -0
data/lib/rex/proto/sunrpc/client.rb +195 -0
data/lib/rex/proto/tftp.rb +12 -0
data/lib/rex/proto/tftp/constants.rb +39 -0
data/lib/rex/proto/tftp/server.rb +497 -0
data/lib/rex/proto/tftp/server.rb.ut.rb +28 -0
data/lib/rex/script.rb +42 -0
data/lib/rex/script/base.rb +59 -0
data/lib/rex/script/meterpreter.rb +15 -0
data/lib/rex/script/shell.rb +9 -0
data/lib/rex/service.rb +48 -0
data/lib/rex/service_manager.rb +141 -0
data/lib/rex/service_manager.rb.ut.rb +32 -0
data/lib/rex/services/local_relay.rb +423 -0
data/lib/rex/socket.rb +684 -0
data/lib/rex/socket.rb.ut.rb +107 -0
data/lib/rex/socket/comm.rb +119 -0
data/lib/rex/socket/comm/local.rb +412 -0
data/lib/rex/socket/comm/local.rb.ut.rb +75 -0
data/lib/rex/socket/ip.rb +130 -0
data/lib/rex/socket/parameters.rb +345 -0
data/lib/rex/socket/parameters.rb.ut.rb +51 -0
data/lib/rex/socket/range_walker.rb +346 -0
data/lib/rex/socket/range_walker.rb.ut.rb +55 -0
data/lib/rex/socket/ssl_tcp.rb +184 -0
data/lib/rex/socket/ssl_tcp.rb.ut.rb +39 -0
data/lib/rex/socket/ssl_tcp_server.rb +122 -0
data/lib/rex/socket/ssl_tcp_server.rb.ut.rb +61 -0
data/lib/rex/socket/subnet_walker.rb +75 -0
data/lib/rex/socket/subnet_walker.rb.ut.rb +28 -0
data/lib/rex/socket/switch_board.rb +278 -0
data/lib/rex/socket/switch_board.rb.ut.rb +52 -0
data/lib/rex/socket/tcp.rb +76 -0
data/lib/rex/socket/tcp.rb.ut.rb +64 -0
data/lib/rex/socket/tcp_server.rb +66 -0
data/lib/rex/socket/tcp_server.rb.ut.rb +44 -0
data/lib/rex/socket/udp.rb +164 -0
data/lib/rex/socket/udp.rb.ut.rb +44 -0
data/lib/rex/struct2.rb +5 -0
data/lib/rex/struct2/c_struct.rb +181 -0
data/lib/rex/struct2/c_struct_template.rb +39 -0
data/lib/rex/struct2/constant.rb +26 -0
data/lib/rex/struct2/element.rb +44 -0
data/lib/rex/struct2/generic.rb +73 -0
data/lib/rex/struct2/restraint.rb +54 -0
data/lib/rex/struct2/s_string.rb +72 -0
data/lib/rex/struct2/s_struct.rb +111 -0
data/lib/rex/sync.rb +6 -0
data/lib/rex/sync/event.rb +94 -0
data/lib/rex/sync/read_write_lock.rb +176 -0
data/lib/rex/sync/ref.rb +57 -0
data/lib/rex/sync/thread_safe.rb +82 -0
data/lib/rex/test.rb +35 -0
data/lib/rex/text.rb +1163 -0
data/lib/rex/text.rb.ut.rb +190 -0
data/lib/rex/thread_factory.rb +42 -0
data/lib/rex/time.rb +65 -0
data/lib/rex/transformer.rb +115 -0
data/lib/rex/transformer.rb.ut.rb +38 -0
data/lib/rex/ui.rb +21 -0
data/lib/rex/ui/interactive.rb +298 -0
data/lib/rex/ui/output.rb +78 -0
data/lib/rex/ui/output/none.rb +18 -0
data/lib/rex/ui/progress_tracker.rb +96 -0
data/lib/rex/ui/subscriber.rb +149 -0
data/lib/rex/ui/text/color.rb +97 -0
data/lib/rex/ui/text/color.rb.ut.rb +18 -0
data/lib/rex/ui/text/dispatcher_shell.rb +467 -0
data/lib/rex/ui/text/input.rb +117 -0
data/lib/rex/ui/text/input/buffer.rb +75 -0
data/lib/rex/ui/text/input/readline.rb +129 -0
data/lib/rex/ui/text/input/socket.rb +95 -0
data/lib/rex/ui/text/input/stdio.rb +45 -0
data/lib/rex/ui/text/irb_shell.rb +57 -0
data/lib/rex/ui/text/output.rb +80 -0
data/lib/rex/ui/text/output/buffer.rb +61 -0
data/lib/rex/ui/text/output/file.rb +43 -0
data/lib/rex/ui/text/output/socket.rb +43 -0
data/lib/rex/ui/text/output/stdio.rb +40 -0
data/lib/rex/ui/text/progress_tracker.rb +56 -0
data/lib/rex/ui/text/progress_tracker.rb.ut.rb +34 -0
data/lib/rex/ui/text/shell.rb +328 -0
data/lib/rex/ui/text/table.rb +279 -0
data/lib/rex/ui/text/table.rb.ut.rb +55 -0
data/lib/rex/zip.rb +93 -0
data/lib/rex/zip/archive.rb +184 -0
data/lib/rex/zip/blocks.rb +182 -0
data/lib/rex/zip/entry.rb +104 -0
data/lib/rex/zip/samples/comment.rb +32 -0
data/lib/rex/zip/samples/mkwar.rb +138 -0
data/lib/rex/zip/samples/mkzip.rb +19 -0
data/lib/rex/zip/samples/recursive.rb +58 -0
metadata +434 -1

data/lib/rex/post/meterpreter/extensions/stdapi/railgun/dll_helper.rb ADDED

@@ -0,0 +1,148 @@
+# Copyright (c) 2010, patrickHVE@googlemail.com
+# All rights reserved.
+#
+# Redistribution and use in source and binary forms, with or without
+# modification, are permitted provided that the following conditions are met:
+#     * Redistributions of source code must retain the above copyright
+#       notice, this list of conditions and the following disclaimer.
+#     * Redistributions in binary form must reproduce the above copyright
+#       notice, this list of conditions and the following disclaimer in the
+#       documentation and/or other materials provided with the distribution.
+#     * The names of the author may not be used to endorse or promote products
+#       derived from this software without specific prior written permission.
+#
+# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+# DISCLAIMED. IN NO EVENT SHALL patrickHVE@googlemail.com BE LIABLE FOR ANY
+# DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
+# (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
+# LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
+# ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+# (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+# SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+module Rex
+module Post
+module Meterpreter
+module Extensions
+module Stdapi
+module Railgun
+#
+# shared functions
+#
+#
+module DLLHelper
+	# converts ruby string to zero-terminated ASCII string
+	def str_to_ascii_z(str)
+		return str+"\x00"
+	end
+	# converts 0-terminated ASCII string to ruby string
+	def asciiz_to_str(asciiz)
+		zero_byte_idx = asciiz.index("\x00")
+		if zero_byte_idx != nil
+			return asciiz[0, zero_byte_idx]
+		else
+			return asciiz
+		end
+	end
+	# converts ruby string to zero-terminated WCHAR string
+	def str_to_uni_z(str)
+		enc = str.unpack("C*").pack("v*")
+		enc += "\x00\x00"
+		return enc
+	end
+	# converts 0-terminated UTF16 to ruby string
+	def uniz_to_str(uniz)
+		uniz.unpack("v*").pack("C*").unpack("A*")[0]
+	end
+	# parses a number param and returns the value
+	# raises an exception if the param cannot be converted to a number
+	# examples:
+	#   nil => 0
+	#   3 => 3
+	#   "MB_OK" => 0
+	#   "SOME_CONSTANT | OTHER_CONSTANT" => 17
+	#   "tuna" => !!!!!!!!!!Exception
+	#
+	# Parameter "win_consts" is a WinConstantManager
+	def param_to_number(v, win_consts = @win_consts)
+		if v.class == NilClass then
+			return 0
+		elsif v.class == Fixnum then
+			return v # ok, it's already a number
+		elsif v.class == Bignum then
+			return v # ok, it's already a number
+		elsif v.class == String then
+			dw = win_consts.parse(v) # might raise an exception
+			if dw != nil
+				return dw
+			else
+				raise ArgumentError, "Param #{v} (class #{v.class}) cannot be converted to a number. It's a string but matches no constants I know."
+			end
+		else
+			raise "Param #{v} (class #{v.class}) should be a number but isn't"
+		end
+	end
+	# assembles the buffers "in" and "inout"
+	def assemble_buffer(direction, function, args)
+		layout = {} # paramName => BufferItem
+		blob = ""
+		#puts " building buffer: #{direction}"
+		function.params.each_with_index do |param_desc, param_idx|
+			#puts "  processing #{param_desc[0]} #{param_desc[1]} #{param_desc[2]}"
+			# we care only about inout buffers
+			if param_desc[2] == direction
+				buffer = nil
+				# Special case:
+				# The user can choose to supply a Null pointer instead of a buffer
+				# in this case we don't need space in any heap buffer
+				if param_desc[0][0,1] == 'P' # type is a pointer
+					if args[param_idx] == nil
+						next
+					end
+				end
+				case param_desc[0] # required argument type
+					when "PDWORD"
+						dw = param_to_number(args[param_idx])
+						buffer = [dw].pack('V')
+					when "PWCHAR"
+						raise "param #{param_desc[1]}: string expected" unless args[param_idx].class == String
+						buffer = str_to_uni_z(args[param_idx])
+					when "PCHAR"
+						raise "param #{param_desc[1]}: string expected" unless args[param_idx].class == String
+						buffer = str_to_ascii_z(args[param_idx])
+					when "PBLOB"
+						raise "param #{param_desc[1]}: please supply your BLOB as string!" unless args[param_idx].class == String
+						buffer = args[param_idx]
+					# other types (non-pointers) don't reference buffers
+					# and don't need any treatment here
+				end
+				if buffer != nil
+					#puts "   adding #{buffer.length} bytes to heap blob"
+					layout[param_desc[1]] = BufferItem.new(param_idx, blob.length, buffer.length, param_desc[0])
+					blob += buffer
+					# sf: force 8 byte alignment to satisfy x64, wont matter on x86.
+					while( blob.length % 8 != 0 )
+						blob += "\x00"
+					end
+					#puts "   heap blob size now #{blob.length}"
+				end
+			end
+		end
+		#puts "  built buffer: #{direction}"
+		return [layout, blob]
+	end
+end
+end; end; end; end; end; end;

data/lib/rex/post/meterpreter/extensions/stdapi/railgun/dll_helper.rb.ut.rb ADDED

@@ -0,0 +1,127 @@
+#!/usr/bin/env ruby
+$:.unshift(File.join(File.dirname(__FILE__), '..', '..', '..','..','..','..','..', 'lib'))
+require 'rex/post/meterpreter/extensions/stdapi/railgun/dll_helper'
+require 'rex/post/meterpreter/extensions/stdapi/railgun/win_const_manager'
+require 'rex/text'
+require 'test/unit'
+module Rex
+module Post
+module Meterpreter
+module Extensions
+module Stdapi
+module Railgun
+class DLLHelper::UnitTest < Test::Unit::TestCase
+	###
+	# We will test against this instance of DLLHelper (a module)
+	#
+	# We freeze the instance and make the reference constant to ensure consistency
+	##
+	TEST_DLL_HELPER = Object.new.extend(DLLHelper).freeze
+	def test_str_to_ascii_z
+		original_string = '23 Skidoo!'
+		# converts ruby string to zero-terminated ASCII string
+		zero_terminated_ascii_attempt = TEST_DLL_HELPER.str_to_ascii_z(original_string)
+		assert(zero_terminated_ascii_attempt.end_with?("\x00"),
+			"str_to_ascii_z should result in a 0 terminated string")
+		assert(zero_terminated_ascii_attempt.start_with?(original_string),
+			"str_to_ascii_z should still start with original string")
+		assert_equal(original_string.length + 1, zero_terminated_ascii_attempt.length,
+			"str_to_ascii_z should have length of original pluss room for a terminal 0")
+	end
+	def test_asciiz_to_str
+		target_string = '23 Skidoo!'
+		post_zero_noise = 'Loud noises!'
+		zero_terminated_string = target_string + "\x00" + post_zero_noise
+		actual_string =  TEST_DLL_HELPER.asciiz_to_str(zero_terminated_string)
+		assert(actual_string.start_with?(target_string),
+			"asciiz_to_str should preserve string before zero")
+		assert(!actual_string.end_with?(post_zero_noise),
+			"asciiz_to_str should ignore characters after zero")
+		assert_equal(target_string, actual_string,
+			"asciiz_to_str should only return the contents of the string before (exclusive) the zero")
+		assert_equal(target_string, TEST_DLL_HELPER.asciiz_to_str(target_string),
+			"asciiz_to_str should return input verbatim should that input not be zero-terminated")
+	end
+	def test_str_to_uni_z
+		ruby_string = "If I were a rich man..."
+		target_zero_terminated_unicode = Rex::Text.to_unicode(ruby_string) + "\x00\x00"
+		actual_zero_terminated_unicode = TEST_DLL_HELPER.str_to_uni_z(ruby_string)
+		assert(actual_zero_terminated_unicode.end_with?("\x00\x00"),
+			"str_to_uni_z should result in a double-zero terminated string")
+		assert_equal(target_zero_terminated_unicode, actual_zero_terminated_unicode,
+			"str_to_uni_z should convert ruby string to zero-terminated WCHAR string")
+	end
+	def test_uniz_to_str
+		target_string = 'Foo bar baz'
+		zero_terminated_unicode = Rex::Text.to_unicode(target_string) + "\x00\x00"
+		assert_equal(target_string, TEST_DLL_HELPER.uniz_to_str(zero_terminated_unicode),
+			'uniz_to_str should convert 0-terminated UTF16 to ruby string')
+	end
+	def test_assemble_buffer
+		# TODO: provide test coverage
+		#skip("Currently DLLHelper.assemble_buffer does not have coverage")
+	end
+	def test_param_to_number
+		consts_manager = WinConstManager.new
+		x_key = 'X'
+		x_value = 23
+		y_key = 'Y'
+		y_value = 5
+		logical_or = x_key +  '|' +  y_key
+		target_result_of_logical_or = x_value | y_value
+		consts_manager.add_const(y_key, y_value)
+		consts_manager.add_const(x_key, x_value)
+		assert_equal(x_value, TEST_DLL_HELPER.param_to_number(x_key, consts_manager),
+			"param_to_number should return the appropriate value for a given constant")
+		assert_equal(y_value, TEST_DLL_HELPER.param_to_number(y_key, consts_manager),
+			"param_to_number should return the appropriate value for a given constant")
+		assert_equal(0, TEST_DLL_HELPER.param_to_number(nil, consts_manager),
+			"param_to_number should return zero when given nil")
+		assert_equal(target_result_of_logical_or, TEST_DLL_HELPER.param_to_number(logical_or, consts_manager),
+			"param_to_number should perform an OR should the input be in the form '#{logical_or}'")
+		assert_raise(ArgumentError, 'param_to_number should raise an error when a given key does not exist') do
+			TEST_DLL_HELPER.param_to_number('DOESNT_EXIST', consts_manager)
+		end
+	end
+end
+end
+end
+end
+end
+end
+end

data/lib/rex/post/meterpreter/extensions/stdapi/railgun/multicall.rb ADDED

@@ -0,0 +1,309 @@
+# Copyright (c) 2010, patrickHVE@googlemail.com
+# All rights reserved.
+#
+# Redistribution and use in source and binary forms, with or without
+# modification, are permitted provided that the following conditions are met:
+#     * Redistributions of source code must retain the above copyright
+#       notice, this list of conditions and the following disclaimer.
+#     * Redistributions in binary form must reproduce the above copyright
+#       notice, this list of conditions and the following disclaimer in the
+#       documentation and/or other materials provided with the distribution.
+#     * The names of the author may not be used to endorse or promote products
+#       derived from this software without specific prior written permission.
+#
+# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+# DISCLAIMED. IN NO EVENT SHALL patrickHVE@googlemail.com BE LIABLE FOR ANY
+# DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
+# (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
+# LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
+# ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+# (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+# SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+require 'pp'
+require 'enumerator'
+require 'rex/post/meterpreter/extensions/stdapi/railgun/api_constants'
+require 'rex/post/meterpreter/extensions/stdapi/railgun/tlv'
+require 'rex/post/meterpreter/extensions/stdapi/railgun/dll_helper'
+require 'rex/post/meterpreter/extensions/stdapi/railgun/buffer_item'
+module Rex
+module Post
+module Meterpreter
+module Extensions
+module Stdapi
+module Railgun
+# A easier way to call multiple functions in a single request
+class MultiCaller
+		include DLLHelper
+		def initialize( client, parent, win_consts )
+			@parent     = parent
+			@client     = client
+			@win_consts = win_consts
+			if( @client.platform =~ /x64/i )
+				@native = 'Q'
+			else
+				@native = 'V'
+			end
+		end
+		def call(functions)
+			request = Packet.create_request('stdapi_railgun_api_multi')
+			function_results = []
+			layouts          = []
+			functions.each do |f|
+				dll_name,funcname,args = f
+				dll_host = @parent.get_dll( dll_name )
+				if not dll_host
+					raise "DLL #{dll_name} has not been loaded"
+				end
+				function = dll_host.functions[funcname]
+				if not function
+					raise "DLL #{dll_name} function #{funcname} has not been defined"
+				end
+				raise "#{function.params.length} arguments expected. #{args.length} arguments provided." unless args.length == function.params.length
+				#puts "process_function_call(function.windows_name,#{PP.pp(args, "")})"
+				# We transmit the immediate stack and three heap-buffers:
+				# in, inout and out. The reason behind the separation is bandwidth.
+				# We don't want to transmit uninitialized data in or no-longer-needed data out.
+				# out-only-buffers that are ONLY transmitted on the way BACK
+				out_only_layout = {} # paramName => BufferItem
+				out_only_size_bytes = 0
+				#puts " assembling out-only buffer"
+				function.params.each_with_index do |param_desc, param_idx|
+					#puts " processing #{param_desc[1]}"
+					# Special case:
+					# The user can choose to supply a Null pointer instead of a buffer
+					# in this case we don't need space in any heap buffer
+					if param_desc[0][0,1] == 'P' # type is a pointer
+						if args[param_idx] == nil
+							next
+						end
+					end
+					# we care only about out-only buffers
+					if param_desc[2] == "out"
+						raise "error in param #{param_desc[1]}: Out-only buffers must be described by a number indicating their size in bytes " unless args[param_idx].class == Fixnum
+						buffer_size = args[param_idx]
+						# bump up the size for an x64 pointer
+						if( @native == 'Q' and buffer_size == 4 )
+							args[param_idx] = 8
+							buffer_size = args[param_idx]
+						end
+						if( @native == 'Q' )
+							raise "Please pass 8 for 'out' PDWORDS, since they require a buffer of size 8" unless buffer_size == 8
+						elsif( @native == 'V' )
+							raise "Please pass 4 for 'out' PDWORDS, since they require a buffer of size 4" unless buffer_size == 4
+						end
+						out_only_layout[param_desc[1]] = BufferItem.new(param_idx, out_only_size_bytes, buffer_size, param_desc[0])
+						out_only_size_bytes += buffer_size
+					end
+				end
+				tmp = assemble_buffer("in", function, args)
+				in_only_layout = tmp[0]
+				in_only_buffer = tmp[1]
+				tmp = assemble_buffer("inout", function, args)
+				inout_layout = tmp[0]
+				inout_buffer = tmp[1]
+				# now we build the stack
+				# every stack dword will be described by two dwords:
+				# first dword describes second dword:
+				#	0 - literal,
+				#	1 = relative to in-only buffer
+				#	2 = relative to out-only buffer
+				#	3 = relative to inout buffer
+				# (literal numbers and pointers to buffers we have created)
+				literal_pairs_blob = ""
+				#puts " assembling literal stack"
+				function.params.each_with_index do |param_desc, param_idx|
+					#puts "  processing (#{param_desc[0]}, #{param_desc[1]}, #{param_desc[2]})"
+					buffer = nil
+					# is it a pointer to a buffer on our stack
+					if ["PDWORD", "PWCHAR", "PCHAR", "PBLOB"].include? param_desc[0]
+						#puts "   pointer"
+						if args[param_idx] == nil # null pointer?
+							buffer = [0].pack(@native) # type: DWORD  (so the dll does not rebase it)
+							buffer += [0].pack(@native) # value: 0
+						elsif param_desc[2] == "in"
+							buffer = [1].pack(@native)
+							buffer += [in_only_layout[param_desc[1]].addr].pack(@native)
+						elsif param_desc[2] == "out"
+							buffer = [2].pack(@native)
+							buffer += [out_only_layout[param_desc[1]].addr].pack(@native)
+						elsif param_desc[2] == "inout"
+							buffer = [3].pack(@native)
+							buffer += [inout_layout[param_desc[1]].addr].pack(@native)
+						else
+							raise "unexpected direction"
+						end
+					else
+						#puts "   not a pointer"
+						# it's not a pointer
+						buffer = [0].pack(@native)
+						case param_desc[0]
+							when "LPVOID", "HANDLE"
+								num     = param_to_number(args[param_idx])
+								buffer += [num].pack(@native)
+							when "DWORD"
+								num     = param_to_number(args[param_idx])
+								buffer += [num % 4294967296].pack(@native)
+							when "WORD"
+								num     = param_to_number(args[param_idx])
+								buffer += [num % 65536].pack(@native)
+							when "BYTE"
+								num     = param_to_number(args[param_idx])
+								buffer += [num % 256].pack(@native)
+							when "BOOL"
+								case args[param_idx]
+									when true
+										buffer += [1].pack('V')
+									when false
+										buffer += [0].pack('V')
+									else
+										raise "param #{param_desc[1]}: true or false expected"
+								end
+							else
+								raise "unexpected type for param #{param_desc[1]}"
+						end
+					end
+					#puts "   adding pair to blob"
+					literal_pairs_blob += buffer
+					#puts "   buffer size %X" % buffer.length
+					#puts "   blob size so far: %X" % literal_pairs_blob.length
+				end
+				#puts "\n\nsending Stuff to meterpreter"
+				group = Rex::Post::Meterpreter::GroupTlv.new(TLV_TYPE_RAILGUN_MULTI_GROUP)
+				group.add_tlv(TLV_TYPE_RAILGUN_SIZE_OUT, out_only_size_bytes)
+				group.add_tlv(TLV_TYPE_RAILGUN_STACKBLOB, literal_pairs_blob)
+				group.add_tlv(TLV_TYPE_RAILGUN_BUFFERBLOB_IN, in_only_buffer)
+				group.add_tlv(TLV_TYPE_RAILGUN_BUFFERBLOB_INOUT, inout_buffer)
+				group.add_tlv(TLV_TYPE_RAILGUN_DLLNAME, dll_name )
+				group.add_tlv(TLV_TYPE_RAILGUN_FUNCNAME, function.windows_name)
+				request.tlvs << group
+				layouts << [inout_layout, out_only_layout]
+			end
+			call_results = []
+			res = @client.send_request(request)
+			res.each(TLV_TYPE_RAILGUN_MULTI_GROUP) do |val|
+				call_results << val
+			end
+			functions.each do |f|
+				dll_name,funcname,args = f
+				dll_host = @parent.get_dll( dll_name )
+				function = dll_host.functions[funcname]
+				response = call_results.shift
+				inout_layout, out_only_layout = layouts.shift
+				rec_inout_buffers = response.get_tlv_value(TLV_TYPE_RAILGUN_BACK_BUFFERBLOB_INOUT)
+				rec_out_only_buffers = response.get_tlv_value(TLV_TYPE_RAILGUN_BACK_BUFFERBLOB_OUT)
+				rec_return_value = response.get_tlv_value(TLV_TYPE_RAILGUN_BACK_RET)
+				rec_last_error = response.get_tlv_value(TLV_TYPE_RAILGUN_BACK_ERR)
+				# The hash the function returns
+				return_hash={"GetLastError" => rec_last_error}
+				#process return value
+				case function.return_type
+					when "LPVOID", "HANDLE"
+						if( @native == 'Q' )
+							return_hash["return"] = rec_return_value
+						else
+							return_hash["return"] = rec_return_value % 4294967296
+						end
+					when "DWORD"
+						return_hash["return"] = rec_return_value % 4294967296
+					when "WORD"
+						return_hash["return"] = rec_return_value % 65536
+					when "BYTE"
+						return_hash["return"] = rec_return_value % 256
+					when "BOOL"
+						return_hash["return"] = (rec_return_value != 0)
+					when "VOID"
+						return_hash["return"] = nil
+					else
+						raise "unexpected return type: #{function.return_type}"
+				end
+				#puts return_hash
+				#puts "out_only_layout:"
+				#puts out_only_layout
+				# process out-only buffers
+				#puts "processing out-only buffers:"
+				out_only_layout.each_pair do |param_name, buffer_item|
+					#puts "   #{param_name}"
+					buffer = rec_out_only_buffers[buffer_item.addr, buffer_item.length_in_bytes]
+					case buffer_item.datatype
+						when "PDWORD"
+							return_hash[param_name] = buffer.unpack('V')[0]
+						when "PCHAR"
+							return_hash[param_name] = asciiz_to_str(buffer)
+						when "PWCHAR"
+							return_hash[param_name] = uniz_to_str(buffer)
+						when "PBLOB"
+							return_hash[param_name] = buffer
+						else
+							raise "unexpected type in out-only buffer of #{param_name}: #{buffer_item.datatype}"
+					end
+				end
+				#puts return_hash
+				# process in-out buffers
+				#puts "processing in-out buffers:"
+				inout_layout.each_pair do |param_name, buffer_item|
+					#puts "   #{param_name}"
+					buffer = rec_inout_buffers[buffer_item.addr, buffer_item.length_in_bytes]
+					case buffer_item.datatype
+						when "PDWORD"
+							return_hash[param_name] = buffer.unpack('V')[0]
+						when "PCHAR"
+							return_hash[param_name] = asciiz_to_str(buffer)
+						when "PWCHAR"
+							return_hash[param_name] = uniz_to_str(buffer)
+						when "PBLOB"
+							return_hash[param_name] = buffer
+						else
+							raise "unexpected type in in-out-buffer of #{param_name}: #{buffer_item.datatype}"
+					end
+				end
+				#puts return_hash
+				#puts "finished"
+				function_results << return_hash
+			end
+			function_results
+		end
+		# process_multi_function_call
+	protected
+	attr_accessor :win_consts
+end # MultiCall
+end; end; end; end; end; end