RubyGems - librex - Versions diffs - 0.0.4 → 0.0.5 - Mend

librex 0.0.4 → 0.0.5

Files changed (389) hide show

data/README.md +12 -0
data/lib/rex.rb +0 -0
data/lib/rex.rb.ts.rb +0 -0
data/lib/rex/LICENSE +0 -0
data/lib/rex/arch.rb +0 -0
data/lib/rex/arch/sparc.rb +0 -0
data/lib/rex/arch/sparc.rb.ut.rb +0 -0
data/lib/rex/arch/x86.rb +0 -0
data/lib/rex/arch/x86.rb.ut.rb +0 -0
data/lib/rex/assembly/nasm.rb +0 -0
data/lib/rex/assembly/nasm.rb.ut.rb +0 -0
data/lib/rex/codepage.map +0 -0
data/lib/rex/compat.rb +0 -0
data/lib/rex/constants.rb +0 -0
data/lib/rex/elfparsey.rb +0 -0
data/lib/rex/elfparsey/elf.rb +0 -0
data/lib/rex/elfparsey/elfbase.rb +2 -4
data/lib/rex/elfparsey/exceptions.rb +0 -0
data/lib/rex/elfscan.rb +0 -0
data/lib/rex/elfscan/scanner.rb +0 -0
data/lib/rex/elfscan/search.rb +10 -10
data/lib/rex/encoder/alpha2.rb +0 -0
data/lib/rex/encoder/alpha2/alpha_mixed.rb +0 -0
data/lib/rex/encoder/alpha2/alpha_upper.rb +0 -0
data/lib/rex/encoder/alpha2/generic.rb +0 -0
data/lib/rex/encoder/alpha2/unicode_mixed.rb +0 -0
data/lib/rex/encoder/alpha2/unicode_upper.rb +0 -0
data/lib/rex/encoder/ndr.rb +0 -0
data/lib/rex/encoder/ndr.rb.ut.rb +0 -0
data/lib/rex/encoder/nonalpha.rb +0 -0
data/lib/rex/encoder/nonupper.rb +0 -0
data/lib/rex/encoder/xdr.rb +0 -0
data/lib/rex/encoder/xdr.rb.ut.rb +0 -0
data/lib/rex/encoder/xor.rb +0 -0
data/lib/rex/encoder/xor/dword.rb +0 -0
data/lib/rex/encoder/xor/dword_additive.rb +0 -0
data/lib/rex/encoders/xor_dword.rb +0 -0
data/lib/rex/encoders/xor_dword_additive.rb +0 -0
data/lib/rex/encoders/xor_dword_additive.rb.ut.rb +0 -0
data/lib/rex/encoding/xor.rb +0 -0
data/lib/rex/encoding/xor.rb.ts.rb +0 -0
data/lib/rex/encoding/xor/byte.rb +0 -0
data/lib/rex/encoding/xor/byte.rb.ut.rb +0 -0
data/lib/rex/encoding/xor/dword.rb +0 -0
data/lib/rex/encoding/xor/dword.rb.ut.rb +0 -0
data/lib/rex/encoding/xor/dword_additive.rb +0 -0
data/lib/rex/encoding/xor/dword_additive.rb.ut.rb +0 -0
data/lib/rex/encoding/xor/exceptions.rb +0 -0
data/lib/rex/encoding/xor/generic.rb +0 -0
data/lib/rex/encoding/xor/generic.rb.ut.rb +0 -0
data/lib/rex/encoding/xor/qword.rb +0 -0
data/lib/rex/encoding/xor/word.rb +0 -0
data/lib/rex/encoding/xor/word.rb.ut.rb +0 -0
data/lib/rex/exceptions.rb +0 -0
data/lib/rex/exceptions.rb.ut.rb +0 -0
data/lib/rex/exploitation/cmdstager.rb +0 -0
data/lib/rex/exploitation/cmdstager/base.rb +6 -1
data/lib/rex/exploitation/cmdstager/debug_asm.rb +0 -0
data/lib/rex/exploitation/cmdstager/debug_write.rb +0 -0
data/lib/rex/exploitation/cmdstager/tftp.rb +8 -8
data/lib/rex/exploitation/cmdstager/vbs.rb +0 -0
data/lib/rex/exploitation/egghunter.rb +143 -36
data/lib/rex/exploitation/egghunter.rb.ut.rb +0 -0
data/lib/rex/exploitation/encryptjs.rb +0 -0
data/lib/rex/exploitation/heaplib.js.b64 +0 -0
data/lib/rex/exploitation/heaplib.rb +0 -0
data/lib/rex/exploitation/javascriptosdetect.rb +114 -15
data/lib/rex/exploitation/obfuscatejs.rb +0 -0
data/lib/rex/exploitation/omelet.rb +320 -0
data/lib/rex/exploitation/omelet.rb.ut.rb +13 -0
data/lib/rex/exploitation/opcodedb.rb +0 -0
data/lib/rex/exploitation/opcodedb.rb.ut.rb +0 -0
data/lib/rex/exploitation/seh.rb +0 -0
data/lib/rex/exploitation/seh.rb.ut.rb +0 -0
data/lib/rex/file.rb +1 -1
data/lib/rex/file.rb.ut.rb +0 -0
data/lib/rex/image_source.rb +0 -0
data/lib/rex/image_source/disk.rb +0 -0
data/lib/rex/image_source/image_source.rb +0 -0
data/lib/rex/image_source/memory.rb +0 -0
data/lib/rex/io/bidirectional_pipe.rb +0 -0
data/lib/rex/io/datagram_abstraction.rb +0 -0
data/lib/rex/io/stream.rb +1 -1
data/lib/rex/io/stream_abstraction.rb +0 -0
data/lib/rex/io/stream_server.rb +0 -0
data/lib/rex/job_container.rb +0 -1
data/lib/rex/logging.rb +0 -0
data/lib/rex/logging/log_dispatcher.rb +0 -0
data/lib/rex/logging/log_sink.rb +0 -0
data/lib/rex/logging/sinks/flatfile.rb +0 -0
data/lib/rex/logging/sinks/stderr.rb +0 -0
data/lib/rex/machparsey.rb +0 -0
data/lib/rex/machparsey/exceptions.rb +0 -0
data/lib/rex/machparsey/machbase.rb +0 -0
data/lib/rex/machscan.rb +0 -0
data/lib/rex/machscan/scanner.rb +0 -0
data/lib/rex/mime.rb +0 -0
data/lib/rex/mime/header.rb +0 -0
data/lib/rex/mime/message.rb +0 -0
data/lib/rex/mime/part.rb +0 -0
data/lib/rex/nop/opty2.rb +0 -0
data/lib/rex/nop/opty2.rb.ut.rb +0 -0
data/lib/rex/nop/opty2_tables.rb +0 -0
data/lib/rex/ole.rb +0 -0
data/lib/rex/ole/clsid.rb +0 -0
data/lib/rex/ole/difat.rb +0 -0
data/lib/rex/ole/directory.rb +0 -0
data/lib/rex/ole/direntry.rb +0 -0
data/lib/rex/ole/docs/dependencies.txt +8 -0
data/lib/rex/ole/docs/references.txt +1 -0
data/lib/rex/ole/fat.rb +0 -0
data/lib/rex/ole/header.rb +3 -3
data/lib/rex/ole/minifat.rb +0 -0
data/lib/rex/ole/storage.rb +4 -4
data/lib/rex/ole/stream.rb +0 -0
data/lib/rex/ole/substorage.rb +0 -0
data/lib/rex/ole/util.rb +0 -0
data/lib/rex/parser/arguments.rb +0 -0
data/lib/rex/parser/arguments.rb.ut.rb +0 -0
data/lib/rex/parser/ini.rb +0 -0
data/lib/rex/parser/ini.rb.ut.rb +0 -0
data/lib/rex/parser/nexpose_xml.rb +0 -0
data/lib/rex/parser/nmap_xml.rb +0 -0
data/lib/rex/payloads.rb +0 -0
data/lib/rex/payloads/win32.rb +0 -0
data/lib/rex/payloads/win32/common.rb +0 -0
data/lib/rex/payloads/win32/kernel.rb +0 -0
data/lib/rex/payloads/win32/kernel/common.rb +0 -0
data/lib/rex/payloads/win32/kernel/migration.rb +0 -0
data/lib/rex/payloads/win32/kernel/recovery.rb +0 -0
data/lib/rex/peparsey.rb +0 -0
data/lib/rex/peparsey/exceptions.rb +0 -0
data/lib/rex/peparsey/pe.rb +7 -1
data/lib/rex/peparsey/pe_memdump.rb +0 -0
data/lib/rex/peparsey/pebase.rb +27 -2
data/lib/rex/peparsey/section.rb +0 -0
data/lib/rex/pescan.rb +0 -0
data/lib/rex/pescan/analyze.rb +0 -0
data/lib/rex/pescan/scanner.rb +0 -0
data/lib/rex/pescan/search.rb +0 -0
data/lib/rex/platforms.rb +0 -0
data/lib/rex/platforms/windows.rb +0 -0
data/lib/rex/poly.rb +0 -0
data/lib/rex/poly/block.rb +0 -0
data/lib/rex/poly/register.rb +0 -0
data/lib/rex/poly/register/x86.rb +0 -0
data/lib/rex/post.rb +0 -0
data/lib/rex/post/dir.rb +0 -0
data/lib/rex/post/file.rb +0 -0
data/lib/rex/post/file_stat.rb +0 -0
data/lib/rex/post/gen.pl +0 -0
data/lib/rex/post/io.rb +0 -0
data/lib/rex/post/meterpreter.rb +0 -0
data/lib/rex/post/meterpreter/channel.rb +0 -0
data/lib/rex/post/meterpreter/channel_container.rb +0 -0
data/lib/rex/post/meterpreter/channels/pool.rb +0 -0
data/lib/rex/post/meterpreter/channels/pools/file.rb +0 -0
data/lib/rex/post/meterpreter/channels/pools/stream_pool.rb +0 -0
data/lib/rex/post/meterpreter/channels/stream.rb +0 -0
data/lib/rex/post/meterpreter/client.rb +3 -0
data/lib/rex/post/meterpreter/client_core.rb +0 -0
data/lib/rex/post/meterpreter/dependencies.rb +0 -0
data/lib/rex/post/meterpreter/extension.rb +0 -0
data/lib/rex/post/meterpreter/extensions/espia/espia.rb +0 -0
data/lib/rex/post/meterpreter/extensions/espia/tlv.rb +0 -0
data/lib/rex/post/meterpreter/extensions/incognito/incognito.rb +0 -0
data/lib/rex/post/meterpreter/extensions/incognito/tlv.rb +0 -0
data/lib/rex/post/meterpreter/extensions/networkpug/networkpug.rb +57 -0
data/lib/rex/post/meterpreter/extensions/networkpug/tlv.rb +15 -0
data/lib/rex/post/meterpreter/extensions/priv/fs.rb +0 -0
data/lib/rex/post/meterpreter/extensions/priv/passwd.rb +0 -0
data/lib/rex/post/meterpreter/extensions/priv/priv.rb +0 -0
data/lib/rex/post/meterpreter/extensions/priv/tlv.rb +0 -0
data/lib/rex/post/meterpreter/extensions/sniffer/sniffer.rb +2 -1
data/lib/rex/post/meterpreter/extensions/sniffer/tlv.rb +12 -10
data/lib/rex/post/meterpreter/extensions/stdapi/constants.rb +0 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/dir.rb +0 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb +31 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/file_stat.rb +0 -0
data/lib/rex/post/meterpreter/extensions/stdapi/fs/io.rb +0 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/config.rb +0 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/interface.rb +0 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/route.rb +0 -0
data/lib/rex/post/meterpreter/extensions/stdapi/net/socket_subsystem/tcp_server_channel.rb +0 -0
data/lib/rex/post/meterpreter/extensions/{railgun → stdapi/railgun}/api_constants.rb +38106 -38105
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_advapi32.rb +1804 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_iphlpapi.rb +96 -0
data/lib/rex/post/meterpreter/extensions/{railgun → stdapi/railgun/def}/def_kernel32.rb +3848 -3678
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_ntdll.rb +153 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_shell32.rb +21 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_user32.rb +3169 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/def/def_ws2_32.rb +599 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/model.rb +540 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/multicall.rb +308 -0
data/lib/rex/post/meterpreter/extensions/stdapi/railgun/railgun.rb +196 -0
data/lib/rex/post/meterpreter/extensions/{railgun → stdapi/railgun}/tlv.rb +6 -9
data/lib/rex/post/meterpreter/extensions/stdapi/stdapi.rb +5 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/config.rb +0 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/event_log.rb +0 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/event_log_subsystem/event_record.rb +0 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/power.rb +0 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process.rb +0 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/image.rb +0 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/io.rb +0 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/memory.rb +0 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/thread.rb +0 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry.rb +0 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry_subsystem/registry_key.rb +0 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry_subsystem/registry_value.rb +0 -0
data/lib/rex/post/meterpreter/extensions/stdapi/sys/thread.rb +0 -0
data/lib/rex/post/meterpreter/extensions/stdapi/tlv.rb +6 -0
data/lib/rex/post/meterpreter/extensions/stdapi/ui.rb +0 -0
data/lib/rex/post/meterpreter/inbound_packet_handler.rb +0 -0
data/lib/rex/post/meterpreter/object_aliases.rb +0 -0
data/lib/rex/post/meterpreter/packet.rb +23 -1
data/lib/rex/post/meterpreter/packet_dispatcher.rb +13 -2
data/lib/rex/post/meterpreter/packet_parser.rb +0 -0
data/lib/rex/post/meterpreter/packet_response_waiter.rb +17 -10
data/lib/rex/post/meterpreter/ui/console.rb +0 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher.rb +0 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/core.rb +12 -7
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/espia.rb +0 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/incognito.rb +0 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/networkpug.rb +221 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv.rb +0 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/elevate.rb +0 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/passwd.rb +0 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/priv/timestomp.rb +0 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/sniffer.rb +4 -3
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi.rb +0 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/fs.rb +56 -1
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/net.rb +22 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/sys.rb +0 -0
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/stdapi/ui.rb +0 -0
data/lib/rex/post/meterpreter/ui/console/interactive_channel.rb +0 -0
data/lib/rex/post/permission.rb +0 -0
data/lib/rex/post/process.rb +0 -0
data/lib/rex/post/thread.rb +0 -0
data/lib/rex/post/ui.rb +0 -0
data/lib/rex/proto.rb +0 -0
data/lib/rex/proto.rb.ts.rb +0 -0
data/lib/rex/proto/dcerpc.rb +0 -0
data/lib/rex/proto/dcerpc.rb.ts.rb +0 -0
data/lib/rex/proto/dcerpc/client.rb +3 -1
data/lib/rex/proto/dcerpc/exceptions.rb +0 -0
data/lib/rex/proto/dcerpc/handle.rb +0 -0
data/lib/rex/proto/dcerpc/handle.rb.ut.rb +0 -0
data/lib/rex/proto/dcerpc/ndr.rb +0 -0
data/lib/rex/proto/dcerpc/ndr.rb.ut.rb +0 -0
data/lib/rex/proto/dcerpc/packet.rb +0 -0
data/lib/rex/proto/dcerpc/packet.rb.ut.rb +0 -0
data/lib/rex/proto/dcerpc/response.rb.ut.rb +0 -0
data/lib/rex/proto/dcerpc/uuid.rb +0 -0
data/lib/rex/proto/dcerpc/uuid.rb.ut.rb +0 -0
data/lib/rex/proto/dhcp.rb +7 -0
data/lib/rex/proto/dhcp/constants.rb +33 -0
data/lib/rex/proto/dhcp/server.rb +285 -0
data/lib/rex/proto/drda.rb +0 -0
data/lib/rex/proto/drda.rb.ts.rb +0 -0
data/lib/rex/proto/drda/constants.rb +0 -0
data/lib/rex/proto/drda/constants.rb.ut.rb +0 -0
data/lib/rex/proto/drda/packet.rb +0 -0
data/lib/rex/proto/drda/packet.rb.ut.rb +0 -0
data/lib/rex/proto/drda/utils.rb +0 -0
data/lib/rex/proto/drda/utils.rb.ut.rb +0 -0
data/lib/rex/proto/http.rb +0 -0
data/lib/rex/proto/http.rb.ts.rb +0 -0
data/lib/rex/proto/http/client.rb +27 -2
data/lib/rex/proto/http/client.rb.ut.rb +4 -2
data/lib/rex/proto/http/handler.rb +0 -0
data/lib/rex/proto/http/handler/erb.rb +0 -0
data/lib/rex/proto/http/handler/erb.rb.ut.rb +0 -0
data/lib/rex/proto/http/handler/erb.rb.ut.rb.rhtml +0 -0
data/lib/rex/proto/http/handler/proc.rb +6 -0
data/lib/rex/proto/http/handler/proc.rb.ut.rb +0 -0
data/lib/rex/proto/http/header.rb +0 -0
data/lib/rex/proto/http/header.rb.ut.rb +0 -0
data/lib/rex/proto/http/packet.rb +20 -19
data/lib/rex/proto/http/packet.rb.ut.rb +0 -0
data/lib/rex/proto/http/request.rb +0 -0
data/lib/rex/proto/http/request.rb.ut.rb +0 -0
data/lib/rex/proto/http/response.rb +0 -0
data/lib/rex/proto/http/response.rb.ut.rb +0 -0
data/lib/rex/proto/http/server.rb +5 -3
data/lib/rex/proto/http/server.rb.ut.rb +0 -0
data/lib/rex/proto/proxy/socks4a.rb +440 -0
data/lib/rex/proto/smb.rb +0 -0
data/lib/rex/proto/smb.rb.ts.rb +0 -0
data/lib/rex/proto/smb/client.rb +110 -61
data/lib/rex/proto/smb/client.rb.ut.rb +0 -0
data/lib/rex/proto/smb/constants.rb +5 -3
data/lib/rex/proto/smb/constants.rb.ut.rb +0 -0
data/lib/rex/proto/smb/crypt.rb +0 -0
data/lib/rex/proto/smb/crypt.rb.ut.rb +0 -0
data/lib/rex/proto/smb/exceptions.rb +0 -0
data/lib/rex/proto/smb/simpleclient.rb +0 -0
data/lib/rex/proto/smb/simpleclient.rb.ut.rb +0 -0
data/lib/rex/proto/smb/utils.rb +2 -0
data/lib/rex/proto/smb/utils.rb.ut.rb +0 -0
data/lib/rex/proto/sunrpc.rb +0 -0
data/lib/rex/proto/sunrpc/client.rb +0 -0
data/lib/rex/proto/tftp.rb +10 -1
data/lib/rex/proto/tftp/constants.rb +5 -3
data/lib/rex/proto/tftp/server.rb +79 -9
data/lib/rex/script.rb +0 -0
data/lib/rex/script/base.rb +0 -0
data/lib/rex/script/meterpreter.rb +0 -0
data/lib/rex/script/shell.rb +0 -0
data/lib/rex/service.rb +0 -0
data/lib/rex/service_manager.rb +0 -0
data/lib/rex/service_manager.rb.ut.rb +0 -0
data/lib/rex/services/local_relay.rb +0 -0
data/lib/rex/socket.rb +6 -4
data/lib/rex/socket.rb.ut.rb +0 -0
data/lib/rex/socket/comm.rb +0 -0
data/lib/rex/socket/comm/local.rb +0 -0
data/lib/rex/socket/comm/local.rb.ut.rb +0 -0
data/lib/rex/socket/ip.rb +0 -0
data/lib/rex/socket/parameters.rb +0 -0
data/lib/rex/socket/parameters.rb.ut.rb +0 -0
data/lib/rex/socket/range_walker.rb +0 -0
data/lib/rex/socket/range_walker.rb.ut.rb +0 -0
data/lib/rex/socket/ssl_tcp.rb +1 -1
data/lib/rex/socket/ssl_tcp.rb.ut.rb +0 -0
data/lib/rex/socket/ssl_tcp_server.rb +0 -0
data/lib/rex/socket/ssl_tcp_server.rb.ut.rb +0 -0
data/lib/rex/socket/subnet_walker.rb +0 -0
data/lib/rex/socket/subnet_walker.rb.ut.rb +0 -0
data/lib/rex/socket/switch_board.rb.ut.rb +0 -0
data/lib/rex/socket/tcp.rb +0 -0
data/lib/rex/socket/tcp.rb.ut.rb +0 -0
data/lib/rex/socket/tcp_server.rb +0 -0
data/lib/rex/socket/tcp_server.rb.ut.rb +0 -0
data/lib/rex/socket/udp.rb +0 -0
data/lib/rex/socket/udp.rb.ut.rb +0 -0
data/lib/rex/struct2.rb +0 -0
data/lib/rex/struct2/c_struct.rb +0 -0
data/lib/rex/struct2/c_struct_template.rb +0 -0
data/lib/rex/struct2/constant.rb +0 -0
data/lib/rex/struct2/element.rb +0 -0
data/lib/rex/struct2/generic.rb +0 -0
data/lib/rex/struct2/restraint.rb +0 -0
data/lib/rex/struct2/s_string.rb +0 -0
data/lib/rex/struct2/s_struct.rb +0 -0
data/lib/rex/sync.rb +0 -0
data/lib/rex/sync/event.rb +0 -0
data/lib/rex/sync/read_write_lock.rb +0 -0
data/lib/rex/sync/ref.rb +0 -0
data/lib/rex/sync/thread_safe.rb +0 -0
data/lib/rex/test.rb +0 -0
data/lib/rex/text.rb +13 -3
data/lib/rex/text.rb.ut.rb +9 -4
data/lib/rex/time.rb +0 -0
data/lib/rex/transformer.rb +0 -0
data/lib/rex/transformer.rb.ut.rb +0 -0
data/lib/rex/ui.rb +0 -0
data/lib/rex/ui/interactive.rb +0 -0
data/lib/rex/ui/output.rb +0 -0
data/lib/rex/ui/output/none.rb +0 -0
data/lib/rex/ui/progress_tracker.rb +0 -0
data/lib/rex/ui/subscriber.rb +0 -0
data/lib/rex/ui/text/color.rb +0 -0
data/lib/rex/ui/text/color.rb.ut.rb +0 -0
data/lib/rex/ui/text/dispatcher_shell.rb +0 -0
data/lib/rex/ui/text/input.rb +0 -0
data/lib/rex/ui/text/input/buffer.rb +0 -0
data/lib/rex/ui/text/input/readline.rb +0 -0
data/lib/rex/ui/text/input/socket.rb +0 -0
data/lib/rex/ui/text/input/stdio.rb +0 -0
data/lib/rex/ui/text/irb_shell.rb +0 -0
data/lib/rex/ui/text/output.rb +0 -0
data/lib/rex/ui/text/output/buffer.rb +0 -0
data/lib/rex/ui/text/output/file.rb +0 -0
data/lib/rex/ui/text/output/socket.rb +0 -0
data/lib/rex/ui/text/output/stdio.rb +0 -0
data/lib/rex/ui/text/progress_tracker.rb +0 -0
data/lib/rex/ui/text/progress_tracker.rb.ut.rb +0 -0
data/lib/rex/ui/text/shell.rb +9 -6
data/lib/rex/ui/text/table.rb +5 -0
data/lib/rex/ui/text/table.rb.ut.rb +0 -0
data/lib/rex/zip.rb +0 -0
data/lib/rex/zip/archive.rb +29 -1
data/lib/rex/zip/blocks.rb +0 -0
data/lib/rex/zip/entry.rb +5 -1
metadata +369 -413
data/README +0 -8
data/lib/rex/post/meterpreter/extensions/railgun/api.rb +0 -9303
data/lib/rex/post/meterpreter/extensions/railgun/railgun.rb +0 -815
data/lib/rex/post/meterpreter/ui/console/command_dispatcher/railgun.rb +0 -57

data/lib/rex/post/meterpreter/extensions/{railgun → stdapi/railgun}/tlv.rb RENAMED

@@ -26,6 +26,7 @@ module Rex
 module Post
 module Meterpreter
 module Extensions
+module Stdapi
 module Railgun
 TLV_TYPE_EXTENSION_RAILGUN = 0
@@ -36,19 +37,15 @@ TLV_TYPE_RAILGUN_BUFFERBLOB_INOUT = 	TLV_META_TYPE_RAW | 		(TLV_TYPE_EXTENSION_R
 TLV_TYPE_RAILGUN_BACK_BUFFERBLOB_OUT = 		TLV_META_TYPE_RAW | 		(TLV_TYPE_EXTENSION_RAILGUN + TLV_EXTENSIONS + 5)
 TLV_TYPE_RAILGUN_BACK_BUFFERBLOB_INOUT = 	TLV_META_TYPE_RAW | 		(TLV_TYPE_EXTENSION_RAILGUN + TLV_EXTENSIONS + 6)
-TLV_TYPE_RAILGUN_BACK_RET = 			    TLV_META_TYPE_UINT | 		(TLV_TYPE_EXTENSION_RAILGUN + TLV_EXTENSIONS + 7)
+TLV_TYPE_RAILGUN_BACK_RET = 			    TLV_META_TYPE_QWORD | 		(TLV_TYPE_EXTENSION_RAILGUN + TLV_EXTENSIONS + 7)
 TLV_TYPE_RAILGUN_BACK_ERR = 			    TLV_META_TYPE_UINT | 		(TLV_TYPE_EXTENSION_RAILGUN + TLV_EXTENSIONS + 8)
 TLV_TYPE_RAILGUN_DLLNAME = 			    TLV_META_TYPE_STRING | 		(TLV_TYPE_EXTENSION_RAILGUN + TLV_EXTENSIONS + 9)
 TLV_TYPE_RAILGUN_FUNCNAME = 			TLV_META_TYPE_STRING | 		(TLV_TYPE_EXTENSION_RAILGUN + TLV_EXTENSIONS + 10)
 TLV_TYPE_RAILGUN_MULTI_GROUP = 			TLV_META_TYPE_GROUP | 		(TLV_TYPE_EXTENSION_RAILGUN + TLV_EXTENSIONS + 11)
+TLV_TYPE_RAILGUN_MEM_ADDRESS =          TLV_META_TYPE_QWORD | (TLV_TYPE_EXTENSION_RAILGUN + TLV_EXTENSIONS + 12 )
+TLV_TYPE_RAILGUN_MEM_DATA    =          TLV_META_TYPE_RAW   | (TLV_TYPE_EXTENSION_RAILGUN + TLV_EXTENSIONS + 13 )
+TLV_TYPE_RAILGUN_MEM_LENGTH  =          TLV_META_TYPE_UINT  | (TLV_TYPE_EXTENSION_RAILGUN + TLV_EXTENSIONS + 14 )
-end
-end
-end
-end
-end
+end; end; end; end; end; end

data/lib/rex/post/meterpreter/extensions/stdapi/stdapi.rb CHANGED

@@ -14,6 +14,7 @@ require 'rex/post/meterpreter/extensions/stdapi/sys/process'
 require 'rex/post/meterpreter/extensions/stdapi/sys/registry'
 require 'rex/post/meterpreter/extensions/stdapi/sys/event_log'
 require 'rex/post/meterpreter/extensions/stdapi/sys/power'
+require 'rex/post/meterpreter/extensions/stdapi/railgun/railgun'
 require 'rex/post/meterpreter/extensions/stdapi/ui'
 module Rex
@@ -69,6 +70,10 @@ class Stdapi < Extension
 							'socket'   => Rex::Post::Meterpreter::Extensions::Stdapi::Net::Socket.new(client)
 						})
 				},
+				{
+					'name' => 'railgun',
+					'ext'  => Rex::Post::Meterpreter::Extensions::Stdapi::Railgun::Railgun.new(client)
+				},
 				{
 					'name' => 'ui',
 					'ext'  => UI.new(client)

data/lib/rex/post/meterpreter/extensions/stdapi/sys/config.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/extensions/stdapi/sys/event_log.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/extensions/stdapi/sys/event_log_subsystem/event_record.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/extensions/stdapi/sys/power.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/extensions/stdapi/sys/process.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/image.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/io.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/memory.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/extensions/stdapi/sys/process_subsystem/thread.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry_subsystem/registry_key.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/extensions/stdapi/sys/registry_subsystem/registry_value.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/extensions/stdapi/sys/thread.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/extensions/stdapi/tlv.rb CHANGED

@@ -28,8 +28,14 @@ TLV_TYPE_DIRECTORY_PATH     = TLV_META_TYPE_STRING  | 1200
 TLV_TYPE_FILE_NAME          = TLV_META_TYPE_STRING  | 1201
 TLV_TYPE_FILE_PATH          = TLV_META_TYPE_STRING  | 1202
 TLV_TYPE_FILE_MODE          = TLV_META_TYPE_STRING  | 1203
+TLV_TYPE_FILE_SIZE          = TLV_META_TYPE_UINT    | 1204
 TLV_TYPE_STAT_BUF           = TLV_META_TYPE_COMPLEX | 1220
+TLV_TYPE_SEARCH_RECURSE     = TLV_META_TYPE_BOOL    | 1230
+TLV_TYPE_SEARCH_GLOB        = TLV_META_TYPE_STRING  | 1231
+TLV_TYPE_SEARCH_ROOT        = TLV_META_TYPE_STRING  | 1232
+TLV_TYPE_SEARCH_RESULTS     = TLV_META_TYPE_GROUP   | 1233
 ##
 #
 # Net

data/lib/rex/post/meterpreter/extensions/stdapi/ui.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/inbound_packet_handler.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/object_aliases.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/packet.rb CHANGED

@@ -20,6 +20,7 @@ TLV_META_TYPE_STRING        = (1 << 16)
 TLV_META_TYPE_UINT          = (1 << 17)
 TLV_META_TYPE_RAW           = (1 << 18)
 TLV_META_TYPE_BOOL          = (1 << 19)
+TLV_META_TYPE_QWORD         = (1 << 20)
 TLV_META_TYPE_COMPRESSED    = (1 << 29)
 TLV_META_TYPE_GROUP         = (1 << 30)
 TLV_META_TYPE_COMPLEX       = (1 << 31)
@@ -31,6 +32,7 @@ TLV_META_MASK = (
 	TLV_META_TYPE_UINT |
 	TLV_META_TYPE_RAW |
 	TLV_META_TYPE_BOOL |
+	TLV_META_TYPE_QWORD |
 	TLV_META_TYPE_GROUP |
 	TLV_META_TYPE_COMPLEX
 )
@@ -132,6 +134,7 @@ class Tlv
 			when TLV_META_TYPE_UINT; "INT"
 			when TLV_META_TYPE_RAW; "RAW"
 			when TLV_META_TYPE_BOOL; "BOOL"
+			when TLV_META_TYPE_QWORD; "QWORD"
 			when TLV_META_TYPE_GROUP; "GROUP"
 			when TLV_META_TYPE_COMPLEX; "COMPLEX"
 			else; 'unknown-meta-type'
@@ -214,7 +217,7 @@ class Tlv
 	# Serializers
 	#
 	##
 	#
 	# Converts the TLV to raw.
 	#
@@ -225,6 +228,8 @@ class Tlv
 			raw += "\x00"
 		elsif (self.type & TLV_META_TYPE_UINT == TLV_META_TYPE_UINT)
 			raw = [value].pack("N")
+		elsif (self.type & TLV_META_TYPE_QWORD == TLV_META_TYPE_QWORD)
+			raw = [ self.htonq( value.to_i ) ].pack("Q")
 		elsif (self.type & TLV_META_TYPE_BOOL == TLV_META_TYPE_BOOL)
 			if (value == true)
 				raw = [1].pack("c")
@@ -284,6 +289,9 @@ class Tlv
 			end
 		elsif (self.type & TLV_META_TYPE_UINT == TLV_META_TYPE_UINT)
 			self.value = raw.unpack("NNN")[2]
+		elsif (self.type & TLV_META_TYPE_QWORD == TLV_META_TYPE_QWORD)
+			self.value = raw.unpack("NNQ")[2]
+			self.value = self.ntohq( self.value )
 		elsif (self.type & TLV_META_TYPE_BOOL == TLV_META_TYPE_BOOL)
 			self.value = raw.unpack("NNc")[2]
@@ -298,6 +306,20 @@ class Tlv
 		return length;
 	end
+	protected
+	def htonq( value )
+		if( [1].pack( 's' ) == [1].pack( 'n' ) )
+			return value
+		end
+		return [ value ].pack( 'Q' ).reverse.unpack( 'Q' ).first
+	end
+	def ntohq( value )
+		return htonq( value )
+	end
 end
 ###

data/lib/rex/post/meterpreter/packet_dispatcher.rb CHANGED

@@ -58,7 +58,18 @@ module PacketDispatcher
 		raw   = packet.to_r
 		if (raw)
-			bytes = self.sock.write(raw)
+			begin
+				bytes = self.sock.write(raw)
+			rescue ::Exception => e
+				# Mark the session itself as dead
+				self.alive = false
+				# Indicate that the dispatcher should shut down too
+				@finish = true
+				# Reraise the error to the top-level caller
+				raise e
+			end
 		end
 		return bytes
@@ -129,7 +140,7 @@ module PacketDispatcher
 		# Spawn a thread for receiving packets
 		self.receiver_thread = ::Thread.new do
-			while (true)
+			while (self.alive)
 				begin
 					rv = Rex::ThreadSafe.select([ self.sock.fd ], nil, nil, 0.25)
 					ping_time = 60

data/lib/rex/post/meterpreter/packet_parser.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/packet_response_waiter.rb CHANGED

@@ -27,7 +27,19 @@ class PacketResponseWaiter
 			self.completion_routine = completion_routine
 			self.completion_param   = completion_param
 		else
-			self.done  = false
+			self.done    = false
+			self.wthread = initialize_waiter_thread
+		end
+	end
+	#
+	# Create an idle thread we can wait on
+	#
+	def initialize_waiter_thread
+		::Thread.new do
+			while (! self.done)
+				::IO.select(nil,nil,nil,5.0)
+			end
 		end
 	end
@@ -49,6 +61,7 @@ class PacketResponseWaiter
 			self.completion_routine.call(response, self.completion_param)
 		else
 			self.done = true
+			self.wthread.kill
 		end
 	end
@@ -58,16 +71,10 @@ class PacketResponseWaiter
 	#
 	def wait(interval)
 		if( interval and interval == -1 )
-			while(not self.done)
-				::IO.select(nil, nil, nil, 0.1)
-			end
+			self.wthread.join
 		else
 			begin
-				Timeout.timeout(interval) {
-					while(not self.done)
-						::IO.select(nil, nil, nil, 0.1)
-					end
-				}
+				Timeout.timeout(interval) { self.wthread.join }
 			rescue Timeout::Error
 				self.response = nil
 			end
@@ -75,7 +82,7 @@ class PacketResponseWaiter
 		return self.response
 	end
-	attr_accessor :rid, :done, :response # :nodoc:
+	attr_accessor :rid, :done, :response, :wthread # :nodoc:
 	attr_accessor :completion_routine, :completion_param # :nodoc:
 end

data/lib/rex/post/meterpreter/ui/console.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/ui/console/command_dispatcher.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/ui/console/command_dispatcher/core.rb CHANGED

@@ -354,18 +354,23 @@ class Console::CommandDispatcher::Core
 	end
 	def cmd_run_tabs(str, words)
+		tabs = []
 		if(not words[1] or not words[1].match(/^\//))
 			begin
-				my_directory = Msf::Config.script_directory + ::File::SEPARATOR + "meterpreter"
-				return ::Dir.new(my_directory).find_all { |e|
-					path = my_directory + ::File::SEPARATOR + e
-					::File.file?(path) and ::File.readable?(path)
-				}.map { |e|
-					e.sub!(/\.rb$/, '')
-				}
+				[
+					::Msf::Sessions::Meterpreter::ScriptBase,
+					::Msf::Sessions::Meterpreter::UserScriptBase
+				].each do |dir|
+					next if not ::File.exist? dir
+					tabs += ::Dir.new(dir).find_all { |e|
+						path = dir + ::File::SEPARATOR + e
+						::File.file?(path) and ::File.readable?(path)
+					}
+				end
 			rescue Exception
 			end
 		end
+		return tabs.map { |e| e.sub!(/\.rb$/, '') }
 	end

data/lib/rex/post/meterpreter/ui/console/command_dispatcher/espia.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/ui/console/command_dispatcher/incognito.rb CHANGED

File without changes

data/lib/rex/post/meterpreter/ui/console/command_dispatcher/networkpug.rb ADDED

@@ -0,0 +1,221 @@
+require 'rex/post/meterpreter'
+module Rex
+module Post
+module Meterpreter
+module Ui
+# Rex::Ui::Text::IrbShell.new(binding).run
+class Console::CommandDispatcher::NetworkPug
+	Klass = Console::CommandDispatcher::NetworkPug
+	include Console::CommandDispatcher
+	@@options = Rex::Parser::Arguments.new(
+		"-i" => [ true, "Interface on remote machine to listen on" ],
+		"-f" => [ true, "Additional pcap filtering mechanism" ],
+		"-v" => [ false, "Virtual NIC (packets only for your TAP dev locally)" ]
+	)
+	def initialize(shell)
+		@thread_stuff = nil
+		@tapdev = nil
+		@channel = nil
+		super
+	end
+	attr_accessor :thread_stuff
+	attr_accessor :tapdev
+	attr_accessor :channel
+	#
+	# List of supported commands.
+	#
+	def commands
+		{
+			"networkpug_start" => "Start slinging packets between hosts",
+			"networkpug_stop"  => "Stop slinging packets between hosts",
+		}
+	end
+	def setup_tapdev
+		# XXX, look at how to use windows equivilient and include
+		tapdev = ::File.open("/dev/net/tun", "wb+")
+		0.upto(16) { |idx|
+			name = "npug#{idx}"
+			ifreq = [ name, 0x1000 | 0x02, "" ].pack("a16va14")
+			begin
+				tapdev.ioctl(0x400454ca, ifreq)		# is there a better way than hex constant
+			rescue Errno::EBUSY
+				next
+			end
+			ifreq = [ name ].pack("a32")
+			tapdev.ioctl(0x8927, ifreq)
+			# print_line(Rex::Text.hexify(ifreq))
+			mac = sprintf("%02x:%02x:%02x:%02x:%02x:%02x", ifreq[18], ifreq[19], ifreq[20], ifreq[21], ifreq[22], ifreq[23])
+			return tapdev, name, mac
+		}
+		tapdev.close()
+		return nil, nil, nil
+	end
+	def proxy_packets()
+		while 1
+			# Ghetto :\
+			sd = Rex::ThreadSafe.select([ @channel.lsock, @tapdev ], nil, nil)
+			sd[0].each { |s|
+				if(s == @channel.lsock)	# Packet from remote host to local TAP dev
+					len = @channel.lsock.read(2)
+					len = len.unpack('n')[0]
+					#print_line("Got #{len} bytes from remote host's network")
+					if(len > 1514 or len == 0)
+						@tapdev.close()
+						print_line("length is invalid .. #{len} ?, de-synchronized ? ")
+					end
+					packet = @channel.lsock.read(len)
+					print_line("packet from remote host:\n" + Rex::Text.hexify(packet))
+					@tapdev.syswrite(packet)
+				elsif(s == @tapdev)
+					# Packet from tapdev to remote host network
+					packet = @tapdev.sysread(1514)
+					print_line("packet to remote host:\n" + Rex::Text.hexify(packet))
+					@channel.write(packet)
+				end
+			} if(sd)
+			if(not sd)
+				print_line("hmmm. ")
+			end
+		end
+	end
+	def cmd_networkpug_start(*args)
+		# PKS - I suck at ruby ;\
+		virtual_nic = false
+		filter = nil
+		interface = nil
+		if(args.length == 0)
+			args.unshift("-h")
+		end
+		@@options.parse(args) { |opt, idx, val|
+			# print_line("before: #{opt} #{idx} #{val} || virtual nic: #{virtual_nic}, filter: #{filter}, interface: #{interface}")
+			case opt
+				when "-v"
+					virtual_nic = true
+				when "-f"
+					filter = val
+				when "-i"
+					interface = val
+				when "-h"
+					print_error("Usage: networkpug_start -i interface [options]")
+					print_error("")
+					print_error(@@options.usage)
+			end
+			# print_line("after: #{opt} #{idx} #{val} || virtual nic: #{virtual_nic}, filter: #{filter}, interface: #{interface}")
+		}
+		if (interface == nil)
+			print_error("Usage: networkpug_start -i interface [options]")
+			print_error("")
+			print_error(@@options.usage)
+			return
+		end
+		@tapdev, tapname, mac = setup_tapdev
+		if(@tapdev == nil)
+			print_status("Failed to create tapdev")
+			return
+		end
+		# PKS, we should implement multiple filter strings and let the
+		# remote host build it properly.
+		# not (our conn) and (virtual nic filter) and (custom filter)
+		# print_line("before virtual, filter is #{filter}")
+		if(filter == nil and virtual_nic == true)
+			filter = "ether host #{mac}"
+		elsif(filter != nil and virtual_nic == true)
+			filter += " and ether host #{mac}"
+			#print_line("Adjusted filter is #{filter}")
+		end
+		print_line("#{tapname} created with a hwaddr of #{mac}, ctrl-c when done")
+		response, @channel = client.networkpug.networkpug_start(interface, filter)
+		if(@channel)
+			@thread_stuff = ::Thread.new {
+				proxy_packets()
+			}
+			print_line("Packet slinger for #{interface} has a thread structure of #{@thread_stuff}")
+		end
+		return true
+	end
+	def cmd_networkpug_stop(*args)
+		interface = args[0]
+		if (interface == nil)
+			print_error("Usage: networkpug_stop [interface]")
+			return
+		end
+		if(@thread_stuff)
+			::Thread.kill(@thread_stuff)
+			::Thread.join(@thread_stuff)
+			@thread_stuff = nil
+			@channel.close
+			@tapdev.close
+		end
+		client.networkpug.networkpug_stop(interface)
+		print_status("Packet slinging stopped on #{interface}")
+		return true
+	end
+	def name
+		"NetworkPug"
+	end
+end
+end
+end
+end
+end