ruby_smb 1.0.5 → 1.1.0

metadata

@@ -1,9 +1,10 @@
 --- !ruby/object:Gem::Specification
 name: ruby_smb
 version: !ruby/object:Gem::Version
-  version: 1.0.5
+  version: 1.1.0
 platform: ruby
 authors:
+- Metasploit Hackers
 - David Maloney
 - James Lee
 - Dev Mohanty
@@ -91,7 +92,7 @@ cert_chain:
   G+Hmcg1v810agasPdoydE0RTVZgEOOMoQ07qu7JFXVWZ9ZQpHT7qJATWL/b2csFG
   8mVuTXnyJOKRJA==
   -----END CERTIFICATE-----
-date: 2018-10-25 00:00:00.000000000 Z
+date: 2019-06-27 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: redcarpet
@@ -207,10 +208,7 @@ dependencies:
         version: '0'
 description: ''
 email:
-- DMaloney@rapid7.com
-- egypt@metasploit.com
-- dev_mohanty@rapid7.com
-- paristvinternet-github@yahoo.com
+- msfdev@metasploit.com
 executables: []
 extensions: []
 extra_rdoc_files: []
@@ -229,12 +227,15 @@ files:
 - examples/append_file.rb
 - examples/authenticate.rb
 - examples/delete_file.rb
+- examples/enum_registry_key.rb
+- examples/enum_registry_values.rb
 - examples/list_directory.rb
 - examples/negotiate.rb
 - examples/negotiate_with_netbios_service.rb
 - examples/net_share_enum_all.rb
 - examples/pipes.rb
 - examples/read_file.rb
+- examples/read_registry_key_value.rb
 - examples/rename_file.rb
 - examples/tree_connect.rb
 - examples/write_file.rb
@@ -246,6 +247,7 @@ files:
 - lib/ruby_smb/client/signing.rb
 - lib/ruby_smb/client/tree_connect.rb
 - lib/ruby_smb/client/utils.rb
+- lib/ruby_smb/client/winreg.rb
 - lib/ruby_smb/dcerpc.rb
 - lib/ruby_smb/dcerpc/bind.rb
 - lib/ruby_smb/dcerpc/bind_ack.rb
@@ -256,9 +258,26 @@ files:
 - lib/ruby_smb/dcerpc/ptypes.rb
 - lib/ruby_smb/dcerpc/request.rb
 - lib/ruby_smb/dcerpc/response.rb
+- lib/ruby_smb/dcerpc/rrp_unicode_string.rb
 - lib/ruby_smb/dcerpc/srvsvc.rb
 - lib/ruby_smb/dcerpc/srvsvc/net_share_enum_all.rb
 - lib/ruby_smb/dcerpc/uuid.rb
+- lib/ruby_smb/dcerpc/winreg.rb
+- lib/ruby_smb/dcerpc/winreg/close_key_request.rb
+- lib/ruby_smb/dcerpc/winreg/close_key_response.rb
+- lib/ruby_smb/dcerpc/winreg/enum_key_request.rb
+- lib/ruby_smb/dcerpc/winreg/enum_key_response.rb
+- lib/ruby_smb/dcerpc/winreg/enum_value_request.rb
+- lib/ruby_smb/dcerpc/winreg/enum_value_response.rb
+- lib/ruby_smb/dcerpc/winreg/open_key_request.rb
+- lib/ruby_smb/dcerpc/winreg/open_key_response.rb
+- lib/ruby_smb/dcerpc/winreg/open_root_key_request.rb
+- lib/ruby_smb/dcerpc/winreg/open_root_key_response.rb
+- lib/ruby_smb/dcerpc/winreg/query_info_key_request.rb
+- lib/ruby_smb/dcerpc/winreg/query_info_key_response.rb
+- lib/ruby_smb/dcerpc/winreg/query_value_request.rb
+- lib/ruby_smb/dcerpc/winreg/query_value_response.rb
+- lib/ruby_smb/dcerpc/winreg/regsam.rb
 - lib/ruby_smb/dispatcher.rb
 - lib/ruby_smb/dispatcher/base.rb
 - lib/ruby_smb/dispatcher/socket.rb
@@ -324,7 +343,6 @@ files:
 - lib/ruby_smb/smb1/commands.rb
 - lib/ruby_smb/smb1/create_actions.rb
 - lib/ruby_smb/smb1/data_block.rb
-- lib/ruby_smb/smb1/dcerpc.rb
 - lib/ruby_smb/smb1/dialect.rb
 - lib/ruby_smb/smb1/file.rb
 - lib/ruby_smb/smb1/oplock_levels.rb
@@ -402,7 +420,6 @@ files:
 - lib/ruby_smb/smb2/bit_field/smb2_security_mode_single.rb
 - lib/ruby_smb/smb2/commands.rb
 - lib/ruby_smb/smb2/create_context.rb
-- lib/ruby_smb/smb2/dcerpc.rb
 - lib/ruby_smb/smb2/file.rb
 - lib/ruby_smb/smb2/info_type.rb
 - lib/ruby_smb/smb2/packet.rb
@@ -441,12 +458,32 @@ files:
 - spec/lib/ruby_smb/client_spec.rb
 - spec/lib/ruby_smb/dcerpc/bind_ack_spec.rb
 - spec/lib/ruby_smb/dcerpc/bind_spec.rb
+- spec/lib/ruby_smb/dcerpc/ndr_spec.rb
 - spec/lib/ruby_smb/dcerpc/p_syntax_id_t_spec.rb
 - spec/lib/ruby_smb/dcerpc/pdu_header_spec.rb
 - spec/lib/ruby_smb/dcerpc/request_spec.rb
 - spec/lib/ruby_smb/dcerpc/response_spec.rb
+- spec/lib/ruby_smb/dcerpc/rrp_unicode_string_spec.rb
 - spec/lib/ruby_smb/dcerpc/srvsvc/net_share_enum_all_spec.rb
+- spec/lib/ruby_smb/dcerpc/srvsvc_spec.rb
 - spec/lib/ruby_smb/dcerpc/uuid_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/close_key_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/close_key_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/enum_key_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/enum_key_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/enum_value_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/enum_value_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/open_key_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/open_key_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/open_root_key_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/open_root_key_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/query_info_key_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/query_info_key_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/query_value_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/query_value_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/regsam_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg_spec.rb
+- spec/lib/ruby_smb/dcerpc_spec.rb
 - spec/lib/ruby_smb/dispatcher/base_spec.rb
 - spec/lib/ruby_smb/dispatcher/socket_spec.rb
 - spec/lib/ruby_smb/field/extended_attribute_flag_spec.rb
@@ -605,7 +642,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: 2.2.0
+      version: 2.3.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
@@ -621,12 +658,32 @@ test_files:
 - spec/lib/ruby_smb/client_spec.rb
 - spec/lib/ruby_smb/dcerpc/bind_ack_spec.rb
 - spec/lib/ruby_smb/dcerpc/bind_spec.rb
+- spec/lib/ruby_smb/dcerpc/ndr_spec.rb
 - spec/lib/ruby_smb/dcerpc/p_syntax_id_t_spec.rb
 - spec/lib/ruby_smb/dcerpc/pdu_header_spec.rb
 - spec/lib/ruby_smb/dcerpc/request_spec.rb
 - spec/lib/ruby_smb/dcerpc/response_spec.rb
+- spec/lib/ruby_smb/dcerpc/rrp_unicode_string_spec.rb
 - spec/lib/ruby_smb/dcerpc/srvsvc/net_share_enum_all_spec.rb
+- spec/lib/ruby_smb/dcerpc/srvsvc_spec.rb
 - spec/lib/ruby_smb/dcerpc/uuid_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/close_key_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/close_key_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/enum_key_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/enum_key_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/enum_value_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/enum_value_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/open_key_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/open_key_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/open_root_key_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/open_root_key_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/query_info_key_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/query_info_key_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/query_value_request_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/query_value_response_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg/regsam_spec.rb
+- spec/lib/ruby_smb/dcerpc/winreg_spec.rb
+- spec/lib/ruby_smb/dcerpc_spec.rb
 - spec/lib/ruby_smb/dispatcher/base_spec.rb
 - spec/lib/ruby_smb/dispatcher/socket_spec.rb
 - spec/lib/ruby_smb/field/extended_attribute_flag_spec.rb

data/lib/ruby_smb/smb1/dcerpc.rb

@@ -1,72 +0,0 @@
-module RubySMB
-  module SMB1
-    module Dcerpc
-
-      def net_share_enum_all(host)
-        bind(endpoint: RubySMB::Dcerpc::Srvsvc)
-
-        response = request(RubySMB::Dcerpc::Srvsvc::NET_SHARE_ENUM_ALL, host: host)
-
-        shares = RubySMB::Dcerpc::Srvsvc::NetShareEnumAll.parse_response(response.stub.to_binary_s)
-        shares.map{|s|{name: s[0], type: s[1], comment: s[2]}}
-      end
-
-      def bind(options={})
-        bind_req = RubySMB::Dcerpc::Bind.new(options)
-        write(data: bind_req.to_binary_s)
-        @size = 1024
-        dcerpc_raw_response = read()
-        begin
-          dcerpc_response = RubySMB::Dcerpc::BindAck.read(dcerpc_raw_response)
-        rescue IOError
-          raise RubySMB::Dcerpc::Error::InvalidPacket, "Error reading the DCERPC response"
-        end
-        unless dcerpc_response.pdu_header.ptype == RubySMB::Dcerpc::PTypes::BIND_ACK
-          raise RubySMB::Dcerpc::Error::BindError, "Not a BindAck packet"
-        end
-
-        res_list = dcerpc_response.p_result_list
-        if res_list.n_results == 0 ||
-           res_list.p_results[0].result != RubySMB::Dcerpc::BindAck::ACCEPTANCE
-          raise RubySMB::Dcerpc::Error::BindError,
-            "Bind Failed (Result: #{res_list.p_results[0].result}, Reason: #{res_list.p_results[0].reason})"
-        end
-        dcerpc_response
-      end
-
-      def request(opnum, options={})
-        dcerpc_request = RubySMB::Dcerpc::Request.new({ :opnum => opnum }, options)
-        request = RubySMB::SMB1::Packet::Trans::TransactNmpipeRequest.new(options)
-        @tree.set_header_fields(request)
-        request.set_fid(@fid)
-        request.data_block.trans_data.write_data = dcerpc_request.to_binary_s
-
-        trans_nmpipe_raw_response = @tree.client.send_recv(request)
-        trans_nmpipe_response = RubySMB::SMB1::Packet::Trans::TransactNmpipeResponse.read(trans_nmpipe_raw_response)
-        unless trans_nmpipe_response.valid?
-          raise RubySMB::Error::InvalidPacket.new(
-            expected_proto: RubySMB::SMB1::SMB_PROTOCOL_ID,
-            expected_cmd:   RubySMB::SMB1::Packet::Trans::TransactNmpipeResponse::COMMAND,
-            received_proto: trans_nmpipe_response.smb_header.protocol,
-            received_cmd:   trans_nmpipe_response.smb_header.command
-          )
-        end
-        unless trans_nmpipe_response.status_code == WindowsError::NTStatus::STATUS_SUCCESS
-          raise RubySMB::Error::UnexpectedStatusCode, trans_nmpipe_response.status_code.name
-        end
-
-        begin
-          dcerpc_response = RubySMB::Dcerpc::Response.read(trans_nmpipe_response.data_block.trans_data.read_data)
-        rescue IOError
-          raise RubySMB::Dcerpc::Error::InvalidPacket, "Error reading the DCERPC response"
-        end
-        unless dcerpc_response.pdu_header.ptype == RubySMB::Dcerpc::PTypes::RESPONSE
-          raise RubySMB::Dcerpc::Error::InvalidPacket, "Not a Response packet"
-        end
-        dcerpc_response
-      end
-
-    end
-  end
-end
-

data/lib/ruby_smb/smb2/dcerpc.rb

@@ -1,75 +0,0 @@
-module RubySMB
-  module SMB2
-    module Dcerpc
-
-      def net_share_enum_all(host)
-        bind(endpoint: RubySMB::Dcerpc::Srvsvc)
-
-        response = request(RubySMB::Dcerpc::Srvsvc::NET_SHARE_ENUM_ALL, host: host)
-
-        shares = RubySMB::Dcerpc::Srvsvc::NetShareEnumAll.parse_response(response.stub.to_binary_s)
-        shares.map{|s|{name: s[0], type: s[1], comment: s[2]}}
-      end
-
-      def bind(options={})
-        bind_req = RubySMB::Dcerpc::Bind.new(options)
-        write(data: bind_req.to_binary_s)
-        @size = 1024
-        dcerpc_raw_response = read()
-        begin
-          dcerpc_response = RubySMB::Dcerpc::BindAck.read(dcerpc_raw_response)
-        rescue IOError
-          raise RubySMB::Dcerpc::Error::InvalidPacket, "Error reading the DCERPC response"
-        end
-        unless dcerpc_response.pdu_header.ptype == RubySMB::Dcerpc::PTypes::BIND_ACK
-          raise RubySMB::Dcerpc::Error::BindError, "Not a BindAck packet"
-        end
-
-        res_list = dcerpc_response.p_result_list
-        if res_list.n_results == 0 ||
-           res_list.p_results[0].result != RubySMB::Dcerpc::BindAck::ACCEPTANCE
-          raise RubySMB::Dcerpc::Error::BindError,
-            "Bind Failed (Result: #{res_list.p_results[0].result}, Reason: #{res_list.p_results[0].reason})"
-        end
-        dcerpc_response
-      end
-
-      def request(opnum, options={})
-        dcerpc_request = RubySMB::Dcerpc::Request.new({ :opnum => opnum }, options)
-        ioctl_response = ioctl_send_recv(dcerpc_request, options)
-        begin
-          dcerpc_response = RubySMB::Dcerpc::Response.read(ioctl_response.output_data)
-        rescue IOError
-          raise RubySMB::Dcerpc::Error::InvalidPacket, "Error reading the DCERPC response"
-        end
-        unless dcerpc_response.pdu_header.ptype == RubySMB::Dcerpc::PTypes::RESPONSE
-          raise RubySMB::Dcerpc::Error::InvalidPacket, "Not a Response packet"
-        end
-        dcerpc_response
-      end
-
-      def ioctl_send_recv(action, options={})
-        request = set_header_fields(RubySMB::SMB2::Packet::IoctlRequest.new(options))
-        request.ctl_code = 0x0011C017
-        request.flags.is_fsctl = 0x00000001
-        request.buffer = action.to_binary_s
-        ioctl_raw_response = @tree.client.send_recv(request)
-        ioctl_response = RubySMB::SMB2::Packet::IoctlResponse.read(ioctl_raw_response)
-        unless ioctl_response.valid?
-          raise RubySMB::Error::InvalidPacket.new(
-            expected_proto: RubySMB::SMB2::SMB2_PROTOCOL_ID,
-            expected_cmd:   RubySMB::SMB2::Packet::IoctlRequest::COMMAND,
-            received_proto: ioctl_response.smb2_header.protocol,
-            received_cmd:   ioctl_response.smb2_header.command
-          )
-        end
-        unless ioctl_response.status_code == WindowsError::NTStatus::STATUS_SUCCESS
-          raise RubySMB::Error::UnexpectedStatusCode, ioctl_response.status_code.name
-        end
-        ioctl_response
-      end
-
-    end
-  end
-end
-