2012-06-29 05:18:28 +00:00
|
|
|
# -*- coding: binary -*-
|
2005-07-09 21:26:44 +00:00
|
|
|
module Msf
|
|
|
|
module Serializer
|
|
|
|
|
|
|
|
# This class formats information in a plain-text format that
|
|
|
|
# is meant to be displayed on a console or some other non-GUI
|
|
|
|
# medium.
|
|
|
|
class ReadableText
|
|
|
|
|
2013-12-25 10:24:26 +00:00
|
|
|
#Default number of characters to wrap at.
|
2013-08-30 21:28:33 +00:00
|
|
|
DefaultColumnWrap = 70
|
2013-12-25 10:24:26 +00:00
|
|
|
#Default number of characters to indent.
|
2013-08-30 21:28:33 +00:00
|
|
|
DefaultIndent = 2
|
|
|
|
|
|
|
|
# Returns a formatted string that contains information about
|
|
|
|
# the supplied module instance.
|
2013-12-26 18:14:41 +00:00
|
|
|
#
|
|
|
|
# @param mod [Msf::Module] the module to dump information for.
|
|
|
|
# @param indent [String] the indentation to use.
|
2013-12-25 10:24:26 +00:00
|
|
|
# @return [String] formatted text output of the dump.
|
2013-08-30 21:28:33 +00:00
|
|
|
def self.dump_module(mod, indent = " ")
|
|
|
|
case mod.type
|
2014-10-17 17:43:40 +00:00
|
|
|
when Msf::MODULE_PAYLOAD
|
2013-08-30 21:28:33 +00:00
|
|
|
return dump_payload_module(mod, indent)
|
2014-10-17 17:43:40 +00:00
|
|
|
when Msf::MODULE_NOP
|
2013-08-30 21:28:33 +00:00
|
|
|
return dump_basic_module(mod, indent)
|
2014-10-17 17:43:40 +00:00
|
|
|
when Msf::MODULE_ENCODER
|
2013-08-30 21:28:33 +00:00
|
|
|
return dump_basic_module(mod, indent)
|
2014-10-17 17:43:40 +00:00
|
|
|
when Msf::MODULE_EXPLOIT
|
2013-08-30 21:28:33 +00:00
|
|
|
return dump_exploit_module(mod, indent)
|
2014-10-17 17:43:40 +00:00
|
|
|
when Msf::MODULE_AUX
|
2013-08-30 21:28:33 +00:00
|
|
|
return dump_auxiliary_module(mod, indent)
|
2014-10-17 17:43:40 +00:00
|
|
|
when Msf::MODULE_POST
|
2014-10-14 17:41:02 +00:00
|
|
|
return dump_post_module(mod, indent)
|
2013-08-30 21:28:33 +00:00
|
|
|
else
|
|
|
|
return dump_generic_module(mod, indent)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
# Dumps an exploit's targets.
|
2013-12-26 18:14:41 +00:00
|
|
|
#
|
|
|
|
# @param mod [Msf::Exploit] the exploit module to dump targets
|
2013-12-25 10:24:26 +00:00
|
|
|
# for.
|
2013-12-26 18:14:41 +00:00
|
|
|
# @param indent [String] the indentation to use (only the length
|
2013-12-25 10:24:26 +00:00
|
|
|
# matters).
|
2013-12-26 18:14:41 +00:00
|
|
|
# @param h [String] the string to display as the table heading.
|
2013-12-25 10:24:26 +00:00
|
|
|
# @return [String] the string form of the table.
|
2013-08-30 21:28:33 +00:00
|
|
|
def self.dump_exploit_targets(mod, indent = '', h = nil)
|
2016-08-10 18:30:09 +00:00
|
|
|
tbl = Rex::Text::Table.new(
|
2013-08-30 21:28:33 +00:00
|
|
|
'Indent' => indent.length,
|
|
|
|
'Header' => h,
|
|
|
|
'Columns' =>
|
|
|
|
[
|
|
|
|
'Id',
|
|
|
|
'Name',
|
|
|
|
])
|
|
|
|
|
|
|
|
mod.targets.each_with_index { |target, idx|
|
|
|
|
tbl << [ idx.to_s, target.name || 'All' ]
|
|
|
|
}
|
|
|
|
|
|
|
|
tbl.to_s + "\n"
|
|
|
|
end
|
|
|
|
|
|
|
|
# Dumps the exploit's selected target
|
2013-12-26 18:14:41 +00:00
|
|
|
#
|
|
|
|
# @param mod [Msf::Exploit] the exploit module.
|
|
|
|
# @param indent [String] the indentation to use (only the length
|
2013-12-25 10:24:26 +00:00
|
|
|
# matters)
|
2013-12-26 18:14:41 +00:00
|
|
|
# @param h [String] the string to display as the table heading.
|
2013-12-25 10:24:26 +00:00
|
|
|
# @return [String] the string form of the table.
|
2013-08-30 21:28:33 +00:00
|
|
|
def self.dump_exploit_target(mod, indent = '', h = nil)
|
2016-08-10 18:30:09 +00:00
|
|
|
tbl = Rex::Text::Table.new(
|
2013-08-30 21:28:33 +00:00
|
|
|
'Indent' => indent.length,
|
|
|
|
'Header' => h,
|
|
|
|
'Columns' =>
|
|
|
|
[
|
|
|
|
'Id',
|
|
|
|
'Name',
|
|
|
|
])
|
|
|
|
|
|
|
|
tbl << [ mod.target_index, mod.target.name || 'All' ]
|
|
|
|
|
|
|
|
tbl.to_s + "\n"
|
|
|
|
end
|
|
|
|
|
2014-10-08 19:47:12 +00:00
|
|
|
# Dumps a module's actions
|
2013-12-26 18:14:41 +00:00
|
|
|
#
|
2014-10-08 19:47:12 +00:00
|
|
|
# @param mod [Msf::Module] the module.
|
2013-12-26 18:14:41 +00:00
|
|
|
# @param indent [String] the indentation to use (only the length
|
2013-12-25 10:24:26 +00:00
|
|
|
# matters)
|
2013-12-26 18:14:41 +00:00
|
|
|
# @param h [String] the string to display as the table heading.
|
2013-12-25 10:24:26 +00:00
|
|
|
# @return [String] the string form of the table.
|
2014-10-08 19:47:12 +00:00
|
|
|
def self.dump_module_actions(mod, indent = '', h = nil)
|
2016-08-10 18:30:09 +00:00
|
|
|
tbl = Rex::Text::Table.new(
|
2013-08-30 21:28:33 +00:00
|
|
|
'Indent' => indent.length,
|
|
|
|
'Header' => h,
|
|
|
|
'Columns' =>
|
|
|
|
[
|
|
|
|
'Name',
|
|
|
|
'Description'
|
|
|
|
])
|
|
|
|
|
|
|
|
mod.actions.each_with_index { |target, idx|
|
|
|
|
tbl << [ target.name || 'All' , target.description || '' ]
|
|
|
|
}
|
|
|
|
|
|
|
|
tbl.to_s + "\n"
|
|
|
|
end
|
|
|
|
|
2014-10-08 19:47:12 +00:00
|
|
|
# Dumps the module's selected action
|
2014-10-07 19:34:41 +00:00
|
|
|
#
|
2014-10-08 19:47:12 +00:00
|
|
|
# @param mod [Msf::Module] the module.
|
2014-10-07 19:34:41 +00:00
|
|
|
# @param indent [String] the indentation to use (only the length
|
|
|
|
# matters)
|
|
|
|
# @param h [String] the string to display as the table heading.
|
|
|
|
# @return [String] the string form of the table.
|
2014-10-08 19:47:12 +00:00
|
|
|
def self.dump_module_action(mod, indent = '', h = nil)
|
2016-08-10 18:30:09 +00:00
|
|
|
tbl = Rex::Text::Table.new(
|
2014-10-07 19:34:41 +00:00
|
|
|
'Indent' => indent.length,
|
|
|
|
'Header' => h,
|
|
|
|
'Columns' =>
|
|
|
|
[
|
|
|
|
'Name',
|
|
|
|
'Description',
|
|
|
|
])
|
|
|
|
|
|
|
|
tbl << [ mod.action.name || 'All', mod.action.description || '' ]
|
|
|
|
|
|
|
|
tbl.to_s + "\n"
|
|
|
|
end
|
|
|
|
|
2013-08-30 21:28:33 +00:00
|
|
|
# Dumps the table of payloads that are compatible with the supplied
|
|
|
|
# exploit.
|
2014-01-01 00:38:40 +00:00
|
|
|
#
|
2013-12-26 18:14:41 +00:00
|
|
|
# @param exploit [Msf::Exploit] the exploit module.
|
|
|
|
# @param indent [String] the indentation to use (only the length
|
2013-12-25 10:24:26 +00:00
|
|
|
# matters)
|
2013-12-26 18:14:41 +00:00
|
|
|
# @param h [String] the string to display as the table heading.
|
2013-12-25 10:24:26 +00:00
|
|
|
# @return [String] the string form of the table.
|
2013-08-30 21:28:33 +00:00
|
|
|
def self.dump_compatible_payloads(exploit, indent = '', h = nil)
|
2016-08-10 18:30:09 +00:00
|
|
|
tbl = Rex::Text::Table.new(
|
2013-08-30 21:28:33 +00:00
|
|
|
'Indent' => indent.length,
|
|
|
|
'Header' => h,
|
|
|
|
'Columns' =>
|
|
|
|
[
|
|
|
|
'Name',
|
|
|
|
'Description',
|
|
|
|
])
|
|
|
|
|
|
|
|
exploit.compatible_payloads.each { |entry|
|
|
|
|
tbl << [ entry[0], entry[1].new.description ]
|
|
|
|
}
|
|
|
|
|
|
|
|
tbl.to_s + "\n"
|
|
|
|
end
|
|
|
|
|
|
|
|
# Dumps information about an exploit module.
|
2013-12-26 18:14:41 +00:00
|
|
|
#
|
|
|
|
# @param mod [Msf::Exploit] the exploit module.
|
|
|
|
# @param indent [String] the indentation to use.
|
2013-12-25 10:24:26 +00:00
|
|
|
# @return [String] the string form of the information.
|
2013-08-30 21:28:33 +00:00
|
|
|
def self.dump_exploit_module(mod, indent = '')
|
|
|
|
output = "\n"
|
|
|
|
output << " Name: #{mod.name}\n"
|
|
|
|
output << " Module: #{mod.fullname}\n"
|
|
|
|
output << " Platform: #{mod.platform_to_s}\n"
|
2017-10-11 21:12:39 +00:00
|
|
|
output << " Arch: #{mod.arch_to_s}\n"
|
2013-08-30 21:28:33 +00:00
|
|
|
output << " Privileged: " + (mod.privileged? ? "Yes" : "No") + "\n"
|
|
|
|
output << " License: #{mod.license}\n"
|
|
|
|
output << " Rank: #{mod.rank_to_s.capitalize}\n"
|
2014-10-14 20:58:52 +00:00
|
|
|
output << " Disclosed: #{mod.disclosure_date}\n" if mod.disclosure_date
|
2013-08-30 21:28:33 +00:00
|
|
|
output << "\n"
|
|
|
|
|
|
|
|
# Authors
|
|
|
|
output << "Provided by:\n"
|
|
|
|
mod.each_author { |author|
|
|
|
|
output << indent + author.to_s + "\n"
|
|
|
|
}
|
|
|
|
output << "\n"
|
|
|
|
|
|
|
|
# Targets
|
|
|
|
output << "Available targets:\n"
|
|
|
|
output << dump_exploit_targets(mod, indent)
|
|
|
|
|
|
|
|
# Options
|
|
|
|
if (mod.options.has_options?)
|
|
|
|
output << "Basic options:\n"
|
|
|
|
output << dump_options(mod, indent)
|
|
|
|
output << "\n"
|
|
|
|
end
|
|
|
|
|
|
|
|
# Payload information
|
|
|
|
if (mod.payload_info.length)
|
|
|
|
output << "Payload information:\n"
|
|
|
|
if (mod.payload_space)
|
|
|
|
output << indent + "Space: " + mod.payload_space.to_s + "\n"
|
|
|
|
end
|
|
|
|
if (mod.payload_badchars)
|
|
|
|
output << indent + "Avoid: " + mod.payload_badchars.length.to_s + " characters\n"
|
|
|
|
end
|
|
|
|
output << "\n"
|
|
|
|
end
|
|
|
|
|
|
|
|
# Description
|
|
|
|
output << "Description:\n"
|
|
|
|
output << word_wrap(Rex::Text.compress(mod.description))
|
|
|
|
output << "\n"
|
|
|
|
|
|
|
|
# References
|
|
|
|
output << dump_references(mod, indent)
|
|
|
|
|
|
|
|
return output
|
|
|
|
|
|
|
|
end
|
|
|
|
|
|
|
|
# Dumps information about an auxiliary module.
|
2013-12-26 18:14:41 +00:00
|
|
|
#
|
|
|
|
# @param mod [Msf::Auxiliary] the auxiliary module.
|
|
|
|
# @param indent [String] the indentation to use.
|
2013-12-25 10:24:26 +00:00
|
|
|
# @return [String] the string form of the information.
|
2013-08-30 21:28:33 +00:00
|
|
|
def self.dump_auxiliary_module(mod, indent = '')
|
|
|
|
output = "\n"
|
|
|
|
output << " Name: #{mod.name}\n"
|
|
|
|
output << " Module: #{mod.fullname}\n"
|
|
|
|
output << " License: #{mod.license}\n"
|
|
|
|
output << " Rank: #{mod.rank_to_s.capitalize}\n"
|
2014-10-14 20:58:52 +00:00
|
|
|
output << " Disclosed: #{mod.disclosure_date}\n" if mod.disclosure_date
|
2013-08-30 21:28:33 +00:00
|
|
|
output << "\n"
|
|
|
|
|
|
|
|
# Authors
|
|
|
|
output << "Provided by:\n"
|
|
|
|
mod.each_author { |author|
|
|
|
|
output << indent + author.to_s + "\n"
|
|
|
|
}
|
|
|
|
output << "\n"
|
|
|
|
|
2014-10-14 17:41:02 +00:00
|
|
|
# Actions
|
|
|
|
if mod.action
|
|
|
|
output << "Available actions:\n"
|
|
|
|
output << dump_module_actions(mod, indent)
|
|
|
|
end
|
|
|
|
|
|
|
|
# Options
|
|
|
|
if (mod.options.has_options?)
|
|
|
|
output << "Basic options:\n"
|
|
|
|
output << dump_options(mod, indent)
|
|
|
|
output << "\n"
|
|
|
|
end
|
|
|
|
|
|
|
|
# Description
|
|
|
|
output << "Description:\n"
|
|
|
|
output << word_wrap(Rex::Text.compress(mod.description))
|
|
|
|
output << "\n"
|
|
|
|
|
|
|
|
# References
|
|
|
|
output << dump_references(mod, indent)
|
|
|
|
|
|
|
|
return output
|
|
|
|
end
|
|
|
|
|
|
|
|
# Dumps information about a post module.
|
|
|
|
#
|
|
|
|
# @param mod [Msf::Post] the post module.
|
|
|
|
# @param indent [String] the indentation to use.
|
|
|
|
# @return [String] the string form of the information.
|
|
|
|
def self.dump_post_module(mod, indent = '')
|
|
|
|
output = "\n"
|
|
|
|
output << " Name: #{mod.name}\n"
|
|
|
|
output << " Module: #{mod.fullname}\n"
|
|
|
|
output << " Platform: #{mod.platform_to_s}\n"
|
|
|
|
output << " Arch: #{mod.arch_to_s}\n"
|
|
|
|
output << " Rank: #{mod.rank_to_s.capitalize}\n"
|
2014-10-14 20:58:52 +00:00
|
|
|
output << " Disclosed: #{mod.disclosure_date}\n" if mod.disclosure_date
|
2014-10-14 17:41:02 +00:00
|
|
|
output << "\n"
|
|
|
|
|
|
|
|
# Authors
|
|
|
|
output << "Provided by:\n"
|
2017-10-11 21:12:39 +00:00
|
|
|
mod.each_author.each do |author|
|
2014-10-14 17:41:02 +00:00
|
|
|
output << indent + author.to_s + "\n"
|
2017-10-11 21:12:39 +00:00
|
|
|
end
|
2014-10-14 17:41:02 +00:00
|
|
|
output << "\n"
|
|
|
|
|
2017-10-11 21:12:39 +00:00
|
|
|
# Compatible session types
|
|
|
|
if mod.session_types
|
|
|
|
output << "Compatible session types:\n"
|
|
|
|
mod.session_types.sort.each do |type|
|
|
|
|
output << indent + type.capitalize + "\n"
|
|
|
|
end
|
|
|
|
output << "\n"
|
|
|
|
end
|
|
|
|
|
2014-10-14 17:41:02 +00:00
|
|
|
# Actions
|
|
|
|
if mod.action
|
|
|
|
output << "Available actions:\n"
|
|
|
|
output << dump_module_actions(mod, indent)
|
|
|
|
end
|
|
|
|
|
2013-08-30 21:28:33 +00:00
|
|
|
# Options
|
|
|
|
if (mod.options.has_options?)
|
|
|
|
output << "Basic options:\n"
|
|
|
|
output << dump_options(mod, indent)
|
|
|
|
output << "\n"
|
|
|
|
end
|
|
|
|
|
|
|
|
# Description
|
|
|
|
output << "Description:\n"
|
|
|
|
output << word_wrap(Rex::Text.compress(mod.description))
|
|
|
|
output << "\n"
|
|
|
|
|
|
|
|
# References
|
|
|
|
output << dump_references(mod, indent)
|
|
|
|
|
|
|
|
return output
|
|
|
|
end
|
|
|
|
|
|
|
|
# Dumps information about a payload module.
|
2013-12-26 18:14:41 +00:00
|
|
|
#
|
|
|
|
# @param mod [Msf::Payload] the payload module.
|
|
|
|
# @param indent [String] the indentation to use.
|
2013-12-25 10:24:26 +00:00
|
|
|
# @return [String] the string form of the information.
|
2013-08-30 21:28:33 +00:00
|
|
|
def self.dump_payload_module(mod, indent = '')
|
|
|
|
# General
|
|
|
|
output = "\n"
|
|
|
|
output << " Name: #{mod.name}\n"
|
|
|
|
output << " Module: #{mod.fullname}\n"
|
|
|
|
output << " Platform: #{mod.platform_to_s}\n"
|
|
|
|
output << " Arch: #{mod.arch_to_s}\n"
|
|
|
|
output << "Needs Admin: " + (mod.privileged? ? "Yes" : "No") + "\n"
|
|
|
|
output << " Total size: #{mod.size}\n"
|
|
|
|
output << " Rank: #{mod.rank_to_s.capitalize}\n"
|
|
|
|
output << "\n"
|
|
|
|
|
|
|
|
# Authors
|
|
|
|
output << "Provided by:\n"
|
|
|
|
mod.each_author { |author|
|
|
|
|
output << indent + author.to_s + "\n"
|
|
|
|
}
|
|
|
|
output << "\n"
|
|
|
|
|
|
|
|
# Options
|
|
|
|
if (mod.options.has_options?)
|
|
|
|
output << "Basic options:\n"
|
|
|
|
output << dump_options(mod)
|
|
|
|
output << "\n"
|
|
|
|
end
|
|
|
|
|
|
|
|
# Description
|
|
|
|
output << "Description:\n"
|
|
|
|
output << word_wrap(Rex::Text.compress(mod.description))
|
|
|
|
output << "\n\n"
|
|
|
|
|
|
|
|
return output
|
|
|
|
end
|
|
|
|
|
|
|
|
# Dumps information about a module, just the basics.
|
2013-12-26 18:14:41 +00:00
|
|
|
#
|
|
|
|
# @param mod [Msf::Module] the module.
|
|
|
|
# @param indent [String] the indentation to use.
|
2013-12-25 10:24:26 +00:00
|
|
|
# @return [String] the string form of the information.
|
2013-08-30 21:28:33 +00:00
|
|
|
def self.dump_basic_module(mod, indent = '')
|
|
|
|
# General
|
|
|
|
output = "\n"
|
|
|
|
output << " Name: #{mod.name}\n"
|
|
|
|
output << " Module: #{mod.fullname}\n"
|
|
|
|
output << " Platform: #{mod.platform_to_s}\n"
|
|
|
|
output << " Arch: #{mod.arch_to_s}\n"
|
|
|
|
output << " Rank: #{mod.rank_to_s.capitalize}\n"
|
|
|
|
output << "\n"
|
|
|
|
|
|
|
|
# Authors
|
|
|
|
output << "Provided by:\n"
|
|
|
|
mod.each_author { |author|
|
|
|
|
output << indent + author.to_s + "\n"
|
|
|
|
}
|
|
|
|
output << "\n"
|
|
|
|
|
|
|
|
# Description
|
|
|
|
output << "Description:\n"
|
|
|
|
output << word_wrap(Rex::Text.compress(mod.description))
|
|
|
|
output << "\n"
|
|
|
|
|
|
|
|
output << dump_references(mod, indent)
|
|
|
|
|
|
|
|
output << "\n"
|
|
|
|
|
|
|
|
return output
|
|
|
|
|
|
|
|
end
|
|
|
|
|
2013-12-26 18:14:41 +00:00
|
|
|
#No current use
|
2013-08-30 21:28:33 +00:00
|
|
|
def self.dump_generic_module(mod, indent = '')
|
|
|
|
end
|
|
|
|
|
|
|
|
# Dumps the list of options associated with the
|
|
|
|
# supplied module.
|
2013-12-26 18:14:41 +00:00
|
|
|
#
|
|
|
|
# @param mod [Msf::Module] the module.
|
|
|
|
# @param indent [String] the indentation to use.
|
2014-09-04 22:46:29 +00:00
|
|
|
# @param missing [Boolean] dump only empty required options.
|
2013-12-25 10:24:26 +00:00
|
|
|
# @return [String] the string form of the information.
|
2014-09-04 22:46:29 +00:00
|
|
|
def self.dump_options(mod, indent = '', missing = false)
|
2016-08-10 18:30:09 +00:00
|
|
|
tbl = Rex::Text::Table.new(
|
2013-08-30 21:28:33 +00:00
|
|
|
'Indent' => indent.length,
|
|
|
|
'Columns' =>
|
|
|
|
[
|
|
|
|
'Name',
|
|
|
|
'Current Setting',
|
|
|
|
'Required',
|
|
|
|
'Description'
|
|
|
|
])
|
|
|
|
|
2016-04-05 20:05:58 +00:00
|
|
|
mod.options.sorted.each do |name, opt|
|
2016-06-28 18:12:34 +00:00
|
|
|
val = mod.datastore[name].nil? ? opt.default : mod.datastore[name]
|
2013-08-30 21:28:33 +00:00
|
|
|
|
|
|
|
next if (opt.advanced?)
|
|
|
|
next if (opt.evasion?)
|
2014-09-04 22:46:29 +00:00
|
|
|
next if (missing && opt.valid?(val))
|
2013-08-30 21:28:33 +00:00
|
|
|
|
2017-01-04 21:31:22 +00:00
|
|
|
desc = opt.desc.dup
|
|
|
|
|
|
|
|
# Hint at RPORT proto by regexing mixins
|
|
|
|
if name == 'RPORT' && opt.kind_of?(Msf::OptPort)
|
|
|
|
mod.class.included_modules.each do |m|
|
2017-01-21 01:56:06 +00:00
|
|
|
case m.name
|
|
|
|
when /tcp/i, /HttpClient$/
|
2017-01-04 21:31:22 +00:00
|
|
|
desc << ' (TCP)'
|
|
|
|
break
|
2017-01-21 01:56:06 +00:00
|
|
|
when /udp/i
|
2017-01-04 21:31:22 +00:00
|
|
|
desc << ' (UDP)'
|
|
|
|
break
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
tbl << [ name, opt.display_value(val), opt.required? ? "yes" : "no", desc ]
|
2016-04-05 20:05:58 +00:00
|
|
|
end
|
2013-08-30 21:28:33 +00:00
|
|
|
|
|
|
|
return tbl.to_s
|
|
|
|
end
|
|
|
|
|
|
|
|
# Dumps the advanced options associated with the supplied module.
|
2013-12-26 18:14:41 +00:00
|
|
|
#
|
|
|
|
# @param mod [Msf::Module] the module.
|
|
|
|
# @param indent [String] the indentation to use.
|
2013-12-25 10:24:26 +00:00
|
|
|
# @return [String] the string form of the information.
|
2013-08-30 21:28:33 +00:00
|
|
|
def self.dump_advanced_options(mod, indent = '')
|
2016-08-10 18:30:09 +00:00
|
|
|
tbl = Rex::Text::Table.new(
|
2016-04-05 20:05:58 +00:00
|
|
|
'Indent' => indent.length,
|
|
|
|
'Columns' =>
|
|
|
|
[
|
|
|
|
'Name',
|
|
|
|
'Current Setting',
|
|
|
|
'Required',
|
|
|
|
'Description'
|
|
|
|
])
|
2013-08-30 21:28:33 +00:00
|
|
|
|
2016-04-05 20:05:58 +00:00
|
|
|
mod.options.sorted.each do |name, opt|
|
|
|
|
next unless opt.advanced?
|
2016-06-28 18:12:34 +00:00
|
|
|
val = mod.datastore[name].nil? ? opt.default : mod.datastore[name]
|
2016-04-05 20:05:58 +00:00
|
|
|
tbl << [ name, opt.display_value(val), opt.required? ? "yes" : "no", opt.desc ]
|
|
|
|
end
|
2013-08-30 21:28:33 +00:00
|
|
|
|
2016-04-05 20:05:58 +00:00
|
|
|
return tbl.to_s
|
2013-08-30 21:28:33 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
# Dumps the evasion options associated with the supplied module.
|
2013-12-26 18:14:41 +00:00
|
|
|
#
|
|
|
|
# @param mod [Msf::Module] the module.
|
|
|
|
# @param indent [String] the indentation to use.
|
2013-12-25 10:24:26 +00:00
|
|
|
# @return [String] the string form of the information.
|
2013-08-30 21:28:33 +00:00
|
|
|
def self.dump_evasion_options(mod, indent = '')
|
2016-08-10 18:30:09 +00:00
|
|
|
tbl = Rex::Text::Table.new(
|
2016-04-05 20:05:58 +00:00
|
|
|
'Indent' => indent.length,
|
|
|
|
'Columns' =>
|
|
|
|
[
|
|
|
|
'Name',
|
|
|
|
'Current Setting',
|
|
|
|
'Required',
|
|
|
|
'Description'
|
|
|
|
])
|
2013-08-30 21:28:33 +00:00
|
|
|
|
2016-04-05 20:05:58 +00:00
|
|
|
mod.options.sorted.each do |name, opt|
|
|
|
|
next unless opt.evasion?
|
2016-06-28 18:12:34 +00:00
|
|
|
val = mod.datastore[name].nil? ? opt.default : mod.datastore[name]
|
2016-04-05 20:05:58 +00:00
|
|
|
tbl << [ name, opt.display_value(val), opt.required? ? "yes" : "no", opt.desc ]
|
|
|
|
end
|
2013-08-30 21:28:33 +00:00
|
|
|
|
2016-04-05 20:05:58 +00:00
|
|
|
return tbl.to_s
|
2013-08-30 21:28:33 +00:00
|
|
|
end
|
|
|
|
|
2013-12-25 10:24:26 +00:00
|
|
|
# Dumps the references associated with the supplied module.
|
2013-12-26 18:14:41 +00:00
|
|
|
#
|
|
|
|
# @param mod [Msf::Module] the module.
|
|
|
|
# @param indent [String] the indentation to use.
|
2013-12-25 10:24:26 +00:00
|
|
|
# @return [String] the string form of the information.
|
2013-08-30 21:28:33 +00:00
|
|
|
def self.dump_references(mod, indent = '')
|
|
|
|
output = ''
|
|
|
|
|
2016-04-22 07:14:35 +00:00
|
|
|
if (mod.respond_to?(:references) && mod.references && mod.references.length > 0)
|
2013-08-30 21:28:33 +00:00
|
|
|
output << "References:\n"
|
|
|
|
mod.references.each { |ref|
|
|
|
|
output << indent + ref.to_s + "\n"
|
|
|
|
}
|
|
|
|
output << "\n"
|
|
|
|
end
|
|
|
|
|
|
|
|
output
|
|
|
|
end
|
|
|
|
|
|
|
|
# Dumps the contents of a datastore.
|
2013-12-26 18:14:41 +00:00
|
|
|
#
|
|
|
|
# @param name [String] displayed as the table header.
|
|
|
|
# @param ds [Msf::DataStore] the DataStore to dump.
|
|
|
|
# @param indent [Integer] the indentation size.
|
|
|
|
# @param col [Integer] the column width.
|
2013-12-25 10:24:26 +00:00
|
|
|
# @return [String] the formatted DataStore contents.
|
2013-08-30 21:28:33 +00:00
|
|
|
def self.dump_datastore(name, ds, indent = DefaultIndent, col = DefaultColumnWrap)
|
2016-08-10 18:30:09 +00:00
|
|
|
tbl = Rex::Text::Table.new(
|
2013-08-30 21:28:33 +00:00
|
|
|
'Indent' => indent,
|
|
|
|
'Header' => name,
|
|
|
|
'Columns' =>
|
|
|
|
[
|
|
|
|
'Name',
|
|
|
|
'Value'
|
|
|
|
])
|
|
|
|
|
|
|
|
ds.keys.sort.each { |k|
|
|
|
|
tbl << [ k, (ds[k] != nil) ? ds[k].to_s : '' ]
|
|
|
|
}
|
|
|
|
|
|
|
|
return ds.length > 0 ? tbl.to_s : "#{tbl.header_to_s}No entries in data store.\n"
|
|
|
|
end
|
|
|
|
|
|
|
|
# Dumps the list of active sessions.
|
2013-12-26 18:14:41 +00:00
|
|
|
#
|
|
|
|
# @param framework [Msf::Framework] the framework to dump.
|
|
|
|
# @param opts [Hash] the options to dump with.
|
|
|
|
# @option opts :verbose [Boolean] gives more information if set to
|
2013-12-25 10:24:26 +00:00
|
|
|
# true.
|
2013-12-26 18:14:41 +00:00
|
|
|
# @option opts :indent [Integer] set the indentation amount.
|
2013-12-25 10:24:26 +00:00
|
|
|
# @return [String] the formatted list of sessions.
|
2013-08-30 21:28:33 +00:00
|
|
|
def self.dump_sessions(framework, opts={})
|
|
|
|
verbose = opts[:verbose] || false
|
2016-02-18 21:36:43 +00:00
|
|
|
show_extended = opts[:show_extended] || false
|
2013-08-30 21:28:33 +00:00
|
|
|
indent = opts[:indent] || DefaultIndent
|
|
|
|
|
2015-05-04 07:55:31 +00:00
|
|
|
return dump_sessions_verbose(framework, opts) if verbose
|
|
|
|
|
2016-01-29 01:52:21 +00:00
|
|
|
columns = []
|
|
|
|
columns << 'Id'
|
2017-07-17 17:35:31 +00:00
|
|
|
columns << 'Name'
|
2016-01-29 01:52:21 +00:00
|
|
|
columns << 'Type'
|
2016-02-18 21:36:43 +00:00
|
|
|
columns << 'Checkin?' if show_extended
|
2017-06-26 06:41:58 +00:00
|
|
|
columns << 'Enc?' if show_extended
|
2015-12-14 16:40:27 +00:00
|
|
|
columns << 'Local URI' if show_extended
|
2016-01-29 01:52:21 +00:00
|
|
|
columns << 'Information'
|
|
|
|
columns << 'Connection'
|
2013-08-30 21:28:33 +00:00
|
|
|
|
2016-08-10 18:30:09 +00:00
|
|
|
tbl = Rex::Text::Table.new(
|
2013-08-30 21:28:33 +00:00
|
|
|
'Indent' => indent,
|
|
|
|
'Header' => "Active sessions",
|
|
|
|
'Columns' => columns)
|
|
|
|
|
|
|
|
framework.sessions.each_sorted { |k|
|
|
|
|
session = framework.sessions[k]
|
|
|
|
|
|
|
|
sinfo = session.info.to_s
|
|
|
|
# Arbitrarily cut it at 80 columns
|
|
|
|
if sinfo.length > 80
|
|
|
|
sinfo = sinfo[0,77] + "..."
|
|
|
|
end
|
|
|
|
|
2016-01-29 01:52:21 +00:00
|
|
|
row = []
|
|
|
|
row << session.sid.to_s
|
2017-07-17 17:35:31 +00:00
|
|
|
row << session.sname.to_s
|
2016-01-29 01:52:21 +00:00
|
|
|
row << session.type.to_s
|
2016-10-29 02:46:11 +00:00
|
|
|
if session.respond_to?(:session_type)
|
|
|
|
row[-1] << (" " + session.session_type)
|
|
|
|
elsif session.respond_to?(:platform)
|
|
|
|
row[-1] << (" " + session.platform)
|
|
|
|
end
|
2015-03-31 20:44:18 +00:00
|
|
|
|
2016-02-18 21:36:43 +00:00
|
|
|
if show_extended
|
2016-01-25 12:32:20 +00:00
|
|
|
if session.respond_to?(:last_checkin) && session.last_checkin
|
|
|
|
row << "#{(Time.now.to_i - session.last_checkin.to_i)}s ago"
|
|
|
|
else
|
|
|
|
row << '?'
|
|
|
|
end
|
2015-12-14 16:40:27 +00:00
|
|
|
|
2017-07-03 07:31:09 +00:00
|
|
|
if session.respond_to?(:tlv_enc_key) && session.tlv_enc_key && session.tlv_enc_key[:key]
|
2017-06-26 06:41:58 +00:00
|
|
|
row << "Y"
|
|
|
|
else
|
|
|
|
row << 'N'
|
|
|
|
end
|
|
|
|
|
2017-07-18 11:05:43 +00:00
|
|
|
if session.exploit_datastore && session.exploit_datastore.has_key?('LURI') && !session.exploit_datastore['LURI'].empty?
|
2015-12-14 16:40:27 +00:00
|
|
|
row << " (#{session.exploit_datastore['LURI']})"
|
|
|
|
else
|
|
|
|
row << '?'
|
|
|
|
end
|
2016-01-25 12:32:20 +00:00
|
|
|
end
|
|
|
|
|
2016-01-29 01:52:21 +00:00
|
|
|
row << sinfo
|
|
|
|
row << session.tunnel_to_s + " (#{session.session_host})"
|
|
|
|
|
2013-08-30 21:28:33 +00:00
|
|
|
tbl << row
|
|
|
|
}
|
|
|
|
|
|
|
|
return framework.sessions.length > 0 ? tbl.to_s : "#{tbl.header_to_s}No active sessions.\n"
|
|
|
|
end
|
|
|
|
|
2015-05-04 07:55:31 +00:00
|
|
|
# Dumps the list of active sessions in verbose mode
|
|
|
|
#
|
|
|
|
# @param framework [Msf::Framework] the framework to dump.
|
|
|
|
# @param opts [Hash] the options to dump with.
|
|
|
|
# @return [String] the formatted list of sessions.
|
|
|
|
def self.dump_sessions_verbose(framework, opts={})
|
|
|
|
out = "Active sessions\n" +
|
|
|
|
"===============\n\n"
|
|
|
|
|
|
|
|
if framework.sessions.length == 0
|
|
|
|
out << "No active sessions.\n"
|
|
|
|
return out
|
|
|
|
end
|
|
|
|
|
|
|
|
framework.sessions.each_sorted do |k|
|
|
|
|
session = framework.sessions[k]
|
|
|
|
|
|
|
|
sess_info = session.info.to_s
|
|
|
|
sess_id = session.sid.to_s
|
2017-07-17 17:35:31 +00:00
|
|
|
sess_name = session.sname.to_s
|
2015-05-04 07:55:31 +00:00
|
|
|
sess_tunnel = session.tunnel_to_s + " (#{session.session_host})"
|
|
|
|
sess_via = session.via_exploit.to_s
|
|
|
|
sess_type = session.type.to_s
|
|
|
|
sess_uuid = session.payload_uuid.to_s
|
2015-05-21 04:55:49 +00:00
|
|
|
sess_puid = session.payload_uuid.respond_to?(:puid_hex) ? session.payload_uuid.puid_hex : nil
|
2017-07-18 11:05:43 +00:00
|
|
|
sess_luri = session.exploit_datastore['LURI'] || "" if session.exploit_datastore
|
2017-07-03 07:31:09 +00:00
|
|
|
sess_enc = false
|
|
|
|
if session.respond_to?(:tlv_enc_key) && session.tlv_enc_key && session.tlv_enc_key[:key]
|
|
|
|
sess_enc = true
|
|
|
|
end
|
2015-05-21 04:55:49 +00:00
|
|
|
|
2015-05-04 07:55:31 +00:00
|
|
|
sess_checkin = "<none>"
|
2015-05-21 04:55:49 +00:00
|
|
|
sess_registration = "No"
|
2015-05-04 07:55:31 +00:00
|
|
|
|
2017-06-26 06:41:58 +00:00
|
|
|
if session.respond_to?(:platform)
|
|
|
|
sess_type << " " + session.platform
|
2015-05-04 07:55:31 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
if session.respond_to?(:last_checkin) && session.last_checkin
|
2015-05-04 08:22:29 +00:00
|
|
|
sess_checkin = "#{(Time.now.to_i - session.last_checkin.to_i)}s ago @ #{session.last_checkin.to_s}"
|
2015-05-04 07:55:31 +00:00
|
|
|
end
|
|
|
|
|
2015-05-21 04:55:49 +00:00
|
|
|
if session.payload_uuid.respond_to?(:puid_hex) && (uuid_info = framework.uuid_db[sess_puid])
|
|
|
|
sess_registration = "Yes"
|
|
|
|
if uuid_info['name']
|
|
|
|
sess_registration << " - Name=\"#{uuid_info['name']}\""
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2015-05-04 07:55:31 +00:00
|
|
|
out << " Session ID: #{sess_id}\n"
|
2017-07-17 17:35:31 +00:00
|
|
|
out << " Name: #{sess_name}\n"
|
2015-05-04 07:55:31 +00:00
|
|
|
out << " Type: #{sess_type}\n"
|
|
|
|
out << " Info: #{sess_info}\n"
|
|
|
|
out << " Tunnel: #{sess_tunnel}\n"
|
|
|
|
out << " Via: #{sess_via}\n"
|
2017-06-26 06:41:58 +00:00
|
|
|
out << " Encrypted: #{sess_enc}\n"
|
2015-05-04 07:55:31 +00:00
|
|
|
out << " UUID: #{sess_uuid}\n"
|
|
|
|
out << " CheckIn: #{sess_checkin}\n"
|
2015-05-21 04:55:49 +00:00
|
|
|
out << " Registered: #{sess_registration}\n"
|
2017-07-18 11:34:46 +00:00
|
|
|
unless (sess_luri || '').empty?
|
2015-12-14 16:40:27 +00:00
|
|
|
out << " LURI: #{sess_luri}\n"
|
|
|
|
end
|
2015-05-21 04:55:49 +00:00
|
|
|
|
2015-05-04 07:55:31 +00:00
|
|
|
out << "\n"
|
|
|
|
end
|
|
|
|
|
|
|
|
out << "\n"
|
|
|
|
return out
|
|
|
|
end
|
|
|
|
|
2013-08-30 21:28:33 +00:00
|
|
|
# Dumps the list of running jobs.
|
2013-12-26 18:14:41 +00:00
|
|
|
#
|
|
|
|
# @param framework [Msf::Framework] the framework.
|
2015-03-31 20:44:18 +00:00
|
|
|
# @param verbose [Boolean] if true, also prints the payload, LPORT, URIPATH
|
2013-12-25 10:24:26 +00:00
|
|
|
# and start time, if they exist, for each job.
|
2013-12-26 18:14:41 +00:00
|
|
|
# @param indent [Integer] the indentation amount.
|
|
|
|
# @param col [Integer] the column wrap width.
|
2013-12-25 10:24:26 +00:00
|
|
|
# @return [String] the formatted list of running jobs.
|
2013-08-30 21:28:33 +00:00
|
|
|
def self.dump_jobs(framework, verbose = false, indent = DefaultIndent, col = DefaultColumnWrap)
|
2016-05-26 23:34:53 +00:00
|
|
|
columns = [ 'Id', 'Name', "Payload", "Payload opts" ]
|
2013-08-30 21:28:33 +00:00
|
|
|
|
|
|
|
if (verbose)
|
2016-05-26 23:34:53 +00:00
|
|
|
columns += [ "URIPATH", "Start Time", "Handler opts" ]
|
2013-08-30 21:28:33 +00:00
|
|
|
end
|
|
|
|
|
2016-08-10 18:30:09 +00:00
|
|
|
tbl = Rex::Text::Table.new(
|
2013-08-30 21:28:33 +00:00
|
|
|
'Indent' => indent,
|
|
|
|
'Header' => "Jobs",
|
|
|
|
'Columns' => columns
|
|
|
|
)
|
|
|
|
|
2016-05-26 23:34:53 +00:00
|
|
|
# jobs are stored as a hash with the keys being a numeric String job_id.
|
|
|
|
framework.jobs.keys.sort_by(&:to_i).each do |job_id|
|
2013-09-25 15:11:16 +00:00
|
|
|
# Job context is stored as an Array with the 0th element being
|
|
|
|
# the running module. If that module is an exploit, ctx will also
|
|
|
|
# contain its payload.
|
2016-05-26 23:34:53 +00:00
|
|
|
exploit_mod, _payload_mod = framework.jobs[job_id].ctx
|
|
|
|
row = []
|
|
|
|
row[0] = job_id
|
|
|
|
row[1] = framework.jobs[job_id].name
|
|
|
|
|
|
|
|
pinst = exploit_mod.respond_to?(:payload_instance) ? exploit_mod.payload_instance : nil
|
2016-12-12 05:56:26 +00:00
|
|
|
payload_uri = ''
|
2016-05-26 23:34:53 +00:00
|
|
|
|
|
|
|
if pinst.nil?
|
|
|
|
row[2] = ""
|
|
|
|
row[3] = ""
|
|
|
|
else
|
|
|
|
row[2] = pinst.refname
|
|
|
|
row[3] = ""
|
|
|
|
if pinst.respond_to?(:payload_uri)
|
2016-12-12 05:56:26 +00:00
|
|
|
payload_uri = pinst.payload_uri.strip
|
|
|
|
row[3] << payload_uri
|
2016-05-26 23:34:53 +00:00
|
|
|
end
|
|
|
|
if pinst.respond_to?(:luri)
|
|
|
|
row[3] << pinst.luri
|
|
|
|
end
|
2013-08-30 21:28:33 +00:00
|
|
|
end
|
|
|
|
|
2016-05-26 23:34:53 +00:00
|
|
|
if verbose
|
|
|
|
uripath = exploit_mod.get_resource if exploit_mod.respond_to?(:get_resource)
|
|
|
|
uripath ||= exploit_mod.datastore['URIPATH']
|
|
|
|
row[4] = uripath
|
|
|
|
row[5] = framework.jobs[job_id].start_time
|
2016-12-12 05:56:26 +00:00
|
|
|
row[6] = ''
|
|
|
|
|
|
|
|
if pinst.respond_to?(:listener_uri)
|
|
|
|
listener_uri = pinst.listener_uri.strip
|
|
|
|
row[6] = listener_uri unless listener_uri == payload_uri
|
|
|
|
end
|
2016-05-26 23:34:53 +00:00
|
|
|
end
|
2013-08-30 21:28:33 +00:00
|
|
|
tbl << row
|
2016-05-26 23:34:53 +00:00
|
|
|
end
|
2013-08-30 21:28:33 +00:00
|
|
|
|
|
|
|
return framework.jobs.keys.length > 0 ? tbl.to_s : "#{tbl.header_to_s}No active jobs.\n"
|
|
|
|
end
|
|
|
|
|
|
|
|
# Jacked from Ernest Ellingson <erne [at] powernav.com>, modified
|
|
|
|
# a bit to add indention
|
2013-12-26 18:14:41 +00:00
|
|
|
#
|
|
|
|
# @param str [String] the string to wrap.
|
|
|
|
# @param indent [Integer] the indentation amount.
|
|
|
|
# @param col [Integer] the column wrap width.
|
2013-12-25 10:24:26 +00:00
|
|
|
# @return [String] the wrapped string.
|
2013-08-30 21:28:33 +00:00
|
|
|
def self.word_wrap(str, indent = DefaultIndent, col = DefaultColumnWrap)
|
|
|
|
return Rex::Text.wordwrap(str, indent, col)
|
|
|
|
end
|
2005-07-09 21:26:44 +00:00
|
|
|
|
|
|
|
end
|
|
|
|
|
2009-03-08 07:55:47 +00:00
|
|
|
end end
|
2009-12-06 14:35:16 +00:00
|
|
|
|