metasploit-framework/lib/msf/core/post_mixin.rb

202 lines
5.0 KiB
Ruby
Raw Normal View History

# -*- coding: binary -*-
require 'msf/core'
require 'msf/core/module'
#
# A mixin used for providing Modules with post-exploitation options and helper methods
#
module Msf::PostMixin
2013-09-05 18:41:25 +00:00
include Msf::Auxiliary::Report
include Msf::Module::HasActions
include Msf::Post::Common
def initialize(info={})
super
register_options( [
Msf::OptInt.new('SESSION', [ true, "The session to run this module on." ])
] , Msf::Post)
# Default stance is active
self.passive = (info['Passive'] and info['Passive'] == true) || false
end
#
# Grabs a session object from the framework or raises {OptionValidateError}
# if one doesn't exist. Initializes user input and output on the session.
#
# @raise [OptionValidateError] if {#session} returns nil
def setup
unless session_compatible?(session)
print_warning('SESSION may not be compatible with this module.')
2013-09-05 18:41:25 +00:00
end
super
check_for_session_readiness() if session.type == "meterpreter"
@session.init_ui(self.user_input, self.user_output)
@sysinfo = nil
end
# Meterpreter sometimes needs a little bit of extra time to
# actually be responsive for post modules. Default tries
# and retries for 5 seconds.
def check_for_session_readiness(tries=6)
session_ready_count = 0
session_ready = false
until session.sys or session_ready_count > tries
session_ready_count += 1
back_off_period = (session_ready_count**2)/10.0
select(nil,nil,nil,back_off_period)
end
session_ready = !!session.sys
raise "Could not get a hold of the session." unless session_ready
return session_ready
end
#
# Default cleanup handler does nothing
#
def cleanup
end
#
# Return the associated session or nil if there isn't one
#
# @return [Msf::Session]
# @return [nil] if the id provided in the datastore does not
# correspond to a session
def session
# Try the cached one
return @session if @session and not session_changed?
if datastore["SESSION"]
2014-02-06 19:11:38 +00:00
@session = framework.sessions.get(datastore["SESSION"].to_i)
2013-09-05 18:41:25 +00:00
else
@session = nil
end
@session
end
def session_display_info
"Session: #{session.sid} (#{session.session_host})"
end
2013-09-05 18:41:25 +00:00
alias :client :session
#
# Cached sysinfo, returns nil for non-meterpreter sessions
#
# @return [Hash,nil]
def sysinfo
begin
@sysinfo ||= session.sys.config.sysinfo
rescue NoMethodError
@sysinfo = nil
end
@sysinfo
end
#
# Can be overridden by individual modules to add new commands
#
def post_commands
{}
end
# Whether this module's {Msf::Exploit::Stance} is {Msf::Exploit::Stance::Passive passive}
def passive?
self.passive
end
#
# Return a (possibly empty) list of all compatible sessions
#
# @return [Array]
def compatible_sessions
sessions = []
framework.sessions.each do |sid, s|
sessions << sid if session_compatible?(s)
end
sessions
end
#
# Return false if the given session is not compatible with this module
#
# Checks the session's type against this module's
# <tt>module_info["SessionTypes"]</tt> as well as examining platform
# compatibility. +sess_or_sid+ can be a Session object, Fixnum, or
2015-04-13 08:21:41 +00:00
# String. In the latter cases it should be a key in
2013-09-05 18:41:25 +00:00
# +framework.sessions+.
#
# @note Because it errs on the side of compatibility, a true return
# value from this method does not guarantee the module will work
# with the session.
#
# @param sess_or_sid [Msf::Session,Fixnum,String]
# A session or session ID to compare against this module for
# compatibility.
#
def session_compatible?(sess_or_sid)
# Normalize the argument to an actual Session
case sess_or_sid
when ::Fixnum, ::String
s = framework.sessions[sess_or_sid.to_i]
when ::Msf::Session
s = sess_or_sid
end
# Can't do anything without a session
return false if s.nil?
# Can't be compatible if it's the wrong type
if self.module_info["SessionTypes"]
return false unless self.module_info["SessionTypes"].include?(s.type)
end
# Types are okay, now check the platform.
2013-09-05 18:41:25 +00:00
if self.platform and self.platform.kind_of?(Msf::Module::PlatformList)
return false unless self.platform.supports?(Msf::Module::PlatformList.transform(s.platform))
2013-09-05 18:41:25 +00:00
end
# Check to make sure architectures match
mod_arch = self.module_info['Arch']
unless mod_arch.nil?
mod_arch = [mod_arch] unless mod_arch.kind_of?(Array)
return false unless mod_arch.include?(s.arch)
end
2013-09-05 18:41:25 +00:00
# If we got here, we haven't found anything that definitely
# disqualifies this session. Assume that means we can use it.
return true
end
#
# True when this module is passive, false when active
#
# @return [Boolean]
# @see passive?
attr_reader :passive
protected
2013-08-30 21:28:33 +00:00
attr_writer :passive
2013-08-30 21:28:33 +00:00
def session_changed?
@ds_session ||= datastore["SESSION"]
2013-08-30 21:28:33 +00:00
if (@ds_session != datastore["SESSION"])
@ds_session = nil
return true
else
return false
end
end
end