metasploit-framework/modules/post/linux/busybox/ping_net.rb

##
# This module requires Metasploit: http://metasploit.com/download
# Current source: https://github.com/rapid7/metasploit-framework
##

require 'msf/core'

class Metasploit3 < Msf::Post

  include Msf::Post::File

  def initialize
    super(
      'Name'         => 'BusyBox Ping Network',
      'Description'  => 'This module will be applied on a session connected
                         to a BusyBox sh shell. The script will ping a range of
                         ip adresses from the router or device executing BusyBox.',
      'Author'       => 'Javier Vicente Vallejo',
      'License'      => MSF_LICENSE,
      'References'   =>
        [
          [ 'URL', 'http://vallejo.cc']
        ],
      'Platform'      => ['linux'],
       'SessionTypes'  => ['shell']
    )

    register_options(
      [
        OptAddress.new('IPRANGESTART',   [ true, "The first ip address of the range to ping.", nil ]),
        OptAddress.new('IPRANGEEND',   [ true, "The last ip address of the range to ping.", nil ])
      ], self.class)
  end

  #
  #This module executes the ping command from the BusyBox connected shell for a given range of ip addresses. The
  #results will be stored in loots
  #
  def run

    full_results = ""

    (IPAddr.new(datastore['IPRANGESTART'])..IPAddr.new(datastore['IPRANGEEND'])).map(&:to_s).each do |current_ip_address|
      print_status("Doing ping to the address #{current_ip_address}.")
      full_results << cmd_exec("ping -c 1 #{current_ip_address}")
    end

    #storing results
    p = store_loot("Pingnet", "text/plain", session, full_results, "#{datastore['IPRANGESTART']}"+"-"+"#{datastore['IPRANGEEND']}", "BusyBox Device Network Range Pings")
    print_good("Pingnet results saved to #{p}.")
  end

end
Added modules to jailbreak and control remotely BusyBox based devices. It was added to a word list with default credentials typically used by commercial routers. 2015-08-10 16:29:41 +00:00			`##`
			`# This module requires Metasploit: http://metasploit.com/download`
			`# Current source: https://github.com/rapid7/metasploit-framework`
			`##`

			`require 'msf/core'`

			`class Metasploit3 < Msf::Post`

			`include Msf::Post::File`

			`def initialize`
			`super(`
			`'Name' => 'BusyBox Ping Network',`
			`'Description' => 'This module will be applied on a session connected`
			`to a BusyBox sh shell. The script will ping a range of`
			`ip adresses from the router or device executing BusyBox.',`
			`'Author' => 'Javier Vicente Vallejo',`
			`'License' => MSF_LICENSE,`
			`'References' =>`
			`[`
			`[ 'URL', 'http://vallejo.cc']`
			`],`
			`'Platform' => ['linux'],`
			`'SessionTypes' => ['shell']`
			`)`

			`register_options(`
			`[`
			`OptAddress.new('IPRANGESTART', [ true, "The first ip address of the range to ping.", nil ]),`
			`OptAddress.new('IPRANGEEND', [ true, "The last ip address of the range to ping.", nil ])`
			`], self.class)`
			`end`

Modifications to use cmd_exec instead of session.shell_write. Refactoring of common functions to a new Post mixin /lib/msf/core/post/linux/busybox.rb. 2015-08-17 16:24:22 +00:00			`#`
Modified module busybox_pingnet.rb to avoid sending an ash script but executing each ping command separately. Added some fixes. Modified spec file for busybox.rb. 2015-08-23 10:17:17 +00:00			`#This module executes the ping command from the BusyBox connected shell for a given range of ip addresses. The`
			`#results will be stored in loots`
Modifications to use cmd_exec instead of session.shell_write. Refactoring of common functions to a new Post mixin /lib/msf/core/post/linux/busybox.rb. 2015-08-17 16:24:22 +00:00			`#`
Added modules to jailbreak and control remotely BusyBox based devices. It was added to a word list with default credentials typically used by commercial routers. 2015-08-10 16:29:41 +00:00			`def run`

			`full_results = ""`
Modified module busybox_pingnet.rb to avoid sending an ash script but executing each ping command separately. Added some fixes. Modified spec file for busybox.rb. 2015-08-23 10:17:17 +00:00
			`(IPAddr.new(datastore['IPRANGESTART'])..IPAddr.new(datastore['IPRANGEEND'])).map(&:to_s).each do \|current_ip_address\|`
			`print_status("Doing ping to the address #{current_ip_address}.")`
			`full_results << cmd_exec("ping -c 1 #{current_ip_address}")`
Added modules to jailbreak and control remotely BusyBox based devices. It was added to a word list with default credentials typically used by commercial routers. 2015-08-10 16:29:41 +00:00			`end`

			`#storing results`
			`p = store_loot("Pingnet", "text/plain", session, full_results, "#{datastore['IPRANGESTART']}"+"-"+"#{datastore['IPRANGEEND']}", "BusyBox Device Network Range Pings")`
			`print_good("Pingnet results saved to #{p}.")`
			`end`

			`end`