metasploit-framework/modules/exploits/test/multi/aggressive.rb

require 'msf/core'

module Msf

class Exploits::Test::Multi::Aggressive < Msf::Exploit::Remote

	include Exploit::Remote::Tcp

	def initialize(info = {})
		super(update_info(info,
			'Name'           => 'Internal Aggressive Test Exploit',
			'Description'    => 	
				"This module tests the exploitation of a test service.",
			'Author'         => 'skape',
			'Version'        => '$Revision$',
			'Payload'        =>
				{
					'Space'    => 1000,
					'MaxNops'  => 0,
				},
			'Targets'        => 
				[
					# Target 0: Universal
					[ 
						'Any Platform',
						{
							'Platform' => [ 'linux', 'win' ]
						}
					],
				],
			'DefaultTarget' => 0))
	end

	def check
		return Exploit::CheckCode::Vulnerable
	end

	def exploit
		connect

		#puts "raw:"
		#puts Rex::Text.to_c(payload.raw)
		#puts "encoded:"
		#puts Rex::Text.to_c(payload.encoded)

		sock.put(payload.encoded)

		handler
	end

end

end
more pimpage, added an internal test exploit git-svn-id: file:///home/svn/incoming/trunk@2752 4d416f70-5f16-0410-b530-b9f4589650da 2005-07-14 07:32:11 +00:00			`require 'msf/core'`

			`module Msf`

			`class Exploits::Test::Multi::Aggressive < Msf::Exploit::Remote`

			`include Exploit::Remote::Tcp`

			`def initialize(info = {})`
			`super(update_info(info,`
			`'Name' => 'Internal Aggressive Test Exploit',`
			`'Description' =>`
			`"This module tests the exploitation of a test service.",`
			`'Author' => 'skape',`
			`'Version' => '$Revision$',`
			`'Payload' =>`
			`{`
			`'Space' => 1000,`
			`'MaxNops' => 0,`
			`},`
			`'Targets' =>`
			`[`
			`# Target 0: Universal`
			`[`
			`'Any Platform',`
			`{`
config file parsing, datastore persistence, shared data stores, save in the ui git-svn-id: file:///home/svn/incoming/trunk@2761 4d416f70-5f16-0410-b530-b9f4589650da 2005-07-15 22:30:04 +00:00			`'Platform' => [ 'linux', 'win' ]`
			`}`
more pimpage, added an internal test exploit git-svn-id: file:///home/svn/incoming/trunk@2752 4d416f70-5f16-0410-b530-b9f4589650da 2005-07-14 07:32:11 +00:00			`],`
			`],`
			`'DefaultTarget' => 0))`
			`end`

added check git-svn-id: file:///home/svn/incoming/trunk@2756 4d416f70-5f16-0410-b530-b9f4589650da 2005-07-14 20:36:34 +00:00			`def check`
			`return Exploit::CheckCode::Vulnerable`
			`end`

more pimpage, added an internal test exploit git-svn-id: file:///home/svn/incoming/trunk@2752 4d416f70-5f16-0410-b530-b9f4589650da 2005-07-14 07:32:11 +00:00			`def exploit`
exploitation progress git-svn-id: file:///home/svn/incoming/trunk@2762 4d416f70-5f16-0410-b530-b9f4589650da 2005-07-15 23:46:05 +00:00			`connect`

it lives, major changes, fixed bugs, exploiting works with the test exploit git-svn-id: file:///home/svn/incoming/trunk@2763 4d416f70-5f16-0410-b530-b9f4589650da 2005-07-16 07:32:11 +00:00			`#puts "raw:"`
			`#puts Rex::Text.to_c(payload.raw)`
			`#puts "encoded:"`
			`#puts Rex::Text.to_c(payload.encoded)`

exploitation progress git-svn-id: file:///home/svn/incoming/trunk@2762 4d416f70-5f16-0410-b530-b9f4589650da 2005-07-15 23:46:05 +00:00			`sock.put(payload.encoded)`

			`handler`
more pimpage, added an internal test exploit git-svn-id: file:///home/svn/incoming/trunk@2752 4d416f70-5f16-0410-b530-b9f4589650da 2005-07-14 07:32:11 +00:00			`end`

			`end`

			`end`