metasploit-framework/external/source/msfJavaToolkit/testKeytool.rb

#!/usr/bin/ruby

require 'rubygems'
require 'rjb'

Rjb::load(ENV['JAVA_HOME'] + '/lib/tools.jar:.',jvmargs=[])

# This is a completely hackish way to do this, and could break with future
# versions of the JDK.  Need to find a better way to use sun.security.tools.KeyTool
# and .JarSigner than modifying the source.  These rely on internal APIs that may
# change.
signer = Rjb::import('javaCompile.SignJar')
#clsKeyTool = Rjb::import('sun.security.tools.KeyTool')
#clsKeyTool = Rjb::import('sun.security.tools.KeyToolMSF')
#clsJarSigner = Rjb::import('javaCompile.SignJar.JarSignerMSF')
#clsJarSigner = Rjb::import('sun.security.tools.JarSigner')
#clsJarSigner = Rjb::import('sun.security.tools.JarSignerMSF')

#keytool = clsKeyTool
#jarsigner = clsJarSigner

outputJar = "output.jar"

#certCN cannot contain commas
certCN 		= "Metasploit Inc."
#keytoolOpts 	= "-genkey -alias signFiles -keystore msfkeystore " +
#		  "-storepass msfstorepass -dname \"cn=#{certCN}\" " +
#		  "-keypass msfkeypass"

keytoolOpts 	= ["-genkey", "-alias", "signFiles", "-keystore", "msfkeystore",
		   "-storepass", "msfstorepass", "-dname", "cn=#{certCN}",
		   "-keypass", "msfkeypass"]


signer._invoke('KeyToolMSF','[Ljava.lang.String;',keytoolOpts)


jarsignerOpts	= ["-keystore", "msfkeystore", "-storepass", "msfstorepass",
		   "-keypass", "msfkeypass", "-signedJar", "s#{outputJar}",
		   outputJar, "signFiles"]

signer._invoke('JarSignerMSF','[Ljava.lang.String;',jarsignerOpts)
Initial commit of Msf::Exploit::Java mixin and multi/browser/java_signed_applet exploit. git-svn-id: file:///home/svn/framework3/trunk@8267 4d416f70-5f16-0410-b530-b9f4589650da 2010-01-27 19:46:39 +00:00			`#!/usr/bin/ruby`

			`require 'rubygems'`
			`require 'rjb'`

			`Rjb::load(ENV['JAVA_HOME'] + '/lib/tools.jar:.',jvmargs=[])`

			`# This is a completely hackish way to do this, and could break with future`
			`# versions of the JDK. Need to find a better way to use sun.security.tools.KeyTool`
			`# and .JarSigner than modifying the source. These rely on internal APIs that may`
			`# change.`
Added STDERR to pure java payload, cleaned up user's view. git-svn-id: file:///home/svn/framework3/trunk@8308 4d416f70-5f16-0410-b530-b9f4589650da 2010-01-28 22:53:36 +00:00			`signer = Rjb::import('javaCompile.SignJar')`
			`#clsKeyTool = Rjb::import('sun.security.tools.KeyTool')`
Initial commit of Msf::Exploit::Java mixin and multi/browser/java_signed_applet exploit. git-svn-id: file:///home/svn/framework3/trunk@8267 4d416f70-5f16-0410-b530-b9f4589650da 2010-01-27 19:46:39 +00:00			`#clsKeyTool = Rjb::import('sun.security.tools.KeyToolMSF')`
Added STDERR to pure java payload, cleaned up user's view. git-svn-id: file:///home/svn/framework3/trunk@8308 4d416f70-5f16-0410-b530-b9f4589650da 2010-01-28 22:53:36 +00:00			`#clsJarSigner = Rjb::import('javaCompile.SignJar.JarSignerMSF')`
			`#clsJarSigner = Rjb::import('sun.security.tools.JarSigner')`
Initial commit of Msf::Exploit::Java mixin and multi/browser/java_signed_applet exploit. git-svn-id: file:///home/svn/framework3/trunk@8267 4d416f70-5f16-0410-b530-b9f4589650da 2010-01-27 19:46:39 +00:00			`#clsJarSigner = Rjb::import('sun.security.tools.JarSignerMSF')`

Added STDERR to pure java payload, cleaned up user's view. git-svn-id: file:///home/svn/framework3/trunk@8308 4d416f70-5f16-0410-b530-b9f4589650da 2010-01-28 22:53:36 +00:00			`#keytool = clsKeyTool`
			`#jarsigner = clsJarSigner`
Initial commit of Msf::Exploit::Java mixin and multi/browser/java_signed_applet exploit. git-svn-id: file:///home/svn/framework3/trunk@8267 4d416f70-5f16-0410-b530-b9f4589650da 2010-01-27 19:46:39 +00:00
			`outputJar = "output.jar"`

			`#certCN cannot contain commas`
			`certCN = "Metasploit Inc."`
			`#keytoolOpts = "-genkey -alias signFiles -keystore msfkeystore " +`
			`# "-storepass msfstorepass -dname \"cn=#{certCN}\" " +`
			`# "-keypass msfkeypass"`

			`keytoolOpts = ["-genkey", "-alias", "signFiles", "-keystore", "msfkeystore",`
			`"-storepass", "msfstorepass", "-dname", "cn=#{certCN}",`
			`"-keypass", "msfkeypass"]`


Added STDERR to pure java payload, cleaned up user's view. git-svn-id: file:///home/svn/framework3/trunk@8308 4d416f70-5f16-0410-b530-b9f4589650da 2010-01-28 22:53:36 +00:00			`signer._invoke('KeyToolMSF','[Ljava.lang.String;',keytoolOpts)`
Initial commit of Msf::Exploit::Java mixin and multi/browser/java_signed_applet exploit. git-svn-id: file:///home/svn/framework3/trunk@8267 4d416f70-5f16-0410-b530-b9f4589650da 2010-01-27 19:46:39 +00:00

			`jarsignerOpts = ["-keystore", "msfkeystore", "-storepass", "msfstorepass",`
			`"-keypass", "msfkeypass", "-signedJar", "s#{outputJar}",`
			`outputJar, "signFiles"]`

Added STDERR to pure java payload, cleaned up user's view. git-svn-id: file:///home/svn/framework3/trunk@8308 4d416f70-5f16-0410-b530-b9f4589650da 2010-01-28 22:53:36 +00:00			`signer._invoke('JarSignerMSF','[Ljava.lang.String;',jarsignerOpts)`
Initial commit of Msf::Exploit::Java mixin and multi/browser/java_signed_applet exploit. git-svn-id: file:///home/svn/framework3/trunk@8267 4d416f70-5f16-0410-b530-b9f4589650da 2010-01-27 19:46:39 +00:00