metasploit-framework/lib/msf/ui/console/framework_event_manager.rb

module Msf
module Ui
module Console

###
#
# Handles events of various types that are sent from the framework.
#
###
module FrameworkEventManager

	include Msf::SessionEvent

	#
	# Subscribes to the framework as a subscriber of various events.
	#
	def register_event_handlers
		framework.events.add_session_subscriber(self)
	end

	#
	# Unsubscribes from the framework.
	#
	def deregister_event_handlers
		framework.events.remove_session_subscriber(self)
	end

	#
	# Called when a session is registered with the framework.
	#
	def on_session_open(session)
		output.print_status("#{session.desc} session #{session.name} opened (#{session.tunnel_to_s})")

		if (Msf::Logging.session_logging_enabled? == true)
			Msf::Logging.start_session_log(session)
		end
		# Since we got a session, we know the host is vulnerable to something.
		# If the exploit used was multi/handler, though, we don't know what
		# it's vulnerable to, so it isn't really useful to save it.
		if framework.db.active and session.via_exploit and session.via_exploit != "multi/handler"
			info = {
				:host => session.tunnel_peer.sub(/:\d+$/, ''), # strip off the port
				:name => session.via_exploit,
				:workspace => framework.db.find_workspace(session.workspace)
			}
			framework.db.report_vuln(info)
		end
	end

	#
	# Called when a session is closed and removed from the framework.
	#
	def on_session_close(session, reason='')
		if (session.interacting == true)
			output.print_line
		end

		# If logging had been enabled for this session, stop it now.
		Msf::Logging::stop_session_log(session)

		msg = "#{session.desc} session #{session.name} closed."
		if reason.length > 0
			msg << "  Reason: #{reason}"
		end
		output.print_status(msg)
	end

end

end
end
end