metasploit-framework/lib/msf/core/rpc/session.rb

require 'rex'
require 'rex/ui/text/output/buffer'

module Msf
module RPC
class Session < Base

	def list(token)
		authenticate(token)
		res = {}
		@framework.sessions.each do |sess|
			i,s = sess
			res[s.sid] = {
				'type'        => s.type.to_s,
				'tunnel_local'=> s.tunnel_local.to_s,
				'tunnel_peer' => s.tunnel_peer.to_s,
				'via_exploit' => s.via_exploit.to_s,
				'via_payload' => s.via_payload.to_s,
				'desc'        => s.desc.to_s,
				'info'        => s.info.to_s,
				'workspace'   => s.workspace.to_s,
				'target_host' => s.target_host.to_s,
				'username'    => s.username.to_s,
				'uuid'        => s.uuid.to_s,
				'exploit_uuid' => s.exploit_uuid.to_s,
				'routes'       => s.routes.join(",")
			}
			if(s.type.to_s == "meterpreter")
				res[s.sid]['platform'] = s.platform.to_s
			end
		end
		res
	end

	def stop(token, sid)
		authenticate(token)
		s = _find_session(sid)
		s.kill
		{ "result" => "success" }
	end

	def shell_read(token, sid)
		authenticate(token)
		s = _find_session(sid)
		if(s.type != "shell")
			raise ::XMLRPC::FaultException.new(403, "session is not a shell")
		end

		begin
			if(not s.rstream.has_read_data?(0.001))
				{ "data" => "", "encoding" => "base64" }
			else
				data = s.shell_read
				{ "data" => Rex::Text.encode_base64(data), "encoding" => "base64" }
			end
		rescue ::Exception => e
			raise ::XMLRPC::FaultException.new(500, "session disconnected: #{e.class} #{e}")
		end
	end

	def shell_write(token, sid, data)
		authenticate(token)
		s = _find_session(sid)
		if(s.type != "shell")
			raise ::XMLRPC::FaultException.new(403, "session is not a shell")
		end
		buff = Rex::Text.decode_base64(data)
		cnt = s.shell_write(buff)

		begin
			{ "write_count" => cnt }
		rescue ::Exception => e
			raise ::XMLRPC::FaultException.new(500, "session disconnected: #{e.class} #{e}")
		end
	end

	def meterpreter_read(token, sid)
		authenticate(token)
		s = _find_session(sid)
		if(s.type != "meterpreter")
			raise ::XMLRPC::FaultException.new(403, "session is not meterpreter")
		end

		if not s.user_output.respond_to? :dump_buffer
			s.init_ui(nil, Rex::Ui::Text::Output::Buffer.new)
		end

		data = s.user_output.dump_buffer
		# XXX Ghetto
		#
		# This should really be handled on the sessions' input/output handles
		# but this gets it working for right now.
		#
		if data.length > 0
			@framework.events.on_session_output(s, data)
		end
		{ "data" => Rex::Text.encode_base64(data), "encoding" => "base64" }
	end

	#
	# Run a single meterpreter console command
	#
	def meterpreter_write(token, sid, data)
		authenticate(token)
		s = _find_session(sid)
		if(s.type != "meterpreter")
			raise ::XMLRPC::FaultException.new(403, "session is not meterpreter")
		end

		if not s.user_output.respond_to? :dump_buffer
			s.init_ui(nil, Rex::Ui::Text::Output::Buffer.new)
		end

		buff = Rex::Text.decode_base64(data)
		# This is already covered by the meterpreter console's on_command_proc
		# so don't do it here
		#@framework.events.on_session_command(s, buff)

		Thread.new { s.console.run_single(buff) }

		{}
	end

	def meterpreter_script(token, sid, data)
		meterpreter_write(token, sid, ["run #{data}"].pack("m*"))
	end

protected

	def _find_session(sid)
		s = @framework.sessions[sid.to_i]
		if(not s)
			raise ::XMLRPC::FaultException.new(404, "unknown session")
		end
		s
	end

end
end
end
buffer io on meterpreter commands so we can get the output git-svn-id: file:///home/svn/framework3/trunk@8614 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-23 22:39:34 +00:00			`require 'rex'`
setup the input/output handles correctly for meterpreter sessions so we can get the output from scripts git-svn-id: file:///home/svn/framework3/trunk@8618 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-24 16:46:47 +00:00			`require 'rex/ui/text/output/buffer'`
buffer io on meterpreter commands so we can get the output git-svn-id: file:///home/svn/framework3/trunk@8614 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-23 22:39:34 +00:00
This patch introduces a really basic RPC service. It is still a long way from its final version git-svn-id: file:///home/svn/framework3/trunk@5991 4d416f70-5f16-0410-b530-b9f4589650da 2008-12-02 22:09:34 +00:00			`module Msf`
			`module RPC`
			`class Session < Base`

			`def list(token)`
			`authenticate(token)`
			`res = {}`
			`@framework.sessions.each do \|sess\|`
			`i,s = sess`
Make sure nil is not reported in the session fields (breaks XMLRPC). git-svn-id: file:///home/svn/framework3/trunk@8579 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-22 17:15:36 +00:00			`res[s.sid] = {`
			`'type' => s.type.to_s,`
			`'tunnel_local'=> s.tunnel_local.to_s,`
			`'tunnel_peer' => s.tunnel_peer.to_s,`
			`'via_exploit' => s.via_exploit.to_s,`
			`'via_payload' => s.via_payload.to_s,`
Track the target host/workspace through the entire tree, expose to RPC, and use this telnet_login git-svn-id: file:///home/svn/framework3/trunk@8583 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-22 17:54:44 +00:00			`'desc' => s.desc.to_s,`
Add the info field to the session object git-svn-id: file:///home/svn/framework3/trunk@8649 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-25 23:20:33 +00:00			`'info' => s.info.to_s,`
Track the target host/workspace through the entire tree, expose to RPC, and use this telnet_login git-svn-id: file:///home/svn/framework3/trunk@8583 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-22 17:54:44 +00:00			`'workspace' => s.workspace.to_s,`
Pass the username back to the rpc client git-svn-id: file:///home/svn/framework3/trunk@8842 4d416f70-5f16-0410-b530-b9f4589650da 2010-03-17 18:25:36 +00:00			`'target_host' => s.target_host.to_s,`
			`'username' => s.username.to_s,`
Increase LocalRelay block size, return exploit_uuid in sessions git-svn-id: file:///home/svn/framework3/trunk@8939 4d416f70-5f16-0410-b530-b9f4589650da 2010-03-27 15:44:33 +00:00			`'uuid' => s.uuid.to_s,`
Adding an autoroute meterpreter script, and enabling route housekeeping to be stored and retrived via Sessions directly, rather than through Rex::Socket::SwitchBoard. git-svn-id: file:///home/svn/framework3/trunk@9663 4d416f70-5f16-0410-b530-b9f4589650da 2010-07-02 17:38:56 +00:00			`'exploit_uuid' => s.exploit_uuid.to_s,`
			`'routes' => s.routes.join(",")`
This patch introduces a really basic RPC service. It is still a long way from its final version git-svn-id: file:///home/svn/framework3/trunk@5991 4d416f70-5f16-0410-b530-b9f4589650da 2008-12-02 22:09:34 +00:00			`}`
Only add platform for meterpreter sessions. Unbreaks shell sessions. git-svn-id: file:///home/svn/framework3/trunk@10286 4d416f70-5f16-0410-b530-b9f4589650da 2010-09-10 23:33:33 +00:00			`if(s.type.to_s == "meterpreter")`
			`res[s.sid]['platform'] = s.platform.to_s`
			`end`
This patch introduces a really basic RPC service. It is still a long way from its final version git-svn-id: file:///home/svn/framework3/trunk@5991 4d416f70-5f16-0410-b530-b9f4589650da 2008-12-02 22:09:34 +00:00			`end`
			`res`
			`end`
Make sure nil is not reported in the session fields (breaks XMLRPC). git-svn-id: file:///home/svn/framework3/trunk@8579 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-22 17:15:36 +00:00
This patch introduces a really basic RPC service. It is still a long way from its final version git-svn-id: file:///home/svn/framework3/trunk@5991 4d416f70-5f16-0410-b530-b9f4589650da 2008-12-02 22:09:34 +00:00			`def stop(token, sid)`
			`authenticate(token)`
			`s = _find_session(sid)`
			`s.kill`
			`{ "result" => "success" }`
			`end`
Make sure nil is not reported in the session fields (breaks XMLRPC). git-svn-id: file:///home/svn/framework3/trunk@8579 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-22 17:15:36 +00:00
This patch introduces a really basic RPC service. It is still a long way from its final version git-svn-id: file:///home/svn/framework3/trunk@5991 4d416f70-5f16-0410-b530-b9f4589650da 2008-12-02 22:09:34 +00:00			`def shell_read(token, sid)`
			`authenticate(token)`
			`s = _find_session(sid)`
			`if(s.type != "shell")`
			`raise ::XMLRPC::FaultException.new(403, "session is not a shell")`
			`end`
Make sure nil is not reported in the session fields (breaks XMLRPC). git-svn-id: file:///home/svn/framework3/trunk@8579 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-22 17:15:36 +00:00
Closes command and meterpreter sessions in a much more consistent way git-svn-id: file:///home/svn/framework3/trunk@8865 4d416f70-5f16-0410-b530-b9f4589650da 2010-03-21 04:24:27 +00:00			`begin`
change the timeout to something sane git-svn-id: file:///home/svn/framework3/trunk@10006 4d416f70-5f16-0410-b530-b9f4589650da 2010-08-13 17:24:59 +00:00			`if(not s.rstream.has_read_data?(0.001))`
Closes command and meterpreter sessions in a much more consistent way git-svn-id: file:///home/svn/framework3/trunk@8865 4d416f70-5f16-0410-b530-b9f4589650da 2010-03-21 04:24:27 +00:00			`{ "data" => "", "encoding" => "base64" }`
			`else`
			`data = s.shell_read`
			`{ "data" => Rex::Text.encode_base64(data), "encoding" => "base64" }`
			`end`
			`rescue ::Exception => e`
			`raise ::XMLRPC::FaultException.new(500, "session disconnected: #{e.class} #{e}")`
This patch introduces a really basic RPC service. It is still a long way from its final version git-svn-id: file:///home/svn/framework3/trunk@5991 4d416f70-5f16-0410-b530-b9f4589650da 2008-12-02 22:09:34 +00:00			`end`
			`end`
Make sure nil is not reported in the session fields (breaks XMLRPC). git-svn-id: file:///home/svn/framework3/trunk@8579 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-22 17:15:36 +00:00
This patch introduces a really basic RPC service. It is still a long way from its final version git-svn-id: file:///home/svn/framework3/trunk@5991 4d416f70-5f16-0410-b530-b9f4589650da 2008-12-02 22:09:34 +00:00			`def shell_write(token, sid, data)`
			`authenticate(token)`
			`s = _find_session(sid)`
			`if(s.type != "shell")`
			`raise ::XMLRPC::FaultException.new(403, "session is not a shell")`
			`end`
Backwards Compatibility Broken - The session XMLRPC object now requires data for read/write to be encoded using Base64, this solves a number of issues with the builtin XMLRPC library with regards to binary data encoding. The response from read() now contains an 'encoding' element with the value 'base64', in order to differentiate from older versions. git-svn-id: file:///home/svn/framework3/trunk@8776 4d416f70-5f16-0410-b530-b9f4589650da 2010-03-11 00:55:21 +00:00			`buff = Rex::Text.decode_base64(data)`
change the timeout to something sane git-svn-id: file:///home/svn/framework3/trunk@10006 4d416f70-5f16-0410-b530-b9f4589650da 2010-08-13 17:24:59 +00:00			`cnt = s.shell_write(buff)`
Make sure nil is not reported in the session fields (breaks XMLRPC). git-svn-id: file:///home/svn/framework3/trunk@8579 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-22 17:15:36 +00:00
Closes command and meterpreter sessions in a much more consistent way git-svn-id: file:///home/svn/framework3/trunk@8865 4d416f70-5f16-0410-b530-b9f4589650da 2010-03-21 04:24:27 +00:00			`begin`
change the timeout to something sane git-svn-id: file:///home/svn/framework3/trunk@10006 4d416f70-5f16-0410-b530-b9f4589650da 2010-08-13 17:24:59 +00:00			`{ "write_count" => cnt }`
Closes command and meterpreter sessions in a much more consistent way git-svn-id: file:///home/svn/framework3/trunk@8865 4d416f70-5f16-0410-b530-b9f4589650da 2010-03-21 04:24:27 +00:00			`rescue ::Exception => e`
			`raise ::XMLRPC::FaultException.new(500, "session disconnected: #{e.class} #{e}")`
			`end`
This patch introduces a really basic RPC service. It is still a long way from its final version git-svn-id: file:///home/svn/framework3/trunk@5991 4d416f70-5f16-0410-b530-b9f4589650da 2008-12-02 22:09:34 +00:00			`end`
Make sure nil is not reported in the session fields (breaks XMLRPC). git-svn-id: file:///home/svn/framework3/trunk@8579 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-22 17:15:36 +00:00
add initial support for interacting with meterpreter through xmlrpc git-svn-id: file:///home/svn/framework3/trunk@8606 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-23 18:07:07 +00:00			`def meterpreter_read(token, sid)`
			`authenticate(token)`
			`s = _find_session(sid)`
			`if(s.type != "meterpreter")`
			`raise ::XMLRPC::FaultException.new(403, "session is not meterpreter")`
			`end`
setup the input/output handles correctly for meterpreter sessions so we can get the output from scripts git-svn-id: file:///home/svn/framework3/trunk@8618 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-24 16:46:47 +00:00
minimize the ghettoness git-svn-id: file:///home/svn/framework3/trunk@8640 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-25 17:53:27 +00:00			`if not s.user_output.respond_to? :dump_buffer`
			`s.init_ui(nil, Rex::Ui::Text::Output::Buffer.new)`
setup the input/output handles correctly for meterpreter sessions so we can get the output from scripts git-svn-id: file:///home/svn/framework3/trunk@8618 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-24 16:46:47 +00:00			`end`

minimize the ghettoness git-svn-id: file:///home/svn/framework3/trunk@8640 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-25 17:53:27 +00:00			`data = s.user_output.dump_buffer`
log all output from sessions when reading from rpc git-svn-id: file:///home/svn/framework3/trunk@8672 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-26 21:55:30 +00:00			`# XXX Ghetto`
			`#`
			`# This should really be handled on the sessions' input/output handles`
			`# but this gets it working for right now.`
			`#`
			`if data.length > 0`
			`@framework.events.on_session_output(s, data)`
			`end`
Backwards Compatibility Broken - The session XMLRPC object now requires data for read/write to be encoded using Base64, this solves a number of issues with the builtin XMLRPC library with regards to binary data encoding. The response from read() now contains an 'encoding' element with the value 'base64', in order to differentiate from older versions. git-svn-id: file:///home/svn/framework3/trunk@8776 4d416f70-5f16-0410-b530-b9f4589650da 2010-03-11 00:55:21 +00:00			`{ "data" => Rex::Text.encode_base64(data), "encoding" => "base64" }`
add initial support for interacting with meterpreter through xmlrpc git-svn-id: file:///home/svn/framework3/trunk@8606 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-23 18:07:07 +00:00			`end`

buffer io on meterpreter commands so we can get the output git-svn-id: file:///home/svn/framework3/trunk@8614 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-23 22:39:34 +00:00			`#`
			`# Run a single meterpreter console command`
			`#`
add initial support for interacting with meterpreter through xmlrpc git-svn-id: file:///home/svn/framework3/trunk@8606 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-23 18:07:07 +00:00			`def meterpreter_write(token, sid, data)`
			`authenticate(token)`
			`s = _find_session(sid)`
			`if(s.type != "meterpreter")`
			`raise ::XMLRPC::FaultException.new(403, "session is not meterpreter")`
			`end`

minimize the ghettoness git-svn-id: file:///home/svn/framework3/trunk@8640 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-25 17:53:27 +00:00			`if not s.user_output.respond_to? :dump_buffer`
			`s.init_ui(nil, Rex::Ui::Text::Output::Buffer.new)`
add initial support for interacting with meterpreter through xmlrpc git-svn-id: file:///home/svn/framework3/trunk@8606 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-23 18:07:07 +00:00			`end`

Backwards Compatibility Broken - The session XMLRPC object now requires data for read/write to be encoded using Base64, this solves a number of issues with the builtin XMLRPC library with regards to binary data encoding. The response from read() now contains an 'encoding' element with the value 'base64', in order to differentiate from older versions. git-svn-id: file:///home/svn/framework3/trunk@8776 4d416f70-5f16-0410-b530-b9f4589650da 2010-03-11 00:55:21 +00:00			`buff = Rex::Text.decode_base64(data)`
log all output from sessions when reading from rpc git-svn-id: file:///home/svn/framework3/trunk@8672 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-26 21:55:30 +00:00			`# This is already covered by the meterpreter console's on_command_proc`
			`# so don't do it here`
Backwards Compatibility Broken - The session XMLRPC object now requires data for read/write to be encoded using Base64, this solves a number of issues with the builtin XMLRPC library with regards to binary data encoding. The response from read() now contains an 'encoding' element with the value 'base64', in order to differentiate from older versions. git-svn-id: file:///home/svn/framework3/trunk@8776 4d416f70-5f16-0410-b530-b9f4589650da 2010-03-11 00:55:21 +00:00			`#@framework.events.on_session_command(s, buff)`
log all output from sessions when reading from rpc git-svn-id: file:///home/svn/framework3/trunk@8672 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-26 21:55:30 +00:00
Backwards Compatibility Broken - The session XMLRPC object now requires data for read/write to be encoded using Base64, this solves a number of issues with the builtin XMLRPC library with regards to binary data encoding. The response from read() now contains an 'encoding' element with the value 'base64', in order to differentiate from older versions. git-svn-id: file:///home/svn/framework3/trunk@8776 4d416f70-5f16-0410-b530-b9f4589650da 2010-03-11 00:55:21 +00:00			`Thread.new { s.console.run_single(buff) }`
setup the input/output handles correctly for meterpreter sessions so we can get the output from scripts git-svn-id: file:///home/svn/framework3/trunk@8618 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-24 16:46:47 +00:00
			`{}`
add initial support for interacting with meterpreter through xmlrpc git-svn-id: file:///home/svn/framework3/trunk@8606 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-23 18:07:07 +00:00			`end`

			`def meterpreter_script(token, sid, data)`
Correct decoding git-svn-id: file:///home/svn/framework3/trunk@8847 4d416f70-5f16-0410-b530-b9f4589650da 2010-03-18 15:31:01 +00:00			`meterpreter_write(token, sid, ["run #{data}"].pack("m*"))`
add initial support for interacting with meterpreter through xmlrpc git-svn-id: file:///home/svn/framework3/trunk@8606 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-23 18:07:07 +00:00			`end`

This patch introduces a really basic RPC service. It is still a long way from its final version git-svn-id: file:///home/svn/framework3/trunk@5991 4d416f70-5f16-0410-b530-b9f4589650da 2008-12-02 22:09:34 +00:00			`protected`

			`def _find_session(sid)`
			`s = @framework.sessions[sid.to_i]`
			`if(not s)`
			`raise ::XMLRPC::FaultException.new(404, "unknown session")`
			`end`
			`s`
			`end`

			`end`
			`end`
			`end`
Make sure nil is not reported in the session fields (breaks XMLRPC). git-svn-id: file:///home/svn/framework3/trunk@8579 4d416f70-5f16-0410-b530-b9f4589650da 2010-02-22 17:15:36 +00:00