Add CMDSTAGER::SSL datastore option
It has come to my attention that since I added the HTTP(S) command stagers, no one has used HTTPS. This is probably why. The CmdStager options hash takes precedence over any datastore options.GSoC/Meterpreter_Web_Console
parent
5cff330a38
commit
b4ff3b544f
|
@ -56,7 +56,8 @@ module Exploit::CmdStager
|
||||||
register_advanced_options(
|
register_advanced_options(
|
||||||
[
|
[
|
||||||
OptEnum.new('CMDSTAGER::FLAVOR', [false, 'The CMD Stager to use.', 'auto', flavors]),
|
OptEnum.new('CMDSTAGER::FLAVOR', [false, 'The CMD Stager to use.', 'auto', flavors]),
|
||||||
OptString.new('CMDSTAGER::DECODER', [false, 'The decoder stub to use.'])
|
OptString.new('CMDSTAGER::DECODER', [false, 'The decoder stub to use.']),
|
||||||
|
OptBool.new('CMDSTAGER::SSL', [false, 'Use SSL/TLS for supported stagers', false])
|
||||||
], self.class)
|
], self.class)
|
||||||
end
|
end
|
||||||
|
|
||||||
|
@ -129,6 +130,7 @@ module Exploit::CmdStager
|
||||||
self.stager_instance = create_stager
|
self.stager_instance = create_stager
|
||||||
|
|
||||||
if stager_instance.respond_to?(:http?) && stager_instance.http?
|
if stager_instance.respond_to?(:http?) && stager_instance.http?
|
||||||
|
opts[:ssl] = datastore['CMDSTAGER::SSL'] unless opts.key?(:ssl)
|
||||||
opts[:payload_uri] = start_service(opts)
|
opts[:payload_uri] = start_service(opts)
|
||||||
end
|
end
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue