infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #687 from sempervictus/net_ssh_proxies 

This commit allows ssh_login to use socks proxies.
unstable
HD Moore 2012-08-12 14:03:33 -07:00
parent 67cdea1788 3711297719
commit c071ee3d17
7 changed files with 22 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
lib/net/ssh.rb
View File

@ -72,7 +72,8 @@ module Net
:rekey_limit, :rekey_packet_limit, :timeout, :verbose, :rekey_limit, :rekey_packet_limit, :timeout, :verbose,
:global_known_hosts_file, :user_known_hosts_file, :host_key_alias, :global_known_hosts_file, :user_known_hosts_file, :host_key_alias,
:host_name, :user, :properties, :passphrase, :msframework, :msfmodule, :host_name, :user, :properties, :passphrase, :msframework, :msfmodule,
:record_auth_info, :skip_private_keys, :accepted_key_callback, :disable_agent :record_auth_info, :skip_private_keys, :accepted_key_callback, :disable_agent,
:proxies
] ]
# The standard means of starting a new SSH connection. When used with a # The standard means of starting a new SSH connection. When used with a

1
lib/net/ssh/transport/session.rb
View File

@ -74,6 +74,7 @@ module Net; module SSH; module Transport
Rex::Socket::Tcp.create( Rex::Socket::Tcp.create(
'PeerHost' => @host, 'PeerHost' => @host,
'PeerPort' => @port, 'PeerPort' => @port,
'Proxies' => options[:proxies],
'Context' => { 'Context' => {
'Msf' => options[:msframework], 'Msf' => options[:msframework],
'MsfExploit' => options[:msfmodule] 'MsfExploit' => options[:msfmodule]

9
modules/auxiliary/scanner/ssh/ssh_identify_pubkeys.rb
View File

@ -44,7 +44,8 @@ class Metasploit3 < Msf::Auxiliary
register_options( register_options(
[ [
Opt::RPORT(22), Opt::RPORT(22),
OptPath.new('KEY_FILE', [false, 'Filename of one or several cleartext public keys.']) OptPath.new('KEY_FILE', [false, 'Filename of one or several cleartext public keys.']),
Opt::Proxies
], self.class ], self.class
) )
@ -54,7 +55,8 @@ class Metasploit3 < Msf::Auxiliary
OptBool.new('SSH_BYPASS', [ false, 'Verify that authentication was not bypassed when keys are found', false]), OptBool.new('SSH_BYPASS', [ false, 'Verify that authentication was not bypassed when keys are found', false]),
OptString.new('SSH_KEYFILE_B64', [false, 'Raw data of an unencrypted SSH public key. This should be used by programmatic interfaces to this module only.', '']), OptString.new('SSH_KEYFILE_B64', [false, 'Raw data of an unencrypted SSH public key. This should be used by programmatic interfaces to this module only.', '']),
OptPath.new('KEY_DIR', [false, 'Directory of several keys. Filenames must not begin with a dot in order to be read.']), OptPath.new('KEY_DIR', [false, 'Directory of several keys. Filenames must not begin with a dot in order to be read.']),
OptInt.new('SSH_TIMEOUT', [ false, 'Specify the maximum time to negotiate a SSH session', 30]) OptInt.new('SSH_TIMEOUT', [ false, 'Specify the maximum time to negotiate a SSH session', 30]),
Opt
] ]
) )
@ -203,7 +205,8 @@ class Metasploit3 < Msf::Auxiliary
:record_auth_info => true, :record_auth_info => true,
:skip_private_keys => true, :skip_private_keys => true,
:config =>false, :config =>false,
:accepted_key_callback => Proc.new {|key| accepted << key } :accepted_key_callback => Proc.new {|key| accepted << key },
:proxies => datastore['Proxies']
} }
opt_hash.merge!(:verbose => :debug) if datastore['SSH_DEBUG'] opt_hash.merge!(:verbose => :debug) if datastore['SSH_DEBUG']

6
modules/auxiliary/scanner/ssh/ssh_login.rb
View File

@ -41,7 +41,8 @@ class Metasploit3 < Msf::Auxiliary
register_options( register_options(
[ [
Opt::RPORT(22) Opt::RPORT(22),
Opt::Proxies
], self.class ], self.class
) )
@ -70,7 +71,8 @@ class Metasploit3 < Msf::Auxiliary
:port => port, :port => port,
:disable_agent => true, :disable_agent => true,
:password => pass, :password => pass,
:config => false :config => false,
:proxies => datastore['Proxies']
} }
opt_hash.merge!(:verbose => :debug) if datastore['SSH_DEBUG'] opt_hash.merge!(:verbose => :debug) if datastore['SSH_DEBUG']

6
modules/auxiliary/scanner/ssh/ssh_login_pubkey.rb
View File

@ -47,7 +47,8 @@ class Metasploit3 < Msf::Auxiliary
register_options( register_options(
[ [
Opt::RPORT(22), Opt::RPORT(22),
OptPath.new('KEY_FILE', [false, 'Filename of one or several cleartext private keys.']) OptPath.new('KEY_FILE', [false, 'Filename of one or several cleartext private keys.']),
Opt::Proxies
], self.class ], self.class
) )
@ -179,7 +180,8 @@ class Metasploit3 < Msf::Auxiliary
:key_data => key_data, :key_data => key_data,
:disable_agent => true, :disable_agent => true,
:config => false, :config => false,
:record_auth_info => true :record_auth_info => true,
:proxies => datastore['Proxies']
} }
opt_hash.merge!(:verbose => :debug) if datastore['SSH_DEBUG'] opt_hash.merge!(:verbose => :debug) if datastore['SSH_DEBUG']
begin begin

4
modules/exploits/linux/ssh/f5_bigip_known_privkey.rb
View File

@ -52,6 +52,7 @@ class Metasploit3 < Msf::Exploit::Remote
# Since we don't include Tcp, we have to register this manually # Since we don't include Tcp, we have to register this manually
Opt::RHOST(), Opt::RHOST(),
Opt::RPORT(22), Opt::RPORT(22),
Opt::Proxies
], self.class ], self.class
) )
@ -81,7 +82,8 @@ class Metasploit3 < Msf::Exploit::Remote
:key_data => [ key_data ], :key_data => [ key_data ],
:disable_agent => true, :disable_agent => true,
:config => false, :config => false,
:record_auth_info => true :record_auth_info => true,
:proxies => datastore['Proxies']
} }
opt_hash.merge!(:verbose => :debug) if datastore['SSH_DEBUG'] opt_hash.merge!(:verbose => :debug) if datastore['SSH_DEBUG']
begin begin

3
modules/exploits/windows/ssh/sysax_ssh_username.rb
View File

@ -217,7 +217,8 @@ class Metasploit3 < Msf::Exploit::Remote
{ {
:password => pass, :password => pass,
:port => datastore['RPORT'], :port => datastore['RPORT'],
:timeout => 1 :timeout => 1,
:proxies => datastore['Proxies']
}) })
::Timeout.timeout(1) {ssh.close} rescue nil ::Timeout.timeout(1) {ssh.close} rescue nil