msf recommended changes + tweaked exception handling

2014-02-19 22:20:24 +00:00 · 2014-02-19 22:20:24 +00:00 · c62fa83a70
parent 4b247e2b9f
commit c62fa83a70
1 changed files with 39 additions and 35 deletions
--- a/modules/auxiliary/admin/smb/check_dir_file.rb
+++ b/modules/auxiliary/admin/smb/check_dir_file.rb
@ -11,6 +11,7 @@ class Metasploit3 < Msf::Auxiliary

  # Exploit mixins should be called first
  include Msf::Exploit::Remote::SMB
+  include Msf::Exploit::Remote::SMB::Authenticated
  include Msf::Auxiliary::Scanner
  include Msf::Auxiliary::Report

@ -42,11 +43,7 @@ class Metasploit3 < Msf::Auxiliary
    )

    register_options([
-      OptString.new('SMBSHARE', [true, 'The name of an accessible share on the server', 'C$']),
      OptString.new('RPATH', [true, 'The name of the remote file/directory relative to the share']),
-      OptString.new('SMBUser', [false, 'Username to connect with']),
-      OptString.new('SMBPass', [false, 'Password to use']),
-      OptString.new('SMBDomain', [false, 'Domain'])
    ], self.class)

  end
@ -55,45 +52,52 @@ class Metasploit3 < Msf::Auxiliary

    vprint_status("Connecting to the server...")

-    connect()
-    smb_login()
+    begin
+      connect()
+      smb_login()

-    vprint_status("Mounting the remote share \\\\#{datastore['RHOST']}\\#{datastore['SMBSHARE']}'...")
-    self.simple.connect("\\\\#{rhost}\\#{datastore['SMBSHARE']}")
+      vprint_status("Mounting the remote share \\\\#{datastore['RHOST']}\\#{datastore['SMBSHARE']}'...")
+      self.simple.connect("\\\\#{rhost}\\#{datastore['SMBSHARE']}")
+      vprint_status("Checking for file/folder #{datastore['RPATH']}...")

-    vprint_status("Checking for file/folder #{datastore['RPATH']}...")
+      datastore['RPATH'].each_line do |path|

-    datastore['RPATH'].each_line do |path|
-      begin
+        begin
+  
+          if (fd = simple.open("\\#{path.chomp}", 'o')) # mode is open only - do not create/append/write etc
+            print_good("File FOUND: \\\\#{rhost}\\#{datastore['SMBSHARE']}\\#{path}")
+            fd.close
+          end

-      if (fd = simple.open("\\#{path.chomp}", 'o')) # mode is open only - do not create/append/write etc
-        print_good("File FOUND: \\\\#{rhost}\\#{datastore['SMBSHARE']}\\#{path}")
-        fd.close
-      end
+        rescue ::Rex::Proto::SMB::Exceptions::ErrorCode => e
+          case e.get_error(e.error_code)
+          when "STATUS_FILE_IS_A_DIRECTORY"
+            print_good("Directory FOUND: \\\\#{rhost}\\#{datastore['SMBSHARE']}\\#{path}")
+          when "STATUS_OBJECT_NAME_NOT_FOUND"
+            vprint_error("Object \\\\#{rhost}\\#{datastore['SMBSHARE']}\\#{path} NOT found!")
+          when "STATUS_OBJECT_PATH_NOT_FOUND"
+            vprint_error("Object PATH \\\\#{rhost}\\#{datastore['SMBSHARE']}\\#{path} NOT found!")
+          when "STATUS_ACCESS_DENIED"
+            vprint_error("Host #{rhost} reports access denied.")
+          when "STATUS_BAD_NETWORK_NAME"
+            vprint_error("Host #{rhost} is NOT connected to #{datastore['SMBDomain']}!")
+          when "STATUS_INSUFF_SERVER_RESOURCES"
+            vprint_error("Host #{rhost} rejected with insufficient resources!")
+          when "STATUS_OBJECT_NAME_INVALID"
+            vprint_error("opeining \\#{path} bad filename")
+          else
+            raise e
+          end
+        end
+      end #end do

      rescue ::Rex::HostUnreachable
        vprint_error("Host #{rhost} offline.")
      rescue ::Rex::Proto::SMB::Exceptions::LoginError
-        vprint_error("Host #{rhost} login error.")
-      rescue ::Rex::Proto::SMB::Exceptions::ErrorCode => e
-        if e.get_error(e.error_code) == "STATUS_FILE_IS_A_DIRECTORY"
-          print_good("Directory FOUND: \\\\#{rhost}\\#{datastore['SMBSHARE']}\\#{path}")
-        elsif e.get_error(e.error_code) == "STATUS_OBJECT_NAME_NOT_FOUND"
-          vprint_error("Object \\\\#{rhost}\\#{datastore['SMBSHARE']}\\#{path} NOT found!")
-        elsif e.get_error(e.error_code) == "STATUS_OBJECT_PATH_NOT_FOUND"
-          vprint_error("Object PATH \\\\#{rhost}\\#{datastore['SMBSHARE']}\\#{path} NOT found!")
-        elsif e.get_error(e.error_code) == "STATUS_ACCESS_DENIED"
-          vprint_error("Host #{rhost} reports access denied.")
-        elsif e.get_error(e.error_code) == "STATUS_BAD_NETWORK_NAME"
-          vprint_error("Host #{rhost} is NOT connected to #{datastore['SMBDomain']}!")
-        elsif e.get_error(e.error_code) == "STATUS_INSUFF_SERVER_RESOURCES"
-          vprint_error("Host #{rhost} rejected with insufficient resources!")
-        elsif e.get_error(e.error_code) == "STATUS_OBJECT_NAME_INVALID"
-          vprint_error("opeining \\#{path} bad filename")
-        else
-          raise e
-        end
-      end # end do
+        print_error("Host #{rhost} login error.")
+      rescue ::Rex::ConnectionRefused 
+        print_error "Host #{rhost} unable to connect - connection refused" 
+
    end # end begin
  end # end def
 end