# -*- coding: binary -*- require 'msf/core' require 'msf/core/module' # # A mixin used for providing Modules with post-exploitation options and helper methods # module Msf::PostMixin include Msf::Auxiliary::Report include Msf::Module::HasActions include Msf::Post::Common def initialize(info={}) super register_options( [ Msf::OptInt.new('SESSION', [ true, "The session to run this module on." ]) ] , Msf::Post) # Default stance is active self.passive = (info['Passive'] and info['Passive'] == true) || false end # # Grabs a session object from the framework or raises {OptionValidateError} # if one doesn't exist. Initializes user input and output on the session. # # @raise [OptionValidateError] if {#session} returns nil def setup if not session raise Msf::OptionValidateError.new(["SESSION"]) end super check_for_session_readiness() if session.type == "meterpreter" @session.init_ui(self.user_input, self.user_output) @sysinfo = nil end # Meterpreter sometimes needs a little bit of extra time to # actually be responsive for post modules. Default tries # and retries for 5 seconds. def check_for_session_readiness(tries=6) session_ready_count = 0 session_ready = false until session.sys or session_ready_count > tries session_ready_count += 1 back_off_period = (session_ready_count**2)/10.0 select(nil,nil,nil,back_off_period) end session_ready = !!session.sys raise "Could not get a hold of the session." unless session_ready return session_ready end # # Default cleanup handler does nothing # def cleanup end # # Return the associated session or nil if there isn't one # # @return [Msf::Session] # @return [nil] if the id provided in the datastore does not # correspond to a session def session # Try the cached one return @session if @session and not session_changed? if datastore["SESSION"] @session = framework.sessions.get(datastore["SESSION"].to_i) else @session = nil end @session end def session_display_info "Session: #{session.sid} (#{session.session_host})" end alias :client :session # # Cached sysinfo, returns nil for non-meterpreter sessions # # @return [Hash,nil] def sysinfo begin @sysinfo ||= session.sys.config.sysinfo rescue NoMethodError @sysinfo = nil end @sysinfo end # # Can be overridden by individual modules to add new commands # def post_commands {} end # Whether this module's {Msf::Exploit::Stance} is {Msf::Exploit::Stance::Passive passive} def passive? self.passive end # # Return a (possibly empty) list of all compatible sessions # # @return [Array] def compatible_sessions sessions = [] framework.sessions.each do |sid, s| sessions << sid if session_compatible?(s) end sessions end # # Return false if the given session is not compatible with this module # # Checks the session's type against this module's # module_info["SessionTypes"] as well as examining platform # compatibility. +sess_or_sid+ can be a Session object, Fixnum, or # String. In the latter cases it should be a key in # +framework.sessions+. # # @note Because it errs on the side of compatibility, a true return # value from this method does not guarantee the module will work # with the session. # # @param sess_or_sid [Msf::Session,Fixnum,String] # A session or session ID to compare against this module for # compatibility. # def session_compatible?(sess_or_sid) # Normalize the argument to an actual Session case sess_or_sid when ::Fixnum, ::String s = framework.sessions[sess_or_sid.to_i] when ::Msf::Session s = sess_or_sid end # Can't do anything without a session return false if s.nil? # Can't be compatible if it's the wrong type if self.module_info["SessionTypes"] return false unless self.module_info["SessionTypes"].include?(s.type) end # XXX: Special-case java and php for now. This sucks and Session # should have a method to auto-detect the underlying platform of # platform-independent sessions such as these. plat = s.platform if plat =~ /php|java/ and sysinfo and sysinfo["OS"] plat = sysinfo["OS"] end # Types are okay, now check the platform. This is kind of a ghetto # workaround for session platforms being ad-hoc and Platform being # inflexible. if self.platform and self.platform.kind_of?(Msf::Module::PlatformList) [ # Add as necessary "win", "linux", "osx" ].each do |name| if plat =~ /#{name}/ p = Msf::Module::PlatformList.transform(name) return false unless self.platform.supports? p end end elsif self.platform and self.platform.kind_of?(Msf::Module::Platform) p_klass = Msf::Module::Platform case plat.downcase when /win/ return false unless self.platform.kind_of?(p_klass::Windows) when /osx/ return false unless self.platform.kind_of?(p_klass::OSX) when /linux/ return false unless self.platform.kind_of?(p_klass::Linux) end end # If we got here, we haven't found anything that definitely # disqualifies this session. Assume that means we can use it. return true end # # True when this module is passive, false when active # # @return [Boolean] # @see passive? attr_reader :passive protected attr_writer :passive def session_changed? @ds_session ||= datastore["SESSION"] if (@ds_session != datastore["SESSION"]) @ds_session = nil return true else return false end end end