lib/msf/core/auxiliary/command_shell.rb

# -*- coding: binary -*-


module Msf

###
#
# This module provides methods for scanning modules that yield
# Command Shell sessions.
#
###

module Auxiliary::CommandShell

  include Msf::Sessions::CommandShellOptions

  #
  # Ghetto
  #
  module CRLFLineEndings
    def put(str, opts={})
      return super if not str
      super(str.strip + "\r\n", opts)
    end
    def write(str, opts={})
      return super if not str
      super(str.strip + "\r\n", opts)
    end
  end


  def start_session(obj, info, ds_merge, crlf = false, sock = nil, sess = nil)
    if crlf
      # Windows telnet server requires \r\n line endings and it doesn't
      # seem to affect anything else.
      obj.sock.extend(CRLFLineEndings)
    end

    sock ||= obj.respond_to?(:sock) ? obj.sock : nil
    sess ||= Msf::Sessions::CommandShell.new(sock)
    sess.set_from_exploit(obj)

    # Clean up the stored data
    sess.exploit_datastore.merge!(ds_merge)

    # Prevent the socket from being closed
    obj.sockets.delete(sock) if sock
    obj.sock = nil if obj.respond_to?(:sock)

    framework.sessions.register(sess)

    if sess.respond_to?(:bootstrap)
      sess.bootstrap(datastore)

      return unless sess.alive
    end
    sess.process_autoruns(datastore)
    sess.info = info unless info.blank?

    # Notify the framework that we have a new session opening up...
    # Don't let errant event handlers kill our session
    begin
      framework.events.on_session_open(sess)
    rescue ::Exception => e
      wlog("Exception in on_session_open event handler: #{e.class}: #{e}")
      wlog("Call Stack\n#{e.backtrace.join("\n")}")
    end

    sess
  end

end
end
Mark all libraries as defaulting to 8-bit strings 2012-06-29 00:18:28 -05:00			`# -- coding: binary --`
Super-duper rservices commit - 2010-11-23 01:23:24 +00:00

			`module Msf`

			`###`
			`#`
			`# This module provides methods for scanning modules that yield`
			`# Command Shell sessions.`
			`#`
			`###`

			`module Auxiliary::CommandShell`

			`include Msf::Sessions::CommandShellOptions`
Retab lib 2013-08-30 16:28:33 -05:00
Super-duper rservices commit - 2010-11-23 01:23:24 +00:00			`#`
			`# Ghetto`
			`#`
			`module CRLFLineEndings`
Make it clear that all Rex::IO::Stream implementations must accept a second parameter called opts for the read, write, and put methods 2011-05-02 21:39:09 +00:00			`def put(str, opts={})`
Super-duper rservices commit - 2010-11-23 01:23:24 +00:00			`return super if not str`
Make it clear that all Rex::IO::Stream implementations must accept a second parameter called opts for the read, write, and put methods 2011-05-02 21:39:09 +00:00			`super(str.strip + "\r\n", opts)`
Super-duper rservices commit - 2010-11-23 01:23:24 +00:00			`end`
Make it clear that all Rex::IO::Stream implementations must accept a second parameter called opts for the read, write, and put methods 2011-05-02 21:39:09 +00:00			`def write(str, opts={})`
make sure telnet sessions use crlf for write() as well as put() 2011-05-01 23:56:57 +00:00			`return super if not str`
Make it clear that all Rex::IO::Stream implementations must accept a second parameter called opts for the read, write, and put methods 2011-05-02 21:39:09 +00:00			`super(str.strip + "\r\n", opts)`
make sure telnet sessions use crlf for write() as well as put() 2011-05-01 23:56:57 +00:00			`end`
Super-duper rservices commit - 2010-11-23 01:23:24 +00:00			`end`
Retab lib 2013-08-30 16:28:33 -05:00

Update the ssh_login_pubkey module 2021-06-30 09:51:52 -04:00			`def start_session(obj, info, ds_merge, crlf = false, sock = nil, sess = nil)`
Super-duper rservices commit - 2010-11-23 01:23:24 +00:00			`if crlf`
			`# Windows telnet server requires \r\n line endings and it doesn't`
			`# seem to affect anything else.`
			`obj.sock.extend(CRLFLineEndings)`
			`end`
Retab lib 2013-08-30 16:28:33 -05:00
Delay rstream creation until the platform is known 2021-11-10 16:52:10 -05:00			`sock \|\|= obj.respond_to?(:sock) ? obj.sock : nil`
Update the ssh_login_pubkey module 2021-06-30 09:51:52 -04:00			`sess \|\|= Msf::Sessions::CommandShell.new(sock)`
Super-duper rservices commit - 2010-11-23 01:23:24 +00:00			`sess.set_from_exploit(obj)`
Retab lib 2013-08-30 16:28:33 -05:00
Super-duper rservices commit - 2010-11-23 01:23:24 +00:00			`# Clean up the stored data`
			`sess.exploit_datastore.merge!(ds_merge)`
Retab lib 2013-08-30 16:28:33 -05:00
Super-duper rservices commit - 2010-11-23 01:23:24 +00:00			`# Prevent the socket from being closed`
Delay rstream creation until the platform is known 2021-11-10 16:52:10 -05:00			`obj.sockets.delete(sock) if sock`
			`obj.sock = nil if obj.respond_to?(:sock)`
Retab lib 2013-08-30 16:28:33 -05:00
Super-duper rservices commit - 2010-11-23 01:23:24 +00:00			`framework.sessions.register(sess)`
SSH session consistency with auto-platform IDing 2021-10-22 17:24:26 -04:00
			`if sess.respond_to?(:bootstrap)`
			`sess.bootstrap(datastore)`

			`return unless sess.alive`
			`end`
Super-duper rservices commit - 2010-11-23 01:23:24 +00:00			`sess.process_autoruns(datastore)`
SSH session consistency with auto-platform IDing 2021-10-22 17:24:26 -04:00			`sess.info = info unless info.blank?`
Retab lib 2013-08-30 16:28:33 -05:00
Added string PKey support for ssh module 2021-04-07 11:59:22 -05:00			`# Notify the framework that we have a new session opening up...`
			`# Don't let errant event handlers kill our session`
			`begin`
			`framework.events.on_session_open(sess)`
			`rescue ::Exception => e`
			`wlog("Exception in on_session_open event handler: #{e.class}: #{e}")`
			`wlog("Call Stack\n#{e.backtrace.join("\n")}")`
			`end`

explicitly return the resultant session 2011-07-14 19:42:03 +00:00			`sess`
Super-duper rservices commit - 2010-11-23 01:23:24 +00:00			`end`

			`end`
			`end`