lib/msf/core/exploit/ssh/options.rb

# -*- coding: binary -*-

require 'net/ssh'

# Include this mixin if you want just the SSH datastore options
# (e.g., when using Metasploit::Framework::LoginScanner::SSH)
module Msf::Exploit::Remote::SSH
module Options

  def initialize(info = {})
    # HACK: Suppress already initialized constant warning
    verbose, $VERBOSE = $VERBOSE, nil

    super

    register_options([Msf::Opt::RHOST, Msf::Opt::RPORT(22)])

    register_advanced_options([
      # See Msf::Ui::Console::Driver#on_variable_set
      Msf::OptString.new(
        'SSH_IDENT',
        [
         true,
         'SSH client identification string',
         'SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3' # Ubuntu 18.04 LTS
        ]
      ),
      # Ugh, why weren't these advanced options CamelCase?
      Msf::OptInt.new(
        'SSH_TIMEOUT',
        [
          false,
          'Maximum SSH negotiation/authentication time in seconds',
          10
        ]
      ),
      Msf::OptBool.new(
        'SSH_DEBUG',
        [
          false,
          'Enable output of SSH protocol debugging information',
          false
        ]
      )
    ])

    # HACK: Bypass dynamic constant assignment error
    ::Net::SSH::Transport::ServerVersion.const_set(
      :PROTO_VERSION,
      datastore['SSH_IDENT']
    )
  ensure
    # Restore warning
    $VERBOSE = verbose
  end

end
end
Add Msf::Exploit::Remote::SSH::Options 2019-06-02 17:11:37 -05:00			`# -- coding: binary --`

Actually set the client identification string 2019-06-02 19:59:06 -05:00			`require 'net/ssh'`

Add Msf::Exploit::Remote::SSH::Options 2019-06-02 17:11:37 -05:00			`# Include this mixin if you want just the SSH datastore options`
			`# (e.g., when using Metasploit::Framework::LoginScanner::SSH)`
Actually set the client identification string 2019-06-02 19:59:06 -05:00			`module Msf::Exploit::Remote::SSH`
			`module Options`
Add Msf::Exploit::Remote::SSH::Options 2019-06-02 17:11:37 -05:00
			`def initialize(info = {})`
Move warning suppression 2019-06-06 12:33:54 -05:00			`# HACK: Suppress already initialized constant warning`
			`verbose, $VERBOSE = $VERBOSE, nil`

Add Msf::Exploit::Remote::SSH::Options 2019-06-02 17:11:37 -05:00			`super`

Register RHOST(S) and RPORT in SSH mixin 2019-12-11 13:40:09 -06:00			`register_options([Msf::Opt::RHOST, Msf::Opt::RPORT(22)])`

Add Msf::Exploit::Remote::SSH::Options 2019-06-02 17:11:37 -05:00			`register_advanced_options([`
			`# See Msf::Ui::Console::Driver#on_variable_set`
			`Msf::OptString.new(`
Rename SSHVersion to SSH_IDENT for now 2019-06-02 18:26:25 -05:00			`'SSH_IDENT',`
Add Msf::Exploit::Remote::SSH::Options 2019-06-02 17:11:37 -05:00			`[`
			`true,`
			`'SSH client identification string',`
			`'SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3' # Ubuntu 18.04 LTS`
			`]`
			`),`
			`# Ugh, why weren't these advanced options CamelCase?`
			`Msf::OptInt.new(`
			`'SSH_TIMEOUT',`
			`[`
			`false,`
			`'Maximum SSH negotiation/authentication time in seconds',`
			`10`
			`]`
			`),`
			`Msf::OptBool.new(`
			`'SSH_DEBUG',`
			`[`
			`false,`
			`'Enable output of SSH protocol debugging information',`
			`false`
			`]`
			`)`
			`])`
Actually set the client identification string 2019-06-02 19:59:06 -05:00
			`# HACK: Bypass dynamic constant assignment error`
			`::Net::SSH::Transport::ServerVersion.const_set(`
			`:PROTO_VERSION,`
			`datastore['SSH_IDENT']`
			`)`
Add ensures 2019-06-03 03:51:08 -05:00			`ensure`
Add comments 2019-06-06 10:50:26 -05:00			`# Restore warning`
Actually set the client identification string 2019-06-02 19:59:06 -05:00			`$VERBOSE = verbose`
Add Msf::Exploit::Remote::SSH::Options 2019-06-02 17:11:37 -05:00			`end`

			`end`
Actually set the client identification string 2019-06-02 19:59:06 -05:00			`end`