mirror of
https://github.com/rapid7/metasploit-framework
synced 2024-10-29 18:07:27 +01:00
Add wordlist
This commit is contained in:
parent
9df99e8ce3
commit
1342284dc9
@ -5,39 +5,22 @@ module Exploit::Remote::SMB::Client::PipeAudit
|
||||
|
||||
def initialize(info = {})
|
||||
super
|
||||
register_options(
|
||||
[
|
||||
OptPath.new('NAMED_PIPES_FILE', [ true, "List of known named pipes",
|
||||
File.join(Msf::Config.data_directory, "wordlists", "namedpipes.txt")]),
|
||||
])
|
||||
end
|
||||
|
||||
def connect_to_pipe()
|
||||
accessible_pipes||=[]
|
||||
a_pipe_handles||=[]
|
||||
target_pipes = [
|
||||
'netlogon',
|
||||
'lsarpc',
|
||||
'samr',
|
||||
'browser',
|
||||
'atsvc',
|
||||
'DAV RPC SERVICE',
|
||||
'epmapper',
|
||||
'eventlog',
|
||||
'InitShutdown',
|
||||
'keysvc',
|
||||
'lsass',
|
||||
'LSM_API_service',
|
||||
'ntsvcs',
|
||||
'plugplay',
|
||||
'protected_storage',
|
||||
'router',
|
||||
'SapiServerPipeS-1-5-5-0-70123',
|
||||
'scerpc',
|
||||
'srvsvc',
|
||||
'tapsrv',
|
||||
'trkwks',
|
||||
'W32TIME_ALT',
|
||||
'wkssvc',
|
||||
'PIPE_EVENTROOT\CIMV2SCM EVENT PROVIDER',
|
||||
'db2remotecmd'
|
||||
]
|
||||
|
||||
target_pipes = []
|
||||
pipe_file = datastore['NAMED_PIPES_FILE']
|
||||
if (!pipe_file)
|
||||
print_error("File with named pipes is needed")
|
||||
end
|
||||
File.open(pipe_file, 'rb') { |f| target_pipes += f.readlines.split("\n")[0] }
|
||||
target_pipes.each do |pipe|
|
||||
begin
|
||||
pipe_name = "#{pipe}"
|
25
lib/msf/core/exploit/smb/client/namedpipes.txt
Normal file
25
lib/msf/core/exploit/smb/client/namedpipes.txt
Normal file
@ -0,0 +1,25 @@
|
||||
netlogon
|
||||
lsarpc
|
||||
samr
|
||||
browser
|
||||
atsvc
|
||||
DAV RPC SERVICE
|
||||
epmapper
|
||||
eventlog
|
||||
InitShutdown
|
||||
keysvc
|
||||
lsass
|
||||
LSM_API_service
|
||||
ntsvcs
|
||||
plugplay
|
||||
protected_storage
|
||||
router
|
||||
SapiServerPipeS-1-5-5-0-70123
|
||||
scerpc
|
||||
srvsvc
|
||||
tapsrv
|
||||
trkwks
|
||||
W32TIME_ALT
|
||||
wkssvc
|
||||
PIPE_EVENTROOT\CIMV2SCM EVENT PROVIDER
|
||||
db2remotecmd
|
Loading…
Reference in New Issue
Block a user