Add registry_check_key_exists for Python

2025-01-02 11:36:22 +01:00 · 2022-09-01 15:27:06 -04:00 · 2022-09-01 15:27:06 -04:00 · 56ee6899f3
commit 56ee6899f3
parent 9d11bb84b1
1 changed files with 13 additions and 2 deletions
--- a/python/meterpreter/ext_server_stdapi.py
+++ b/python/meterpreter/ext_server_stdapi.py
@ -2463,11 +2463,12 @@ def stdapi_registry_load_key(request, response):
 def _wreg_close_key(hkey):
    ctypes.windll.advapi32.RegCloseKey(hkey)

-def _wreg_open_key(request):
+def _wreg_open_key(request, permission=None):
    root_key = packet_get_tlv(request, TLV_TYPE_ROOT_KEY)['value']
    base_key = packet_get_tlv(request, TLV_TYPE_BASE_KEY)['value']
    base_key = ctypes.create_string_buffer(bytes(base_key, 'UTF-8'))
-    permission = packet_get_tlv(request, TLV_TYPE_PERMISSION).get('value', winreg.KEY_ALL_ACCESS)
+    if permission is None:
+        permission = packet_get_tlv(request, TLV_TYPE_PERMISSION).get('value', winreg.KEY_ALL_ACCESS)
    handle_id = ctypes.c_void_p()
    if ctypes.windll.advapi32.RegOpenKeyExA(root_key, ctypes.byref(base_key), 0, permission, ctypes.byref(handle_id)) != ERROR_SUCCESS:
        return error_result_windows(), 0
@ -2507,6 +2508,16 @@ def _wreg_set_value(request, response, hkey):
    result = ctypes.windll.advapi32.RegSetValueExA(hkey, ctypes.byref(value_name), 0, value_type, value_data, len(value_data))
    return result, response

+@register_function_if(has_windll)
+def stdapi_registry_check_key_exists(request, response):
+    err, hkey = _wreg_open_key(request, permission=winreg.KEY_QUERY_VALUE)
+    if err == ERROR_SUCCESS:
+        _wreg_close_key(hkey)
+        response += tlv_pack(TLV_TYPE_BOOL, True)
+    else:
+        response += tlv_pack(TLV_TYPE_BOOL, False)
+    return ERROR_SUCCESS, response
+
@register_function_if(has_windll)
 def stdapi_registry_open_key(request, response):
    err, hkey = _wreg_open_key(request)