1
mirror of https://github.com/rapid7/metasploit-payloads synced 2024-12-21 05:35:54 +01:00
Commit Graph

804 Commits

Author SHA1 Message Date
Brent Cook
95e102a90c cast size_t on read/write to proper result for the TLV 2015-03-17 15:27:48 -05:00
Brent Cook
7c8b723c15 convert windows filesystem operations to unicode 2015-03-17 14:32:20 -05:00
Brent Cook
f0eac5877a Refactor filesystem operations
Separate the stdapi handling code from the OS-dependent code. This makes
testing and maintaining the code easier.

This also happens to fix a number of bugs as a side-effect, because it is
clearer what is happening now.
2015-03-17 14:32:20 -05:00
OJ
aab29f8605 Land #129 : real_printf rework 2015-02-26 07:21:57 +10:00
Brent Cook
a4f81a51b5 make real_dprintf available even if DEBUGTRACE is not set
By making this a static _inline, it is not necessary to guard it, since
an inline is only instantiated if it is used. This also allows adding
one-off debug message for use during debugging sessions, without turning
on DEBUGTRACE all over the place.

Convert a few of the extensions to also do this as well, making them perhaps
slightly smaller.

I am curious why Windows builds define debug this way, vs posix that
just includes it in common.c. Could I just do that instead, assuming
there's no historical reason.

Finally, correct the docs in the posix version of real_dprintf.
2015-02-25 13:03:18 -06:00
William Vu
8906b29559 Land #128, rm dup OpenSSL headers 2015-02-25 12:41:16 -06:00
Brent Cook
d4f1af0900 remove duplicate openssl headers
prepping for an upgrade later, this just cleans up some unused headers
2015-02-25 12:18:45 -06:00
Brent Cook
4ad58d65b4 Land #127 - @wvu-r7 adds per-process arch detection to ps on linux 2015-02-12 13:35:23 -06:00
William Vu
c1e3616a20 Land wvu-r7#1, fopen() permission denied fix
That damn continue.
2015-02-12 13:07:00 -06:00
Brent Cook
38c9460ba4 enumerate all processes even if we cannot read the executable type 2015-02-12 10:54:44 -06:00
William Vu
eb3b163951 Add arch to Linux ps
Uses /proc/<PID>/exe and e_ident[EI_CLASS].
2015-02-12 08:15:58 -06:00
OJ
a657db41fc Land #124 - Unify Windows and POSIX scheduler 2015-02-09 20:58:23 +10:00
Rich Whitcroft
c9cb640612 add path to new scheduler.c location 2015-02-06 13:44:07 -05:00
Rich Whitcroft
8435383cc3 updated VS2013 configs 2015-02-06 13:33:36 -05:00
Rich Whitcroft
d7e54b2dad merge windows and posix scheduler.c into one source file 2015-02-06 10:02:05 -08:00
Brent Cook
1256cacca3 Land #121, OJ's fix for double-starting the clipboard monitor 2015-01-30 16:52:33 -06:00
OJ
5e0fbedd30 Make state destruction set pointers to NULL 2015-01-31 08:23:54 +10:00
OJ
c9d9e5978c Fix issue with double-start of clipboard
If a user attempts to start the clipboard monitor when it is already started then the code path that is taken results in the current clipboard monitor state pointers being lost. The net effect of this is that the existing monitor thread will never be shut down. Not a good thing!

This code fixes that case so that the monitor doesn't create a new monitor thread and doesn't reset important pointers to NULL.

This change also results in a "success" status being returned to the caller. This means it looks like the clipboard monitor has been started even if it was already running. I think this is acceptable and is better than an obscure error.
2015-01-31 07:00:06 +10:00
OJ
237897c218 Land #117 - handle zero-byte reads and writes gracefully 2015-01-28 19:47:53 +10:00
Brent Cook
6299e2de5b handle zero-byte reads and writes gracefully
Otherwise, doing an empty file open, like:

  ::File.open(local_file_name, "")

or write_file("meterpreter-test", "") in test/modules/post/test/file.rb
fails

Before:
```
$ touch hello
$ ./msfconsole -q
msf > use exploit/multi/handler
msf exploit(handler) > set payload windows/meterpreter/reverse_tcp
payload => windows/meterpreter/reverse_tcp
msf exploit(handler) > set lhost 192.168.56.1
lhost => 192.168.56.1
msf exploit(handler) > run

[*] Started reverse handler on 192.168.56.1:4444
[*] Starting the payload handler...
[*] Sending stage (787456 bytes) to 192.168.56.1
[*] Meterpreter session 1 opened (192.168.56.1:4444 ->
192.168.56.1:55621) at 2015-01-27 11:23:09 -0600

meterpreter > upload hello
[-] Error running command upload: Errno::ENOENT No such file or
directory @ rb_file_s_stat - hello
meterpreter > upload hello
[*] uploading  : hello -> hello
[-] core_channel_write: Operation failed: The parameter is incorrect.
```

After:
```
msf > use exploit/multi/handler
msf exploit(handler) > set payload windows/meterpreter/reverse_tcp
payload => windows/meterpreter/reverse_tcp
msf exploit(handler) > set lhost 192.168.56.1
lhost => 192.168.56.1
msf exploit(handler) > run

[*] Started reverse handler on 192.168.56.1:4444
[*] Starting the payload handler...
[*] Sending stage (770048 bytes) to 192.168.56.10
[*] Meterpreter session 1 opened (192.168.56.1:4444 ->
192.168.56.10:49833) at 2015-01-27 11:26:03 -0600

meterpreter > upload hello
[*] uploading  : hello -> hello
[*] uploaded   : hello -> hello
```
2015-01-27 11:24:21 -06:00
jvazquez-r7
6445556e14 Land #116, @bcook-r7's support for building on newer linux distros 2015-01-16 16:51:53 -06:00
Brent Cook
99cf4da2d4 be more clever about cleanup by not making a mess 2015-01-13 17:24:05 -06:00
Brent Cook
33def7654a do a little dance around older compilers 2015-01-13 17:21:43 -06:00
Brent Cook
0d59fc7447 support building on newer Linux systems and Makefile cleanups
- try to share some bits between different makefiles, make modifying
   global compiler flags not such a huge pain.
 - directly specify we should be using the gold rather than bpf linker
 - make compiler output largely quiet except where we care - allow
   warnings to actually be visible
 - don't delete downloaded tarballs with --really-clean
 - add missing dependencies between libraries
   (--no-add-needed/--no-copy-dt-needed-entries causes lots of trouble)
 - update readme to show what to install to build

I made minimal changes to the loader makefile - it breaks easily.
 -Os prevents if from being able to load libc, for instance
2015-01-13 16:33:56 -06:00
Tod Beardsley
74cb136099 Land #107, add direct access reg methods 2015-01-07 14:56:12 -06:00
Tod Beardsley
c0b92acda6 Fix the chmod 2015-01-07 14:55:20 -06:00
Tod Beardsley
43ce54e6af Undo the 755 mode change 2015-01-07 14:32:57 -06:00
Tod Beardsley
daaacc4b06 Land #112, path-checking fix 2015-01-07 14:26:35 -06:00
Brent Cook
b7f149c17d fix the check path for PSSDK
Sometimes, @ECHO ON is just what you need :)

This allows building PSSDK as part of the rapid7/meterpreter_bins#11 issue.
2015-01-05 14:54:57 -06:00
Brent Cook
99a190ddfe Land #111, @jvazquez-r7's Linux migration reliability fixes 2015-01-03 12:52:05 -06:00
jvazquez-r7
775d94cb65 Do minor cleanup 2015-01-02 19:09:43 -06:00
jvazquez-r7
cdae73a282 Fix accept call 2015-01-02 19:06:19 -06:00
jvazquez-r7
15be560e7b Merge branch fixing memory patching 2015-01-02 19:03:47 -06:00
jvazquez-r7
a87ef6fcd7 nonblock 2015-01-02 18:48:14 -06:00
jvazquez-r7
58238efcbb Looks like fixed :-) 2015-01-02 18:21:46 -06:00
jvazquez-r7
10ed187016 Add semicolon 2015-01-02 16:27:08 -06:00
jvazquez-r7
63e993c735 Create new code memory 2015-01-02 12:48:00 -06:00
jvazquez-r7
79692d5986 Fix stub sizes 2015-01-02 09:47:43 -06:00
jvazquez-r7
86fc7889ed Fix strncpy check 2015-01-02 09:42:44 -06:00
OJ
2d553497d5 Land #109 - Fix linux meterpreter 2015-01-02 11:50:44 +10:00
jvazquez-r7
22975bd716 Require getsid only on windows 2015-01-01 19:04:10 -06:00
jvazquez-r7
cd65086096 Ignore CLion files 2015-01-01 19:02:57 -06:00
Brent Cook
9f91b5a921 Land #93, @jvazquez-r7's linux meterpreter process migration
Tested on Ubuntu 14.04 with 32-bit processes, with and without ptrace
protections enabled.
2014-12-30 17:27:15 -06:00
Brent Cook
a9cab9f8c6 fix whitespace consistency 2014-12-30 17:26:05 -06:00
Tod Beardsley
d17da93c2d Land #106, invert FS function check 2014-12-23 14:16:20 -06:00
Tod Beardsley
d3ef475b58 Land #105, allow for symlinks 2014-12-23 12:31:30 -06:00
Brent Cook
0f2dcf50d0 add direct access registry methods
This adds registry access methods that do an atomic open/<action>/close on
registry keys. They improve efficiency and safety, since we're not passing
HKEY's back and forth to enumerate or read registry keys. This fits the common
use pattern in MSF better anyway.
2014-12-16 15:31:11 -06:00
Brent Cook
405d55f8c9 invert error check for POSIX filesytem functions
Fixes #104
2014-12-16 15:11:27 -06:00
Brent Cook
db4ad41512 allow build_tmp to be a symlink
Remove assumption of relative paths to allow build_tmp to be a symlink.
This fixes builds when the working directory is a vmware share.
2014-12-16 12:01:01 -06:00
Brent Cook
1c32b76286 Land #82, OJ's Group TLV refactoring 2014-12-11 10:47:05 -06:00