1
mirror of https://github.com/rapid7/metasploit-payloads synced 2024-12-15 02:35:54 +01:00
Commit Graph

312 Commits

Author SHA1 Message Date
Spencer McIntyre
b847592cf5 Python reverse HTTPS stager 2015-03-21 12:43:14 -04:00
Brent Cook
5e547929be do not die if the uid/gid of a file is > 65535
The meterpreter stat command is a little broken in that it assumes uid/gids
16-bit. Prevent this from erroring with python meterpreter on a system with a
large uid/gid.
2015-03-20 22:34:01 -05:00
Spencer McIntyre
a8d7805644 Pymet support for creating and renaming unicode paths 2015-03-20 08:49:23 -04:00
Spencer McIntyre
bc53c1e843 Pymet improved unicode support for working directories 2015-03-19 18:31:42 -04:00
Spencer McIntyre
c521077984 Fix pymet for unicode files and directories
Closes #4958
2015-03-19 17:23:00 -04:00
Brent Cook
e507c71699 use the correct implementation for query_value_direct 2015-03-03 22:29:23 -06:00
Brent Cook
f3139b9316 add support for direct reg access to pymeterpreter
When testing this, I found that the python meterpreter hangs running the
following, with or without these changes.

```
use exploit/multi/handler
set payload python/meterpreter/reverse_tcp
set PythonMeterpreterDebug true
set lhost 192.168.43.1
exploit -j
sleep 5
use exploit/windows/local/trusted_service_path
set SESSION 1
check
```

This turned out to be that pymeterpreter ate all the rest of the data in the
recv socket by consuming 4k unconditionally. This would only be exposed if
there were multiple simultaneous requests so the recv buffer filled beyond a
single request, e.g. when using the registry enumeration functions.
2015-02-17 06:11:20 -06:00
eyalgr
eda0711014 Update meterpreter.py
Read until exactly pkt_length bytes
2015-01-18 15:45:28 +02:00
eyalgr
de666d9ade Update meterpreter.py
Read exactly pkt_length from socket, prevents over-reading.
2015-01-18 15:29:23 +02:00
Spencer McIntyre
ceb6d55837 Remove file exists check from stdapi_fs_delete_file 2014-12-09 11:03:57 -06:00
Spencer McIntyre
07f9d037ad Error messages for the python meterpreter 2014-12-09 11:03:57 -06:00
Spencer McIntyre
e9293ad4ef Fix stdapi_sys_config_getenv for Python3 2014-12-04 15:58:17 -06:00
Spencer McIntyre
f4bd471ee4 Prefer the pwd module for getuid when available 2014-12-04 15:58:17 -06:00
Spencer McIntyre
b5b1c9f832 Fix pymeterp bugs from testing in osx and python3 2014-11-17 14:04:30 -05:00
Spencer McIntyre
c91d594b73 Pymeterp http proxy and user agent support 2014-11-16 14:29:20 -05:00
Spencer McIntyre
bf55d98f32 Escape inserted vars and fix core_loadlib 2014-11-15 15:06:18 -05:00
Spencer McIntyre
5bacde2dee Patch pymeterp http settings 2014-11-14 17:12:23 -05:00
Spencer McIntyre
bdff25656f Pymet reverse_http stager basic implementation 2014-11-14 14:15:46 -05:00
Spencer McIntyre
529549d13a Prepare for a reverse_http stager 2014-11-14 11:15:22 -05:00
Spencer McIntyre
2b87421748 Don't fail if username_from_token returns None 2014-11-10 09:15:16 -05:00
Spencer McIntyre
796133af57 Add getsid to the python meterpreter 2014-11-08 20:57:24 -05:00
Spencer McIntyre
0c8babc94e Add sys_process_kill to the python meterpreter 2014-10-07 10:10:22 -04:00
Spencer McIntyre
510ef4e3ca Remove an unnecessary var and fix process_close 2014-10-02 20:52:45 -04:00
OJ
7e6ec4807f Fix up the TLVs that are now QWORD values in MSF
Various values were adjusted to become QWORD values in MSF an windows
meterpreter, but the changes were not ported over to python, php and
java. This commit fixes this inconsistency.
2014-07-07 10:42:58 -05:00
Spencer McIntyre
cd530db36b Pymeterpreter use print_exc and not print_exception 2014-06-02 16:50:54 -04:00
Spencer McIntyre
2497a0901d Pymeterpreter fix processes_via_proc for Python v3 2014-05-30 16:32:03 -04:00
Spencer McIntyre
2b810782d5 Pymeterpreter support process channels for Python v3 2014-05-30 14:35:47 -04:00
Spencer McIntyre
a68d000fa7 Pymeterpreter update win reg functions for python v3 2014-05-30 10:51:36 -04:00
Spencer McIntyre
a8fe33e977 Fix meterpreter and file tests for Python v3.4 on Win 2014-05-29 16:42:28 -04:00
Spencer McIntyre
ee45f5900b In pymeterpreter use a MeterpreterFile obj for Py v3 2014-05-29 15:09:09 -04:00
Spencer McIntyre
c58a5f3a3f Update pymeterpreter netlink to support python3 2014-05-29 13:48:15 -04:00
Spencer McIntyre
e45a54aafc Add a DEBUGGING option to the python meterpreter 2014-05-29 10:52:49 -04:00
Spencer McIntyre
55045de208 Adjust whitespace and set bytes to str for Python 2 2014-05-28 16:30:27 -04:00
Spencer McIntyre
64e37ab381 Fix a syntax error for Python 2.4 2014-03-11 15:22:52 -04:00
Spencer McIntyre
3209e81960 Merge branch 'master' into pymeterpreter-net
Conflicts:
	data/meterpreter/ext_server_stdapi.py
2014-03-11 15:15:02 -04:00
James Lee
10e17f9b94 Use older hash modules when hashlib isn't there 2014-03-11 12:25:54 -05:00
James Lee
fb5e87dc83 Derp 2014-03-10 16:30:55 -05:00
James Lee
d78326c12e Don't crash when ctypes isn't available 2014-03-10 16:10:24 -05:00
Spencer McIntyre
315ae23b56 Add interface support via OSX SystemConfiguration 2014-03-05 13:59:13 -05:00
Spencer McIntyre
dc4c7cc862 Support tcp server channels and add a python MeterpreterSocket 2014-03-04 13:31:29 -05:00
Spencer McIntyre
5a76b45525 Support retrieving interface information via GetAdaptersAddresses 2014-03-03 21:01:16 -05:00
Spencer McIntyre
b3e27d100b Add missing return statement. 2014-03-02 00:18:46 -05:00
Spencer McIntyre
2e684933ff Support retrieving interface information via windows mib functions. 2014-03-02 00:17:00 -05:00
Spencer McIntyre
7d9e9ce75f Support retrieving interface information via netlink. 2014-03-01 22:34:38 -05:00
Spencer McIntyre
541211d8a9 Add pymeterp TLV types for additional network functions. 2014-02-28 13:56:51 -05:00
Spencer McIntyre
02d0595e6d Return true in EOF when tell() > stat.st_size 2014-02-27 20:45:38 -05:00
Joe Vennix
8ab4190fc7 Oops, the default bufsize is 0 anyways. 2014-01-05 18:57:56 -06:00
Joe Vennix
50899d608d Fixes #8732 by reading until EOF reached.
* use a lambda for cleaner iterator.
* also disables buffering, since we are reading byte-by-byte in the first place
and maintaining our own buffer (#data).
2014-01-05 18:36:22 -06:00
OJ
4c1748dafd Add getenv support to python meterpreter
This change adds support for `getenv` to python meterpreter. Nothing too
complex going on here. I tidied up the definitions of the TLVs as well
so that they look nice.
2013-11-27 11:19:26 +10:00
Spencer McIntyre
f3d1df3a4e Fix an endianess issue in pymeterpreter registry_query_value. 2013-10-12 23:39:22 +01:00
Spencer McIntyre
6a2e0e4700 Add fault tolerance for resolve_hosts. 2013-10-04 08:51:13 -04:00
Spencer McIntyre
282a92b9aa Add support for stdapi_net_resolve_host. 2013-10-03 10:31:54 -04:00
Spencer McIntyre
5fd893ee19 Fix additional issues in the python meterpreter. 2013-09-10 15:06:33 -04:00
Spencer McIntyre
6d2a787699 Fixes three minor issues in the python meterpreter. 2013-08-30 15:31:40 -04:00
Spencer McIntyre
568d1f5963 Always os.fork() when available. 2013-08-28 17:19:49 -04:00
Spencer McIntyre
322e20886c Sort import statements alphabetically. 2013-08-15 09:27:13 -04:00
Spencer McIntyre
4b7cd5232b Remove debug print and fix channel additions. 2013-08-13 12:50:52 -04:00
Spencer McIntyre
bff3c62f38 Add process enumeration via PS for OSX. 2013-08-12 16:38:15 -04:00
Spencer McIntyre
5c828d01eb Improve process execution on Linux. 2013-08-09 10:39:19 -04:00
Spencer McIntyre
4a55da3cc7 Add Windows registry manipulation support. 2013-08-09 08:39:05 -04:00
Spencer McIntyre
c39f8b2de0 Add process enumeration for windows. 2013-08-06 22:33:43 -04:00
Spencer McIntyre
43e6cb22c8 Initial commit of the python meterpreter. 2013-08-05 23:38:49 -04:00