Module: Metasploit::Model::Module::Ancestor

Extended by:

ActiveModel::Naming, ActiveSupport::Autoload, ActiveSupport::Concern

Includes:

Translation

Defined in:

lib/metasploit/model/module/ancestor.rb

Overview

Code shared between Mdm::Module::Ancestor and Metasploit::Framework::Module::Ancestor.

Defined Under Namespace

Modules: ClassMethods, Spec

Constant Summary

DIRECTORY_BY_MODULE_TYPE =

The directory for a given #module_type is a not always the pluralization of #module_type, so this maps the

module_type to the type directory that is used to generate the #real_path from the #module_type and

reference_name.

{
    Metasploit::Model::Module::Type::AUX => Metasploit::Model::Module::Type::AUX,
    Metasploit::Model::Module::Type::ENCODER => Metasploit::Model::Module::Type::ENCODER.pluralize,
    Metasploit::Model::Module::Type::EXPLOIT => Metasploit::Model::Module::Type::EXPLOIT.pluralize,
    Metasploit::Model::Module::Type::NOP => Metasploit::Model::Module::Type::NOP.pluralize,
    Metasploit::Model::Module::Type::PAYLOAD => Metasploit::Model::Module::Type::PAYLOAD.pluralize,
    Metasploit::Model::Module::Type::POST => Metasploit::Model::Module::Type::POST
}

EXTENSION =

File extension used for metasploit modules.

'.rb'

HANDLED_TYPES =

The payload types that require #handler_type.

[
    'single',
    'stager'
]

MODULE_TYPE_BY_DIRECTORY =

Maps directory to #module_type for converting a #real_path into a #module_type and #reference_name

DIRECTORY_BY_MODULE_TYPE.invert

PAYLOAD_TYPES =

Valid values for #payload_type if #payload? is true.

[
    'single',
    'stage',
    'stager'
]

REFERENCE_NAME_REGEXP =

Regexp to keep '\' out of reference names

/\A[\-0-9A-Z_a-z]+(?:\/[\-0-9A-Z_a-z]+)*\Z/

REFERENCE_NAME_SEPARATOR =

Separator used to join names in #reference_name. It is always '/', even on Windows, where '\' is a valid file separator.

'/'

SHA1_HEX_DIGEST_REGEXP =

Regular expression matching a full SHA-1 hex digest.

/\A[0-9a-z]{40}\Z/

Instance Attribute Summary

• #full_name ⇒ String

  The full name of the module.

• #handler_type ⇒ String^?

  The handler type (in the case of singles) or (in the case of stagers) the handler type alias.

• #module_type ⇒ String

  The type of the module.

• #parent_path ⇒ Metasploit::Model::Module::Path

  Path under which this ancestor exists on-disk.

• #payload_type ⇒ 'single', ...

  For payload modules, the type of payload, either 'single', 'stage', or 'stager'.

• #real_path ⇒ String

  The real (absolute) path to module file on-disk.

• #real_path_modified_at ⇒ DateTime

  The modification time of the module file on-disk.

• #real_path_sha1_hex_digest ⇒ String

  The SHA1 hexadecimal digest of contents of the file at #real_path.

• #reference_name ⇒ String

  The reference name of the module.

Instance Method Summary

• #contents ⇒ String^?

  The contents of #real_path.

• #derived_module_type ⇒ String^?

  Derives #module_type from #real_path and Path#real_path.

• #derived_payload_type ⇒ String^?

  Derives #payload_type from #reference_name.

• #derived_real_path ⇒ String^?

  Derives #real_path by combining parent_path.real_path, #module_type_directory, and #reference_path in the same way the module loader does in metasploit-framework.

• #derived_real_path_modified_at ⇒ Time^?

  Derives #real_path_modified_at by getting the modification time of the file on-disk.

• #derived_real_path_sha1_hex_digest ⇒ String^?

  Derives #real_path_sha1_hex_digest by running the contents of #real_path through Digest::SHA1.hexdigest.

• #derived_reference_name ⇒ String^?

  Derives #reference_name from #real_path and Path#real_path.

• #handled? ⇒ Boolean

  Returns whether #handler_type is required or must be nil.

• #loading_context? ⇒ true, false private

  Whether this ancestor is being validated for loading.

• #module_type_directory ⇒ String

  The directory for #module_type under parent_path.real_path.

• #payload? ⇒ true, false

  Return whether this forms part of a payload (either a single, stage, or stager).

• #payload_name ⇒ String^?

  The name used to forming the Class#reference_name for payloads.

• #payload_type_directory ⇒ String^?

  The directory for #payload_type under #module_type_directory in #real_path.

• #reference_path ⇒ String^?

  The path relative to the #module_type_directory under the parent_path.real_path, including the file extension.

• #relative_file_names ⇒ Enumerator<String>

  File names on #relative_pathname.

• #relative_pathname ⇒ Pathname

  #real_path relative to Path#real_path.

Instance Attribute Details

#full_name ⇒ String

The full name of the module. The full name is "#{module_type}/#{reference_name}".

Returns:

• (String)

# File 'lib/metasploit/model/module/ancestor.rb', line 188

#handler_type ⇒ String^?

The handler type (in the case of singles) or (in the case of stagers) the handler type alias. Handler type is appended to the end of the single's or stage's #reference_name to get the Class#reference_name.

Returns:

• (String) —

  if #handled? is true.

• (nil) —

  if #handled? is false.

# File 'lib/metasploit/model/module/ancestor.rb', line 193

#module_type ⇒ String

The type of the module. This would be called #type, but #type is reserved for ActiveRecord's single table inheritance.

Returns:

• (String) —

  key in DIRECTORY_BY_MODULE_TYPE.

# File 'lib/metasploit/model/module/ancestor.rb', line 201

#parent_path ⇒ Metasploit::Model::Module::Path

Path under which this ancestor exists on-disk.

Returns:

• (Metasploit::Model::Module::Path)

# File 'lib/metasploit/model/module/ancestor.rb', line 179

#payload_type ⇒ 'single', ...

For payload modules, the type of payload, either 'single', 'stage', or 'stager'.

Returns:

• ('single', 'stage', 'stager') —

  if Metasploit::Model::Module::Ancestor#payload? is true.

• (nil) —

  if Metasploit::Model::Module::Ancestor#payload? is false

See Also:

• PAYLOAD_TYPES

# File 'lib/metasploit/model/module/ancestor.rb', line 207

#real_path ⇒ String

The real (absolute) path to module file on-disk.

Returns:

• (String)

# File 'lib/metasploit/model/module/ancestor.rb', line 214

#real_path_modified_at ⇒ DateTime

The modification time of the module file on-disk.

Returns:

• (DateTime)

# File 'lib/metasploit/model/module/ancestor.rb', line 219

#real_path_sha1_hex_digest ⇒ String

The SHA1 hexadecimal digest of contents of the file at #real_path. Stored as a string because postgres does not have support for a 160 bit numerical type and the hexdigest format is more recognizable when using SQL directly.

Returns:

• (String)

See Also:

• Digest::SHA1#hexdigest

# File 'lib/metasploit/model/module/ancestor.rb', line 224

#reference_name ⇒ String

The reference name of the module. The name of the module under its type.

Returns:

• (String)

# File 'lib/metasploit/model/module/ancestor.rb', line 231

Instance Method Details

#contents ⇒ String^?

The contents of #real_path.

Returns:

• (String) —

  contents of file at #real_path.

• (nil) —

  if #real_path is nil.

• (nil) —

  if #real_path does not exist on-disk.

# File 'lib/metasploit/model/module/ancestor.rb', line 245

def contents
  contents = nil

  if real_path
    # rescue around both File calls since file could be deleted before size or after size and before read
    begin
      size = File.size(real_path)
      # Specify full size of file for faster read on Windows (less chance of context switching mid-read).
      # Open in binary mode in Windows to handle non-text content embedded in file.
      contents = File.read(real_path, size, 0, mode: 'rb')
    rescue Errno::ENOENT
      contents = nil
    end
  end

  contents
end

#derived_module_type ⇒ String^?

Derives #module_type from #real_path and Path#real_path.

Returns:

• (String)
• (nil) —

  if #real_path is nil

• (nil) —

  if #relative_file_names does not start with a module type directory.

# File 'lib/metasploit/model/module/ancestor.rb', line 268

def derived_module_type
  module_type_directory = relative_file_names.first
  derived = MODULE_TYPE_BY_DIRECTORY[module_type_directory]

  derived
end

#derived_payload_type ⇒ String^?

Derives #payload_type from #reference_name.

Returns:

• (String)
• (nil) —

  if #payload_type_directory is nil

# File 'lib/metasploit/model/module/ancestor.rb', line 279

def derived_payload_type
  derived = nil
  directory = payload_type_directory

  if directory
    derived = directory.singularize
  end

  derived
end

#derived_real_path ⇒ String^?

Derives #real_path by combining parent_path.real_path, #module_type_directory, and #reference_path in the same way the module loader does in metasploit-framework.

Returns:

• (String) —

  the real path to the file holding the ruby Module or ruby Class represented by this ancestor.

• (nil) —

  if #parent_path is nil.

• (nil) —

  if parent_path.real_path is nil.

• (nil) —

  if #module_type_directory is nil.

• (nil) —

  if #reference_name is nil.

# File 'lib/metasploit/model/module/ancestor.rb', line 299

def derived_real_path
  derived_real_path = nil

  if parent_path and parent_path.real_path and module_type_directory and reference_path
    derived_real_path = File.join(
        parent_path.real_path,
        module_type_directory,
        reference_path
    )
  end

  derived_real_path
end

#derived_real_path_modified_at ⇒ Time^?

Derives #real_path_modified_at by getting the modification time of the file on-disk.

Returns:

• (Time) —

  modification time of #real_path if #real_path exists on disk and modification time can be queried by user.

• (nil) —

  if #real_path does not exist or user cannot query the file's modification time.

# File 'lib/metasploit/model/module/ancestor.rb', line 318

def derived_real_path_modified_at
  real_path_string = real_path.to_s

  begin
    mtime = File.mtime(real_path_string)
  rescue Errno::ENOENT
    nil
  else
    mtime.utc
  end
end

#derived_real_path_sha1_hex_digest ⇒ String^?

Derives #real_path_sha1_hex_digest by running the contents of #real_path through Digest::SHA1.hexdigest.

Returns:

• (String) —

  40 character SHA1 hex digest if #real_path can be read.

• (nil) —

  if #real_path cannot be read.

# File 'lib/metasploit/model/module/ancestor.rb', line 334

def derived_real_path_sha1_hex_digest
  begin
    sha1 = Digest::SHA1.file(real_path.to_s)
  rescue Errno::ENOENT
    hex_digest = nil
  else
    hex_digest = sha1.hexdigest
  end

  hex_digest
end

#derived_reference_name ⇒ String^?

Derives #reference_name from #real_path and Path#real_path.

Returns:

• (String)
• (nil) —

  if #real_path is nil.

# File 'lib/metasploit/model/module/ancestor.rb', line 350

def derived_reference_name
  derived = nil
  reference_name_file_names = relative_file_names.drop(1)
  reference_name_base_name = reference_name_file_names[-1]

  if reference_name_base_name
    if File.extname(reference_name_base_name) == EXTENSION
      reference_name_file_names[-1] = File.basename(reference_name_base_name, EXTENSION)
      derived = reference_name_file_names.join(REFERENCE_NAME_SEPARATOR)
    end
  end

  derived
end

#handled? ⇒ Boolean

Returns whether #handler_type is required or must be nil.

Returns:

• (Boolean)

See Also:

• #handled?

# File 'lib/metasploit/model/module/ancestor.rb', line 369

def handled?
  self.class.handled?(
      :module_type => module_type,
      :payload_type => payload_type
  )
end

#loading_context? ⇒ true, false (private)

Whether this ancestor is being validated for loading.

Returns:

• (true) —

  if #validation_context is :loading

• (false) —

  otherwise

# File 'lib/metasploit/model/module/ancestor.rb', line 494

def loading_context?
  validation_context == :loading
end

#module_type_directory ⇒ String

The directory for #module_type under parent_path.real_path.

Returns:

• (String)

See Also:

• DIRECTORY_BY_MODULE_TYPE

# File 'lib/metasploit/model/module/ancestor.rb', line 380

def module_type_directory
  Metasploit::Model::Module::Ancestor::DIRECTORY_BY_MODULE_TYPE[module_type]
end

#payload? ⇒ true, false

Return whether this forms part of a payload (either a single, stage, or stager).

Returns:

• (true) —

  if #module_type == 'payload'

• (false) —

  if #module_type != 'payload'

# File 'lib/metasploit/model/module/ancestor.rb', line 388

def payload?
  if module_type == Metasploit::Model::Module::Type::PAYLOAD
    true
  else
    false
  end
end

#payload_name ⇒ String^?

The name used to forming the Class#reference_name for payloads.

Returns:

• (String) —

  The #reference_name without the #payload_type_directory if #payload_type is 'single' or 'stage'

• (String) —

  The #handler_type if #payload_type is 'stager'

• (nil) —

  if #module_type is not 'payload'

# File 'lib/metasploit/model/module/ancestor.rb', line 402

def payload_name
  payload_name = nil

  if module_type == Metasploit::Model::Module::Type::PAYLOAD
    case payload_type
      when 'single', 'stage'
        if reference_name && payload_type_directory
          escaped_payload_type_directory = Regexp.escape(payload_type_directory)
          payload_type_directory_regexp = /^#{escaped_payload_type_directory}\//
          payload_name = reference_name.gsub(payload_type_directory_regexp, '')
        end
      when 'stager'
        payload_name = handler_type
    end
  end

  payload_name
end

#payload_type_directory ⇒ String^?

The directory for #payload_type under #module_type_directory in #real_path.

Returns:

• (String) —

  first directory in reference_name

• (nil) —

  if #payload? is false.

• (nil) —

  if #reference_name is nil.

# File 'lib/metasploit/model/module/ancestor.rb', line 426

def payload_type_directory
  directory = nil

  if payload? and reference_name
    head, _tail = reference_name.split(REFERENCE_NAME_SEPARATOR, 2)
    directory = head
  end

  directory
end

#reference_path ⇒ String^?

The path relative to the #module_type_directory under the parent_path.real_path, including the file extension.

Returns:

• (String) —

  #reference_name + EXTENSION

• (nil) —

  if #reference_name is nil.

# File 'lib/metasploit/model/module/ancestor.rb', line 478

def reference_path
  path = nil

  if reference_name
    path = "#{reference_name}#{EXTENSION}"
  end

  path
end

#relative_file_names ⇒ Enumerator<String>

File names on #relative_pathname.

Returns:

• (Enumerator<String>)

# File 'lib/metasploit/model/module/ancestor.rb', line 440

def relative_file_names
  relative_pathname = self.relative_pathname

  if relative_pathname
    relative_pathname.each_filename
  else
    # empty enumerator
    Enumerator.new { }
  end
end

#relative_pathname ⇒ Pathname

#real_path relative to Path#real_path

Returns:

• (Pathname)

# File 'lib/metasploit/model/module/ancestor.rb', line 454

def relative_pathname
  relative_pathname = nil
  real_pathname = self.real_pathname

  if real_pathname
    parent_path = self.parent_path

    if parent_path
      parent_path_real_pathname = parent_path.real_pathname

      if parent_path_real_pathname
        relative_pathname = real_pathname.relative_path_from parent_path_real_pathname
      end
    end
  end

  relative_pathname
end