dnrops
/
metasploit-framework
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Add railgun reverse lookup tests for osx and linux

This commit is contained in:
adfoster-r7 2023-06-19 16:30:26 +01:00
parent 9ef9f98894
commit c535d8081f
No known key found for this signature in database
GPG Key ID: 3BD4FA3818818F04
1 changed files with 29 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

36
test/modules/post/test/railgun_reverse_lookups.rb
View File

@ -37,22 +37,43 @@ class MetasploitModule < Msf::Post
end
#
# Return an array of windows constants names matching +winconst+
# Return an array of constants names matching const
#
def select_const_names(winconst, filter_regex = nil)
session.railgun.constant_manager.select_const_names(winconst, filter_regex)
def select_const_names(const, filter_regex = nil)
session.railgun.constant_manager.select_const_names(const, filter_regex)
end
#
# Returns an array of windows error code names for a given windows error code matching +err_code+
#
def lookup_error(err_code, filter_regex = nil)
def lookup_windows_error(err_code, filter_regex = nil)
select_const_names(err_code, /^ERROR_/).select do |name|
name =~ filter_regex
end
end
def test_static
def test_osx_static
return skip('session platform is not osx') unless session.platform == 'osx'
return skip('session does not support COMMAND_ID_STDAPI_RAILGUN_API') unless session.commands.include?(Rex::Post::Meterpreter::Extensions::Stdapi::COMMAND_ID_STDAPI_RAILGUN_API)
it "should return a constant name given a const and a filter" do
results = select_const_names(4, /^PROT/)
results == ['PROT_EXEC']
end
end
def test_linux_static
return skip('session platform is not osx') unless session.platform == 'linux'
return skip('session does not support COMMAND_ID_STDAPI_RAILGUN_API') unless session.commands.include?(Rex::Post::Meterpreter::Extensions::Stdapi::COMMAND_ID_STDAPI_RAILGUN_API)
it "should return a constant name given a const and a filter" do
results = select_const_names(277, /^SOL_I/)
results == ['SOL_IUCV']
end
end
def test_windows_static
return skip('session platform is not windows') unless session.platform == 'windows'
return skip('session does not support COMMAND_ID_STDAPI_RAILGUN_API') unless session.commands.include?(Rex::Post::Meterpreter::Extensions::Stdapi::COMMAND_ID_STDAPI_RAILGUN_API)
it "should return a constant name given a const and a filter" do
@ -76,7 +97,7 @@ class MetasploitModule < Msf::Post
it "should return an error string given an error code" do
ret = true
results = lookup_error(0x420, /^ERROR_SERVICE/)
results = lookup_windows_error(0x420, /^ERROR_SERVICE/)
ret &&= !!(results.kind_of? Array)
ret &&= !!(results.length == 1)
@ -84,7 +105,8 @@ class MetasploitModule < Msf::Post
end
end
def test_datastore
def test_windows_datastore
return skip('session platform is not windows') unless session.platform == 'windows'
return skip('session does not support COMMAND_ID_STDAPI_RAILGUN_API') unless session.commands.include?(Rex::Post::Meterpreter::Extensions::Stdapi::COMMAND_ID_STDAPI_RAILGUN_API)
if (datastore["WIN_CONST"])