CoCalc provides the best real-time collaborative environment for Jupyter Notebooks, LaTeX documents, and SageMath, scalable from individual users to large groups and classes!
CoCalc provides the best real-time collaborative environment for Jupyter Notebooks, LaTeX documents, and SageMath, scalable from individual users to large groups and classes!
Path: blob/master/spec/file_fixtures/modules/exploits/auto_target_linux.rb
Views: 1904
1class MetasploitModule < Msf::Exploit::Remote2include Exploit::Remote::Tcp3Rank = ManualRanking45def initialize(info = {})6super(update_info(info,7'Name' => 'Exploit Auto-Targeting for Linux',8'Description' => %q{ This module is a test bed for automatic targeting for Linux exploits. },9'Author' => [ 'thelightcosine' ],10'License' => MSF_LICENSE,11'Privileged' => true,12'DefaultOptions' =>13{14'WfsDelay' => 10,15'EXITFUNC' => 'thread'16},17'Payload' =>18{19'Space' => 3072,20'DisableNops' => true21},22'Platform' => 'linux',23'Arch' => [ARCH_X86, ARCH_X64],24'Targets' =>25[26['Linux Heap Brute Force (Debian/Ubuntu)',27{28'Platform' => 'linux',29'Arch' => [ ARCH_X86 ],30'Nops' => 64*1024,31'Bruteforce' =>32{33'Start' => { 'Ret' => 0x08352000 },34'Stop' => { 'Ret' => 0x0843d000 },35'Step' => 60*1024,3637}38}39],4041['Linux Heap Brute Force (Gentoo)',42{43'Platform' => 'linux',44'Arch' => [ ARCH_X86 ],45'Nops' => 64*1024,46'Bruteforce' =>47{48'Start' => { 'Ret' => 0x80310000 },49'Stop' => { 'Ret' => 0x8042f000 },50'Step' => 60*1024,5152}53}54],55565758['Linux Heap Brute Force (Mandriva)',59{60'Platform' => 'linux',61'Arch' => [ ARCH_X86 ],62'Nops' => 64*1024,63'Bruteforce' =>64{65'Start' => { 'Ret' => 0x80380000 },66'Stop' => { 'Ret' => 0x8045b000 },67'Step' => 60*1024,6869}70}71],7273['Linux Heap Brute Force (RHEL/CentOS)',74{75'Platform' => 'linux',76'Arch' => [ ARCH_X86 ],77'Nops' => 64*1024,78'Bruteforce' =>79{80'Start' => { 'Ret' => 0xb800f000 },81'Stop' => { 'Ret' => 0xb80c9000 },82'Step' => 60*1024,8384}85}86],8788['Linux Heap Brute Force (SUSE)',89{90'Platform' => 'linux',91'Arch' => [ ARCH_X86 ],92'Nops' => 64*1024,93'Bruteforce' =>94{95'Start' => { 'Ret' => 0x80365000 },96'Stop' => { 'Ret' => 0x80424000 },97'Step' => 60*1024,9899}100}101],102103['Linux Heap Brute Force (Slackware)',104{105'Platform' => 'linux',106'Arch' => [ ARCH_X86 ],107'Nops' => 64*1024,108'Bruteforce' =>109{110'Start' => { 'Ret' => 0x8033c000 },111'Stop' => { 'Ret' => 0x80412000 },112'Step' => 60*1024,113114}115}116],117118['Linux Heap Brute Force (OpenWRT MIPS)',119{120'Platform' => 'linux',121'Arch' => [ ARCH_MIPSBE ],122'Nops' => 64*1024,123'Bruteforce' =>124{125'Start' => { 'Ret' => 0x55900000 },126'Stop' => { 'Ret' => 0x559c0000 },127'Step' => 60*1024,128}129}130]131],132'DisclosureDate' => '1999-01-01'133))134end135136def exploit137print_status("This exploit doesn't actually do anything")138print_status "Target Selected: #{target.name}"139end140141142end143144