move module template to an ERB

Author: Brent Cook

lib/msf/core/modules/external/remote_exploit_cmd_stager.erb

@@ -0,0 +1,75 @@
+require 'msf/core/modules/external/bridge'
+
+class MetasploitModule < Msf::Exploit::Remote
+  Rank = ExcellentRanking
+
+  include Msf::Exploit::CmdStager
+
+  def initialize(info = {})
+    super(update_info(info,
+      'Name'        => <%= meta[:name] %>,
+      'Description' => <%= meta[:description] %>,
+      'Author'      =>
+        [
+          <%= meta[:authors] %>
+        ],
+      'License'     => MSF_LICENSE,
+      'References'  =>
+        [
+          <%= meta[:references] %>
+        ],
+      'DisclosureDate' => <%= meta[:date] %>,
+      'Privileged'     => <%= meta[:privileged] %>,
+      'Platform'       => [<%= meta[:platform] %>],
+      'Payload'        =>
+        {
+          'DisableNops' => true
+        },
+      'Targets'        =>
+        [
+          <%= meta[:targets] %>
+        ],
+      'DefaultTarget'  => 0,
+      'DefaultOptions' => { 'WfsDelay' => <%= meta[:delay] %> }
+      ))
+
+      register_options([
+        <%= meta[:options] %>
+      ], self.class)
+  end
+
+  def execute_command(cmd, opts)
+    mod = Msf::Modules::External::Bridge.open(<%= meta[:path] %>)
+    mod.run(datastore.merge(command: cmd))
+    wait_status(mod)
+    true
+  end
+
+  def exploit
+    print_status("Exploiting...")
+    execute_cmdstager({:flavor  => :wget})
+  end
+
+  def wait_status(mod)
+    while mod.running
+      m = mod.get_status
+      if m
+        case m['level']
+        when 'error'
+          print_error m['message']
+        when 'warning'
+          print_warning m['message']
+        when 'good'
+          print_good m['message']
+        when 'info'
+          print_status m['message']
+        when 'debug'
+          vprint_status m['message']
+        else
+          print_status m['message']
+        end
+      end
+    end
+  end
+end
+

lib/msf/core/modules/external/shim.rb

@@ -12,90 +12,39 @@ def self.generate(module_path)
     end
   end
 
-  def self.remote_exploit_cmd_stager(mod)
-    %Q|
-require 'msf/core/modules/external/bridge'
-
-class MetasploitModule < Msf::Exploit::Remote
-  Rank = ExcellentRanking
-
-  include Msf::Exploit::CmdStager
-
-  def initialize(info = {})
-    super(update_info(info,
-      'Name'        => #{mod.meta['name'].dump},
-      'Description' => #{mod.meta['description'].dump},
-      'Author'      =>
-        [
-          #{mod.meta['authors'].map(&:dump).join(', ')}
-        ],
-      'License'     => MSF_LICENSE,
-      'References'  =>
-        [
-          #{mod.meta['references'].map do |r|
-              "[#{r['type'].upcase.dump}, #{r['ref'].dump}]"
-            end.join(', ')}
-        ],
-      'DisclosureDate' => #{mod.meta['date'].dump},
-      'Privileged'     => #{mod.meta['privileged'].inspect},
-      'Platform'       => [#{mod.meta['targets'].map{|t| t['platform'].dump}.uniq.join(', ')}],
-      'Payload'        =>
-        {
-          'DisableNops' => true
-        },
-      'Targets'        =>
-        [
-          #{mod.meta['targets'].map do |t|
-            %Q^[#{t['platform'].dump} + ' ' + #{t['arch'].dump},
-                 {'Arch' => ARCH_#{t['arch'].upcase}, 'Platform' => #{t['platform'].dump} }]^
-            end.join(', ')}
-        ],
-      'DefaultTarget'   => 0,
-      'DefaultOptions' => { 'WfsDelay' => 5 }
-      ))
-
-      register_options([
-        #{mod.meta['options'].map do |n, o|
-            "Opt#{o['type'].capitalize}.new(#{n.dump},
-              [#{o['required']}, #{o['description'].dump}, #{o['default'].inspect}])"
-          end.join(', ')}
-      ], self.class)
+  def self.mod_meta_common(mod, meta = {})
+    meta[:path]        = mod.path.dump
+    meta[:name]        = mod.meta['name'].dump
+    meta[:description] = mod.meta['description'].dump.strip
+    meta[:authors]     = mod.meta['authors'].map(&:dump).join(",\n          ")
+    meta[:date]        = mod.meta['date'].dump
+    meta[:references]  = mod.meta['references'].map do |r|
+      "[#{r['type'].upcase.dump}, #{r['ref'].dump}]"
+    end.join(",\n          ")
+    meta[:options]     = mod.meta['options'].map do |n, o|
+      "Opt#{o['type'].capitalize}.new(#{n.dump},
+        [#{o['required']}, #{o['description'].dump}, #{o['default'].inspect}])"
+    end.join(",\n          ")
+    meta
   end
 
-  def execute_command(cmd, opts)
-    mod = Msf::Modules::External::Bridge.open(#{mod.path.dump})
-    mod.run(datastore.merge(command: cmd))
-    wait_status(mod)
-    true
+  def self.mod_meta_exploit(mod, meta = {})
+    meta[:delay]       = mod.meta['delay'] || 5
+    meta[:privileged]  = mod.meta['privileged'].inspect
+    meta[:platform]    = mod.meta['targets'].map do |t|
+      t['platform'].dump
+    end.uniq.join(",\n          ")
+    meta[:targets]     = mod.meta['targets'].map do |t|
+      "[#{t['platform'].dump} + ' ' + #{t['arch'].dump}, {'Arch' => ARCH_#{t['arch'].upcase}, 'Platform' => #{t['platform'].dump} }]"
+    end.join(",\n          ")
+
+    meta
   end
 
-  def exploit
-    print_status("Exploiting...")
-    execute_cmdstager({:flavor  => :wget})
-  end
-
-  def wait_status(mod)
-    while mod.running
-      m = mod.get_status
-      if m
-        case m['level']
-        when 'error'
-          print_error m['message']
-        when 'warning'
-          print_warning m['message']
-        when 'good'
-          print_good m['message']
-        when 'info'
-          print_status m['message']
-        when 'debug'
-          vprint_status m['message']
-        else
-          print_status m['message']
-        end
-      end
-    end
-  end
-end
-    |
+  def self.remote_exploit_cmd_stager(mod)
+    meta = mod_meta_common(mod)
+    meta = mod_meta_exploit(mod, meta)
+    template = File.join(File.dirname(__FILE__), 'remote_exploit_cmd_stager.erb')
+    ERB.new(File.read(template)).result(binding)
   end
 end