Merge branch 'master' of https://github.com/averagesecurityguy/metasploit-framework into averagesecurityguy-master

Author: sinn3r

lib/msf/core/post/common.rb

@@ -80,6 +80,10 @@ def cmd_exec(cmd, args=nil, time_out=15)
 		return o
 	end
 
+	#
+	# Reports to the database that the host is a virtual machine and reports 
+	# the type of virtual machine it is (e.g VirtualBox, VMware, Xen)
+	#
 	def report_vm(vm)
 		return unless session
 		return unless vm

lib/msf/core/post/file.rb

@@ -2,6 +2,9 @@
 
 module Msf::Post::File
 
+	#
+	# Change directory in the remote session to +path+
+	#
 	def cd(path)
 		if session.type == "meterpreter"
 			e_path = session.fs.file.expand_path(path) rescue path
@@ -11,6 +14,9 @@ def cd(path)
 		end
 	end
 
+	#
+	# Returns the current working directory in the remote session
+	#
 	def pwd
 		if session.type == "meterpreter"
 			return session.fs.dir.getwd
@@ -110,7 +116,7 @@ def file_rm(file)
 	end
 
 	#
-	# Writes a given string to a file specified
+	# Writes a given string to a given local file
 	#
 	def file_local_write(file2wrt, data2wrt)
 		if not ::File.exists?(file2wrt)
@@ -141,7 +147,6 @@ def file_local_digestmd5(file2md5)
 	#
 	# Returns a MD5 checksum of a given remote file
 	#
-
 	def file_remote_digestmd5(file2md5)
 		data = read_file(file2md5)
 		chksum = nil
@@ -266,7 +271,8 @@ def append_file(file_name, data)
 	end
 
 	#
-	# Read a local file and write it to the remote file system
+	# Read a local file +local+ and write it as +remote+ on the remote file 
+	# system
 	#
 	def upload_file(remote, local)
 		write_file(remote, ::File.read(local))

lib/msf/core/post/linux/priv.rb

@@ -7,7 +7,9 @@ module Linux
 module Priv
 	include ::Msf::Post::Common
 
+	#
 	# Returns true if running as root, false if not.
+	#
 	def is_root?
 		root_priv = false
 		user_id = cmd_exec("id -u")

lib/msf/core/post/linux/system.rb

@@ -9,10 +9,11 @@ module Linux
 module System
 	include ::Msf::Post::Common
 	include ::Msf::Post::File
-
 	include ::Msf::Post::Unix
 
+	#
 	# Returns a Hash containing Distribution Name, Version and Kernel Information
+	#
 	def get_sysinfo
 		system_data = {}
 		etc_files = cmd_exec("ls /etc").split()
@@ -97,6 +98,6 @@ def get_sysinfo
 
 
 end # System
-end #Linux
+end # Linux
 end # Post
 end # Msf

lib/msf/core/post/osx/system.rb

@@ -7,97 +7,107 @@ class Post
 module OSX
 module System
 	include ::Msf::Post::Common
-		include ::Msf::Post::File
+	include ::Msf::Post::File
 
-		# Return a hash with system Information
-		def get_sysinfo
-			system_info = {}
-			cmd_output = cmd_exec("/usr/bin/sw_vers").split("\n")
-			cmd_output.each do |l|
-				field,val = l.chomp.split(":")
-				system_info[field] = val.strip
-			end
-			system_info["Kernel"] = cmd_exec("uname -a")
-			system_info["Hostname"] = system_info["Kernel"].split(" ")[1]
-
-			return system_info
+	#
+	# Return a hash with system Information
+	#
+	def get_sysinfo
+		system_info = {}
+		cmd_output = cmd_exec("/usr/bin/sw_vers").split("\n")
+		cmd_output.each do |l|
+			field,val = l.chomp.split(":")
+			system_info[field] = val.strip
 		end
+		system_info["Kernel"] = cmd_exec("uname -a")
+		system_info["Hostname"] = system_info["Kernel"].split(" ")[1]
+
+		return system_info
+	end
 
-		# Returns an array of hashes each representing a user on the system
-		# Keys are name, gid, uid, dir and shell
-		def get_users
-			cmd_output = cmd_exec("/usr/bin/dscacheutil -q user")
-			users = []
-			users_arry = cmd_output.split("\n\n")
-			users_arry.each do |u|
-				entry = Hash.new
-				u.each_line do |l|
-					field,val = l.chomp.split(": ")
-					next if field == "password"
-					entry[field] = val.chomp
+	#
+	# Returns an array of hashes each representing a user on the system
+	# Keys are name, gid, uid, dir and shell
+	#
+	def get_users
+		cmd_output = cmd_exec("/usr/bin/dscacheutil -q user")
+		users = []
+		users_arry = cmd_output.split("\n\n")
+		users_arry.each do |u|
+			entry = Hash.new
+			u.each_line do |l|
+				field,val = l.chomp.split(": ")
+				next if field == "password"
+				entry[field] = val.chomp
 
-				end
-				users << entry
 			end
-			return users
+			users << entry
 		end
+		return users
+	end
 
-		# Returns an array of hashes each representing a system accounts on the system
-		# Keys are name, gid, uid, dir and shell
-		def get_system_accounts
-			cmd_output = cmd_exec("/usr/bin/dscacheutil -q user")
-			users = []
-			users_arry = cmd_output.split("\n\n")
-			users_arry.each do |u|
-				entry = {}
-				u.each_line do |l|
-					field,val = l.chomp.split(": ")
-					next if field == "password"
-					entry[field] = val.chomp
-				end
-				next if entry["name"] !~ /^_/
-				users << entry
+	#
+	# Returns an array of hashes each representing a system accounts on the system
+	# Keys are name, gid, uid, dir and shell
+	#
+	def get_system_accounts
+		cmd_output = cmd_exec("/usr/bin/dscacheutil -q user")
+		users = []
+		users_arry = cmd_output.split("\n\n")
+		users_arry.each do |u|
+			entry = {}
+			u.each_line do |l|
+				field,val = l.chomp.split(": ")
+				next if field == "password"
+				entry[field] = val.chomp
 			end
-			return users
+			next if entry["name"] !~ /^_/
+			users << entry
 		end
+		return users
+	end
 
-		# Returns an array of hashes each representing non system accounts on the system
-		# Keys are name, gid, uid, dir and shell
-		def get_nonsystem_accounts
-			cmd_output = cmd_exec("/usr/bin/dscacheutil -q user")
-			users = []
-			users_arry = cmd_output.split("\n\n")
-			users_arry.each do |u|
-				entry = {}
-				u.each_line do |l|
-					field,val = l.chomp.split(": ")
-					next if field == "password"
-					entry[field] = val.chomp
-				end
-				next if entry["name"] =~ /^_/
-				users << entry
+	#
+	# Returns an array of hashes each representing non system accounts on the system
+	# Keys are name, gid, uid, dir and shell
+	#
+	def get_nonsystem_accounts
+		cmd_output = cmd_exec("/usr/bin/dscacheutil -q user")
+		users = []
+		users_arry = cmd_output.split("\n\n")
+		users_arry.each do |u|
+			entry = {}
+			u.each_line do |l|
+				field,val = l.chomp.split(": ")
+				next if field == "password"
+				entry[field] = val.chomp
 			end
-			return users
+			next if entry["name"] =~ /^_/
+			users << entry
 		end
+		return users
+	end
 
-		# Returns an array of hashes each representing user group on the system
-		# Keys are name, guid and users
-		def get_groups
-			cmd_output = cmd_exec("/usr/bin/dscacheutil -q group")
-			groups = []
-			groups_arry = cmd_output.split("\n\n")
-			groups_arry.each do |u|
-				entry = Hash.new
-				u.each_line do |l|
-					field,val = l.chomp.split(": ")
-					next if field == "password"
-					entry[field] = val.chomp
+	#
+	# Returns an array of hashes each representing user group on the system
+	# Keys are name, guid and users
+	#
+	def get_groups
+		cmd_output = cmd_exec("/usr/bin/dscacheutil -q group")
+		groups = []
+		groups_arry = cmd_output.split("\n\n")
+		groups_arry.each do |u|
+			entry = Hash.new
+			u.each_line do |l|
+				field,val = l.chomp.split(": ")
+				next if field == "password"
+				entry[field] = val.chomp
 
-				end
-				groups << entry
 			end
-			return groups
+			groups << entry
 		end
+		return groups
+	end
 end # System
 end # OSX
 end # Post

lib/msf/core/post/solaris/priv.rb

@@ -7,15 +7,17 @@ module Solaris
 module Priv
 	include ::Msf::Post::Common
 
-		# Returns true if running as root, false if not.
-		def is_root?
-			root_priv = false
-			user_id = cmd_exec("/usr/xpg4/bin/id -u")
-			if user_id.to_i == 0
-				root_priv = true
-			end
-			return root_priv
+	#
+	# Returns true if running as root, false if not.
+	#
+	def is_root?
+		root_priv = false
+		user_id = cmd_exec("/usr/xpg4/bin/id -u")
+		if user_id.to_i == 0
+			root_priv = true
 		end
+		return root_priv
+	end
 
 end # Priv
 end # Solaris

lib/msf/core/post/solaris/system.rb

@@ -9,7 +9,6 @@ module Solaris
 module System
 	include ::Msf::Post::Common
 	include ::Msf::Post::File
-
 	include ::Msf::Post::Unix
 
 	#

lib/msf/core/post/unix.rb

@@ -4,8 +4,10 @@ module Msf
 class Post
 module Unix
 
+	#
 	# Returns an array of hashes each representing a user
 	# Keys are name, uid, gid, info, dir and shell
+	#
 	def get_users
 		users = []
 		etc_passwd = nil
@@ -34,8 +36,10 @@ def get_users
 		return users
 	end
 
+	#
 	# Returns an array of hashes each hash representing a user group
 	# Keys are name, gid and users
+	#
 	def get_groups
 		groups = []
 		cmd_out = read_file("/etc/group").split("\n")
@@ -50,7 +54,9 @@ def get_groups
 		return groups
 	end
 
-	# returns all user directories found
+	#
+	# Enumerates the user directories in /Users or /home
+	#
 	def enum_user_directories
 		user_dirs = []
 

lib/msf/core/post/windows/eventlog.rb

@@ -4,7 +4,10 @@ class Post
 module Windows
 
 module Eventlog
-	#enumerate eventlogs
+
+	#
+	# Enumerate eventlogs
+	#
 	def eventlog_list
 		key = "HKLM\\SYSTEM\\CurrentControlSet\\Services\\"
 		if session.sys.config.sysinfo['OS'] =~ /Windows 2003|.Net|XP|2000/
@@ -16,7 +19,10 @@ def eventlog_list
 		return eventlogs
 	end
 
-	#clears a given eventlog or all eventlogs if none is given. Returns an array of eventlogs that where cleared.
+	#
+	# Clears a given eventlog or all eventlogs if none is given. Returns an array of eventlogs 
+	# that where cleared.
+	#
 	def eventlog_clear(evt = "")
 		evntlog = []
 		if evt.empty?