Land rapid7#1910, DISCLAIMER for firefox_creds

wvu · wvu · commit a4035252d6bc · 2014-02-12T16:32:08.000-06:00
Fixed conflict in Author.
diff --git a/modules/post/multi/gather/firefox_creds.rb b/modules/post/multi/gather/firefox_creds.rb
@@ -27,14 +27,15 @@ def initialize(info={})
         keys3.db file which contains the key for decrypting these passwords. In cases where
         a Master Password has not been set, the passwords can easily be decrypted using
         third party tools or by setting the DECRYPT option to true. Using the latter often
-        needs root privileges. If a Master Password was used the only option would be
-        to bruteforce.
+        needs root privileges. Also be warned that if your session dies in the middle of the
+        file renaming process, this could leave Firefox in a non working state. If a
+        Master Password was used the only option would be to bruteforce.
       },
       'License'        => MSF_LICENSE,
       'Author'         =>
         [
-            'bannedit',
-            'xard4s' # added decryption support
+          'bannedit',
+          'xard4s' # added decryption support
         ],
       'Platform'       => %w{ bsd linux osx unix win },
       'SessionTypes'   => ['meterpreter', 'shell' ]
@@ -45,6 +46,12 @@ def initialize(info={})
         OptBool.new('DECRYPT', [false, 'Decrypts passwords without third party tools', false])
       ]
     )
+
+    register_advanced_options(
+      [
+        OptBool.new('DISCLAIMER', [false, 'Acknowledge the warning', false])
+      ]
+    )
     #TODO
     # - Collect cookies.
   end
@@ -68,6 +75,13 @@ def run
     end
 
     if datastore['DECRYPT']
+      if not datastore['DISCLAIMER']
+              print_warning("Decrypting the keys causes the possible remote Firefox process to be,")
+              print_warning("killed. If the user is paying attention, this could make him/her suspicious.")
+              print_warning("In order to proceed, set the advanced DISCLAIMER option to true.")
+              return
+      end
+
       omnija = nil
       org_file = 'omni.ja'
       new_file = Rex::Text::rand_text_alpha(5 + rand(3)) + ".ja"
@@ -104,6 +118,7 @@ def run
         return
       end
       print_status("Uploading #{new_file} to #{@paths['ff']}")
+      print_warning("This takes some extra time") if @platform =~ /unix|osx/
       if not upload_file(@paths['ff']+new_file, tmp)
         print_error("Could not upload #{new_file}")
         return
