Make linux gather post modules compatible with meterpreter

jvazquez-r7 · jvazquez-r7 · commit c25c5f6806a0 · 2014-07-08T16:23:57.000-05:00
diff --git a/lib/msf/core/post/common.rb b/lib/msf/core/post/common.rb
@@ -104,12 +104,15 @@ def cmd_exec(cmd, args=nil, time_out=15)
       end
 
       session.response_timeout = time_out
+      p "[*] executing #{cmd}"
       process = session.sys.process.execute(cmd, args, {'Hidden' => true, 'Channelized' => true})
       o = ""
       while (d = process.channel.read)
+        p "[*] reading channel #{d}"
         break if d == ""
         o << d
       end
+      o.chomp! if o
       process.channel.close
       process.close
     when /shell/
diff --git a/modules/post/linux/gather/enum_configs.rb b/modules/post/linux/gather/enum_configs.rb
@@ -23,8 +23,8 @@ def initialize(info={})
         [
           'ohdae <bindshell[at]live.com>',
         ],
-      'Platform'      => [ 'linux' ],
-      'SessionTypes'  => [ 'shell' ]
+      'Platform'      => ['linux'],
+      'SessionTypes'  => ['shell', 'meterpreter']
     ))
   end
 
@@ -74,7 +74,7 @@ def find_configs
 
     configs.each do |f|
       output = read_file("#{f}")
-      save(f,  output) if output !~ /No such file or directory/
+      save(f,  output) if output && output !~ /No such file or directory/
     end
   end
 end
diff --git a/modules/post/linux/gather/enum_network.rb b/modules/post/linux/gather/enum_network.rb
@@ -26,8 +26,8 @@ def initialize(info={})
             'ohdae <bindshell[at]live.com>', # minor additions, modifications & testing
             'Stephen Haywood <averagesecurityguy[at]gmail.com>', # enum_linux
           ],
-        'Platform'      => [ 'linux' ],
-        'SessionTypes'  => [ 'shell' ]
+        'Platform'      => ['linux'],
+        'SessionTypes'  => ['shell', 'meterpreter']
       ))
   end
 
diff --git a/modules/post/linux/gather/enum_protections.rb b/modules/post/linux/gather/enum_protections.rb
@@ -28,8 +28,8 @@ def initialize(info={})
         [
           'ohdae <bindshell[at]live.com>'
         ],
-      'Platform'      => [ 'linux' ],
-      'SessionTypes'  => [ 'shell' ]
+      'Platform'      => ['linux'],
+      'SessionTypes'  => ['shell']
     ))
   end
 
@@ -58,7 +58,11 @@ def get_host
   end
 
   def which(env_paths, cmd)
+    print_status("#{env_paths}")
+    print_status("#{cmd}")
     for path in env_paths
+      output = cmd_exec("/bin/ls #{path} | /bin/grep '#{cmd}'")
+      print_status(output)
       if "#{cmd}" == cmd_exec("/bin/ls #{path} | /bin/grep '#{cmd}'")
         return "#{path}/#{cmd}"
       end
@@ -74,6 +78,12 @@ def find_apps
       "psad", "wireshark", "nagios", "nagios", "apparmor", "honeyd", "thpot"
     ]
 
+    #output = cmd_exec("echo $PATH")
+    #print_status("#{Rex::Text.to_hex_dump(output)}")
+    #print_status("#{Rex::Text.to_hex_dump(output.chomp)}")
+
+    #return
+
     env_paths = cmd_exec("echo $PATH").split(":")
 
     apps.each do |a|
diff --git a/modules/post/linux/gather/enum_system.rb b/modules/post/linux/gather/enum_system.rb
@@ -29,8 +29,8 @@ def initialize(info={})
             'ohdae <bindshell[at]live.com>', # Combined separate mods, modifications and testing
             'Roberto Espreto <robertoespreto[at]gmail.com>', # log files and setuid/setgid
           ],
-        'Platform'      => [ 'linux' ],
-        'SessionTypes'  => [ 'shell' ]
+        'Platform'      => ['linux'],
+        'SessionTypes'  => ['shell', 'meterpreter']
       ))
 
   end
diff --git a/modules/post/linux/gather/enum_users_history.rb b/modules/post/linux/gather/enum_users_history.rb
@@ -26,8 +26,8 @@ def initialize(info={})
             # based largely on get_bash_history function by Stephen Haywood
             'ohdae <bindshell[at]live.com>'
           ],
-        'Platform'      => [ 'linux' ],
-        'SessionTypes'  => [ 'shell' ]
+        'Platform'      => ['linux'],
+        'SessionTypes'  => ['shell', 'meterpreter']
       ))
 
   end
@@ -123,14 +123,14 @@ def get_sql_history(users, user)
     else
       vprint_status("Extracting SQL history for #{user}")
       sql_hist = cat_file("/home/#{user}/.mysql_history")
-      vprint_status(sql_hist)
-      save("SQL History for #{user}", sql_hist) unless sql_hist =~ /No such file or directory/
+      vprint_status(sql_hist) if sql_hist
+      save("SQL History for #{user}", sql_hist) unless sql_hist && sql_hist =~ /No such file or directory/
     end
   end
 
   def get_vim_history(users, user)
     if user == "root" and users != nil
-      users = users.chomp.split()
+      users = users.chomp.split
       users.each do |u|
         if u == "root"
           vprint_status("Extracting VIM history for #{u}")
