Class: Rex::Post::Meterpreter::Extensions::Stdapi::Fs::File

Inherits:

IO

• Object
• IO
• IO
• Rex::Post::Meterpreter::Extensions::Stdapi::Fs::File

Includes:

File

Defined in:

lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb

Overview

This class implements the Rex::Post::File interface and wraps interaction with files on the remote machine.

Class Attribute Summary

• .client ⇒ Object

  Returns the value of attribute client.

Class Method Summary

• .basename(*a) ⇒ Object

  Returns the base name of the supplied file path to the caller.

• .download(dest, *src_files, &stat) ⇒ Object

  Download one or more files from the remote computer to the local directory supplied in destination.

• .download_file(dest_file, src_file) ⇒ Object

  Download a single file.

• .exists?(name) ⇒ Boolean

  Determines if a file exists and returns true/false.

• .expand_path(path) ⇒ Object

  Expands a file path, substituting all environment variables, such as %TEMP%.

• .md5(path) ⇒ Object

  Calculates the MD5 (16-bytes raw) of a remote file.

• .rm(name) ⇒ Object

  Performs a delete on the specified file.

• .search(root = nil, glob = "*.*", recurse = true, timeout = -1 )) ⇒ Object

  Search for files.

• .separator ⇒ Object (also: Separator, SEPARATOR)

  Return the directory separator, i.e.: “/” on unix, “\” on windows.

• .sha1(path) ⇒ Object

  Calculates the SHA1 (20-bytes raw) of a remote file.

• .stat(name) ⇒ Object

  Performs a stat on a file and returns a FileStat instance.

• .unlink(name) ⇒ Object

  Performs a delete on the specified file.

• .upload(destination, *src_files, &stat) ⇒ Object

  Upload one or more files to the remote computer the remote directory supplied in destination.

• .upload_file(dest_file, src_file) ⇒ Object

  Upload a single file.

Instance Method Summary

• #eof ⇒ Object

  Returns whether or not the file has reach EOF.

• #initialize(name, mode = "r", perms = 0) ⇒ File constructor

  Initializes and opens the specified file with the specified permissions.

• #pos ⇒ Object

  Returns the current position of the file pointer.

• #seek(offset, whence = SEEK_SET) ⇒ Object

  Synonym for sysseek.

• #sysseek(offset, whence = SEEK_SET) ⇒ Object

  Seeks to the supplied offset based on the supplied relativity.

Methods included from File

atime, blockdev?, chardev?, chmod, chown, ctime, delete, directory?, dirname, executable?, executable_real?, extname, file?, fnmatch, fnmatch?, ftype, grpowned?, join, lchmod, lchown, link, lstat, mtime, owned?, #path, pipe?, readable?, readable_real?, setgid?, setuid?, size, socket?, sticky?, symlink?, writeable?, writeable_real?, zero?

Methods inherited from IO

#close, #sysread, #syswrite

Methods inherited from IO

#binmode, #close, #close_read, #close_write, #closed?, #each, #each_byte, #each_line, #eof?, #fcntl, #flush, #fsync, #getc, #gets, #ioctl, #isatty, #lineno, #print, #printf, #putc, #puts, #read, #readchar, #readline, #readlines, #rewind, #stat, #sync, #sysread, #syswrite, #tell, #tty?, #ungetc, #write

Constructor Details

#initialize(name, mode = "r", perms = 0) ⇒ File

Initializes and opens the specified file with the specified permissions.

# File 'lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb', line 273

def initialize(name, mode = "r", perms = 0)
	self.client = self.class.client
	self.filed  = _open(name, mode, perms)
end

Class Attribute Details

.client ⇒ Object

Returns the value of attribute client.

# File 'lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb', line 29

def client
  @client
end

Class Method Details

.basename(*a) ⇒ Object

Returns the base name of the supplied file path to the caller.

# File 'lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb', line 95

def File.basename(*a)
	path = a[0]

	# Allow both kinds of dir serparators since lots and lots of code
	# assumes one or the other so this ends up getting called with strings
	# like: "C:\\foo/bar"
	path =~ %r#.*[/\\](.*)$#

	Rex::FileUtils.clean_path($1 || path)
end

.download(dest, *src_files, &stat) ⇒ Object

Download one or more files from the remote computer to the local directory supplied in destination.

# File 'lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb', line 226

def File.download(dest, *src_files, &stat)
	src_files.each { |src|
		if (::File.basename(dest) != File.basename(src))
			# The destination when downloading is a local file so use this
			# system's separator
			dest += ::File::SEPARATOR + File.basename(src)
		end

		stat.call('downloading', src, dest) if (stat)

		download_file(dest, src)

		stat.call('downloaded', src, dest) if (stat)
	}
end

.download_file(dest_file, src_file) ⇒ Object

Download a single file.

# File 'lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb', line 245

def File.download_file(dest_file, src_file)
	src_fd = client.fs.file.new(src_file, "rb")
	dir = ::File.dirname(dest_file)
	::FileUtils.mkdir_p(dir) if dir and not ::File.directory?(dir)

	dst_fd = ::File.new(dest_file, "wb")

	# Keep transferring until EOF is reached...
	begin
		while ((data = src_fd.read) != nil)
			dst_fd.write(data)
		end
	rescue EOFError
	ensure
		src_fd.close
		dst_fd.close
	end
end

.exists?(name) ⇒ Boolean

Determines if a file exists and returns true/false

Returns:

• (Boolean)

# File 'lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb', line 159

def File.exists?(name)
	r = client.fs.filestat.new(name) rescue nil
	r ? true : false
end

.expand_path(path) ⇒ Object

Expands a file path, substituting all environment variables, such as %TEMP%.

# File 'lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb', line 110

def File.expand_path(path)
	request = Packet.create_request('stdapi_fs_file_expand_path')

	request.add_tlv(TLV_TYPE_FILE_PATH, client.unicode_filter_decode( path ))

	response = client.send_request(request)

	return client.unicode_filter_encode( response.get_tlv_value(TLV_TYPE_FILE_PATH) )
end

.md5(path) ⇒ Object

Calculates the MD5 (16-bytes raw) of a remote file

# File 'lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb', line 124

def File.md5(path)
	request = Packet.create_request('stdapi_fs_md5')

	request.add_tlv(TLV_TYPE_FILE_PATH, client.unicode_filter_decode( path ))

	response = client.send_request(request)

	# This is not really a file name, but a raw hash in bytes
	return response.get_tlv_value(TLV_TYPE_FILE_NAME)
end

.rm(name) ⇒ Object

Performs a delete on the specified file.

# File 'lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb', line 167

def File.rm(name)
	request = Packet.create_request('stdapi_fs_delete_file')

	request.add_tlv(TLV_TYPE_FILE_PATH, client.unicode_filter_decode( name ))

	response = client.send_request(request)

	return response
end

.search(root = nil, glob = "*.*", recurse = true, timeout = -1 )) ⇒ Object

Search for files.

# File 'lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb', line 63

def File.search( root=nil, glob="*.*", recurse=true, timeout=-1 )

	files = ::Array.new

	request = Packet.create_request( 'stdapi_fs_search' )

	root = client.unicode_filter_decode(root) if root
	root = root.chomp( '\\' ) if root

	request.add_tlv( TLV_TYPE_SEARCH_ROOT, root )
	request.add_tlv( TLV_TYPE_SEARCH_GLOB, glob )
	request.add_tlv( TLV_TYPE_SEARCH_RECURSE, recurse )

	# we set the response timeout to -1 to wait indefinatly as a
	# search could take an indeterminate ammount of time to complete.
	response = client.send_request( request, timeout )
	if( response.result == 0 )
		response.each( TLV_TYPE_SEARCH_RESULTS ) do | results |
			files << {
				'path' => client.unicode_filter_encode( results.get_tlv_value( TLV_TYPE_FILE_PATH ).chomp( '\\' ) ),
				'name' => client.unicode_filter_encode( results.get_tlv_value( TLV_TYPE_FILE_NAME ) ),
				'size' => results.get_tlv_value( TLV_TYPE_FILE_SIZE )
			}
		end
	end

	return files
end

.separator ⇒ Object Also known as: Separator, SEPARATOR

Return the directory separator, i.e.: “/” on unix, “\” on windows

# File 'lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb', line 35

def File.separator()
	# The separator won't change, so cache it to prevent sending
	# unnecessary requests.
	return @separator if @separator

	request = Packet.create_request('stdapi_fs_separator')

	# Fall back to the old behavior of always assuming windows.  This
	# allows meterpreter executables built before the addition of this
	# command to continue functioning.
	begin
		response = client.send_request(request)
		@separator = response.get_tlv_value(TLV_TYPE_STRING)
	rescue RequestError
		@separator = "\\"
	end

	return @separator
end

.sha1(path) ⇒ Object

Calculates the SHA1 (20-bytes raw) of a remote file

# File 'lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb', line 138

def File.sha1(path)
	request = Packet.create_request('stdapi_fs_sha1')

	request.add_tlv(TLV_TYPE_FILE_PATH, client.unicode_filter_decode( path ))

	response = client.send_request(request)

	# This is not really a file name, but a raw hash in bytes
	return response.get_tlv_value(TLV_TYPE_FILE_NAME)
end

.stat(name) ⇒ Object

Performs a stat on a file and returns a FileStat instance.

# File 'lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb', line 152

def File.stat(name)
	return client.fs.filestat.new( name )
end

.unlink(name) ⇒ Object

Performs a delete on the specified file.

# File 'lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb', line 180

def File.unlink(name)
	return File.rm(name)
end

.upload(destination, *src_files, &stat) ⇒ Object

Upload one or more files to the remote computer the remote directory supplied in destination.

# File 'lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb', line 188

def File.upload(destination, *src_files, &stat)
	src_files.each { |src|
		dest = destination

		stat.call('uploading', src, dest) if (stat)
		if (self.basename(destination) != ::File.basename(src))
			dest += self.separator + ::File.basename(src)
		end

		upload_file(dest, src)
		stat.call('uploaded', src, dest) if (stat)
	}
end

.upload_file(dest_file, src_file) ⇒ Object

Upload a single file.

# File 'lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb', line 205

def File.upload_file(dest_file, src_file)
	# Open the file on the remote side for writing and read
	# all of the contents of the local file
	dest_fd = client.fs.file.new(dest_file, "wb")
	src_buf = ''

	::File.open(src_file, 'rb') { |f|
		src_buf = f.read(f.stat.size)
	}

	begin
		dest_fd.write(src_buf)
	ensure
		dest_fd.close
	end
end

Instance Method Details

#eof ⇒ Object

Returns whether or not the file has reach EOF.

# File 'lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb', line 287

def eof
	return self.filed.eof
end

#pos ⇒ Object

Returns the current position of the file pointer.

# File 'lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb', line 294

def pos
	return self.filed.tell
end

#seek(offset, whence = SEEK_SET) ⇒ Object

Synonym for sysseek.

# File 'lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb', line 301

def seek(offset, whence = SEEK_SET)
	return self.sysseek(offset, whence)
end

#sysseek(offset, whence = SEEK_SET) ⇒ Object

Seeks to the supplied offset based on the supplied relativity.

# File 'lib/rex/post/meterpreter/extensions/stdapi/fs/file.rb', line 308

def sysseek(offset, whence = SEEK_SET)
	return self.filed.seek(offset, whence)
end