Class: Metasploit::Framework::PrivateCredentialCollection

Inherits:

Object

• Object
• Metasploit::Framework::PrivateCredentialCollection

Defined in:

lib/metasploit/framework/credential_collection.rb

Direct Known Subclasses

CredentialCollection

Instance Attribute Summary

• #additional_privates ⇒ Array<String>

  Additional private values that should be tried.

• #blank_passwords ⇒ Boolean

  Whether each username should be tried with a blank password.

• #filter ⇒ Object

  A block that can be used to filter credential objects.

• #nil_passwords ⇒ Boolean

  Whether each username should be tried with a nil password.

• #pass_file ⇒ String

  Path to a file containing passwords, one per line.

• #password ⇒ String

  The password that should be tried.

• #prepended_creds ⇒ Array<Credential>

  List of credentials to be tried before any others.

• #realm ⇒ String

  The authentication realm associated with this password.

Instance Method Summary

• #add_private(private_str = '') ⇒ void

  Adds a string as an additional private credential to be combined in the collection.

• #each_filtered {|credential| ... } ⇒ void (also: #each)

  Combines all the provided credential sources into a stream of Credential objects, yielding them one at a time.

• #each_unfiltered {|credential| ... } ⇒ void

  Combines all the provided credential sources into a stream of Credential objects, yielding them one at a time.

• #empty? ⇒ Boolean

  Returns true when #each will have no results to iterate.

• #filtered? ⇒ Boolean

  Returns true when a filter is defined.

• #has_privates? ⇒ Boolean

  Returns true when there are any private values set.

• #initialize(opts = {}) ⇒ PrivateCredentialCollection constructor

  A new instance of PrivateCredentialCollection.

• #prepend_cred(cred) ⇒ self

  Add credentials that will be yielded by #each.

• #private_type(private) ⇒ Symbol protected

  Analyze a private value to determine its type by checking it against a known list of regular expressions.

Constructor Details

#initialize(opts = {}) ⇒ PrivateCredentialCollection

Returns a new instance of PrivateCredentialCollection.

Parameters:

• opts (Hash) (defaults to: {}) —

  a customizable set of options

Options Hash (opts):

• :nil_passwords (Boolean) —

  See #nil_passwords

• :blank_passwords (Boolean) —

  See #blank_passwords

• :pass_file (String) —

  See #pass_file

• :password (String) —

  See #password

• :prepended_creds (Array<Credential>) — default: [] —

  See #prepended_creds

• :user_as_pass (Boolean) —

  See #user_as_pass

• :user_file (String) —

  See #user_file

• :username (String) —

  See #username

• :userpass_file (String) —

  See #userpass_file

• :usernames_only (String) —

  See #usernames_only

# File 'lib/metasploit/framework/credential_collection.rb', line 57

def initialize(opts = {})
  opts.each do |attribute, value|
    public_send("#{attribute}=", value)
  end
  self.prepended_creds     ||= []
  self.additional_privates ||= []
  self.filter = nil
end

Instance Attribute Details

#additional_privates ⇒ Array<String>

Additional private values that should be tried

Returns:

• (Array<String>)

# File 'lib/metasploit/framework/credential_collection.rb', line 9

def additional_privates
  @additional_privates
end

#blank_passwords ⇒ Boolean

Whether each username should be tried with a blank password

Returns:

• (Boolean)

# File 'lib/metasploit/framework/credential_collection.rb', line 14

def blank_passwords
  @blank_passwords
end

#filter ⇒ Object

A block that can be used to filter credential objects

# File 'lib/metasploit/framework/credential_collection.rb', line 45

def filter
  @filter
end

#nil_passwords ⇒ Boolean

Whether each username should be tried with a nil password

Returns:

• (Boolean)

# File 'lib/metasploit/framework/credential_collection.rb', line 19

def nil_passwords
  @nil_passwords
end

#pass_file ⇒ String

Path to a file containing passwords, one per line

Returns:

• (String)

# File 'lib/metasploit/framework/credential_collection.rb', line 24

def pass_file
  @pass_file
end

#password ⇒ String

The password that should be tried

Returns:

• (String)

# File 'lib/metasploit/framework/credential_collection.rb', line 29

def password
  @password
end

#prepended_creds ⇒ Array<Credential>

List of credentials to be tried before any others

Returns:

• (Array<Credential>)

See Also:

• #prepend_cred

# File 'lib/metasploit/framework/credential_collection.rb', line 36

def prepended_creds
  @prepended_creds
end

#realm ⇒ String

The authentication realm associated with this password

Returns:

• (String)

# File 'lib/metasploit/framework/credential_collection.rb', line 41

def realm
  @realm
end

Instance Method Details

#add_private(private_str = '') ⇒ void

This method returns an undefined value.

Adds a string as an additional private credential to be combined in the collection.

Parameters:

• private_str (String) (defaults to: '') —

  The string to use as a private credential

# File 'lib/metasploit/framework/credential_collection.rb', line 71

def add_private(private_str='')
  additional_privates << private_str
end

#each_filtered {|credential| ... } ⇒ void Also known as: each

This method returns an undefined value.

Combines all the provided credential sources into a stream of Credential objects, yielding them one at a time

Yield Parameters:

• credential (Metasploit::Framework::Credential)

# File 'lib/metasploit/framework/credential_collection.rb', line 90

def each_filtered
  each_unfiltered do |credential|
    next unless self.filter.nil? || self.filter.call(credential)

    yield credential
  end
end

#each_unfiltered {|credential| ... } ⇒ void

This method returns an undefined value.

Combines all the provided credential sources into a stream of Credential objects, yielding them one at a time

Yield Parameters:

• credential (Metasploit::Framework::Credential)

# File 'lib/metasploit/framework/credential_collection.rb', line 103

def each_unfiltered
  if pass_file.present?
    pass_fd = File.open(pass_file, 'r:binary')
  end

  prepended_creds.each { |c| yield c }

  if password.present?
    yield Metasploit::Framework::Credential.new(private: password, realm: realm, private_type: private_type(password))
  end
  if blank_passwords
    yield Metasploit::Framework::Credential.new(private: "", realm: realm, private_type: :password)
  end
  if nil_passwords
    yield Metasploit::Framework::Credential.new(private: nil, realm: realm, private_type: :password)
  end
  if pass_fd
    pass_fd.each_line do |pass_from_file|
      pass_from_file.chomp!
      yield Metasploit::Framework::Credential.new(private: pass_from_file, realm: realm, private_type: private_type(pass_from_file))
    end
    pass_fd.seek(0)
  end
  additional_privates.each do |add_private|
    yield Metasploit::Framework::Credential.new(private: add_private, realm: realm, private_type: private_type(add_private))
  end

ensure
  pass_fd.close if pass_fd && !pass_fd.closed?
end

#empty? ⇒ Boolean

Returns true when #each will have no results to iterate

Returns:

• (Boolean)

# File 'lib/metasploit/framework/credential_collection.rb', line 137

def empty?
  prepended_creds.empty? && !has_privates?
end

#filtered? ⇒ Boolean

Returns true when a filter is defined

Returns:

• (Boolean)

# File 'lib/metasploit/framework/credential_collection.rb', line 144

def filtered?
  !self.filter.nil?
end

#has_privates? ⇒ Boolean

Returns true when there are any private values set

Returns:

• (Boolean)

# File 'lib/metasploit/framework/credential_collection.rb', line 151

def has_privates?
  password.present? || pass_file.present? || !additional_privates.empty? || blank_passwords || nil_passwords
end

#prepend_cred(cred) ⇒ self

Add credentials that will be yielded by #each

Parameters:

• cred (Credential)

Returns:

• (self)

See Also:

• #prepended_creds

# File 'lib/metasploit/framework/credential_collection.rb', line 80

def prepend_cred(cred)
  prepended_creds.unshift cred
  self
end

#private_type(private) ⇒ Symbol (protected)

Analyze a private value to determine its type by checking it against a known list of regular expressions

Parameters:

• private (String) —

  The string to analyze

Returns:

• (Symbol)

# File 'lib/metasploit/framework/credential_collection.rb', line 163

def private_type(private)
  if private =~ /[0-9a-f]{32}:[0-9a-f]{32}/
    :ntlm_hash
  elsif private =~ /^md5([a-f0-9]{32})$/
    :postgres_md5
  else
    :password
  end
end