Metasploit mailing list archives

Re: Which modules work through a pivot point?

From: Philip Sanderson <philip.k.sanderson () gmail com>
Date: Thu, 9 Sep 2010 14:02:31 +1000

resending with framework cc'd

On Tue, Sep 7, 2010 at 12:52 AM, HD Moore <hdm () metasploit com> wrote:


The implementation consists of new Meterpreter extension, a set of
commands for opening/closing interfaces, and a Meterpreter channel for
bi-directional communication. We are providing a full L2 interface on
the remote end, with MAC-level filtering, and a builtin Ruby DHCP client
to bring the interface up and manage it. Since this is L2, we are using
a TAP interface (created in Ruby) and piping packets between the TAP and
the remote extension. If you take a similar approach, we can commit the
Ruby-side code back to the free tree for use with POSIX Meterpreter. The
benefit of this model is that we will also have a Win32 client side
implemented soon as well, but this requires development of NDIS5/NDIS4
drivers to support each Windows version. If you use a similar API, the
Win32 TAP work we are doing should interface with your POSIX pivot.


-HD


I currently have:

        # Start a packet capture on an opened interface
        def start(intf)
                request = Packet.create_request('networkpug_start')
                request.add_tlv(TLV_TYPE_NETWORKPUG_INTERFACE, intf)
                response = client.send_request(request)

                channel_id = response.get_tlv_value(TLV_TYPE_CHANNEL_ID)

                if(channel_id != nil)
                        channel =
Rex::Post::Meterpreter::Channels::Pools::StreamPool.new(
                                client,
                                channel_id,
                                "networkpug_process",
                                CHANNEL_FLAG_SYNCHRONOUS
                        )
                end
        end

Now I need to hook the channel up to something. Can anyone provide some
hints in how to create a background task in metasploit that will interact
with another fd? Seems none of the .rb extensions offer any insight.

_______________________________________________
https://mail.metasploit.com/mailman/listinfo/framework

Current thread:

Which modules work through a pivot point? John Nash (Sep 05)
- Re: Which modules work through a pivot point? Rob Fuller (Sep 05)
  - Re: Which modules work through a pivot point? John Nash (Sep 05)
    - Re: Which modules work through a pivot point? egypt (Sep 05)
    - Message not available
    - Re: Which modules work through a pivot point? John Nash (Sep 06)
    - Re: Which modules work through a pivot point? c0lists (Sep 06)
- Re: Which modules work through a pivot point? Philip Sanderson (Sep 06)
  - Re: Which modules work through a pivot point? John Nash (Sep 06)
  - Message not available
    - Re: Which modules work through a pivot point? Philip Sanderson (Sep 08)
- Re: Which modules work through a pivot point? HD Moore (Sep 06)
  - Re: Which modules work through a pivot point? John Nash (Sep 06)