Class: Metasploit::Aggregator::ConnectionManager

Inherits:

Object

• Object
• Metasploit::Aggregator::ConnectionManager

Includes:

Singleton

Defined in:

lib/metasploit/aggregator/connection_manager.rb

Class Method Summary

• .ssl_generate_certificate ⇒ Object

Instance Method Summary

• #add_cable_http(host, port) ⇒ Object
• #add_cable_https(host, port, certificate) ⇒ Object
• #cables ⇒ Object
• #connect_cable(server, host, port, forwarder) ⇒ Object
• #connection_details(payload) ⇒ Object
• #connections ⇒ Object
• #flush_connections ⇒ Object
• #initialize ⇒ ConnectionManager constructor

  A new instance of ConnectionManager.

• #park(payload) ⇒ Object
• #register_forward(uuid, payload_list = nil) ⇒ Object
• #remove_cable(host, port) ⇒ Object
• #stop ⇒ Object

Constructor Details

#initialize ⇒ ConnectionManager

Returns a new instance of ConnectionManager.

# File 'lib/metasploit/aggregator/connection_manager.rb', line 16

def initialize
  @cables = []
  @manager_mutex = Mutex.new
  @router = Router.instance
  @details_cache = SessionDetailService.instance
  @connection_cleaner = Thread.new { flush_connections }
end

Class Method Details

.ssl_generate_certificate ⇒ Object

# File 'lib/metasploit/aggregator/connection_manager.rb', line 24

def self.ssl_generate_certificate
  yr   = 24*3600*365
  vf   = Time.at(Time.now.to_i - rand(yr * 3) - yr)
  vt   = Time.at(vf.to_i + (10 * yr))
  cn   = 'localhost'
  key  = OpenSSL::PKey::RSA.new(2048){ }
  cert = OpenSSL::X509::Certificate.new
  cert.version    = 2
  cert.serial     = (rand(0xFFFFFFFF) << 32) + rand(0xFFFFFFFF)
  cert.subject    = OpenSSL::X509::Name.new([["CN", cn]])
  cert.issuer     = OpenSSL::X509::Name.new([["CN", cn]])
  cert.not_before = vf
  cert.not_after  = vt
  cert.public_key = key.public_key

  ef = OpenSSL::X509::ExtensionFactory.new(nil,cert)
  cert.extensions = [
      ef.create_extension("basicConstraints","CA:FALSE")
  ]
  ef.issuer_certificate = cert

  cert.sign(key, OpenSSL::Digest::SHA256.new)

  [key, cert, nil]
end

Instance Method Details

#add_cable_http(host, port) ⇒ Object

# File 'lib/metasploit/aggregator/connection_manager.rb', line 84

def add_cable_http(host, port)
  @manager_mutex.synchronize do
    forwarder = Metasploit::Aggregator::HttpForwarder.new
    forwarder.log_messages = true
    server = TCPServer.new(host, port)

    handler = connect_cable(server, host, port, forwarder)
    @cables << Cable.new(handler, server, forwarder)
  end
end

#add_cable_https(host, port, certificate) ⇒ Object

# File 'lib/metasploit/aggregator/connection_manager.rb', line 65

def add_cable_https(host, port, certificate)
  @manager_mutex.synchronize do
    forwarder = Metasploit::Aggregator::HttpsForwarder.new
    forwarder.log_messages = true
    server = TCPServer.new(host, port)
    ssl_context = OpenSSL::SSL::SSLContext.new
    unless certificate.nil?
      ssl_context.key, ssl_context.cert = ssl_parse_certificate(certificate)
    else
      ssl_context.key, ssl_context.cert = Metasploit::Aggregator::ConnectionManager.ssl_generate_certificate
    end
    ssl_server = OpenSSL::SSL::SSLServer.new(server, ssl_context)

    handler = connect_cable(ssl_server, host, port, forwarder)
    @cables << Cable.new(handler, server, forwarder)
    handler
  end
end

#cables ⇒ Object

# File 'lib/metasploit/aggregator/connection_manager.rb', line 130

def cables
  local_cables = []
  @cables.each do |cable|
    addr = cable.server.local_address
    local_cables << addr.ip_address + ':' + addr.ip_port.to_s
  end
  local_cables
end

#connect_cable(server, host, port, forwarder) ⇒ Object

# File 'lib/metasploit/aggregator/connection_manager.rb', line 139

def connect_cable(server, host, port, forwarder)
  Logger.log "Listening on port #{host}:#{port}"

  handler = Thread.new do
    begin
      loop do
        Logger.log "waiting for connection on #{host}:#{port}"
        connection = server.accept
        Logger.log "got connection on #{host}:#{port}"
        Thread.new do
          begin
            forwarder.forward(connection)
          rescue
            Logger.log $!
          end
          Logger.log "completed connection on #{host}:#{port}"
        end
      end
    end
  end
  handler
end

#connection_details(payload) ⇒ Object

# File 'lib/metasploit/aggregator/connection_manager.rb', line 113

def connection_details(payload)
  detail_map = {}
  details = @details_cache.session_details(payload)
  unless details.nil?
    details.each_pair do |key, value|
      detail_map[key] = value.to_s
      end
  end
  @cables.each do |cable|
    next unless cable.forwarder.connections.include?(payload)
    # TODO: improve how time is exposed for live connections
    time = cable.forwarder.connection_info(payload)['TIME']
    detail_map['LAST_SEEN'] = (Time.now - time).to_s unless time.nil?
  end
  detail_map
end

#connections ⇒ Object

# File 'lib/metasploit/aggregator/connection_manager.rb', line 105

def connections
  connections = {}
  @cables.each do |cable|
    connections = connections.merge cable.forwarder.connections
  end
  connections
end

#flush_connections ⇒ Object

# File 'lib/metasploit/aggregator/connection_manager.rb', line 194

def flush_connections
  while true
    @cables.each do |cable|
      # this relies on a side effect that accessing clears stale connections
      cable.forwarder.connections.length
    end
    sleep 10
  end
end

#park(payload) ⇒ Object

# File 'lib/metasploit/aggregator/connection_manager.rb', line 189

def park(payload)
  @router.add_route(nil, payload)
  Logger.log "parking #{payload}"
end

#register_forward(uuid, payload_list = nil) ⇒ Object

# File 'lib/metasploit/aggregator/connection_manager.rb', line 95

def register_forward(uuid, payload_list = nil)
  if payload_list.nil?
    @router.add_route(uuid, nil)
  else
    payload_list.each do |payload|
      @router.add_route(uuid, payload)
    end
  end
end

#remove_cable(host, port) ⇒ Object

# File 'lib/metasploit/aggregator/connection_manager.rb', line 162

def remove_cable(host, port)
  @manager_mutex.synchronize do
    closed_servers = []
    @cables.each do |cable|
      addr = cable.server.local_address
      if addr.ip_address == host && addr.ip_port == port.to_i
        cable.server.close
        cable.thread.exit
        closed_servers << cable
      end
    end
    @cables -= closed_servers
  end
  return true
end

#stop ⇒ Object

# File 'lib/metasploit/aggregator/connection_manager.rb', line 179

def stop
  @manager_mutex.synchronize do
    @cables.each do |listener|
      listener.server.close
      listener.thread.exit
    end
  end
  @connection_cleaner.exit
end