complete rewrite of terminal, now has history and commands along with the ability to run external commands, fixes all issues with bug tag

ekultek · ekultek · commit 37cf7ab43bd6 · 2018-12-31T19:42:15.000-06:00
diff --git a/README.md b/README.md
@@ -46,7 +46,7 @@ sudo -s << EOF
 git clone https://github.com/NullArray/AutoSploit.git
 cd AutoSploit
 chmod +x install.sh
-./installsh
+./install.sh
 cd AutoSploit/Docker
 docker network create -d bridge haknet
 docker run --network haknet --name msfdb -e POSTGRES_PASSWORD=s3cr3t -d postgres
@@ -64,7 +64,7 @@ chmod +x install.sh
 ./install.sh
 ```
 
-If you want to run AutoSploit on a macOS system, AutoSploit is compatible with macOS, however, you have to be inside a virtual environment for it to run successfully. To do this, do the following;
+AutoSploit is compatible with macOS, however, you have to be inside a virtual environment for it to run successfully. In order to accomplish this employ/perform the below operations via the terminal or in the form of a shell script.
 
 ```bash
 sudo -s << '_EOF'
@@ -149,21 +149,6 @@ misc arguments:
   --whitelist PATH      only exploit hosts listed in the whitelist file
 ```
 
-If you want to run AutoSploit on a macOS system, AutoSploit is compatible with macOS, however, you have to be inside a virtual environment for it to run successfully. To do this, do the following;
-
-```bash
-sudo -s << '_EOF'
-pip2 install virtualenv --user
-git clone https://github.com/NullArray/AutoSploit.git
-virtualenv <PATH-TO-YOUR-ENV>
-source <PATH-TO-YOUR-ENV>/bin/activate
-cd <PATH-TO-AUTOSPLOIT>
-pip2 install -r requirements.txt
-chmod +x install.sh
-./install.sh
-python autosploit.py
-_EOF
-```
 
 ## Dependencies
 _Note_: All dependencies should be installed using the above installation method, however, if you find they are not:
@@ -173,13 +158,12 @@ AutoSploit depends on the following Python2.7 modules.
 ```
 requests
 psutil
-beautifulsoup4
 ```
 
 Should you find you do not have these installed get them with pip like so.
 
 ```bash
-pip install requests psutil beautifulsoup4
+pip install requests psutil
 ```
 
 or
@@ -192,9 +176,11 @@ Since the program invokes functionality from the Metasploit Framework you need t
 
 ## Acknowledgements
 
-Special thanks to [Ekultek](https://github.com/Ekultek) without whoms contributions to the project version 2.0 would have been a lot less spectacular.
+Special thanks to [Ekultek](https://github.com/Ekultek) without whoms contributions to the project, version 2.0 would have been a lot less spectacular.
+
+Thanks to [Khast3x](https://github.com/khast3x) for setting up Docker support.
 
-And thanks to [Khast3x](https://github.com/khast3x) for setting up Docker support.
+Last but certainly not least. Thanks to all who have submitted Pull Requests, bug reports, useful and productive contributions in general.  
 
 ### Active Development
 
diff --git a/api_calls/censys.py b/api_calls/censys.py
@@ -24,7 +24,7 @@ def __init__(self, identity=None, token=None, query=None, proxy=None, agent=None
         self.host_file = HOST_FILE
         self.save_mode = save_mode
 
-    def censys(self):
+    def search(self):
         """
         connect to the Censys API and pull all IP addresses from the provided query
         """
diff --git a/api_calls/shodan.py b/api_calls/shodan.py
@@ -25,7 +25,7 @@ def __init__(self, token=None, query=None, proxy=None, agent=None, save_mode=Non
         self.host_file = HOST_FILE
         self.save_mode = save_mode
 
-    def shodan(self):
+    def search(self):
         """
         connect to the API and grab all IP addresses associated with the provided query
         """
diff --git a/api_calls/zoomeye.py b/api_calls/zoomeye.py
@@ -54,7 +54,7 @@ def __get_auth(self):
         token = json.loads(req.content)
         return token
 
-    def zoomeye(self):
+    def search(self):
         """
         connect to the API and pull all the IP addresses that are associated with the
         given query
diff --git a/autosploit/main.py b/autosploit/main.py
@@ -117,8 +117,8 @@ def main():
             loaded_exploits = load_exploits(EXPLOIT_FILES_PATH)
             info("attempting to load API keys")
             loaded_tokens = load_api_keys()
-            terminal = AutoSploitTerminal(loaded_tokens)
-            terminal.terminal_main_display(loaded_exploits)
+            terminal = AutoSploitTerminal(loaded_tokens, loaded_exploits)
+            terminal.terminal_main_display(loaded_tokens)
     except Exception as e:
         import traceback
 
diff --git a/etc/text_files/gen b/etc/text_files/gen
@@ -0,0 +1,8 @@
+usage of AutoSploit for attacking targets without prior mutual consent is illegal in pretty much every sense of the word. it is the end user's responsibility to obey all applicable local, state, and federal laws. developers assume no liability and are not responsible for any misuse or damage caused by this program. please take these considerations into mind:
+
+ - use AutoSploit on a VPS through a proxy or Tor
+ - keep calm and wipe the logs or use tools to do so
+ - never connect from your local IP address
+ - keep a low profile, the point of hacking is not to get caught
+
+we do not condone hacking of any sort, the above are tips to keep in mind for ethical purposes. having said that, knowledge is not illegal, and anybody that tells you learning is wrong is a fool. get as much out of this program as we got from writing it.
diff --git a/lib/banner.py b/lib/banner.py
@@ -1,7 +1,7 @@
 import os
 import random
 
-VERSION = "2.2.5"
+VERSION = "3.0"
 
 
 def banner_1(line_sep="#--", space=" " * 30):
diff --git a/lib/cmdline/cmd.py b/lib/cmdline/cmd.py
@@ -187,33 +187,33 @@ def single_run_args(opt, keys, loaded_modules):
                 keys["censys"][1], keys["censys"][0],
                 opt.searchQuery, proxy=headers[0], agent=headers[1],
                 save_mode=search_save_mode
-            ).censys()
+            ).search()
         if opt.searchZoomeye:
             lib.output.info(single_search_msg.format("Zoomeye"))
             api_searches[0](
                 opt.searchQuery, proxy=headers[0], agent=headers[1],
                 save_mode=search_save_mode
-            ).zoomeye()
+            ).search()
         if opt.searchShodan:
             lib.output.info(single_search_msg.format("Shodan"))
             api_searches[1](
                 keys["shodan"][0], opt.searchQuery, proxy=headers[0], agent=headers[1],
                 save_mode=search_save_mode
-            ).shodan()
+            ).search()
         if opt.searchAll:
             lib.output.info("searching all search engines in order")
             api_searches[0](
                 opt.searchQuery, proxy=headers[0], agent=headers[1],
                 save_mode=search_save_mode
-            ).zoomeye()
+            ).search()
             api_searches[1](
                 keys["shodan"][0], opt.searchQuery, proxy=headers[0], agent=headers[1],
                 save_mode=search_save_mode
-            ).shodan()
+            ).search()
             api_searches[2](
                 keys["censys"][1], keys["censys"][0], opt.searchQuery, proxy=headers[0], agent=headers[1],
                 save_mode=search_save_mode
-            ).censys()
+            ).search()
         if opt.startExploit:
             hosts = open(lib.settings.HOST_FILE).readlines()
             if opt.whitelist:
diff --git a/lib/settings.py b/lib/settings.py
@@ -6,6 +6,7 @@
 import platform
 import getpass
 import tempfile
+import readline
 import distutils.spawn
 from subprocess import (
     PIPE,
@@ -16,9 +17,56 @@
 
 import lib.output
 import lib.banner
+import lib.jsonize
 
+
+class AutoSploitCompleter(object):
+
+    """
+    object to create an auto completer for the terminal
+    """
+
+    def __init__(self, opts):
+        self.opts = sorted(opts)
+        self.possibles = []
+
+    def complete_text(self, text, state):
+        if state == 0:
+            if text:
+                self.possibles = [m for m in self.opts if m.startswith(text)]
+            else:
+                self.possibles = self.opts[:]
+        try:
+            return self.possibles[state]
+        except IndexError:
+            return None
+
+
+TERMINAL_HELP_MESSAGE = """
+COMMAND:                SUMMARY:
+---------               --------
+view/show               Show the already gathered hosts
+mem[ory]/history        Display the command history
+exploit/run/attack      Run the exploits on the already gathered hosts
+search/api/gather       Search the API's for hosts
+exit/quit               Exit the terminal session
+single                  Load a single host into the file
+tokens/reset            Reset API tokens if needed
+help/?                  Display this help
+"""
+
+# current directory
 CUR_DIR = "{}".format(os.getcwd())
 
+# home
+HOME = "{}/.autosploit_home".format(os.path.expanduser("~"))
+
+# backup the current hosts file
+HOST_FILE_BACKUP = "{}/backups".format(HOME)
+
+# autosploit command history file path
+HISTORY_FILE_PATH = "{}/.history".format(HOME)
+
 # path to the file containing all the discovered hosts
 HOST_FILE = "{}/hosts.txt".format(CUR_DIR)
 try:
@@ -49,7 +97,7 @@
 PLATFORM_PROMPT = "\n{}@\033[36mPLATFORM\033[0m$ ".format(getpass.getuser())
 
 # the prompt that will be used most of the time
-AUTOSPLOIT_PROMPT = "\n\033[31m{}\033[0m@\033[36mautosploit\033[0m# ".format(getpass.getuser())
+AUTOSPLOIT_PROMPT = "\033[31m{}\033[0m@\033[36mautosploit\033[0m# ".format(getpass.getuser())
 
 # all the paths to the API tokens
 API_KEYS = {
@@ -74,7 +122,7 @@
 TOKEN_PATH = "{}/etc/text_files/auth.key".format(CUR_DIR)
 
 # location of error files
-ERROR_FILES_LOCATION = "{}/.autosploit_errors".format(os.path.expanduser("~"))
+ERROR_FILES_LOCATION = "{}/.autosploit_errors".format(HOME)
 
 # terminal options
 AUTOSPLOIT_TERM_OPTS = {
@@ -83,14 +131,58 @@
     99: "quit"
 }
 
+# global variable for the search animation
 stop_animation = False
 
 
-def validate_ip_addr(provided):
+def load_external_commands():
+    """
+    create a list of external commands from provided directories
+    """
+    paths = ["/bin", "/usr/bin"]
+    loaded_externals = []
+    for f in paths:
+        for cmd in os.listdir(f):
+            if not os.path.isdir("{}/{}".format(f, cmd)):
+                loaded_externals.append(cmd)
+    return loaded_externals
+
+
+def backup_host_file(current, path):
+    """
+    backup the current hosts file
+    """
+    import datetime
+    import shutil
+
+    if not os.path.exists(path):
+        os.makedirs(path)
+    new_filename = "{}/hosts_{}_{}.txt".format(
+        path,
+        lib.jsonize.random_file_name(length=17),
+        str(datetime.datetime.today()).split(" ")[0]
+    )
+    shutil.copyfile(current, new_filename)
+    return new_filename
+
+
+def auto_completer(keywords):
+    """
+    function to initialize the auto complete utility
+    """
+    completer = AutoSploitCompleter(keywords)
+    readline.set_completer(completer.complete_text)
+    readline.parse_and_bind('tab: complete')
+
+
+def validate_ip_addr(provided, home_ok=False):
     """
     validate an IP address to see if it is real or not
     """
-    not_acceptable = ("0.0.0.0", "127.0.0.1", "255.255.255.255")
+    if not home_ok:
+        not_acceptable = ("0.0.0.0", "127.0.0.1", "255.255.255.255")
+    else:
+        not_acceptable = ("255.255.255.255",)
     if provided not in not_acceptable:
         try:
             socket.inet_aton(provided)
@@ -186,7 +278,7 @@ def load_api_keys(unattended=False, path="{}/etc/tokens".format(CUR_DIR)):
     return api_tokens
 
 
-def cmdline(command):
+def cmdline(command, is_msf=True):
     """
     send the commands through subprocess
     """
@@ -200,7 +292,10 @@ def cmdline(command):
     stdout_buff = []
     for stdout_line in iter(proc.stdout.readline, b''):
         stdout_buff += [stdout_line.rstrip()]
-        print("(msf)>> {}".format(stdout_line).rstrip())
+        if is_msf:
+            print("(msf)>> {}".format(stdout_line).rstrip())
+        else:
+            print("{}".format(stdout_line).rstrip())
 
     return stdout_buff
 
@@ -331,6 +426,9 @@ def save_error_to_file(error_info, error_message, error_class):
 
 
 def download_modules(link):
+    """
+    download new module links
+    """
     import re
     import requests
     import tempfile
@@ -348,3 +446,18 @@ def download_modules(link):
     with open(storage_file.name, 'a+') as tmp:
         tmp.write(retval)
     return storage_file.name
+
+
+def find_similar(command, internal, external):
+    """
+    find commands similar to the one provided
+    """
+    retval = []
+    first_char = command[0]
+    for inter in internal:
+        if inter.startswith(first_char):
+            retval.append(inter)
+    for exter in external:
+        if exter.startswith(first_char):
+            retval.append(exter)
+    return retval
diff --git a/lib/term/terminal.py b/lib/term/terminal.py
