Add tests, docs, linter fixes, and some simplifications.

Author: terrorbyte

cli/commandline.go

@@ -837,91 +837,70 @@ func LocalCmdLineParse(conf *config.Config) bool {
 	return handleLogOptions(logFile, frameworkLogLevel, exploitLogLevel)
 }
 
-// Adds default flags for payload types, this allows classes of payloads that are supported to
-// use globally defined command line flags without having to redifine them each exploit.
-func addPayloadFlags(conf *config.Config) {
-	if conf.PayloadFlags {
-		if len(conf.SupportedPayloads) == 1 {
-			conf.SupportedPayloads[0].Default = payload.Default
-		}
-		hasDefault := false
-		defaultType := ""
-		defaultArch := ""
-		typeOptions := []string{}
-		archOptions := []string{}
-		count := map[payload.Types]int{}
-		for i, supported := range conf.SupportedPayloads {
-			switch supported.Types {
-			case payload.LinuxCommand:
-				_, exists := conf.StringFlagsMap["command"]
-				if !exists {
-					conf.CreateStringFlag("command", "", "Command to use for the exploit, an empty string will use the exploit default.")
-				}
-			case payload.WindowsCommand:
-				_, exists := conf.StringFlagsMap["command"]
-				if !exists {
-					conf.CreateStringFlag("command", "", "Command to use for the exploit, an empty string will use the exploit default.")
-				}
-			case payload.MacCommand:
-				_, exists := conf.StringFlagsMap["command"]
-				if !exists {
-					conf.CreateStringFlag("command", "", "Command to use for the exploit, an empty string will use the exploit default.")
-				}
-			case payload.GenericCommand:
-				_, exists := conf.StringFlagsMap["command"]
-				if !exists {
-					conf.CreateStringFlag("command", "", "Command to use for the exploit, an empty string will use the exploit default.")
-				}
-			case payload.LinuxELF:
-				_, exists := conf.StringFlagsMap["payload"]
-				if !exists {
-					conf.CreateStringFlag("payload", "", "Path to load custom payload from, an empty string will use the exploit default.")
-				}
-			case payload.LinuxSO:
-				_, exists := conf.StringFlagsMap["payload"]
-				if !exists {
-					conf.CreateStringFlag("payload", "", "Path to load custom payload from, an empty string will use the exploit default.")
-				}
-			case payload.WindowsEXE:
-				_, exists := conf.StringFlagsMap["payload"]
-				if !exists {
-					conf.CreateStringFlag("payload", "", "Path to load custom payload from, an empty string will use the exploit default.")
-				}
-
-			case payload.WindowsDLL:
-				_, exists := conf.StringFlagsMap["payload"]
-				if !exists {
-					conf.CreateStringFlag("payload", "", "Path to load custom payload from, an empty string will use the exploit default.")
-				}
-			case payload.Webshell:
-				_, exists := conf.StringFlagsMap["payload"]
-				if !exists {
-					conf.CreateStringFlag("payload", "", "Path to load custom payload from, an empty string will use the exploit default.")
-				}
-			default:
-				output.PrintFrameworkError("Unexpected payload type used")
+func addDefaultPayloadFlags(conf *config.Config) (string, string, map[payload.Type]int, []string, []string) {
+	if len(conf.SupportedPayloads) == 1 {
+		conf.SupportedPayloads[0].Default = payload.Default
+	}
+	hasDefault := false
+	defaultType := ""
+	defaultArch := ""
+	typeOptions := []string{}
+	archOptions := []string{}
+	count := map[payload.Type]int{}
+	for i, supported := range conf.SupportedPayloads {
+		switch supported.Type {
+		case payload.LinuxCommand,
+			payload.WindowsCommand,
+			payload.WindowsPowerShellCommand,
+			payload.MacCommand,
+			payload.GenericCommand:
+			_, exists := conf.StringFlagsMap["command"]
+			if !exists {
+				conf.CreateStringFlag("command", "", "Command to use for the exploit, an empty string will use the exploit default.")
 			}
+		case payload.LinuxELF,
+			payload.LinuxSO,
+			payload.WindowsEXE,
+			payload.WindowsDLL,
+			payload.Webshell:
+			_, exists := conf.StringFlagsMap["payload"]
+			if !exists {
+				conf.CreateStringFlag("payload", "", "Path to load custom payload from, an empty string will use the exploit default.")
+			}
+		case payload.UnspecifiedType:
+			output.PrintFrameworkError("Unspecified payload type used")
+		default:
+			output.PrintFrameworkError("Unexpected payload type used")
+		}
 
-			count[supported.Types]++
-			typeOptions = append(typeOptions, supported.Types.String())
-			archOptions = append(archOptions, supported.Arch.String())
-			if i == 0 && len(conf.SupportedPayloads) == 1 {
-				defaultType = supported.Types.String()
-				defaultArch = supported.Arch.String()
+		count[supported.Type]++
+		typeOptions = append(typeOptions, supported.Type.String())
+		archOptions = append(archOptions, supported.Arch.String())
+		if i == 0 && len(conf.SupportedPayloads) == 1 {
+			defaultType = supported.Type.String()
+			defaultArch = supported.Arch.String()
 
-				continue
-			}
-			if hasDefault && supported.Default == payload.Default {
-				output.PrintfFrameworkWarn("Multiple default payloads selected, using the first and skipping: %s", supported.Types.String())
+			continue
+		}
+		if hasDefault && supported.Default == payload.Default {
+			output.PrintfFrameworkWarn("Multiple default payloads selected, using the first and skipping: %s", supported.Type.String())
 
-				continue
-			}
-			if !hasDefault && supported.Default == payload.Default {
-				defaultType = supported.Types.String()
-				defaultArch = supported.Arch.String()
-			}
+			continue
+		}
+		if !hasDefault && supported.Default == payload.Default {
+			defaultType = supported.Type.String()
+			defaultArch = supported.Arch.String()
 		}
+	}
+
+	return defaultType, defaultArch, count, typeOptions, archOptions
+}
 
+// Adds default flags for payload types, this allows classes of payloads that are supported to
+// use globally defined command line flags without having to redifine them each exploit.
+func addPayloadFlags(conf *config.Config) {
+	if conf.PayloadFlags {
+		defaultType, defaultArch, count, typeOptions, archOptions := addDefaultPayloadFlags(conf)
 		if len(conf.SupportedPayloads) > 1 {
 			if defaultType == "" {
 				output.PrintFrameworkError("No default payload type was defined.")

config/config.go

@@ -505,6 +505,18 @@ func (conf *Config) ResolveC2Payload() c2.Impl {
 //		}
 //		// continue with non-custom payload generation
 //	}
+//
+// Alternatively, simple payloads can utilize the payload type options
+// during payload generations to substitute in the custom payloads by using
+// the type specific checks:
+//
+//	if conf.HasCustomPayload() {
+//		if conf.SelectedPayload.Type.IsCommand() {
+//			output.PrintfStatus("using '%s' in place of default", string(conf.CustomPayload))
+//		} else {
+//			output.PrintfStatus("using binary len %d in place of default", len(string(conf.CustomPayload)))
+//		}
+//	}
 func (conf *Config) AddPayload(p ...payload.Supported) {
 	conf.PayloadFlags = true
 	hasDefault := false

framework.go

@@ -472,6 +472,69 @@ func updateGoDebug() {
 	}
 }
 
+func addPayloadMetadata(conf *config.Config) {
+	cmd := conf.StringFlagsMap["command"]
+	p := conf.StringFlagsMap["payload"]
+	if p != nil && cmd != nil {
+		if *p != "" && *cmd != "" {
+			output.PrintFrameworkError("Both `-command` and `-payload` cannot be set at the same time.")
+
+			return
+		}
+	}
+	payloadType := conf.StringFlagsMap["payload-type"]
+	if payloadType != nil {
+		p := payload.TypeFromString(*payloadType)
+		if p == payload.UnspecifiedType {
+			output.PrintfFrameworkError("payload type not supported: %s", *payloadType)
+
+			return
+		}
+		for _, t := range conf.SupportedPayloads {
+			if t.Type == p {
+				conf.SelectedPayload = t
+			}
+		}
+	}
+	if cmd != nil {
+		if *cmd != "" {
+			conf.CustomPayload = []byte(*cmd)
+		}
+	}
+	if p != nil {
+		switch conf.SelectedPayload.Type {
+		case payload.LinuxSO,
+			payload.LinuxELF,
+			payload.WindowsEXE,
+			payload.WindowsDLL,
+			payload.Webshell:
+			if *p == "" {
+				output.PrintError("Selected payload type requires `-payload` to be used")
+
+				return
+			}
+		case payload.GenericCommand,
+			payload.WindowsPowerShellCommand,
+			payload.WindowsCommand,
+			payload.MacCommand,
+			payload.LinuxCommand:
+		case payload.UnspecifiedType:
+			output.PrintFrameworkError("Unspecified payload type used")
+		default:
+		}
+		if *p != "" {
+			d, err := os.ReadFile(*p)
+			if err != nil {
+				output.PrintfFrameworkError("Could not read custom payload '%s': %s", *p, err.Error())
+
+				return
+			}
+			conf.CustomPayload = d
+		}
+	}
+	output.PrintfFrameworkDebug("selecting payload type: %s", *payloadType)
+}
+
 // Effectively the package main function. Parses configuration, starts command and control,
 // controls which targets are scanned, initiates call down into the exploits implementation
 // and is ultimately responsible for waiting for all c2 and attack threads to finish.
@@ -487,56 +550,7 @@ func RunProgram(sploit Exploit, conf *config.Config) {
 	}
 	// Early start the payload flags
 	if conf.PayloadFlags {
-		cmd := conf.StringFlagsMap["command"]
-		p := conf.StringFlagsMap["payload"]
-		if p != nil && cmd != nil {
-			if *p != "" && *cmd != "" {
-				output.PrintFrameworkError("Both `-command` and `-payload` cannot be set at the same time.")
-
-				return
-			}
-		}
-		payloadType := conf.StringFlagsMap["payload-type"]
-		if payloadType != nil {
-			p, ok := payload.TypeFromString(*payloadType)
-			if !ok {
-				output.PrintfFrameworkError("payload type not supported: %s", *payloadType)
-
-				return
-			}
-			for _, t := range conf.SupportedPayloads {
-				if t.Types == p {
-					conf.SelectedPayload = t
-				}
-			}
-		}
-		if cmd != nil {
-			if *cmd != "" {
-				conf.CustomPayload = []byte(*cmd)
-			}
-		}
-		if p != nil {
-			switch conf.SelectedPayload.Types {
-			case payload.LinuxSO, payload.LinuxELF, payload.WindowsEXE, payload.WindowsDLL, payload.Webshell:
-				if *p == "" {
-					output.PrintError("Selected payload type requires `-payload` to be used")
-
-					return
-				}
-			case payload.GenericCommand, payload.WindowsCommand, payload.MacCommand, payload.LinuxCommand:
-			default:
-			}
-			if *p != "" {
-				d, err := os.ReadFile(*p)
-				if err != nil {
-					output.PrintfFrameworkError("Could not read custom payload '%s': %s", *p, err.Error())
-
-					return
-				}
-				conf.CustomPayload = d
-			}
-		}
-		output.PrintfFrameworkDebug("selecting payload type: %s", *payloadType)
+		addPayloadMetadata(conf)
 	}
 
 	// create and init the db if the user provided a database