mirror of
https://github.com/calebstewart/pwncat.git
synced 2024-11-23 17:15:38 +01:00
103 lines
2.8 KiB
Python
103 lines
2.8 KiB
Python
#!/usr/bin/env python3
|
|
import io
|
|
import os
|
|
import base64
|
|
import subprocess
|
|
|
|
import pytest
|
|
|
|
from pwncat.util import random_string
|
|
from pwncat.platform.windows import PowershellError
|
|
|
|
|
|
def test_platform_dir_io(session):
|
|
"""Test creating a directory and interacting with the contents"""
|
|
|
|
# Create a path object representing the new remote directory
|
|
path = session.platform.Path(random_string())
|
|
|
|
# Create the directory
|
|
path.mkdir()
|
|
|
|
# We construct a new path object to avoid cached stat results
|
|
assert session.platform.Path(str(path)).is_dir()
|
|
|
|
# Create a file
|
|
(path / "test.txt").touch()
|
|
|
|
assert "test.txt" in [item.name for item in path.iterdir()]
|
|
|
|
|
|
def test_platform_run(session):
|
|
|
|
# Ensure command output works
|
|
output_remote = session.platform.run(
|
|
["echo", "hello world"], shell=True, capture_output=True, text=True, check=True
|
|
)
|
|
assert output_remote.stdout == "hello world\n"
|
|
|
|
# Ensure we capture the process return code properly
|
|
with pytest.raises(subprocess.CalledProcessError):
|
|
session.platform.run("this_command_doesnt_exist", shell=True, check=True)
|
|
|
|
|
|
def test_platform_su(session):
|
|
"""Test running `su`"""
|
|
|
|
try:
|
|
session.platform.su("john", "P@ssw0rd")
|
|
session.platform.refresh_uid()
|
|
|
|
assert session.current_user().name == "john"
|
|
|
|
with pytest.raises(PermissionError):
|
|
session.platform.su("caleb", "wrongpassword")
|
|
|
|
except NotImplementedError:
|
|
pass
|
|
|
|
|
|
def test_platform_sudo(session):
|
|
"""Testing running `sudo`"""
|
|
|
|
try:
|
|
|
|
# We have permission to run `/bin/sh *`, so this should succeed
|
|
proc = session.platform.sudo(
|
|
"whoami", user="john", shell=True, stdout=subprocess.PIPE, text=True
|
|
)
|
|
output = proc.stdout.read().strip()
|
|
|
|
assert proc.wait() == 0
|
|
assert output == "john"
|
|
|
|
# We don't have permission to run a bare `whoami`, so this should fail
|
|
proc = session.platform.sudo(
|
|
["whoami"], user="john", shell=False, stdout=subprocess.PIPE, text=True
|
|
)
|
|
output = proc.stdout.read().strip()
|
|
|
|
assert proc.wait() != 0
|
|
assert output != "john"
|
|
except NotImplementedError:
|
|
pass
|
|
|
|
|
|
def test_windows_powershell(windows):
|
|
"""Test powershell execution"""
|
|
|
|
# Run a real powershell snippet
|
|
r = windows.platform.powershell("$PSVersionTable.PSVersion")
|
|
assert len(r) == 1
|
|
assert isinstance(r[0], dict)
|
|
|
|
# Ensure we get an exception
|
|
with pytest.raises(PowershellError):
|
|
windows.platform.powershell("CommandletDoes-NotExist")
|
|
|
|
# Run from a file descriptor
|
|
filp = io.BytesIO(b"""$PSVersionTable.PSVersion""")
|
|
r = windows.platform.powershell(filp)
|
|
assert len(r) == 1
|
|
assert isinstance(r[0], dict)
|