Metasploit mailing list archives
Re: Railgun with WMI
From: Rob Fuller <mubix () room362 com>
Date: Wed, 11 Jun 2014 08:14:09 -0400
Just wanted to pull this up again as WMI querying is now in ExtAPI do you have everything you need or are you still looking for something else specifically? -- Rob Fuller | Mubix Certified Checkbox Unchecker Room362.com | Hak5.org On Tue, Feb 19, 2013 at 7:56 PM, Brian Seel <brian.seel () gmail com> wrote:
I tweeted this question to David Maloney, and then remembered about this list... I am trying to write something that will do WMI queries through Railgun (similar to what Carlos Perez wrote... but with the Windows API). However, I am running into issues when I have to use a custom structures Basically, I have created a definitions file for ole32.dll in Railgun and then call the following: CoInitializeEx(0, COINIT_MULTITHREADED); CoInitializeSecurity(NULL, -1, NULL, NULL, RPC_C_AUTHN_LEVEL_DEFAULT, RPC_C_IMP_LEVEL_IMPERSONATE, NULL, EOAC_NONE, NULL); CoCreateInstance(CLSID_WbemLocator, 0, CLSCTX_INPROC_SERVER, IID_IWbemLocator, (LPVOID *) &pLoc); The last line has two non standard datatypes, and I am not sure how to handle those. I wrote this all as an extension in C++, and CLSID_WbemLocator and IID_IWbemLocator were defined in a header file. TL;DR: How do I pass nonstandard data types from the windows API to a function with Railgun? MSDN reference: http://msdn.microsoft.com/en-us/library/windows/desktop/aa389762(v=vs.85).aspx Thanks Brian _______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
_______________________________________________ https://dev.metasploit.com/mailman/listinfo/framework
Current thread:
- Re: Railgun with WMI Rob Fuller (Jun 11)