msfconsole启动失败并报错`not_after=': bignum too big to convert into `long'的解决方法

最新推荐文章于 2020-08-23 13:41:50 发布
最新推荐文章于 2020-08-23 13:41:50 发布
阅读量949 收藏
点赞数
文章标签: 移动开发 ui 操作系统
原文链接:http://www.cnblogs.com/xdjun/p/9602635.html
版权

1、启动msfconsole失败并报如下错误:

/usr/share/metasploit-framework/lib/msf/core/payload/android.rb:86:in `not_after=': bignum too big to convert into `long' (RangeError)
    from /usr/share/metasploit-framework/lib/msf/core/payload/android.rb:86:in `sign_jar'
    from /usr/share/metasploit-framework/lib/msf/core/payload/android.rb:117:in `generate_jar'
    from /usr/share/metasploit-framework/modules/payloads/singles/android/meterpreter_reverse_tcp.rb:44:in `generate_jar'
    from /usr/share/metasploit-framework/lib/msf/core/payload/android.rb:38:in `generate'
    from /usr/share/metasploit-framework/lib/msf/core/payload.rb:204:in `size'
    from /usr/share/metasploit-framework/lib/msf/core/payload_set.rb:91:in `block in recalculate'
    from /usr/share/metasploit-framework/lib/msf/core/payload_set.rb:78:in `each_pair'
    from /usr/share/metasploit-framework/lib/msf/core/payload_set.rb:78:in `recalculate'
    from /usr/share/metasploit-framework/lib/msf/core/modules/loader/base.rb:250:in `block in load_modules'
    from /usr/share/metasploit-framework/lib/msf/core/modules/loader/base.rb:247:in `each'
    from /usr/share/metasploit-framework/lib/msf/core/modules/loader/base.rb:247:in `load_modules'
    from /usr/share/metasploit-framework/lib/msf/core/module_manager/loading.rb:119:in `block in load_modules'
    from /usr/share/metasploit-framework/lib/msf/core/module_manager/loading.rb:117:in `each'
    from /usr/share/metasploit-framework/lib/msf/core/module_manager/loading.rb:117:in `load_modules'
    from /usr/share/metasploit-framework/lib/msf/core/module_manager/module_paths.rb:41:in `block in add_module_path'
    from /usr/share/metasploit-framework/lib/msf/core/module_manager/module_paths.rb:40:in `each'
    from /usr/share/metasploit-framework/lib/msf/core/module_manager/module_paths.rb:40:in `add_module_path'
    from /usr/share/metasploit-framework/lib/msf/base/simple/framework/module_paths.rb:50:in `block in init_module_paths'
    from /usr/share/metasploit-framework/lib/msf/base/simple/framework/module_paths.rb:49:in `each'
    from /usr/share/metasploit-framework/lib/msf/base/simple/framework/module_paths.rb:49:in `init_module_paths'
    from /usr/share/metasploit-framework/lib/msf/ui/console/driver.rb:219:in `initialize'
    from /usr/share/metasploit-framework/lib/metasploit/framework/command/console.rb:62:in `new'
    from /usr/share/metasploit-framework/lib/metasploit/framework/command/console.rb:62:in `driver'
    from /usr/share/metasploit-framework/lib/metasploit/framework/command/console.rb:48:in `start'
    from /usr/share/metasploit-framework/lib/metasploit/framework/command/base.rb:82:in `start'
    from /usr/bin/msfconsole:48:in `<main>'

 

2、修改android.rb文件

vi /usr/share/metasploit-framework/lib/msf/core/payload/android.rb

将其替换成

# -*- coding: binary -*-
require 'msf/core'
require 'msf/core/payload/uuid/options'
require 'msf/core/payload/transport_config'
require 'rex/payloads/meterpreter/config'

module Msf::Payload::Android

  include Msf::Payload::TransportConfig
  include Msf::Payload::UUID::Options

  #
  # Fix the dex header checksum and signature
  # http://source.android.com/tech/dalvik/dex-format.html
  #
  def fix_dex_header(dexfile)
    dexfile = dexfile.unpack('a8LH40a*')
    dexfile[2] = Digest::SHA1.hexdigest(dexfile[3])
    dexfile[1] = Zlib.adler32(dexfile[2..-1].pack('H40a*'))
    dexfile.pack('a8LH40a*')
  end

  #
  # We could compile the .class files with dx here
  #
  def generate_stage(opts={})
    ''
  end

  def generate_default_stage(opts={})
    ''
  end

  #
  # Used by stagers to construct the payload jar file as a String
  #
  def generate(opts={})
    generate_jar(opts).pack
  end

  def java_string(str)
    [str.length].pack("N") + str
  end

  def generate_config(opts={})
    opts[:uuid] ||= generate_payload_uuid
    ds = opts[:datastore] || datastore

    config_opts = {
      ascii_str:  true,
      arch:       opts[:uuid].arch,
      expiration: ds['SessionExpirationTimeout'].to_i,
      uuid:       opts[:uuid],
      transports: opts[:transport_config] || [transport_config(opts)],
      stageless:  opts[:stageless] == true
    }

    config = Rex::Payloads::Meterpreter::Config.new(config_opts).to_b
    flags = 0
    flags |= 1 if opts[:stageless]
    flags |= 2 if ds['AndroidMeterpreterDebug']
    flags |= 4 if ds['AndroidWakelock']
    flags |= 8 if ds['AndroidHideAppIcon']
    config[0] = flags.chr
    config
  end

  def sign_jar(jar)
    x509_name = OpenSSL::X509::Name.parse(
      "C=US/O=Android/CN=Android Debug"
    )
    key  = OpenSSL::PKey::RSA.new(2048)
    cert = OpenSSL::X509::Certificate.new
    cert.version = 2
    cert.serial = 1
    cert.subject = x509_name
    cert.issuer = x509_name
    cert.public_key = key.public_key

    # Some time within the last 3 years
    cert.not_before = Time.now - rand(3600 * 24 * 365 * 3)

    # From http://developer.android.com/tools/publishing/app-signing.html
    # """
    # A validity period of more than 25 years is recommended.
    #
    # If you plan to publish your application(s) on Google Play, note
    # that a validity period ending after 22 October 2033 is a
    # requirement. You cannot upload an application if it is signed
    # with a key whose validity expires before that date.
    # """
    #
    # 32-bit Ruby (and 64-bit Ruby on Windows) cannot deal with
    # certificate not_after times later than Jan 1st 2038, since long is 32-bit.
    # Set not_after to a random time 2~ years before the first bad date.
    #
    # FIXME: this will break again randomly starting in late 2033, hopefully
    # all 32-bit systems will be dead by then...
    #
    # The timestamp 0x78045d81 equates to 2033-10-22 00:00:01 UTC
    cert.not_after = Time.at(0x78045d81 + rand(0x7fffffff - 0x78045d81))

    # If this line is left out, signature verification fails on OSX.
    cert.sign(key, OpenSSL::Digest::SHA1.new)

    jar.sign(key, cert, [cert])
  end

  def generate_jar(opts={})
    config = generate_config(opts)
    if opts[:stageless]
      classes = MetasploitPayloads.read('android', 'meterpreter.dex')
      # Add stageless classname at offset 8000
      config += "\x00" * (8000 - config.size)
      config += 'com.metasploit.meterpreter.AndroidMeterpreter'
    else
      classes = MetasploitPayloads.read('android', 'apk', 'classes.dex')
    end

    config += "\x00" * (8195 - config.size)
    classes.gsub!("\xde\xad\xba\xad" + "\x00" * 8191, config)

    jar = Rex::Zip::Jar.new
    files = [
      [ "AndroidManifest.xml" ],
      [ "resources.arsc" ]
    ]
    jar.add_files(files, MetasploitPayloads.path("android", "apk"))
    jar.add_file("classes.dex", fix_dex_header(classes))
    jar.build_manifest

    sign_jar(jar)

    jar
  end


end

 

转载于:https://www.cnblogs.com/xdjun/p/9602635.html

weixin_30622181
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
metasploit_in_termux:在Termux中安装Metasploit Framework 6
05-02
Termux中的Metasploit Framework 6 如何: 汽车 source <...手动的 pkg install wget ...chmod +x metasploit.sh ./metasploit.sh 安装完成后 启动postgresql ./postgresql_ctl.sh start... 并运行msfconsole msfconsole
msfconsole启动失败报错`not_after=‘: bignum too big to convert into `long‘的解决方法
mhx123456789的博客
05-14 309
msfconsole启动失败报错`not_after=': bignum too big to convert into `long'的解决方法
第一次执行“msfconsole”启动不了metasploit
T_Tzz的博客
05-09 5687
第一次在Kali liunx32位中打开msfconsole报错 前面是按照网上的教程做的 service postgresql start     # 启动数据库服务(默认数据库里面,已经配置好了) msfdb init            # 初始化数据库 msfconsole            # 启动metasploit 但是打开以后报错,错误信息如下: /usr/shar...
kali 输入 msfconsole 启动报错:/usr/share/metasploit-framework/lib/msf/core/payload/android.rb:87
烟敛寒林的博客
11-24 7426
kali   启动 msfconsole 时候失败,报错: root@kali:~# msfconsole /usr/share/metasploit-framework/lib/msf/core/payload/android.rb:87:in `not_after=': bignum too big to convert into `long' (RangeError)         fro...
kali linux 输入msfconsole 显示[-] ***Rting the Metasploit Framework console...\ [-] * WARNING: No databa
weixin_44114370的博客
04-21 2672
如标题所示如果出现这个怎么处理:我这边是从:https://blog.csdn.net/houbin01/article/details/50966265转载过来的;也是整理自己在使用kali linux 学习中碰到的问题整理自己学习与分享; 当你想启动msfconsole时候 不但没有启动成功反而出现了这段错误代码: [-] ***Rting the Metasploit Framework c...
使用msfconsole常见问题解决
热门推荐
Amdy_amdy的博客
08-23 1万+
问题总结: (其中有我遇到的问题,有我没有遇到的,但我这里总结了一下别人遇到的,未雨绸缪)问题一(这个我也遇到过,不过我安装了上面的win 32就没问题了):原因:这个因为没有/root/.wine目录,执行以下命令即可创建该目录 wine cmd.exe 问题二(我没有遇到):原因:wine在使用过程中会出现图形化界面,这就需要这个基于Mozilla的Gecko渲染引擎来呈现,手动安装所需版本的wine-gecko即可。我们首先下载Wine提供的MSI二进制文件,请注意下载32位版本的,因为我
achat_reverse_tcp_exploit:在AChat 0.150 Beta 7 Windows 7810 x86x64上测试
05-14
[*]在192.168.1.206:4443上启动了反向TCP处理程序 root @ omen:〜#。/ AChat_Payload.sh RHOST:$输入您的目标 主机:$ ENTER您的本地主机 LPORT:$输入您的MSFCONSOLE监听端口(默认值为4444) buf =“” buf +...
77-77.渗透测试-msfconsole漏洞利用流程上.mp4
05-10
77-77.渗透测试-msfconsole漏洞利用流程上.mp4
第三十课:解决msfvenom命令自动补全1
08-03
为了解决这个问题,本课将讲解如何使用zsh的自动补全功能来补全msfvenom的参数。 首先,我们需要在系统中安装zsh shells,并将其设置为默认shell。在Ubuntu系统中,可以使用以下命令来安装zsh: sudo apt-get ...
MSFconsole(msf渗透神器)windows平台可以 使用,亲测可用
11-27
**MSFconsole(Metasploit Framework):渗透测试的强大工具** **标题解析:** "MSFconsole(msf渗透神器)windows平台可以使用,亲测可用" 指出该资源是Metasploit Framework(简称MSF)的一个版本,特别适用于...
msf生成的攻击载荷进行免杀处理
Solar's Blog
04-30 3679
使用MSF编码器避免被查杀的最佳方法之一就是使用MSF编码器(集成入msfvenom功能程序)对我们要生成的攻击载荷文件进行重新编码。MSF编码器是一个非常实用的工具,它能够改变可执行文件中的代码形状,让杀毒软件认不出它原来的样子,而程序功能不会受到任何影响。和电子邮件附件使用Base64重新编码类似,MSF编码器将原始的可执行程序进行编码,并生成一个新的二进制文件。当这个文件运行后,MSF编码器...
rsa_eay_private_encrypt
qssjh0356的专栏
09-13 3411
singing static int RSA_eay_private_decrypt(int flen, const unsigned char *from, unsigned char *to, RSA *rsa, int padding) { BIGNUM *f, *ret; int j,num=0,r= -1; unsigned char *p; unsi
kali msfconsole启动报错解决
weixin_30708329的博客
10-15 3306
kali Linux中自带的metasploit框架长时间搁置不用时,再次使用msfconsole启动报错报错1: #msfconsole   /usr/share/metasploit-framework/lib/msf/core/payload/android.rb:87:in `not_after=': bignum too big to convert into `long' (...
msfconsole无法启动怎么解决
最新发布
05-20
如果你的msfconsole无法启动,可能是因为以下几个原因: 1. Metasploit服务没有启动 2. 数据库连接错误 3. 系统缺少必要的依赖项 针对以上情况,你可以尝试以下解决方法: 1. 启动Metasploit服务:可以使用命令“service postgresql start”启动PostgreSQL服务,并使用命令“msfdb init”初始化Metasploit数据库。 2. 检查数据库连接:使用命令“msfconsole -q”启动msfconsole,然后输入“db_status”命令检查是否成功连接到数据库。 3. 安装必要的依赖项:可以使用命令“apt-get update”更新软件源,然后使用命令“apt-get install libpcap-dev”安装必要的依赖项。

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值