lixmk
commented
7 years ago Awesome! Thanks for adding this version, and the boardtype global.
Closed aaronsilber closed 7 years ago
lixmk
commented
7 years ago Awesome! Thanks for adding this version, and the boardtype global.
Experimentation with an older V1000 has shown mixed results. The board I was using had the version string "V1000" instead of "V2-V1000" so presumably it is an older version. It is super slow so the default 1 second timeout for command injection was not working, and this PR raises it to 5 seconds.
Additionally I refactored references to rspn for board type detection just to clean things up. Since there were a few instances where "V1000" boards may/may not work with the same payloads as "V2-V1000" I added it to some of the conditionals.
It appears that command injection is closer to working on boards like this, with these modifications. I don't have enough hardware hooked up to test exfil, lock, unlock, or implant (no readers currently) however the board does send a GET request to rhost as intended, so that's progress.
Tested hardware: