CIS490

bolyai/CIS490

Fork 0

Commit graph

Author	SHA1	Message	Date
max	e2bb76144f	tools/verify_tier3_local.py: Pi-runnable Tier-3 verifier Closes the "have you tested it" gap as much as we can without x86 KVM. The Pi is ARM64 — can't boot Metasploitable2 or run KVM-accelerated guests. But most of the Tier-3 chain doesn't need x86: * chunked_real_binary_upload is just shell commands over a pipe * exploit module TOMLs and the deterministic selector are pure Python * manifest loading + sample selection are pure Python * msfrpcd itself runs on ARM (Ruby + Java) * the receiver's commit gate is the same on any arch verify_tier3_local.py exercises each of those end-to-end, in process, on this Pi: PASS exploits/modules/.toml parse + selector deterministic PASS manifest loads + selector covers every sample PASS chunked binary upload survives a real /bin/sh round-trip (150 KB binary, 26 chunks, sha256-verified end to end) PASS staged samples are Linux i386 ELF (when staged) PASS msfrpcd round-trips core.version (when listening) PASS receiver /v1/health + gate enforces commit allow-list Live result on this Pi today: 5 PASS, 1 SKIP (msfrpcd not installed on the Pi, which is correct — the Pi is the receiver, not a lab host). When run on a lab host after install-tier-3-4.sh, all 6 PASS gives full Tier-3 readiness. What this script does NOT verify (still needs x86 KVM on a lab host, covered by install-tier-3-4.sh's verify step): Metasploitable2 boots under QEMU/KVM * vsftpd_234_backdoor lands a session against it * the chunked-upload binary actually executes inside that session But the chunked-upload step proves every byte of the upload path (printf '%s', heredoc-free path, base64 decode, sha256 verify, chmod, exec scaffold) works against a real POSIX shell. An msfrpc session presents the same shell interface, so a passing local-sh test is strong evidence the production path will work. tests/test_tier3_local_verify.py wraps the deterministic steps (module parse, manifest, chunked upload) so pytest catches regressions automatically. 174/174 total. Operator workflow: ssh into Pi (or lab host), run: /opt/cis490/.venv/bin/python tools/verify_tier3_local.py Each step prints PASS/FAIL/SKIP with detail. Exit 1 if any FAIL.	2026-05-01 03:41:21 -05:00

Author

SHA1

Message

Date

max

e2bb76144f

tools/verify_tier3_local.py: Pi-runnable Tier-3 verifier

Closes the "have you tested it" gap as much as we can without x86 KVM.
The Pi is ARM64 — can't boot Metasploitable2 or run KVM-accelerated
guests. But most of the Tier-3 chain doesn't need x86:

  * chunked_real_binary_upload is just shell commands over a pipe
  * exploit module TOMLs and the deterministic selector are pure Python
  * manifest loading + sample selection are pure Python
  * msfrpcd itself runs on ARM (Ruby + Java)
  * the receiver's commit gate is the same on any arch

verify_tier3_local.py exercises each of those end-to-end, in process,
on this Pi:

  PASS  exploits/modules/*.toml parse + selector deterministic
  PASS  manifest loads + selector covers every sample
  PASS  chunked binary upload survives a real /bin/sh round-trip
        (150 KB binary, 26 chunks, sha256-verified end to end)
  PASS  staged samples are Linux i386 ELF (when staged)
  PASS  msfrpcd round-trips core.version (when listening)
  PASS  receiver /v1/health + gate enforces commit allow-list

Live result on this Pi today: 5 PASS, 1 SKIP (msfrpcd not installed
on the Pi, which is correct — the Pi is the receiver, not a lab
host). When run on a lab host after install-tier-3-4.sh, all 6
PASS gives full Tier-3 readiness.

What this script does NOT verify (still needs x86 KVM on a lab
host, covered by install-tier-3-4.sh's verify step):

  * Metasploitable2 boots under QEMU/KVM
  * vsftpd_234_backdoor lands a session against it
  * the chunked-upload binary actually executes inside that session

But the chunked-upload step proves every byte of the upload path
(printf '%s', heredoc-free path, base64 decode, sha256 verify,
chmod, exec scaffold) works against a real POSIX shell. An msfrpc
session presents the same shell interface, so a passing local-sh
test is strong evidence the production path will work.

tests/test_tier3_local_verify.py wraps the deterministic steps
(module parse, manifest, chunked upload) so pytest catches
regressions automatically. 174/174 total.

Operator workflow: ssh into Pi (or lab host), run:
  /opt/cis490/.venv/bin/python tools/verify_tier3_local.py
Each step prints PASS/FAIL/SKIP with detail. Exit 1 if any FAIL.

2026-05-01 03:41:21 -05:00

1 commit