Halaman utama Jelajahi Bantuan
Masuk
unidan
/
libdsm
Liatin 1
Bintangi 0
Fork 0
Berkas Masalah 1 Tarik Permintaan 0 Wiki
Pohon: dc7a0e8ef7
Ranting Tag
libdsm
/
bin
/
ntlm.c

ntlm.c 3.5 KB
Riwayat Mentahan

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103 
  1. //---------------------------------------------------------------------------
    2. 

  2. //  __________________    _________  _____            _____  .__         ._.
    3. 

  3. //  \______   \______ \  /   _____/ /     \          /  _  \ |__| ____   | |
    4. 

  4. //   |    |  _/|    |  \ \_____  \ /  \ /  \        /  /_\  \|  _/ __ \  | |
    5. 

  5. //   |    |   \|    `   \/        /    Y    \      /    |    |  \  ___/   \|
    6. 

  6. //   |______  /_______  /_______  \____|__  / /\   \____|__  |__|\___ |   __
    7. 

  7. //          \/        \/        \/        \/  )/           \/        \/   \/
    8. 

  8. //
    9. 

  9. // This file is part of libdsm. Copyright © 2014 VideoLabs SAS
    10. 

  10. //
    11. 

  11. // Author: Julien 'Lta' BALLET <contact@lta.io>
    12. 

  12. //
    13. 

  13. // This program is free software. It comes without any warranty, to the extent
    14. 

  14. // permitted by applicable law. You can redistribute it and/or modify it under
    15. 

  15. // the terms of the Do What The Fuck You Want To Public License, Version 2, as
    16. 

  16. // published by Sam Hocevar. See the COPYING file for more details.
    17. 

  17. //----------------------------------------------------------------------------
    18. 

  18. 

  19. #define _BSD_SOURCE             /* See feature_test_macros(7) */
    20. 

  20. #include <endian.h>
    21. 

  21. 

  22. #include <assert.h>
    23. 

  23. #include <ctype.h>
    24. 

  24. #include <stdlib.h>
    25. 

  25. #include <string.h>
    26. 

  26. 

  27. #include "mdx/md4.h"
    28. 

  28. #include "rc4/rc4.h"
    29. 

  29. #include "bdsm/debug.h"
    30. 

  30. #include "bdsm/smb_ntlm.h"
    31. 

  31. 

  32. int hexprint(const char *name, const char *data, size_t data_sz)
    33. 

  33. {
    34. 

  34.   printf("%s =", name);
    35. 

  35. 

  36.   for(size_t i = 0; i < data_sz; i++)
    37. 

  37.   {
    38. 

  38.     if (i % 16 == 0)
    39. 

  39.     {
    40. 

  40.       printf("\n0x");
    41. 

  41.     }
    42. 

  42.     printf("%0.2hhx", *(data + i));
    43. 

  43.   }
    44. 

  44.   printf("\n");
    45. 

  45. }
    46. 

  46. 

  47. int main(int argc, char const *argv[])
    48. 

  48. {
    49. 

  49.   // const char  *user     = "lta";//"BDSM";
    50. 

  50.   // const char  *password = "lta";//"qweasd42";
    51. 

  51.   // const char  *domain   = "MACBOOKPRO-F13E";//"CERBERE";
    52. 

  52.   const char  *user     = "BDSM";
    53. 

  53.   const char  *password = "qweasd";
    54. 

  54.   const char  *domain   = "STELLAR";
    55. 

  55.   const char  *computer = "COMPUTER";
    56. 

  56.   //const char  *session_key    = "UUUUUUUUUUUUUUUU";
    57. 

  57.   //uint64_t    srv_challenge   = htobe64(0xe4de7b5beb9ed434);
    58. 

  58.   //uint64_t    usr_challenge   = htobe64(0x536843b23b75eb7f);
    59. 

  59.   uint64_t    srv_challenge   = htobe64(0x80206d74ea232d2c);
    60. 

  60.   uint64_t    usr_challenge   = htobe64(0x9a12f85759053d89);
    61. 

  61.   uint64_t    srv_ts          = htobe64(0x80b0dda51669cf01);
    62. 

  62.   uint64_t    srv_ts2         = htobe64(0x34fd56df1669cf01);
    63. 

  63.   char        *lm2, *ntlm2;
    64. 

  64. 

  65.   smb_ntlm_blob *blob;
    66. 

  66.   size_t        blob_sz;
    67. 

  67. 

  68.   smb_ntlmh   hashv1, hashv2, xkey, xkey_crypt;
    69. 

  69. 

  70.   smb_ntlm_hash(password, hashv1);
    71. 

  71.   smb_ntlm2_hash(user, password, domain, hashv2);
    72. 

  72.   lm2 = smb_lm2_response(hashv2, srv_challenge, usr_challenge);
    73. 

  73. 

  74.   blob_sz = 16;//smb_ntlm_make_blob(&blob, srv_ts, usr_challenge, domain, domain, srv_ts2);
    75. 

  75.   ntlm2 = smb_ntlm2_response(&hashv2, srv_challenge, lm2, blob_sz);
    76. 

  76.   //smb_ntlm2_session_key(&hashv2, ntlm2, &session_key);
    77. 

  77. 

  78.   smb_ntlm_generate_xkey(xkey);
    79. 

  79.   smb_ntlm2_session_key(&hashv2, ntlm2, xkey, xkey_crypt);
    80. 

  80. 

  81. 

  82.   // MD4_CTX ctx;
    83. 

  83.   // MD4_Init(&ctx);
    84. 

  84.   // MD4_Update(&ctx, hashv1, 16);
    85. 

  85.   // MD4_Final(session_key, &ctx);
    86. 

  86.   hexprint("Srv Challenge", &srv_challenge, 8);
    87. 

  87.   hexprint("Usr Challenge", &usr_challenge, 8);
    88. 

  88.   //printf("Server challenge = %.8lx\n", srv_challenge);
    89. 

  89.   //printf("User challenge = %.8lx\n", usr_challenge);
    90. 

  90. 

  91.   printf("Timestamp = %.8lx\n", srv_ts);
    92. 

  92.   printf("-------------------------------------\n");
    93. 

  93. 

  94.   hexprint("NT# v1", hashv1, 16);
    95. 

  95.   hexprint("NT# v2", hashv2, 16);
    96. 

  96. 

  97.   hexprint("LMv2 Response", lm2, 24);
    98. 

  98.   hexprint("NTLMv2 Response", ntlm2, blob_sz + 16);
    99. 

  99.   hexprint("Session Key", xkey_crypt, 16);
    100. 

  100. 

  101.   return 0;
    102. 

  102. }
    103. 

  103.