RepoMirrors
/
DSInternals
mirror of https://github.com/MichaelGrafnetter/DSInternals
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
DSInternals/Src/DSInternals.Common/Cryptography/DirectorySecretDecryptor.cs

203 lines
7.5 KiB
C#
Raw Permalink Blame History

using DSInternals.Common.Interop;
using System.IO;
using System.Security.Cryptography;
namespace DSInternals.Common.Cryptography
{
/// <summary>
/// Base class for SessionKey (used in DRS) and PEK List (used in ntds.dit).
/// </summary>
public abstract class DirectorySecretDecryptor
{
private const int HashSize = NativeMethods.NTHashNumBytes;
protected const int KeySize = 16;
protected const int SaltSize = 16;
protected const int DefaultSaltHashRounds = 1;
public abstract byte[] CurrentKey
{
get;
}
/// <summary>
/// Decrypts a generic secret retrieved either from the DB or through replication.
/// </summary>
/// <param name="blob">Encrypted blob.</param>
/// <returns>Decrypted data.</returns>
public abstract byte[] DecryptSecret(byte[] blob);
/// <summary>
/// Encrypts a generic secret to be stored in the DB or sent through replication.
/// </summary>
/// <param name="blob">Cleartext blob.</param>
/// <returns>Encrypted data.</returns>
public abstract byte[] EncryptSecret(byte[] secret);
public abstract SecretEncryptionType EncryptionType
{
get;
}
public byte[] DecryptHash(byte[] blob, int rid)
{
// Decrypt layer 1:
byte[] partiallyDecryptedHash = this.DecryptSecret(blob);
// TODO: Validate decrypted hash size
// Hashes are encrypted using RID in addition to the standard secret encryption:
return DecryptUsingDES(partiallyDecryptedHash, rid);
}
public byte[] EncryptHash(byte[] hash, int rid)
{
// Encryption layer 1
byte[] partiallyEncryptedHash = EncryptUsingDES(hash, rid);
// Encryption layer 2
return this.EncryptSecret(partiallyEncryptedHash);
}
public byte[][] DecryptHashHistory(byte[] blob, int rid)
{
// Decrypt layer 1:
byte[] partiallyDecryptedHashes = this.DecryptSecret(blob);
// TODO: Validate partiallyDecryptedHashes.Length % HashSize
// Split the partially decrypted blob to single hashes and decrypt them one by one using DES+RID:
int hashCount = partiallyDecryptedHashes.Length / HashSize;
byte[][] result = new byte[hashCount][];
for (int i = 0; i < hashCount; i++)
{
byte[] encryptedHash = partiallyDecryptedHashes.Cut(i * HashSize, HashSize);
byte[] decryptedHash = DecryptUsingDES(encryptedHash, rid);
result[i] = decryptedHash;
}
return result;
}
public byte[] EncryptHashHistory(byte[][] hashHistory, int rid)
{
Validator.AssertNotNull(hashHistory, "hashHistory");
int expectedBufferLength = hashHistory.Length * NTHash.HashSize;
using (var buffer = new MemoryStream(expectedBufferLength))
{
// Encryption layer 1: Encrypt the individual hashes
foreach(byte[] hash in hashHistory)
{
byte[] encryptedHash = EncryptUsingDES(hash, rid);
buffer.Write(encryptedHash, 0, encryptedHash.Length);
}
// Encryption layer 2: Encrypt the entire hash history
byte[] encryptedHashHistory = this.EncryptSecret(buffer.ToArray());
return encryptedHashHistory;
}
}
protected static byte[] DecryptUsingDES(byte[] encryptedHash, int rid)
{
byte[] decryptedHash;
NativeMethods.RtlDecryptNtOwfPwdWithIndex(encryptedHash, rid, out decryptedHash);
return decryptedHash;
}
protected static byte[] EncryptUsingDES(byte[] hash, int rid)
{
byte[] encryptedHash;
NativeMethods.RtlEncryptNtOwfPwdWithIndex(hash, rid, out encryptedHash);
return encryptedHash;
}
protected static byte[] DecryptUsingRC4(byte[] data, byte[] salt, byte[] decryptionKey, int saltHashRounds = DefaultSaltHashRounds)
{
byte[] rc4Key = ComputeMD5(decryptionKey, salt, saltHashRounds);
byte[] decryptedData;
NativeMethods.RtlDecryptData2(data, rc4Key, out decryptedData);
return decryptedData;
}
protected static byte[] EncryptUsingRC4(byte[] data, byte[] salt, byte[] encryptionKey, int saltHashRounds = DefaultSaltHashRounds)
{
// Encryption = Decryption with RC4
return DecryptUsingRC4(data, salt, encryptionKey, saltHashRounds);
}
protected static byte[] DecryptUsingAES(byte[] data, byte[] iv, byte[] key)
{
using(var aes = Aes.Create())
{
aes.Mode = CipherMode.CBC;
aes.Padding = PaddingMode.PKCS7;
using(var decryptor = aes.CreateDecryptor(key, iv))
{
using (var inputStream = new MemoryStream(data, false))
{
using (var cryptoStream = new CryptoStream(inputStream, decryptor, CryptoStreamMode.Read))
{
using(var outputStream = new MemoryStream(data.Length))
{
cryptoStream.CopyTo(outputStream);
return outputStream.ToArray();
}
}
}
}
}
}
protected static byte[] EncryptUsingAES(byte[] data, byte[] iv, byte[] key)
{
using (var aes = Aes.Create())
{
aes.Mode = CipherMode.CBC;
aes.Padding = PaddingMode.PKCS7;
using (var encryptor = aes.CreateEncryptor(key, iv))
{
using (var inputStream = new MemoryStream(data, false))
{
using (var cryptoStream = new CryptoStream(inputStream, encryptor, CryptoStreamMode.Read))
{
using (var outputStream = new MemoryStream(data.Length))
{
cryptoStream.CopyTo(outputStream);
return outputStream.ToArray();
}
}
}
}
}
}
protected static byte[] ComputeMD5(byte[] key, byte[] salt, int saltHashRounds = DefaultSaltHashRounds)
{
// TODO: Test that saltHashRounds >= 1
using (var md5 = MD5.Create())
{
// Hash key
md5.TransformBlock(key, 0, key.Length, null, 0);
// Hash salt (saltHashRounds-1) times
for(int i = 1; i < saltHashRounds; i++)
{
md5.TransformBlock(salt, 0, salt.Length, null, 0);
}
// Final salt hash iteration
md5.TransformFinalBlock(salt, 0, salt.Length);
return md5.Hash;
}
}
protected static byte[] GenerateSalt(int size)
{
byte[] salt = new byte[size];
using (var rng = RandomNumberGenerator.Create())
{
rng.GetBytes(salt);
return salt;
}
}
}
}
Reference in New Issue View Git Blame Copy Permalink