mirror of
https://github.com/MichaelGrafnetter/DSInternals
synced 2025-01-08 07:00:17 +00:00
127 lines
4.7 KiB
C#
127 lines
4.7 KiB
C#
using DSInternals.Common.Interop;
|
|
using System;
|
|
using System.IO;
|
|
using System.Security.Cryptography;
|
|
|
|
namespace DSInternals.Common.Cryptography
|
|
{
|
|
/// <summary>
|
|
/// Base class for SessionKey (used in DRS) and PEK List (used in ntds.dit).
|
|
/// </summary>
|
|
public abstract class DirectorySecretDecryptor
|
|
{
|
|
private const int HashSize = NativeMethods.NTHashNumBytes;
|
|
|
|
protected const int KeySize = 16;
|
|
protected const int SaltSize = 16;
|
|
protected const int DefaultSaltHashRounds = 1;
|
|
public abstract byte[] CurrentKey
|
|
{
|
|
get;
|
|
}
|
|
|
|
/// <summary>
|
|
/// Decrypts a generic secret retrieved either from the DB or through replication.
|
|
/// </summary>
|
|
/// <param name="blob">Encrypted blob.</param>
|
|
/// <returns>Decrypted data.</returns>
|
|
public abstract byte[] DecryptSecret(byte[] blob);
|
|
|
|
public abstract SecretEncryptionType EncryptionType
|
|
{
|
|
get;
|
|
}
|
|
|
|
public byte[] DecryptHash(byte[] blob, int rid)
|
|
{
|
|
// Decrypt layer 1:
|
|
byte[] partiallyDecryptedHash = this.DecryptSecret(blob);
|
|
// TODO: Validate decrypted hash size
|
|
|
|
// Hashes are encrypted using RID in addition to the standard secret encryption:
|
|
return DecryptUsingDES(partiallyDecryptedHash, rid);
|
|
}
|
|
|
|
public byte[][] DecryptHashHistory(byte[] blob, int rid)
|
|
{
|
|
// Decrypt layer 1:
|
|
byte[] partiallyDecryptedHashes = this.DecryptSecret(blob);
|
|
|
|
// TODO: Validate partiallyDecryptedHashes.Length % HashSize
|
|
|
|
// Split the partially decrypted blob to single hashes and decrypt them one by one using DES+RID:
|
|
int hashCount = partiallyDecryptedHashes.Length / HashSize;
|
|
byte[][] result = new byte[hashCount][];
|
|
for (int i = 0; i < hashCount; i++)
|
|
{
|
|
byte[] encryptedHash = partiallyDecryptedHashes.Cut(i * HashSize, HashSize);
|
|
byte[] decryptedHash = DecryptUsingDES(encryptedHash, rid);
|
|
result[i] = decryptedHash;
|
|
}
|
|
return result;
|
|
}
|
|
|
|
protected static byte[] DecryptUsingDES(byte[] encryptedHash, int rid)
|
|
{
|
|
byte[] decryptedHash;
|
|
NativeMethods.RtlDecryptNtOwfPwdWithIndex(encryptedHash, rid, out decryptedHash);
|
|
return decryptedHash;
|
|
}
|
|
|
|
protected static byte[] DecryptUsingRC4(byte[] data, byte[] salt, byte[] decryptionKey, int saltHashRounds = DefaultSaltHashRounds)
|
|
{
|
|
byte[] rc4Key = ComputeMD5(decryptionKey, salt, saltHashRounds);
|
|
byte[] decryptedData;
|
|
NativeMethods.RtlDecryptData2(data, rc4Key, out decryptedData);
|
|
return decryptedData;
|
|
}
|
|
|
|
protected static byte[] EncryptUsingRC4(byte[] data, byte[] salt, byte[] encryptionKey, int saltHashRounds = DefaultSaltHashRounds)
|
|
{
|
|
// Encryption = Decryption with RC4
|
|
return DecryptUsingRC4(data, salt, encryptionKey, saltHashRounds);
|
|
}
|
|
|
|
protected static byte[] DecryptUsingAES(byte[] data, byte[] iv, byte[] key)
|
|
{
|
|
using(var aes = AesManaged.Create())
|
|
{
|
|
aes.Mode = CipherMode.CBC;
|
|
aes.Padding = PaddingMode.Zeros;
|
|
using(var decryptor = aes.CreateDecryptor(key, iv))
|
|
{
|
|
using (var inputStream = new MemoryStream(data, false))
|
|
{
|
|
using (var cryptoStream = new CryptoStream(inputStream, decryptor, CryptoStreamMode.Read))
|
|
{
|
|
using(var outputStream = new MemoryStream(data.Length))
|
|
{
|
|
cryptoStream.CopyTo(outputStream);
|
|
return outputStream.ToArray();
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
protected static byte[] ComputeMD5(byte[] key, byte[] salt, int saltHashRounds = DefaultSaltHashRounds)
|
|
{
|
|
// TODO: Test that saltHashRounds >= 1
|
|
using (var md5 = new MD5CryptoServiceProvider())
|
|
{
|
|
// Hash key
|
|
md5.TransformBlock(key, 0, key.Length, null, 0);
|
|
// Hash salt (saltHashRounds-1) times
|
|
for(int i = 1; i < saltHashRounds; i++)
|
|
{
|
|
md5.TransformBlock(salt, 0, salt.Length, null, 0);
|
|
}
|
|
// Final salt hash iteration
|
|
md5.TransformFinalBlock(salt, 0, salt.Length);
|
|
return md5.Hash;
|
|
}
|
|
}
|
|
}
|
|
}
|