public SnaffCon(Options options)
{
MyOptions = options;
Mq = BlockingMq.GetMq();
int shareThreads = MyOptions.ShareThreads;
int treeThreads = MyOptions.TreeThreads;
int fileThreads = MyOptions.FileThreads;
ShareTaskScheduler = new BlockingStaticTaskScheduler(shareThreads, MyOptions.MaxShareQueue);
TreeTaskScheduler = new BlockingStaticTaskScheduler(treeThreads, MyOptions.MaxTreeQueue);
FileTaskScheduler = new BlockingStaticTaskScheduler(fileThreads, MyOptions.MaxFileQueue);
FileScanner = new FileScanner();
TreeWalker = new TreeWalker();
ShareFinder = new ShareFinder();
}
private void ShareDiscovery(string[] computerTargets)
{
Mq.Info("Starting to find readable shares.");
foreach (string computer in computerTargets)
{
// ShareFinder Task Creation - this kicks off the rest of the flow
Mq.Info("Creating a sharefinder task for " + computer);
ShareTaskScheduler.New(() =>
{
try
{
ShareFinder shareFinder = new ShareFinder();
shareFinder.GetComputerShares(computer);
}
catch (Exception e)
{
Mq.Trace(e.ToString());
}
});
}
Mq.Info("Created all sharefinder tasks.");
}
public void Execute()
{
var targetComputers = new List <string>();
var foundShares = new ConcurrentBag <string>();
var statusUpdateTimer =
new Timer(TimeSpan.FromMinutes(1)
.TotalMilliseconds)
{
AutoReset = true
}; // Set the time (5 mins in this case)
statusUpdateTimer.Elapsed += StatusUpdate;
statusUpdateTimer.Start();
if (Config.DirTarget == null)
{
Config.Mq.Info("Getting computers from AD.");
// We do this single threaded cos it's fast and not easily divisible.
var activeDirectory = new ActiveDirectory(Config);
targetComputers = activeDirectory.DomainComputers;
if (targetComputers == null)
{
Config.Mq.Error(
"Something f****d out finding the computers in the domain. You must be holding it wrong.");
while (true)
{
Config.Mq.Terminate();
}
}
var numTargetComputers = targetComputers.Count.ToString();
Config.Mq.Info("Got " + numTargetComputers + " computers from AD.");
if (targetComputers.Count == 0)
{
Config.Mq.Error("Didn't find any domain computers. Seems weird. Try pouring water on it.");
while (true)
{
Config.Mq.Terminate();
}
}
}
else
{
foundShares.Add(Config.DirTarget);
}
if (Config.ShareFinderEnabled)
{
Config.Mq.Info("Starting to find readable shares.");
foreach (var computer in targetComputers)
{
Config.Mq.Info("Creating a sharefinder task for " + computer);
var t = SharefinderTaskFactory.StartNew(() =>
{
try
{
var shareFinder = new ShareFinder();
var taskFoundShares = shareFinder.GetReadableShares(computer, Config);
if (taskFoundShares.Count > 0)
{
foreach (var taskFoundShare in taskFoundShares)
{
if (!String.IsNullOrWhiteSpace(taskFoundShare))
{
foundShares.Add(taskFoundShare);
}
}
}
else
{
Config.Mq.Info(computer + " had no shares on it");
}
}
catch (Exception e)
{
Config.Mq.Trace(e.ToString());
}
}, SharefinderCts.Token);
SharefinderTasks.Add(t);
}
Config.Mq.Info("Created all " + SharefinderTasks.Count + " sharefinder tasks.");
}
if (Config.ShareScanEnabled)
{
var shareFinderTasksDone = false;
Config.Mq.Info("Starting to search shares for files.");
// keep going until all sharefinder tasks are completed or faulted, and there's no shares left to start scanner tasks for
while (shareFinderTasksDone == false || !foundShares.IsEmpty)
{
// check if all the shareFinder Tasks are done
var completedShareFinderTasks = Array.FindAll(SharefinderTasks.ToArray(),
element => element.Status == TaskStatus.RanToCompletion);
var faultedShareFinderTasks = Array.FindAll(SharefinderTasks.ToArray(),
element => element.Status == TaskStatus.Faulted);
if ((completedShareFinderTasks.Length + faultedShareFinderTasks.Length) ==
SharefinderTasks.Count)
{
// update the completion status.
shareFinderTasksDone = true;
Config.Mq.Info("All Sharefinder Tasks completed.");
}
//pull shares out of the result bag and make scanner tasks for them.
while (foundShares.TryTake(out var share))
{
if (!String.IsNullOrWhiteSpace(share))
{
// skip ipc$ and print$ every time
if ((share.ToLower().EndsWith("ipc$")) || (share.ToLower().EndsWith("print$")))
{
continue;
}
if (share.ToLower().EndsWith("sysvol"))
{
if (SysvolTaskCreated)
{
continue;
}
SysvolTaskCreated = true;
}
else if (share.ToLower().EndsWith("netlogon"))
{
if (NetlogonTaskCreated)
{
continue;
}
NetlogonTaskCreated = true;
}
// check if it's an admin share
var isCDollarShare = share.EndsWith("C$");
// put a result on the queue
Config.Mq.ShareResult(new ShareFinder.ShareResult {
IsAdminShare = isCDollarShare, Listable = true, SharePath = share
});
// bail out if we're not scanning admin shares
if (isCDollarShare && !Config.ScanCDollarShares)
{
continue;
}
// otherwise create a TreeWalker task
Config.Mq.Info("Creating ShareScanner for:" + share);
var t = SharescannerTaskFactory.StartNew(() =>
{
try
{
var treeWalker = new TreeWalker(Config, share);
}
catch (Exception e)
{
Config.Mq.Trace(e.ToString());
}
}, SharescannerCts.Token);
SharescannerTasks.Add(t);
}
}
}
var shareScannerTasksDone = false;
while (!shareScannerTasksDone)
{
var completedShareScannerTasks = Array.FindAll(SharescannerTasks.ToArray(),
element => element.Status == TaskStatus.RanToCompletion);
var faultedShareScannerTasks = Array.FindAll(SharescannerTasks.ToArray(),
element => element.Status == TaskStatus.Faulted);
if ((completedShareScannerTasks.Length + faultedShareScannerTasks.Length) ==
SharescannerTasks.Count)
{
shareScannerTasksDone = true;
Config.Mq.Info("All ShareScanner tasks finished!");
}
}
}
Config.Mq.Info("Finished!");
Console.ResetColor();
Environment.Exit(0);
// This is the main execution thread.
}
