public static object GetKerberosPacket(byte[] kerberosBuffer)
{
object result = null;
byte[] asn_buffer = AsnIO.FindBER(kerberosBuffer);
if (asn_buffer != null)
{
AsnElt asn_object = AsnElt.Decode(asn_buffer);
try
{
// Get the application number
switch (asn_object.TagValue)
{
case (int)MessageType.krb_tgs_rep:
result = new KerberosTgsRepPacket(kdc_rep: asn_object.Sub[0].Sub);
break;
}
}
catch
{
// TODO: log
}
}
return(result);
}
public static object GetKerberosPacket(byte[] kerberosBuffer, string protocol)
{
object result = null;
// Consider the TCP Record Mark when parsing Kerberos over TCP packets.
if (protocol == "TCP")
{
var recordMarkLengthBuffer = kerberosBuffer.SubArray(0, 4);
// The return value of ToInt32 method depends on system architecture.
// Therfore we explicitly enforce BigEndian.
if (BitConverter.IsLittleEndian)
{
Array.Reverse(recordMarkLengthBuffer);
}
var recordMarkLength = BitConverter.ToInt32(recordMarkLengthBuffer, 0);
if (recordMarkLength + 4 <= kerberosBuffer.Length)
{
kerberosBuffer = kerberosBuffer.SubArray(4, recordMarkLength);
}
else
{
throw new Exception("Kerberos record mark length is out of range");
}
}
byte[] asn_buffer = AsnIO.FindBER(kerberosBuffer);
if (asn_buffer != null)
{
AsnElt asn_object = AsnElt.Decode(asn_buffer);
// Get the application number.
switch (asn_object.TagValue)
{
case (int)MessageType.krb_tgs_rep:
result = new KerberosTgsRepPacket(kdc_rep: asn_object.Sub[0].Sub);
break;
case (int)MessageType.krb_as_rep:
result = new KerberosAsRepPacket(kdc_rep: asn_object.Sub[0].Sub);
break;
}
}
return(result);
}