config: initial implementation

Author: oiweiwei

config/config.go

@@ -0,0 +1,69 @@
+package command_line
+
+import (
+	"flag"
+	"os"
+
+	"github.com/oiweiwei/go-msrpc/config"
+)
+
+func BindFlags(c *config.Config, flagSet *flag.FlagSet) {
+
+	flagSet.BoolVar(&c.Debug, "debug", c.Debug, "enable debug output")
+
+	flagSet.StringVar(&c.Server, "server", c.Server, "server to connect to")
+	flagSet.StringVar(&c.Domain, "domain", c.Domain, "domain to authenticate to")
+	flagSet.StringVar(&c.Username, "username", c.Username, "username to authenticate as")
+	flagSet.StringVar(&c.Workstation, "workstation", c.Workstation, "workstation to authenticate from")
+
+	flagSet.DurationVar(&c.Timeout, "timeout", c.Timeout, "timeout")
+
+	flagSet.StringVar(&c.Credential.Password, "password", c.Credential.Password, "password to authenticate with")
+	flagSet.StringVar(&c.Credential.NTHash, "nthash", c.Credential.NTHash, "NT hash to authenticate with")
+	flagSet.StringVar(&c.Credential.MachineAccountPassword, "machine-account-password", c.Credential.MachineAccountPassword, "machine account password to authenticate with")
+	flagSet.StringVar(&c.Credential.MachineAccountNTHash, "machine-account-nthash", c.Credential.MachineAccountNTHash, "machine account NT hash to authenticate with")
+
+	flagSet.StringVar(&c.Auth.Level, "auth-level", c.Auth.Level, "authentication level: none, connect, call, pkt, integrity, privacy")
+	flagSet.StringVar(&c.Auth.Type, "auth-type", c.Auth.Type, "authentication type: ntlm, krb5")
+	flagSet.StringVar(&c.Auth.TargetName, "target-name", c.Auth.TargetName, "target name")
+	flagSet.BoolVar(&c.Auth.SPNEGO, "spnego", c.Auth.SPNEGO, "use spnego")
+	flagSet.StringVar(&c.Auth.Impersonation, "impersonation", c.Auth.Impersonation, "impersonation level: anonymous, identify, impersonate, delegate")
+	flagSet.StringVar(&c.Auth.KRB5.ConfigFile, "krb5-config-file", c.Auth.KRB5.ConfigFile, "path to krb5.conf")
+	flagSet.StringVar(&c.Auth.KRB5.KDCServer, "krb5-kdc-server", c.Auth.KRB5.KDCServer, "KDC server to authenticate to")
+	flagSet.StringVar(&c.Auth.KRB5.AdminServer, "krb5-admin-server", c.Auth.KRB5.AdminServer, "admin server to authenticate to")
+	flagSet.StringVar(&c.Auth.KRB5.Keytab, "krb5-keytab-path", c.Auth.KRB5.Keytab, "path to keytab")
+	flagSet.StringVar(&c.Auth.KRB5.CCache, "krb5-ccache-path", c.Auth.KRB5.CCache, "path to ccache")
+	flagSet.Var(&c.Auth.KRB5.EncryptionTypes, "krb5-encryption-types", "encryption types to use: aes256-cts-hmac-sha1-96, aes128-cts-hmac-sha1-96, arcfour-hmac-md5")
+	flagSet.BoolVar(&c.Auth.KRB5.DCEStyle, "krb5-dce-style", c.Auth.KRB5.DCEStyle, "use DCE style")
+	flagSet.BoolVar(&c.Auth.KRB5.DisablePAFXFAST, "krb5-disable-pafx-fast", c.Auth.KRB5.DisablePAFXFAST, "disable PA-FX-FAST")
+	flagSet.BoolVar(&c.Auth.KRB5.MutualAuthn, "krb5-mutual-authn", c.Auth.KRB5.MutualAuthn, "use mutual authentication")
+
+	flagSet.BoolVar(&c.Auth.NTLM.NTLMv1, "ntlm-v1", c.Auth.NTLM.NTLMv1, "use NTLMv1")
+	flagSet.BoolVar(&c.Auth.NTLM.NoESS, "ntlm-no-ess", c.Auth.NTLM.NoESS, "use no extended session security")
+
+	flagSet.BoolVar(&c.Verify.Presentation, "verify-presentation", false, "verify presentation")
+	flagSet.BoolVar(&c.Verify.Header2, "verify-header2", false, "verify header2")
+	flagSet.BoolVar(&c.Verify.BitMask, "verify-bitmask", false, "verify bitmask")
+
+	flagSet.IntVar(&c.SMB.Port, "smb-port", 445, "SMB port")
+	flagSet.BoolVar(&c.SMB.Sign, "smb-sign", false, "SMB signing")
+	flagSet.BoolVar(&c.SMB.Seal, "smb-seal", false, "SMB sealing")
+	flagSet.StringVar(&c.SMB.Dialect, "smb-dialect", c.SMB.Dialect, "SMB dialect: 2.0.2 (202), 2.1.0 (210), 3.0.0 (300), 3.0.2 (302), 3.1.1 (311)")
+
+	flagSet.BoolVar(&c.EPM.Enabled, "epm", c.EPM.Enabled, "use endpoint mapper")
+	flagSet.StringVar(&c.EPM.AuthLevel, "epm-auth-level", c.EPM.AuthLevel, "endpoint mapper authentication level: none, connect, call, pkt, integrity, privacy")
+
+	flagSet.StringVar(&c.Protocol, "protocol", c.Protocol, "protocol to use, ncacn_np (smb), ncacn_ip_tcp (tcp)")
+}
+
+func ParseAndValidate(cfg *config.Config, flagSet *flag.FlagSet) error {
+
+	flagSet.Parse(os.Args[1:])
+
+	if cfg.Server == "" && flagSet.NArg() > 0 {
+		cfg.Server = flagSet.Arg(0)
+		flagSet.Parse(flagSet.Args()[1:])
+	}
+
+	return cfg.Validate()
+}

config/flag/command_line.go

@@ -0,0 +1,5 @@
+package common
+
+import "encoding/json"
+
+var J = func(data any) string { b, _ := json.MarshalIndent(data, "", "  "); return string(b) }

examples/common/common.go

@@ -0,0 +1,178 @@
+//go:build exclude
+
+// dnsp.go script dumps and print all zones (including cache) from the dns server.
+package main
+
+import (
+	"context"
+	"flag"
+	"fmt"
+	"os"
+	"strings"
+
+	"github.com/oiweiwei/go-msrpc/dcerpc"
+	"github.com/oiweiwei/go-msrpc/ndr"
+
+	"github.com/oiweiwei/go-msrpc/ssp/gssapi"
+
+	config "github.com/oiweiwei/go-msrpc/config"
+	config_flag "github.com/oiweiwei/go-msrpc/config/flag"
+
+	"github.com/oiweiwei/go-msrpc/msrpc/dnsp"
+	"github.com/oiweiwei/go-msrpc/msrpc/dnsp/dnsserver/v5"
+	"github.com/oiweiwei/go-msrpc/msrpc/dnsp/record"
+
+	_ "github.com/oiweiwei/go-msrpc/msrpc/erref/win32"
+)
+
+var (
+	cfg        = config.New()
+	zoneName   string
+	nodeName   string
+	serverName string
+)
+
+var P = fmt.Println
+
+func init() {
+
+	config_flag.BindFlags(cfg, flag.CommandLine)
+
+	flag.CommandLine.StringVar(&zoneName, "zone", "", "zone name")
+	flag.CommandLine.StringVar(&nodeName, "node", "@", "node name")
+	flag.CommandLine.StringVar(&serverName, "server-name", "", "server name")
+}
+
+func main() {
+
+	if err := config_flag.ParseAndValidate(cfg, flag.CommandLine); err != nil {
+		fmt.Fprintln(os.Stderr, err)
+		return
+	}
+
+	ctx := gssapi.NewSecurityContext(context.Background())
+
+	cc, err := dcerpc.Dial(ctx, cfg.ServerAddr(), cfg.DialOptions(ctx)...)
+	if err != nil {
+		fmt.Fprintln(os.Stderr, "dial", err)
+		return
+	}
+
+	defer cc.Close(ctx)
+
+	cli, err := dnsserver.NewDNSServerClient(ctx, cc, cfg.ClientOptions(ctx)...)
+	if err != nil {
+		fmt.Fprintln(os.Stderr, "new_dnsserver_client", err)
+		return
+	}
+
+	if zoneName != "" {
+		P("-----------------------")
+		P("ZONE:", zoneName)
+		P("-----------------------")
+		EnumRR(ctx, cli, zoneName, nodeName)
+		return
+	}
+
+	resp, err := cli.ComplexOperation2(ctx, &dnsserver.ComplexOperation2Request{
+		ClientVersion: 0x0,
+		ServerName:    serverName,
+		Operation:     "EnumZones",
+		TypeIn:        uint32(dnsp.TypeIDDword),
+		DataIn:        &dnsp.Union{Value: &dnsp.Union_Dword{Dword: uint32(dnsp.ZoneRequestFilterAll)}},
+	})
+
+	if err != nil {
+		fmt.Fprintln(os.Stderr, "enum_zones", err)
+		return
+	}
+
+	for _, zone := range resp.DataOut.GetValue().(*dnsp.ZoneListW2K).ZoneArray {
+
+		P("-----------------------")
+		P("ZONE:", zone.ZoneName)
+		P("-----------------------")
+
+		EnumRR(ctx, cli, zone.ZoneName, "@")
+
+	}
+}
+
+type ZoneNode struct {
+	Zone string
+	Node string
+}
+
+func EnumRR(ctx context.Context, cli dnsserver.DNSServerClient, zone string, n string) {
+
+	next := []*ZoneNode{}
+
+	rr, err := cli.EnumRecords2(ctx, &dnsserver.EnumRecords2Request{
+		ServerName: serverName,
+		Zone:       zone,
+		NodeName:   n,
+		RecordType: 0x00FF,
+		SelectFlag: 0x0000001F,
+	})
+
+	if err != nil {
+		fmt.Fprintln(os.Stderr, n, zone, err)
+		return
+	}
+
+	if n == "@" {
+		n = ""
+	} else {
+		n = "." + n
+	}
+
+	var nodes record.NodeList
+
+	if err := ndr.Unmarshal(rr.Buffer, &nodes, ndr.Opaque); err != nil {
+		fmt.Fprintln(os.Stderr, "umarshal_nodes_list", err)
+		return
+	}
+
+	for _, node := range nodes.DNSNodes {
+
+		if len(node.DNSRecords) == 0 {
+			if node.ChildCount > 0 {
+				fmt.Printf("%s\t?\tNODE\t?\t(child: %d)\n", NodeName(node, n, zone), node.ChildCount)
+				next = append(next, &ZoneNode{zone, string(node.DNSNodeName.DNSName) + n})
+			}
+		}
+
+		for _, rr := range node.RRs() {
+			if rr.Header().Name == "" {
+				rr.Header().Name = NodeName(node, n, zone)
+			}
+			P(rr)
+		}
+	}
+
+	for _, nxt := range next {
+		P("-----------------------")
+		P("ZONE CHILD:", nxt.Node+"."+strings.TrimPrefix(nxt.Zone, "."))
+		P("-----------------------")
+		EnumRR(ctx, cli, nxt.Zone, nxt.Node)
+	}
+}
+
+func NodeName(node *record.Node, p, zone string) string {
+	n := string(node.DNSNodeName.DNSName)
+	if n == "" {
+		return NameJoin(p, zone)
+	}
+	return n
+}
+
+func NameJoin(n ...string) string {
+
+	ret := ""
+
+	for _, nn := range n {
+		ret += "." + strings.Trim(nn, ".")
+	}
+
+	return strings.Trim(ret, ".") + "."
+}