guanacoCLInjector/sshModule.js at master · PANCHO7532/guanacoCLInjector · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
/*
 * /=======================================================\
 * | GuanacoCLInjector v1.3.0                              |
 * | Copyright (c) P7COMunications LLC 2021 - PANCHO7532   |
 * |=======================================================/
 * |-> Purpose: Main SSH Module
 * ---------------------------------------------------------
 */
"use strict";
const sv5 = require("socksv5");
const ssh2 = require("ssh2");
const crypto = require("crypto");
const net = require("net");
const fs = require("fs");
let sshReady = false;
let configFile = {};
try {
    configFile = JSON.parse(fs.readFileSync("./config.json").toString());
} catch(err) {
    console.log("[ERROR] " + err);
    process.exit(1);
}
const sshConnection = new ssh2.Client();
sshConnection.on("banner", (message) => {
    console.log("[SSH] Server Message:\r\n" + message);
});
sshConnection.on("handshake", (handshake) => {
    //handshake event
    //console.log(handshake.hostVerifier());
    console.log("[SSH] Key exchange algorithm: " + handshake["kex"]);
    console.log("[SSH] Using client algorithm: " + handshake["cs"]["cipher"] + " " + handshake["cs"]["mac"]);
});
sshConnection.on("error", (error) => {
    //some error
    console.log("[SSH-ERR] " + error);
    sshReady = false;
});
sshConnection.on("end", () => {
    //connection was terminated by an foreign force
    console.log("[SSH-END] Remote host ended communication.");
    sshReady = false;
    //sshConnection.connect(sshcfg);
});
sshConnection.on("close", () => {
    //connection was terminated by the server
    console.log("[SSH-CLOSE] Connection terminated");
    sshReady = false;
})
sshConnection.on("ready", () => {
    console.log("[SSH] Connection established!");
    sshReady = true;
})
const server = sv5.createServer((connectionInfo, accept, deny) => {
    if(!sshReady) {
        return deny();
    }
    try {
        sshConnection.forwardOut(connectionInfo.srcAddr, connectionInfo.srcPort, connectionInfo.dstAddr, connectionInfo.dstPort, function(err, incomingStream) {
            if(err) {
                console.log("[SSH-FWDERR] " + err);
                if(err.toString().indexOf("No response") != -1) {
                    sshReady = false;
                }
                return deny();
            }
            console.log("[DEBUG] Forwarding " + connectionInfo.srcAddr + ":" + connectionInfo.srcPort + " to " + connectionInfo.dstAddr + ":" + connectionInfo.dstPort);
            const clientStream = accept(true);
            //clientStream.pipe(incomingStream).pipe(clientStream); //pipe sucks, lemme tell ya.
            if(clientStream) {
                try {
                    clientStream.pipe(incomingStream);
                    incomingStream.pipe(clientStream);
                } catch(err) {
                    console.log("[SSH-PIPEERR] " + err);
                }
                clientStream.on("error", function(err) { console.log("[CSTREAM] " + err) });
                incomingStream.on("error", function(err) { console.log("[ISTREAM] " + err)});
            }
        });
    } catch(error) {
        console.log("[SSH-TRYERR] " + error);
        sshReady = false;
        return deny();
    }

});
server.listen(configFile["socksPort"], () => {
    console.log("[INFO] Socks server started on port " + configFile["socksPort"]);
});
server.useAuth(sv5.auth.None());
// for WinXP compatbility (node v5.12.0)
//module.exports.connectSSH = (user = "username", pass = "password", backendPort = 20000) => {
module.exports.connectSSH = function(user, pass, backendPort) {
    //config model
    if(!user || !pass) { console.log("[ERROR] User and password must be set."); process.exit(1); }
    if(!backendPort) { console.log("[ERROR] Backend port must be set."); process.exit(1); }
    const configModel = {
        host: "127.0.0.1",
        port: backendPort,
        username: user,
        password: pass,
        keepaliveInterval: 2500,
        keepaliveCountMax: 10000,
        hostHash: "sha512", // >1.x ssh2 seems to not care about this property, however while using ancient versions of ssh2 then it seems to care suddenly. Feel free to remove it if you're using modern versions of ssh2
        hostVerifier: (hashedkey) => {
            //raw key in buffer that we convert to an md5 fingerprint
            //console.log(this.remoteIdentRaw);
            let fingerprint = crypto.createHash("md5").update(hashedkey).digest("hex").split(/(.{2})/g).filter(Boolean).join(":"); //lol
            console.log("[SSH] Server FingerPrint: " + fingerprint);
            return true;
        },
        debug: (messages) => {
            if(messages.indexOf("Remote ident:") != -1) {
                //ladies and gentelemans, we got 'em
                let sshVer = "";
                sshVer += messages.replace("Remote ident: ", "").replace(/[']/g, "");
                if(sshVer.indexOf("DEBUG: ") != -1) {
                    // specific case for ssh2 < 1.0?
					sshVer = sshVer.replace("DEBUG: ", "").replace(/[']/g, "");
				}
                console.log("[SSH] " + sshVer);
            }
        }
    };
    sshConnection.connect(configModel);
}
module.exports.sshReady = sshReady;