Add unprotected private keys extractor for 'OpenSSH' application

H1d3r · Jul 24, 2016 · f5fea84 · f5fea84
1 parent 2524d8f
commit f5fea84
Show file tree

Hide file tree

Showing 2 changed files with 97 additions and 1 deletion.
diff --git a/Windows/src/LaZagne/config/manageModules.py b/Windows/src/LaZagne/config/manageModules.py
@@ -15,6 +15,7 @@
 from softwares.sysadmin.coreftp import CoreFTP
 from softwares.sysadmin.ftpnavigator import FtpNavigator
 from softwares.sysadmin.apachedirectorystudio import ApacheDirectoryStudio
+from softwares.sysadmin.opensshforwindows import OpenSSHForWindows
 # svn
 from softwares.svn.tortoise import Tortoise
 # git
@@ -87,6 +88,7 @@ def get_modules():
 		WinSCP(),
 		GitForWindows(),
 		MavenRepositories(),
-		ApacheDirectoryStudio()
+		ApacheDirectoryStudio(),
+		OpenSSHForWindows()
 	]
 	return moduleNames
diff --git a/Windows/src/LaZagne/softwares/sysadmin/opensshforwindows.py b/Windows/src/LaZagne/softwares/sysadmin/opensshforwindows.py
@@ -0,0 +1,94 @@
+from os import environ, walk
+from os.path import isdir, isfile, join
+from config.write_output import print_output, print_debug
+from config.constant import *
+from config.header import Header
+from config.moduleInfo import ModuleInfo
+from Crypto.PublicKey import RSA
+from Crypto.PublicKey import DSA
+
+class OpenSSHForWindows(ModuleInfo):
+
+    def __init__(self):
+        options = {'command': '-winssh', 'action': 'store_true', 'dest': 'opensshforwindows', 'help': 'OpenSSH for Windows'}
+        ModuleInfo.__init__(self, 'opensshforwindows', 'sysadmin', options)
+        self.key_files_location = environ.get("USERPROFILE") + "\\.ssh"
+
+    def is_private_key_unprotected(self, key_content_encoded, key_algorithm):
+        """
+        Check if the private key can be loaded without specifying any passphrase.
+
+        PyCrypto >= 2.6.1 required in order to have the method importKey() in DSA class.
+
+        :param key_content_encoded: Encoded content of the private key to test
+        :param key_algorithm: Algorithm of the key (RSA or DSA)
+        :return: True only if the key can be successfuly loaded and is usable
+        """
+        state = False
+        try:
+            # Try to load it
+            if key_algorithm == "RSA":
+                key = RSA.importKey(key_content_encoded)
+            else:
+                key = DSA.importKey(key_content_encoded)
+            # Validate loading
+            state = (key is not None and key.can_sign() and key.has_private())
+        except Exception as e:
+            print_debug("ERROR", "Cannot validate key protection '%s'" % e)
+            state = False
+            pass
+
+        return state
+
+    def extract_private_keys_unprotected(self):
+        """
+        Extract all DSA/RSA private keys that are not protected with a passphrase.
+
+        :return: List of encoded key (key file content)
+        """
+        keys = []
+        if isdir(self.key_files_location):
+            for (dirpath, dirnames, filenames) in walk(self.key_files_location, followlinks=True):
+                for f in filenames:
+                    key_file_path = join(dirpath, f)
+                    if isfile(key_file_path):
+                        try:
+                            # Read encoded content of the key
+                            with open(key_file_path, "r") as key_file:
+                                key_content_encoded = key_file.read()
+                            # Determine the type of the key (public/private) and what is it algorithm
+                            if "DSA PRIVATE KEY" in key_content_encoded:
+                                key_algorithm = "DSA"
+                            elif "RSA PRIVATE KEY" in key_content_encoded:
+                                key_algorithm = "RSA"
+                            else:
+                                key_algorithm = None
+                            # Check if the key can be loaded (used) without passphrase
+                            if key_algorithm is not None and self.is_private_key_unprotected(key_content_encoded,
+                                                                                               key_algorithm):
+                                keys.append(key_content_encoded)
+                        except Exception as e:
+                            print_debug("ERROR", "Cannot load key file '%s' '%s'" % (key_file_path, e))
+                            pass
+
+        return keys
+
+    def run(self):
+        """
+        Main function
+        """
+        # Print title
+        title = "OpenSSHForWindows"
+        Header().title_info(title)
+
+        # Extract all DSA/RSA private keys that are not protected with a passphrase
+        unprotected_private_keys = self.extract_private_keys_unprotected()
+
+        # Parse and process the list of keys
+        key_found = []
+        for key in unprotected_private_keys:
+            values = {"PrivateKey": key}
+            key_found.append(values)
+
+        # Print the results
+        print_output(title, key_found)