Merge pull request #6 from GoSecure/rdp_player

Added support for PyRDP player
2025-08-22 14:24:38 -07:00 · 2019-06-18 15:21:08 -04:00 · 2019-06-18 15:21:08 -04:00 · bb3c0af437
commit bb3c0af437
parent bf47359778 764ce9c643
1 changed files with 34 additions and 13 deletions
--- a/modules/rdp_proxy/rdp_proxy_linux_amd64.go
+++ b/modules/rdp_proxy/rdp_proxy_linux_amd64.go
@ -36,6 +36,8 @@ type RdpProxy struct {
    cmd          string
    outpath      string
    nlaMode      string
    playerIP     net.IP
    playerPort   int
    redirectIP   net.IP
    redirectPort int
    replay       bool
@ -58,6 +60,8 @@ func NewRdpProxy(s *session.Session) *RdpProxy {
        cmd:           "pyrdp-mitm.py",
        outpath:       "./pyrdp_output",
        nlaMode:       "IGNORE",
        playerIP:      make(net.IP, 0),
        playerPort:    3000,
        redirectIP:    make(net.IP, 0),
        redirectPort:  3389,
        replay:        false,
@ -86,8 +90,10 @@ mod.AddParam(session.NewStringParameter("rdp.proxy.targets", session.ParamSubnet
    mod.AddParam(session.NewStringParameter("rdp.proxy.regexp", "(?i)(cookie:|mstshash=|clipboard data|client info|credential|username|password|error)", "", "Print PyRDP logs matching this regular expression."))
    // Optional paramaters
    mod.AddParam(session.NewStringParameter("rdp.proxy.nla.mode", "IGNORE", "(IGNORE|RELAY|REDIRECT)", "Specify how to handle connections to a NLA-enabled host. Either IGNORE, RELAY or REDIRECT."))
-mod.AddParam(session.NewStringParameter("rdp.proxy.nla.redirect.ip", "", "", "Specify IP to redirect clients that connects to NLA targets. Require rdp.proxy.nla.mode REDIRECT"))
+    mod.AddParam(session.NewStringParameter("rdp.proxy.nla.redirect.ip", "", "", "Specify IP to redirect clients that connects to NLA targets. Require rdp.proxy.nla.mode REDIRECT."))
-mod.AddParam(session.NewIntParameter("rdp.proxy.nla.redirect.port", "3389", "Specify port to redirect clients that connects to NLA targets. Require rdp.proxy.nla.mode REDIRECT"))
+    mod.AddParam(session.NewIntParameter("rdp.proxy.nla.redirect.port", "3389", "Specify port to redirect clients that connects to NLA targets. Require rdp.proxy.nla.mode REDIRECT."))
    mod.AddParam(session.NewStringParameter("rdp.proxy.player.ip", "", "", "Destination IP address of the PyRDP player."))
    mod.AddParam(session.NewIntParameter("rdp.proxy.player.port", "3000", "Listening port of the PyRDP player."))
    return mod
 }
@ -189,6 +195,15 @@ func (mod *RdpProxy) startProxyInstance(client string, target string) (err error
        args = append(args, "--no-replay")
    }
    // PyRDP Player options
    if mod.playerIP != nil {
        args = append(args, "-i")
        args = append(args, mod.playerIP.String())
        args = append(args, "-d")
        args = append(args, fmt.Sprintf("%d", mod.playerPort))
    }
    args = append(args, target)
    //   3.2. Spawn PyRDP proxy instance
@ -342,6 +357,12 @@ func (mod *RdpProxy) Configure() (err error) {
        return
    } else if mod.redirectPort < 1 || mod.redirectPort > 65535 {
        return errors.New("rdp.proxy.nla.redirect.port must be between 1 and 65535")
    } else if err, mod.playerIP = mod.IPParam("rdp.proxy.player.ip"); err != nil {
        return
    } else if err, mod.playerPort = mod.IntParam("rdp.proxy.player.port"); err != nil {
        return
    } else if mod.playerPort < 1 || mod.playerPort > 65535 {
        return errors.New("rdp.proxy.player.port must be between 1 and 65535")
    } else if _, err = exec.LookPath(mod.cmd); err != nil {
        return
    } else if _, err = mod.fileExists(mod.cmd); err != nil {