moonq/backdoor
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

first commit

Browse Source
This commit is contained in:
Ville Rantanen
2019-07-05 14:25:29 +03:00
commit 2177356ac1
8 changed files with 729 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

288
src/qolop Executable file
View File

@@ -0,0 +1,288 @@
#!/bin/bash
_qColVersion() { echo Version 2019.06.21.0; }
_qColHelp() {
_qColVersion
echo 'Quick shell COLOrizer Package
Source me in BASH!
Why the name qolop? Place a mirror next to it!
Functions:
- _qCol: Print ANSI color codes by letter codes.
Can export all letter codes as varibles.
- _qCode: Print ANSI color codes by number sequence
- _qParse: Print ANSI color by english words ex. "red", "lightgreen", "gray on blue"
- _qPos: Move cursor
- _qClr: Clear screen
- _qReset: Reset terminal
Examples:
source qolop # load functions
- As functions:
_title(){ _qClr; _qCol z G; echo "$@"; _qCol z; }
_text(){ _qCol z; _qCode 1 34; echo "$@"; _qCol z; }
_title Title; _text Colored;
- As variables
TITLE=$( _qCol z G; )
Z=$( _qCol z; )
echo ${TITLE}Title${Z}
- Export to variables (prefixed with _c. Also the default)
_qCol export _c
echo -e ${_cG}Title${_cZ}
Run qolop as script to print ANSI code table, or evaluate commands
qolop eval "_qCol G; printf hello; _qCol z" | qolop escape
The first command produces string with ANSI commands, the
second will escape the escape characters, so you can copy/paste
it in to another echo -e command.
qolop c G
qolop p green
produce the same output, just the color code
'
}
_qClr() {
# Clear screen
_qCol "CLR"
_qPos abs 0 0
}
_qCol() {
# print "easier" mapping of ANSI colors and controls
local K="\033[1;30m"
local R="\033[1;31m"
local G="\033[1;32m"
local B="\033[1;34m"
local Y="\033[1;33m"
local M="\033[1;35m"
local C="\033[1;36m"
local W="\033[1;37m"
local k="\033[2;30m"
local r="\033[2;31m"
local g="\033[2;32m"
local b="\033[2;34m"
local y="\033[2;33m"
local m="\033[2;35m"
local c="\033[2;36m"
local w="\033[2;37m"
local bk="\033[40m"
local br="\033[41m"
local bg="\033[42m"
local by="\033[43m"
local bb="\033[44m"
local bm="\033[45m"
local bc="\033[46m"
local bw="\033[47m"
local S='\033[1m' #strong
local s='\033[2m' #strong off
local U='\033[4m' #underline
local u='\033[24m' #underline off
local z='\033[0m' #zero colors
local Z='\033[0m' #zero colors
local ic='\033[7m' #inverse colors
local io='\033[27m' #inverse off
local st='\033[9m' #strike on
local so='\033[29m' #strike off
local CLR='\033[2J' # Clear screen
local CLREND='\033[K' # Clear to end of line
local CLRBEG='\033[1K' # Clear to beginning of line
local CLRSCR="$CLR"'\033[0;0H' # Clear screen, reset cursor
local color_keys=" K R G B Y M C W k r g b y m c w S s U u z Z \
ic io st so bk br bg by bb bm bc bw \
CLR CLREND CLRBEG CLRSCR "
[[ "$1" = "export" ]] && {
local key
local prefix="$2"
[[ -z "$2" ]] && prefix=_c
for key in $color_keys; do
eval export ${prefix}${key}=\'${!key}\'
done
return
}
local arg val
for ((arg=1;arg<=$#;arg++)) {
val=${!arg}
[[ ${color_keys} = *" $val "* ]] || { echo "No such color code '${val}'" >&2; return 1; }
printf ${!val}
}
}
_qCode() {
# Enter numerical ANSI colors directly
local arg val
for ((arg=1;arg<=$#;arg++)) {
val=${!arg}
printf '\033['"${val}m"
}
}
_qParse() {
# Parse written colors to codes: 'help' to get help
local val codes
val="${@,,}"
if [[ ${#val} -lt 3 ]]; then
continue
fi
if [[ ${val} = *"help"* ]]; then
echo "Parse format [light][colorname], or '[light][colorname] on [colorcolorname]'" >&2
return
fi
if [[ ${val} = "light"* ]]; then
codes="${codes} S"
val=${val#light}
fi
case "$val" in
"black"*) codes="${codes} k";;
"red"*) codes="${codes} r";;
"green"*) codes="${codes} g";;
"yellow"*) codes="${codes} y";;
"blue"*) codes="${codes} b";;
"magenta"*) codes="${codes} m";;
"cyan"*) codes="${codes} c";;
"gray"*) codes="${codes} w";;
"white"*) codes="${codes} W";;
esac
if [[ ${val} = *" on "* ]]; then
case "$val" in
*"black") codes="${codes} bk";;
*"red") codes="${codes} br";;
*"green") codes="${codes} bg";;
*"yellow") codes="${codes} by";;
*"blue") codes="${codes} bb";;
*"magenta") codes="${codes} bm";;
*"cyan") codes="${codes} bc";;
*"gray") codes="${codes} bk";;
*"white") codes="${codes} bw";;
esac
fi
_qCol $codes
}
_qPos() {
# Cursor position control
local n="$2"
local x="$3"
[[ -z "$n" ]] && n=1
[[ -z "$x" ]] && x=1
[[ "$1" = "save" ]] && { printf '\033[s'; return; }
[[ "$1" = "restore" ]] && { printf '\033[u'; return; }
[[ "$1" = "up" ]] && { printf '\033['${n}'A'; return; }
[[ "$1" = "down" ]] && { printf '\033['${n}'B'; return; }
[[ "$1" = "right" ]] && { printf '\033['${n}'C'; return; }
[[ "$1" = "left" ]] && { printf '\033['${n}'D'; return; }
[[ "$1" = "lineup" ]] && { printf '\033['${n}'E'; return; }
[[ "$1" = "linedown" ]] && { printf '\033['${n}'F'; return; }
[[ "$1" = "col" ]] && { printf '\033['${n}'G'; return; }
[[ "$1" = "abs" ]] && { printf '\033['${n}';'${x}'H'; return; }
echo "Command missing: save, restore, up, down, right, left, lineup, linedown, col, abs" >&2
echo "Directional commands take one argument, abs uses two (row, col)" >&2
return 1
}
_qReset() {
# Reset terminal
printf '\033c'
}
if [[ "$0" = "${BASH_SOURCE[0]}" ]]; then
[[ "$1" = "update" ]] && {
set -e
case $OSTYPE in
darwin*)
MYPATH=$( realpath "$0" )
;;
*)
MYPATH=$( readlink -f "$0" )
;;
esac
MYDIR=$( dirname "$MYPATH" )
QTOOLS=0
if [[ -f "$MYDIR/../rc" ]]; then if grep -q QTOOLS "$MYDIR/../rc"; then
QTOOLS=1
fi;fi;
if [[ "$QTOOLS" -eq 1 ]]; then
echo "Update qolop with _q-tools-update"
exit 1
fi
TMPFILE=$( mktemp )
rm -f "$TMPFILE"
echo "Checking for newer version"
wget -q -O "$TMPFILE" https://bitbucket.org/MoonQ/tools/raw/tip/reporting/qolop
diff "$TMPFILE" "$MYPATH" || {
mv -v "$TMPFILE" "$MYPATH"
chmod +x "$MYPATH"
echo Updated
source "$MYPATH"
_qColVersion
}
rm -f "$TMPFILE"
exit 0
} # end update
[[ "$1" = "eval" ]] && {
set -e
eval "$@"
exit
}
[[ "$1" = "escape" ]] && {
cat - | sed s/$'\e'/\\\\033/g
echo ''
exit
}
[[ "$1" = "c" ]] && {
shift 1
_qCol "$@"
exit
}
[[ "$1" = "p" ]] && {
shift 1
_qParse "$@"
exit
}
_qColHelp
[[ "$1" = *"help" ]] && exit
[[ "$1" = "-h" ]] && exit
_qCol export "_"
printf "${_S}ANSI CODES AND QOLOP VARIABLES FOR _qCol FUNCTION
=================================================${_Z}
${_R}Co${_G}lo${_B}rs${_W} and ${_S}Mo${_U}di${_st}fi${_u}er${_ic}s${_Z} \\\033[Xm or \\\033[X;Y;Zm
${_S}====================${_Z}
0 z Z Clear format
1 S ${_S}Strong/Bold ${_Z} 30 k ${_k}Black ${_Z}30;1 K ${_K}Black ${_Z}40 bk ${_w}${_bk}Black ${_Z}
2 s ${_s}Weak/Bold off ${_Z} 31 r ${_r}Red ${_Z}31;1 R ${_R}Red ${_Z}41 br ${_k}${_br}Red ${_Z}
4 U ${_U}Underline ${_Z} 32 g ${_g}Green ${_Z}32;1 G ${_G}Green ${_Z}42 bg ${_k}${_bg}Green ${_Z}
24 u ${_u}Underline off ${_Z} 33 y ${_y}Yellow ${_Z}33;1 Y ${_Y}Yellow ${_Z}43 by ${_k}${_by}Yellow ${_Z}
7 ic ${_ic}Inverse color ${_Z} 34 b ${_b}Blue ${_Z}34;1 B ${_B}Blue ${_Z}44 bb ${_k}${_bb}Blue ${_Z}
27 of ${_io}Inverse off ${_Z} 35 m ${_m}Magenta ${_Z}35;1 M ${_M}Magenta ${_Z}45 bm ${_k}${_bm}Magenta ${_Z}
9 st ${_st}Strike ${_Z} 36 c ${_c}Cyan ${_Z}36;1 C ${_C}Cyan ${_Z}46 bc ${_k}${_bc}Cyan ${_Z}
29 so ${_so}Strike off ${_Z} 37 w ${_w}White ${_Z}37;1 W ${_W}White ${_Z}47 bw ${_k}${_bw}White ${_Z}
Enter raw color code sequence with _qCode function
${_S}Clearing and movement${_Z} ESC[X or ESC[1X
${_S}=====================${_Z}
2J CLR Clear screen
2J ;H CLRSCR _qClr() Clear screen, move cursor to origo
K CLREND Clear to end of line
1K CLRBEG Clear to beginning of line
_qReset() Reset terminal
s _qPos save Save location u _qPos restore Restore location
A _qPos up Up E _qPos lineup Up line
B _qPos down Down F _qPos linedown Down line
C _qPos left Left y;xH _qPos abs y x Absolute Position
D _qPos right Right
"
fi

235
src/ssh-backdoor Executable file
View File

@@ -0,0 +1,235 @@
#!/usr/bin/env python3
from datetime import timedelta, datetime
from tabulate import tabulate
import random
import sqlite3
import time, os, sys
def setup_options():
''' Setup the command line options '''
from argparse import ArgumentParser
parser=ArgumentParser(description="Alive notifier.")
parser.add_argument(
"--db",
action = 'store',
dest = 'DB',
default = '/tmp/ssh-backdoor.sqlite',
type = str,
help = "Sqlite file for database: %(default)s"
)
# TODO --connect (replace ssh-local-connect)
parser.add_argument(
"--clear",
action = 'store_true',
dest = 'clear',
default = False,
help = "Clear the database of everything, first"
)
parser.add_argument(
"--list","-l",
action = 'store_true',
dest = 'list',
default = False,
help = "List ports"
)
parser.add_argument(
"--list-names",
action = 'store_true',
dest = 'list_names',
default = False,
help = "List alive host names only"
)
parser.add_argument(
"--query",
action = 'store',
dest = 'query',
default = None,
type = str,
help="Query port for an id"
)
parser.add_argument(
"--quiet", "-q",
action = 'store_true',
dest = 'quiet',
default = False,
help = "Quiet operation: %(default)s"
)
parser.add_argument(
"--wait", "-w",
action = 'store_true',
dest = 'wait',
default = False,
help = "Enter infinite loop"
)
parser.add_argument(
action = 'store',
dest = 'id',
default = None ,
type = str,
nargs = '?',
help="Id name for port"
)
options=parser.parse_args()
return options
class DataBase:
def __init__(self, DB):
self.alive = 7 * 24 * 3600 # 7 days
self.DBfile = DB
self.conn = None
self.db = None
if not os.path.exists(self.DBfile):
self.createDB()
self.conn_init()
self.clean_db()
def clear(self):
self.db = self.conn.cursor()
self.db.execute("DELETE FROM ports")
self.conn_end()
def conn_init(self):
self.conn = sqlite3.connect(self.DBfile)
self.db = self.conn.cursor()
self.conn.text_factory = str
def conn_end(self):
self.conn.commit()
#self.conn.close()
def createDB(self):
self.conn_init()
self.db.execute('CREATE TABLE ports (\
id TEXT PRIMARY KEY,\
host TEXT, \
port INTEGER,\
pid INTEGER,\
die INTEGER,\
date INTEGER)')
self.conn_end()
def clean_db(self):
self.db = self.conn.cursor()
self.db.execute("SELECT id,port,date,pid,host FROM ports")
for row in self.db.fetchall():
age = int(time.time() - row[2])
running = self.is_running(row[3])
if running:
continue
if age < self.alive:
continue
self.db.execute("DELETE FROM ports WHERE id = ?", (row[0],))
self.conn_end()
def die(self):
""" kills process, and parents, if set to die """
pass
def update(self, id):
port = self.get_port(id)
if port == None:
port = self.new_port()
self.db = self.conn.cursor()
self.db.execute("INSERT OR REPLACE INTO ports(id,port,date,pid,host) \
VALUES(?,?,?,?,?)",(
id,
port,
int(time.time()),
self.get_pid(),
os.getenv("SSH_CLIENT","-").split(" ")[0]
)
)
self.conn_end()
return port
def list(self):
self.db = self.conn.cursor()
self.db.execute("SELECT id,port,host,date,pid FROM ports ORDER BY id")
rows = []
for row in self.db:
row = list(row)
row[3] = self.human_age(row[3])
row.append(self.is_running(row[4]))
# ~ row.append("ssh-nosave -p %d localhost"%( row[1], ) )
rows.append(row)
return rows
def human_age(self, sec):
sec = timedelta(seconds = time.time() - sec)
d = datetime(1,1,1) + sec
return "%d %02d:%02d:%02d" % (d.day - 1, d.hour, d.minute, d.second)
def is_running(self, pid):
try:
os.kill(pid, 0)
except OSError:
return False
else:
return True
def get_pid(self):
return os.getppid()
def get_port(self, id):
self.db = self.conn.cursor()
self.db.execute("SELECT port FROM ports WHERE id = ?", (id,))
result = self.db.fetchall()
if len(result) == 0:
return None
return result[0][0]
def new_port(self):
self.db = self.conn.cursor()
while True:
port = random.randint(22200, 22400)
self.db.execute("SELECT port FROM ports WHERE port = ?", (port,))
result = self.db.fetchall()
if len(result) == 0:
return port
if __name__ == "__main__":
opts=setup_options()
db = DataBase(opts.DB)
start_time = time.time()
if opts.clear:
db.clear()
if opts.list_names:
for row in db.list():
if row[5]:
print(row[0])
sys.exit(0)
if opts.list:
print(tabulate(
db.list(),
headers = ['Id','Port','Host','Age','PID','Alive']
))
if opts.query != None:
port = db.get_port(opts.query)
if port == None:
sys.exit(1)
print(port)
sys.exit(0)
if opts.id != None:
print(db.update(opts.id))
if opts.wait:
sys.stderr.write(
" Connected\r"
)
while True:
if time.time() - start_time > 3600:
sys.exit(0)
db.update(opts.id)
for i in range(10):
db.die()
time.sleep(3 + random.random())
sys.stderr.write(
" " +
time.strftime("%c") +
"\r"
)

70
src/ssh-backdoor-connect Executable file
View File

File diff suppressed because one or more lines are too long

21
src/ssh-backdoor-connect-local Executable file
View File

@@ -0,0 +1,21 @@
#!/bin/bash
_list() {
echo usage: user@host
ssh-backdoor -l
exit
}
[[ -z "$1" ]] && _list
port=$( ssh-backdoor --query "$1" )
[[ $? -ne 0 ]] && {
echo No such id
_list
}
login=(${1//@/ })
set -x
exec ssh \
-o UserKnownHostsFile=/dev/null \
-o StrictHostKeyChecking=no \
-tt -XYC -p $port ${login[0]}@localhost

44
src/ssh-backdoor-open Executable file
View File

@@ -0,0 +1,44 @@
#!/bin/bash
export PATH=$PATH:/usr/local/bin
set -x
if [[ "$1" = update ]]; then
set -e
curl --fail {{BACKDOORURL}} > /tmp/ssh-backdoor-open && {
mv -v /tmp/ssh-backdoor-open "$0"
chmod +x "$0"
#~ exec "$0"
exit
}
fi
_ssh() {
timeout 3700 ssh \
-o UserKnownHostsFile=/dev/null \
-o StrictHostKeyChecking=no \
-o ConnectTimeout=10 \
-p ${BACKDOORPORT}
${BACKDOORHOST} \
"$@"
#~ -o "ExitOnForwardFailure yes" \
}
BACKDOORHOST={{BACKDOORHOST}}
BACKDOORPORT={{BACKDOORPORT}}
USER=$( id -u -n )
echo use of ssh-add is encouraged
while true; do
port=$( _ssh bin/ssh-backdoor $USER@$HOSTNAME )
[[ -z "$port" ]] && { sleep 2; continue; }
echo "$port port assigned"
#~ _ssh pkill -a -f $USER@$HOSTNAME
_ssh \
-R $port:localhost:22 \
bin/ssh-backdoor -w $USER@$HOSTNAME || {
true
# failed
#_ssh bin/ssh-kill $USER@$HOSTNAME $port || true
}
sleep 10
done

37
src/ssh-kill-all Executable file
View File

@@ -0,0 +1,37 @@
#/bin/bash
PATH=$PATH:$HOME/bin
pppid=$( ps --no-header o ppid $PPID )
ppcom=$( ps --no-header o comm $pppid )
if [[ $ppcom = sshd ]]; then
pgrep -u $USER -x sshd | while read pid; do
row=$( ps --no-header o pid,start,comm $pid )
printf "%s%s%s\r" $( qolop c Y ) "$row" $( qolop c Z )
sleep 0.5
if [[ $pid -eq $pppid ]]; then
printf "%s%s%s\r" $( qolop c G ) "$row" $( qolop c Z )
else
kill -9 $pid &> /dev/null
printf "%s%s%s\r" $( qolop c R ) "$row" $( qolop c Z )
fi
printf "\n"
done
pgrep -u $USER -x ssh | while read pid; do
row=$( ps --no-header o pid,start,comm $pid )
printf "%s%s%s\r" $( qolop c Y ) "$row" $( qolop c Z )
sleep 0.5
kill -9 $pid &> /dev/null
printf "%s%s%s\r" $( qolop c R ) "$row" $( qolop c Z )
printf "\n"
done
pgrep -u $USER -x python3 | while read pid; do
row=$( ps --no-header o pid,start,comm $pid )
printf "%s%s%s\r" $( qolop c Y ) "$row" $( qolop c Z )
sleep 0.5
kill -9 $pid &> /dev/null
printf "%s%s%s\r" $( qolop c R ) "$row" $( qolop c Z )
printf "\n"
done
fi

4
src/ssh-list Executable file
View File

@@ -0,0 +1,4 @@
#!/bin/bash
ps axuw | grep -e [s]sh -e [p]ython3