5iutddlZddlmZddlmZmZmZmZmZm Z m Z ddl m Z m Z mZmZmZmZmZmZmZmZmZmZmZmZmZmZmZmZmZmZm Z m!Z!m"Z"m#Z#m$Z$m%Z%m&Z&m'Z'm(Z(ddl)m*Z*m+Z+ddl,Z,ddl-Z-ddl.m/Z/ddl0m1Z1m2Z2m3Z3m4Z4ddl5m6Z6dd l7m8Z8d Z9d Z:d Z;d ZddZ?dZ@dZAdZBdZCdZDdZEddZFdZGdS)N)SE_OBJECT_TYPE) CloseHandle CreateFileW GENERIC_READ READ_CONTROL OPEN_EXISTINGFILE_ATTRIBUTE_DIRECTORYFILE_FLAG_BACKUP_SEMANTICS)LookupAccountNameWLookupAccountSidWGetSecurityInfoOWNER_SECURITY_INFORMATIONGROUP_SECURITY_INFORMATIONDACL_SECURITY_INFORMATIONOpenSCManagerWSC_MANAGER_ENUMERATE_SERVICEEnumServicesStatusW OpenServiceWQueryServiceObjectSecurityCloseServiceHandle hive_name_map RegOpenKeyExW RegCloseKey RegEnumKeyExW RegEnumValueWSetSecurityInfoBuildTrusteeWithSidWGetEffectiveRightsFromAclWConvertSidToStringSidWConvertStringSidToSidW4ConvertSecurityDescriptorToStringSecurityDescriptorWOpenProcessTokenGetTokenInformationLsaGetLogonSessionDataTokenStatistics OpenProcessGetCurrentProcessId)NetUserGetLocalGroupsNetUserGetInfo)SECURITY_DESCRIPTOR)ACCESS_ALLOWED_ACEAceFlagsFILE_ACCESS_MASK ACCESS_MASK)SID)EvaluateSidAgainstDescriptorc.td|\}}}|SN)r )usernamesiddomainuses P/home/kali/Ninja/venv/lib/python3.11/site-packages/winacl/functions/highlevel.pyget_sid_for_userr8s&tX66fc ctj|}td|\}}}|d|S)N\)r/ from_stringr to_bytes)sid_strr4r3r5r6s r7get_user_for_sidr?s@ w*4@@63FFHH%%r9cpt|tjjtt zt z}|Sr2)r rSE_REGISTRY_KEYvaluerrr) key_handlesds r7 get_reg_sdrEs9j."@"FHbeHC\I\]] r9cd}t||t}t|tjj|t |dS)NidwDesiredAccessdwCreationDisposition)rrrrSE_FILE_OBJECTrBr) file_pathrD req_rights file_handles r7 set_file_sdrN"sH9 \ijjjn;A2FFF [r9ct|tt}t|tjjttztz}t||S)NrG) rrrr rrJrBrrrr)rKrMrDs r7 get_file_sdrP(s\9 ^klllk>#@#FHbeHC\I\]] [ r9ct|ttttz}t |t jjttztz}t||S)N)rHrIdwFlagsAndAttributes) rrrr r r rrJrBrrrr)dir_pathrMrDs r7get_directory_sdrT.sz8|]jD\_yDyzzzk>#@#FHbeHC\I\]] [ r9Fc#K|ddkr|dz }tj|dzdD]}tj|dur$ |dt |fV9#|ddfVYDxYw|durEtj|dur$ |dt|fV#|ddfVYxYwdS) Nr;z**/*T) recursivedirERRfile)globiglobospathisdirrTisfilerP)rS with_filesfilenames r7get_dir_file_recursiverc4s RLD d(Hv->>> " "XW]]8$$! E+H55 55555! E5      TbgnnX66$>>" FK11 11111" FE !!!!!! " "sA&& A1B// B:ctt}t|ttzt zt j}t||SNrHdwSecurityInformationsd_object_type) rrrrrrr SE_SERVICEr) scm_handlerDs r7get_servicemanager_sdrlCsc|=== E_b|E|@YFYlzlEFFFJ r9c tttz}t||t}t |t t ztztj }t|t||Sre) rrrrrrrrrrjr) service_namerkservice_handlerDs r7get_service_sdrpIs|>Z/Z\\\z<<XXX IcgAJAD]J]p~pIJJJJN### r9c#KdtfVtttz}t |D]} t ||t}t |ttztztj }||fVn#t$r}|dfVYd}~nd}~wwxYw t|#YxYw# t|w#YwxYwxYw t|dS#YdSxYw)NSCMrfrgerr)rlrrrrrrrrrrrj Exceptionr)rkrnrorDes r7enumerate_all_service_sdrvQsr #%%%%%%|>Z/Z\\\(44   \   \\ZZZ>">KeiCLCF_L_r@rK L L L2 r   u  ~&&&& D ~&&&& DZ     $$saABC B-B(#C(B--C1CCC! CC!C C!%C66C;ct|}t|tjjt t ztz}|Sr2)rr rrArBrrr) hive_namerCrDs r7get_registry_hive_sdryesCI&j."@"FHbeHC\I\]] r9cb|d}t|d}g}|ddD]'}t||}||(t |t jjttztz}|dddD]}t||S)Nr;rrV) splitrrappendr rrArBrrrr)reg_path path_elements reg_handlehandlesnamerDs r7get_registry_key_sdrjs%%M!,-  1R4 TZ..* ..j."@"FHbeHC\I\]]44R4=Z j r9c`g}d}|ddkr|d\}}t||^}}||t ||D]+}t||\}}} ||,t ||d|\} } | S)Nr;rVi)findr|r r}r(r0) rDr3 sid_groupsr5user_sidt group_namer4 groupnamer6resmasks r7 get_maximum_permissions_for_userr|s  MM$2^^D))&("6844A 8(::Z*6:>>#y# C*"h J O Od r9c#K|ddkr |dd}g}|\|d}t|d}g}|ddD]'}t||}||(t |}|D]}|d|} t||}t |t jjttztzt j} || fVt||Ed{Vx#t$r_} t| ddkr t!t| |znt!| Yd} ~ d} ~ wwxYw|D]}t#|dS)NrVr;rr{)se_object_typez cannot find)r|rrr}rr rrArBrrrenumerate_registry_sdrtstrrprintr) r~rrrrsubkeyssk reg_path_sk reg_handle_skrDrus r7rrs RLD crc]( ..&&-]1-.* 'ABBdj$//: >>*  $ $ @@R$HHbb)+ @ R00=  N$B$HJdhBKBE^K^qqO P P P2 r #K??????????     !ffkk-  B&& #a&&;  !HHH  Z jsD E+ AE&&E+ctddt}t|}t|t}t |jS)NF)r&r'r"r#r%r$AuthenticationId)phandle tokhandlestatss r7get_logon_inforsG te%8%:%: ; ; g & & Y 8 8u5666r9)Fr2)Hctypeswinacl.functions.constantsrwinacl.functions.kernel32rrrrrr r winacl.functions.advapi32r r r rrrrrrrrrrrrrrrrrrr r!r"r#r$r%r&r'winacl.functions.netapi32r(r)r[r]winacl.dtyp.security_descriptorr*winacl.dtyp.acer+r,r-r.winacl.dtyp.sidr/winacl.functions.rights_calcr0r8r?rErNrPrTrcrlrprvryrrrrr9r7rs} 555555``````````````````KKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKLKKKKKKK ??????WWWWWWWWWWWWEEEEEE   &&&           " " " "      (      $   &    D77777r9