rusthound-ce 2.4.7

Active Directory data collector for Bloodhound Community Edition written in rust.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110

use obfstr::obfstr;

use serde_json::value::Value;

use std::collections::HashMap;
use colored::Colorize;
use log::{info, debug, trace};

use std::fs;
use std::fs::File;
use std::io::{Seek, Write};
use std::error::Error;

use zip::result::ZipResult;
use zip::write::{SimpleFileOptions, ZipWriter};

extern crate zip;
use crate::args::{Options, RUSTHOUND_VERSION};
use crate::objects::common::{FinalJson, Meta, LdapObject};

/// Current Bloodhound version 4.3+
pub const BLOODHOUND_VERSION_4: i8 = 6;

// Function to create the .json file.
pub fn add_file<T: LdapObject>(
   datetime: &String,
   name: String,
   domain_format: &String,
   vec_json: Vec<T>,
   json_result: &mut HashMap<String, String>,
   common_args: &Options, 
 ) -> std::io::Result<()>
 {
  if !vec_json.is_empty() {
    debug!("Making {}.json",&name);
  
    let path = &common_args.path;
    let zip = common_args.zip;
    let count = vec_json.len();
  
    let mut result: Vec<Value> = Vec::new();
    for object in vec_json {
        result.push(object.to_json().to_owned());
    }
    // Prepare template and get result in const var
    let final_json = FinalJson::new(
        result,
        Meta::new(
          000000_i32,
          name.to_owned(),
          count as i32,
          BLOODHOUND_VERSION_4,
          format!("RustHound-CE v{}",RUSTHOUND_VERSION.to_owned())
        )
    );
  
    info!("{} {} parsed!", count.to_string().bold(),&name);
  
    // result
    fs::create_dir_all(path)?;
  
    // Create json file if isn't zip
    if ! zip 
    {
        let final_path = format!("{}/{}_{}_{}.json",path,datetime,domain_format,name);
        fs::write(&final_path, serde_json::to_string(&final_json)?)?;
        info!("{} created!",final_path.bold());
    }
    else
    {
        json_result.insert(format!("{}_{}_{}.json",datetime,domain_format,name).to_string(),serde_json::to_string(&final_json)?);
    }
  }
  Ok(())
 }
 
 /// Function to compress the JSON files into a zip archive
 pub fn make_a_zip(
   datetime: &String,
   domain: &String,
   path: &String,
   json_result: &HashMap<String, String>
 ) -> Result<String, Box<dyn Error>> {
   let final_path = format!("{}/{}_{}_{}.zip",path,datetime,domain,obfstr!("rusthound-ce"));
   let mut file = File::create(&final_path).expect("Couldn't create file");
   create_zip_archive(&mut file, json_result).expect("Couldn't create archive");
 
   info!("{} created!",&final_path.bold());
   Ok(final_path)
 }
 
 
 fn create_zip_archive<T: Seek + Write>(zip_filename: &mut T,json_result: &HashMap<String, String>) -> ZipResult<()> {
   let mut writer = ZipWriter::new(zip_filename);
   // json file by json file
   trace!("Making the ZIP file");
 
   for file in json_result
   {
      let filename = file.0;
      let content = file.1;
      trace!("Adding file {}",filename.bold());
      let options = SimpleFileOptions::default().compression_method(zip::CompressionMethod::Deflated);
      writer.start_file(filename, options)?;
      writer.write_all(content.as_bytes())?;
   }
 
   writer.finish()?;
   Ok(())
 }