SYMBOL INDEX (1646 symbols across 182 files) FILE: Linux/laZagne.py function output (line 28) | def output(output_dir=None, txt_format=False, json_format=False, all_for... function quiet_mode (line 53) | def quiet_mode(is_quiet_mode=False): function verbosity (line 58) | def verbosity(verbose=0): function clean_args (line 78) | def clean_args(arg): function runLaZagne (line 90) | def runLaZagne(category_selected='all', subcategories={}): FILE: Linux/lazagne/config/constant.py class constant (line 9) | class constant(): FILE: Linux/lazagne/config/crypto/pbkdf2.py function char_to_int (line 18) | def char_to_int(string): function chr_or_byte (line 24) | def chr_or_byte(integer): function pbkdf2 (line 32) | def pbkdf2(password, salt, itercount, keylen): function xorstr (line 47) | def xorstr(a, b): function prf (line 58) | def prf(h, data): function pbkdf2_F (line 66) | def pbkdf2_F(h, salt, itercount, blocknum): FILE: Linux/lazagne/config/crypto/pyDes.py class _baseDes (line 108) | class _baseDes(object): method __init__ (line 109) | def __init__(self, mode=ECB, IV=None, pad=None, padmode=PAD_NORMAL): method getKey (line 126) | def getKey(self): method setKey (line 130) | def setKey(self, key): method getMode (line 135) | def getMode(self): method setMode (line 139) | def setMode(self, mode): method getPadding (line 143) | def getPadding(self): method setPadding (line 147) | def setPadding(self, pad): method getPadMode (line 153) | def getPadMode(self): method setPadMode (line 157) | def setPadMode(self, mode): method getIV (line 161) | def getIV(self): method setIV (line 165) | def setIV(self, IV): method _padData (line 172) | def _padData(self, data, pad, padmode): method _unpadData (line 202) | def _unpadData(self, data, pad, padmode): method _guardAgainstUnicode (line 229) | def _guardAgainstUnicode(self, data): class des (line 249) | class des(_baseDes): method __init__ (line 397) | def __init__(self, key, mode=ECB, IV=None, pad=None, padmode=PAD_NORMAL): method setKey (line 411) | def setKey(self, key): method __String_to_BitList (line 416) | def __String_to_BitList(self, data): method __BitList_to_String (line 437) | def __BitList_to_String(self, data): method __permutate (line 454) | def __permutate(self, table, block): method __create_sub_keys (line 460) | def __create_sub_keys(self): method __des_crypt (line 485) | def __des_crypt(self, block, crypt_type): method crypt (line 564) | def crypt(self, data, crypt_type): method encrypt (line 643) | def encrypt(self, data, pad=None, padmode=None): method decrypt (line 662) | def decrypt(self, data, pad=None, padmode=None): class triple_des (line 687) | class triple_des(_baseDes): method __init__ (line 709) | def __init__(self, key, mode=ECB, IV=None, pad=None, padmode=PAD_NORMAL): method setKey (line 713) | def setKey(self, key): method setMode (line 740) | def setMode(self, mode): method setPadding (line 746) | def setPadding(self, pad): method setPadMode (line 752) | def setPadMode(self, mode): method setIV (line 758) | def setIV(self, IV): method encrypt (line 764) | def encrypt(self, data, pad=None, padmode=None): method decrypt (line 808) | def decrypt(self, data, pad=None, padmode=None): FILE: Linux/lazagne/config/crypto/pyaes/aes.py function _compact_word (line 61) | def _compact_word(word): function _string_to_bytes (line 64) | def _string_to_bytes(text): function _bytes_to_string (line 67) | def _bytes_to_string(binary): function _concat_list (line 70) | def _concat_list(a, b): function _string_to_bytes (line 81) | def _string_to_bytes(text): function _bytes_to_string (line 87) | def _bytes_to_string(binary): function _concat_list (line 91) | def _concat_list(a, b): class AES (line 97) | class AES(object): method __init__ (line 131) | def __init__(self, key): method encrypt (line 203) | def encrypt(self, plaintext): method decrypt (line 237) | def decrypt(self, ciphertext): class Counter (line 272) | class Counter(object): method __init__ (line 278) | def __init__(self, initial_value = 1): method increment (line 285) | def increment(self): class AESBlockModeOfOperation (line 301) | class AESBlockModeOfOperation(object): method __init__ (line 303) | def __init__(self, key): method decrypt (line 306) | def decrypt(self, ciphertext): method encrypt (line 309) | def encrypt(self, plaintext): class AESStreamModeOfOperation (line 313) | class AESStreamModeOfOperation(AESBlockModeOfOperation): class AESSegmentModeOfOperation (line 316) | class AESSegmentModeOfOperation(AESStreamModeOfOperation): class AESModeOfOperationECB (line 323) | class AESModeOfOperationECB(AESBlockModeOfOperation): method encrypt (line 340) | def encrypt(self, plaintext): method decrypt (line 347) | def decrypt(self, ciphertext): class AESModeOfOperationCBC (line 356) | class AESModeOfOperationCBC(AESBlockModeOfOperation): method __init__ (line 377) | def __init__(self, key, iv = None): method encrypt (line 387) | def encrypt(self, plaintext): method decrypt (line 397) | def decrypt(self, ciphertext): class AESModeOfOperationCFB (line 409) | class AESModeOfOperationCFB(AESSegmentModeOfOperation): method __init__ (line 422) | def __init__(self, key, iv, segment_size = 1): method encrypt (line 438) | def encrypt(self, plaintext): method decrypt (line 458) | def decrypt(self, ciphertext): class AESModeOfOperationOFB (line 480) | class AESModeOfOperationOFB(AESStreamModeOfOperation): method __init__ (line 496) | def __init__(self, key, iv = None): method encrypt (line 508) | def encrypt(self, plaintext): method decrypt (line 521) | def decrypt(self, ciphertext): class AESModeOfOperationCTR (line 527) | class AESModeOfOperationCTR(AESStreamModeOfOperation): method __init__ (line 556) | def __init__(self, key, counter = None): method encrypt (line 565) | def encrypt(self, plaintext): method decrypt (line 577) | def decrypt(self, crypttext): FILE: Linux/lazagne/config/crypto/pyaes/blockfeeder.py function _block_can_consume (line 54) | def _block_can_consume(self, size): function _block_final_encrypt (line 59) | def _block_final_encrypt(self, data, padding = PADDING_DEFAULT): function _block_final_decrypt (line 75) | def _block_final_decrypt(self, data, padding = PADDING_DEFAULT): function _segment_can_consume (line 94) | def _segment_can_consume(self, size): function _segment_final_encrypt (line 98) | def _segment_final_encrypt(self, data, padding = PADDING_DEFAULT): function _segment_final_decrypt (line 107) | def _segment_final_decrypt(self, data, padding = PADDING_DEFAULT): function _stream_can_consume (line 123) | def _stream_can_consume(self, size): function _stream_final_encrypt (line 126) | def _stream_final_encrypt(self, data, padding = PADDING_DEFAULT): function _stream_final_decrypt (line 132) | def _stream_final_decrypt(self, data, padding = PADDING_DEFAULT): class BlockFeeder (line 144) | class BlockFeeder(object): method __init__ (line 149) | def __init__(self, mode, feed, final, padding = PADDING_DEFAULT): method feed (line 156) | def feed(self, data = None): class Encrypter (line 186) | class Encrypter(BlockFeeder): method __init__ (line 189) | def __init__(self, mode, padding = PADDING_DEFAULT): class Decrypter (line 193) | class Decrypter(BlockFeeder): method __init__ (line 196) | def __init__(self, mode, padding = PADDING_DEFAULT): function _feed_stream (line 203) | def _feed_stream(feeder, in_stream, out_stream, block_size = BLOCK_SIZE): function encrypt_stream (line 216) | def encrypt_stream(mode, in_stream, out_stream, block_size = BLOCK_SIZE,... function decrypt_stream (line 223) | def decrypt_stream(mode, in_stream, out_stream, block_size = BLOCK_SIZE,... FILE: Linux/lazagne/config/crypto/pyaes/util.py function to_bufferable (line 29) | def to_bufferable(binary): function _get_byte (line 32) | def _get_byte(c): function to_bufferable (line 39) | def to_bufferable(binary): function _get_byte (line 44) | def _get_byte(c): function append_PKCS7_padding (line 47) | def append_PKCS7_padding(data): function strip_PKCS7_padding (line 51) | def strip_PKCS7_padding(data): FILE: Linux/lazagne/config/dico.py function get_dic (line 1) | def get_dic(): FILE: Linux/lazagne/config/homes.py function directories (line 5) | def directories(): function get (line 25) | def get(file=[], directory=[]): function users (line 49) | def users(file=[], directory=[]): function get_linux_env (line 68) | def get_linux_env(pid): function sessions (line 82) | def sessions(setenv=True): FILE: Linux/lazagne/config/lib/memorpy/Address.py class AddressException (line 19) | class AddressException(Exception): class Address (line 23) | class Address(object): method __init__ (line 26) | def __init__(self, value, process, default_type = 'uint'): method read (line 32) | def read(self, type = None, maxlen = None, errors='raise'): method write (line 48) | def write(self, data, type = None): method symbol (line 53) | def symbol(self): method get_instruction (line 56) | def get_instruction(self): method dump (line 59) | def dump(self, ftype = 'bytes', size = 512, before = 32): method __nonzero__ (line 63) | def __nonzero__(self): method __add__ (line 66) | def __add__(self, other): method __sub__ (line 69) | def __sub__(self, other): method __repr__ (line 72) | def __repr__(self): method __str__ (line 77) | def __str__(self): method __int__ (line 82) | def __int__(self): method __hex__ (line 85) | def __hex__(self): method __get__ (line 88) | def __get__(self, instance, owner): method __set__ (line 91) | def __set__(self, instance, value): method __lt__ (line 94) | def __lt__(self, other): method __le__ (line 97) | def __le__(self, other): method __eq__ (line 100) | def __eq__(self, other): method __ne__ (line 103) | def __ne__(self, other): method __gt__ (line 106) | def __gt__(self, other): method __ge__ (line 109) | def __ge__(self, other): FILE: Linux/lazagne/config/lib/memorpy/BaseProcess.py class ProcessException (line 11) | class ProcessException(Exception): class BaseProcess (line 14) | class BaseProcess(object): method __init__ (line 16) | def __init__(self, *args, **kwargs): method __del__ (line 24) | def __del__(self): method close (line 27) | def close(self): method iter_region (line 29) | def iter_region(self, *args, **kwargs): method write_bytes (line 31) | def write_bytes(self, address, data): method read_bytes (line 34) | def read_bytes(self, address, bytes = 4): method get_symbolic_name (line 37) | def get_symbolic_name(self, address): method read (line 40) | def read(self, address, type = 'uint', maxlen = 50, errors='raise'): method write (line 59) | def write(self, address, data, type = 'uint'): FILE: Linux/lazagne/config/lib/memorpy/LinProcess.py function errcheck (line 36) | def errcheck(ret, func, args): class LinProcess (line 70) | class LinProcess(BaseProcess): method __init__ (line 71) | def __init__(self, pid=None, name=None, debug=True, ptrace=None): method check_ptrace_scope (line 89) | def check_ptrace_scope(self): method close (line 132) | def close(self): method __del__ (line 142) | def __del__(self): method _open (line 145) | def _open(self): method list (line 161) | def list(): method pid_from_name (line 172) | def pid_from_name(name): method _ptrace (line 187) | def _ptrace(self, attach): method iter_region (line 207) | def iter_region(self, start_offset=None, end_offset=None, protec=None,... method ptrace_attach (line 240) | def ptrace_attach(self): method ptrace_detach (line 246) | def ptrace_detach(self): method write_bytes (line 252) | def write_bytes(self, address, data): method read_bytes (line 280) | def read_bytes(self, address, bytes = 4): FILE: Linux/lazagne/config/lib/memorpy/Locator.py class Locator (line 24) | class Locator(object): method __init__ (line 30) | def __init__(self, mw, type = 'unknown', start = None, end = None): method find (line 38) | def find(self, value, erase_last = True): method feed (line 41) | def feed(self, value, erase_last = True): method get_addresses (line 78) | def get_addresses(self): method diff (line 81) | def diff(self, erase_last = False): method get_modified_addr (line 84) | def get_modified_addr(self, erase_last = False): FILE: Linux/lazagne/config/lib/memorpy/MemWorker.py class MemWorker (line 33) | class MemWorker(object): method __init__ (line 35) | def __init__(self, pid=None, name=None, end_offset = None, start_offse... method __enter__ (line 38) | def __enter__(self): method __exit__ (line 41) | def __exit__(self, type, value, traceback): method Address (line 44) | def Address(self, value, default_type = 'uint'): method umem_replace (line 48) | def umem_replace(self, regex, replace): method mem_replace (line 54) | def mem_replace(self, regex, replace): method umem_search (line 66) | def umem_search(self, regex): method group_search (line 72) | def group_search(self, group, start_offset = None, end_offset = None): method search_address (line 83) | def search_address(self, addr): method parse_re_function (line 93) | def parse_re_function(self, b, value, offset): method parse_float_function (line 107) | def parse_float_function(self, b, value, offset): method parse_named_groups_function (line 118) | def parse_named_groups_function(self, b, value, offset=None): method parse_groups_function (line 123) | def parse_groups_function(self, b, value, offset=None): method parse_any_function (line 128) | def parse_any_function(self, b, value, offset): method mem_search (line 135) | def mem_search(self, value, ftype = 'match', protec = PAGE_READWRITE |... FILE: Linux/lazagne/config/lib/memorpy/OSXProcess.py class vm_region_basic_info_64 (line 37) | class vm_region_basic_info_64(ctypes.Structure): class OSXProcess (line 55) | class OSXProcess(BaseProcess): method __init__ (line 56) | def __init__(self, pid=None, name=None, debug=True): method close (line 69) | def close(self): method __del__ (line 72) | def __del__(self): method _open (line 75) | def _open(self): method list (line 84) | def list(): method pid_from_name (line 99) | def pid_from_name(name): method iter_region (line 105) | def iter_region(self, start_offset=None, end_offset=None, protec=None,... method write_bytes (line 157) | def write_bytes(self, address, data): method read_bytes (line 161) | def read_bytes(self, address, bytes = 4): FILE: Linux/lazagne/config/lib/memorpy/SunProcess.py class SunProcess (line 39) | class SunProcess(BaseProcess): method __init__ (line 40) | def __init__(self, pid=None, name=None, debug=True, ptrace=None): method close (line 55) | def close(self): method __del__ (line 59) | def __del__(self): method _open (line 62) | def _open(self): method _name_args (line 72) | def _name_args(pid): method list (line 78) | def list(): method pid_from_name (line 94) | def pid_from_name(name): method iter_region (line 109) | def iter_region(self, start_offset=None, end_offset=None, protec=None,... method write_bytes (line 153) | def write_bytes(self, address, data): method read_bytes (line 162) | def read_bytes(self, address, bytes = 4): FILE: Linux/lazagne/config/lib/memorpy/WinProcess.py class WinProcess (line 35) | class WinProcess(BaseProcess): method __init__ (line 37) | def __init__(self, pid=None, name=None, debug=True): method __del__ (line 57) | def __del__(self): method is_64bit (line 60) | def is_64bit(self): method list (line 71) | def list(): method processes_from_name (line 99) | def processes_from_name(processName): method name_from_process (line 109) | def name_from_process(dwProcessId): method _open (line 117) | def _open(self, dwProcessId, debug=False): method close (line 136) | def close(self): method _open_from_name (line 146) | def _open_from_name(self, processName, debug=False): method GetSystemInfo (line 157) | def GetSystemInfo(self): method GetNativeSystemInfo (line 162) | def GetNativeSystemInfo(self): method VirtualQueryEx (line 167) | def VirtualQueryEx(self, lpAddress): method VirtualQueryEx64 (line 173) | def VirtualQueryEx64(self, lpAddress): method VirtualProtectEx (line 179) | def VirtualProtectEx(self, base_address, size, protection): method iter_region (line 185) | def iter_region(self, start_offset=None, end_offset=None, protec=None,... method write_bytes (line 209) | def write_bytes(self, address, data): method read_bytes (line 231) | def read_bytes(self, address, bytes = 4, use_NtWow64ReadVirtualMemory6... method list_modules (line 268) | def list_modules(self): method get_symbolic_name (line 284) | def get_symbolic_name(self, address): method hasModule (line 291) | def hasModule(self, module): method get_instruction (line 301) | def get_instruction(self, address): FILE: Linux/lazagne/config/lib/memorpy/WinStructures.py class SECURITY_DESCRIPTOR (line 26) | class SECURITY_DESCRIPTOR(Structure): class MEMORY_BASIC_INFORMATION (line 36) | class MEMORY_BASIC_INFORMATION(Structure): class MEMORY_BASIC_INFORMATION64 (line 46) | class MEMORY_BASIC_INFORMATION64(Structure): class SYSTEM_INFO (line 59) | class SYSTEM_INFO(Structure): class PROCESSENTRY32 (line 73) | class PROCESSENTRY32(Structure): class MODULEENTRY32 (line 89) | class MODULEENTRY32(Structure): class THREADENTRY32 (line 102) | class THREADENTRY32(Structure): class TH32CS_CLASS (line 112) | class TH32CS_CLASS(object): FILE: Linux/lazagne/config/lib/memorpy/utils.py function re_to_unicode (line 20) | def re_to_unicode(s): function type_unpack (line 28) | def type_unpack(type): function hex_dump (line 62) | def hex_dump(data, addr = 0, prefix = '', ftype = 'bytes'): FILE: Linux/lazagne/config/lib/memorpy/wintools.py function start_winforeground_daemon (line 20) | def start_winforeground_daemon(): function window_foreground_loop (line 26) | def window_foreground_loop(timeout=20): FILE: Linux/lazagne/config/manage_modules.py function get_categories (line 18) | def get_categories(): function get_modules_names (line 34) | def get_modules_names(): function get_modules (line 71) | def get_modules(): FILE: Linux/lazagne/config/module_info.py class ModuleInfo (line 22) | class ModuleInfo(object): method __init__ (line 23) | def __init__(self, name, category, options={}, suboptions=[]): method error (line 34) | def error(self, message): method info (line 37) | def info(self, message): method debug (line 40) | def debug(self, message): method warning (line 43) | def warning(self, message): FILE: Linux/lazagne/config/run.py function create_module_dic (line 12) | def create_module_dic(): function run_module (line 30) | def run_module(module, subcategories): function run_modules (line 59) | def run_modules(category_selected, subcategories): function run_lazagne (line 73) | def run_lazagne(category_selected='all', subcategories={}): FILE: Linux/lazagne/config/soft_import_module.py function soft_import (line 9) | def soft_import(package_name, module_name): class _MOCK_ImportErrorInModule (line 25) | class _MOCK_ImportErrorInModule(ModuleInfo): method __init__ (line 27) | def __init__(self, name, exception): method run (line 31) | def run(self): FILE: Linux/lazagne/config/write_output.py class Bcolors (line 17) | class Bcolors(): class StandardOutput (line 27) | class StandardOutput(): method __init__ (line 28) | def __init__(self): method set_color (line 39) | def set_color(self, color=None): method first_title (line 47) | def first_title(self): method print_title (line 54) | def print_title(self, title): method title_info (line 59) | def title_info(self, title): method write_header (line 63) | def write_header(self): method write_footer (line 74) | def write_footer(self): method print_footer (line 79) | def print_footer(self, elapsed_time=None): method print_logging (line 87) | def print_logging(self, function, prefix='[!]', message='', color=False): method try_unicode (line 103) | def try_unicode(self, obj, encoding='utf-8'): method print_without_error (line 112) | def print_without_error(self, message): method do_print (line 119) | def do_print(self, message='', color=False): method checks_write (line 132) | def checks_write(self, values, category): method print_output (line 138) | def print_output(self, software_name, pwd_found): function print_debug (line 210) | def print_debug(error_level, message): function parse_json_result_to_buffer (line 238) | def parse_json_result_to_buffer(json_string, color=False): function write_in_file (line 279) | def write_in_file(result): FILE: Linux/lazagne/softwares/browsers/chromium_based.py class ChromiumBased (line 20) | class ChromiumBased(ModuleInfo): method __init__ (line 21) | def __init__(self, browser_name, path): method get_paths (line 32) | def get_paths(self): method remove_padding (line 44) | def remove_padding(self, data): method _decrypt_v80 (line 59) | def _decrypt_v80(self, buff, master_key, AES_mode): method chrome_decrypt (line 70) | def chrome_decrypt(self, encrypted_value, key, init_vector): method get_passwords (line 77) | def get_passwords(self, path): method run (line 137) | def run(self): FILE: Linux/lazagne/softwares/browsers/mozilla.py function l (line 30) | def l(n): function convert_to_byte (line 41) | def convert_to_byte(s): function o (line 48) | def o(c): function long_to_bytes (line 55) | def long_to_bytes(n, blocksize=0): class Mozilla (line 86) | class Mozilla(ModuleInfo): method __init__ (line 88) | def __init__(self, browser_name, path, category='browsers'): method get_firefox_profiles (line 92) | def get_firefox_profiles(self, directory): method get_key (line 121) | def get_key(self, profile): method get_short_le (line 208) | def get_short_le(d, a): method get_long_be (line 212) | def get_long_be(d, a): method print_asn1 (line 215) | def print_asn1(self, d, l, rl): method read_bsddb (line 244) | def read_bsddb(self, name): method decrypt_3des (line 302) | def decrypt_3des(decoded_item, master_password, global_salt): method extract_secret_key (line 349) | def extract_secret_key(self, key_data, global_salt, master_password, e... method decode_login_data (line 373) | def decode_login_data(data): method get_login_data (line 378) | def get_login_data(self, profile): method manage_masterpassword (line 415) | def manage_masterpassword(self, master_password=b'', key_data=None, ne... method is_master_password_correct (line 433) | def is_master_password_correct(self, key_data, master_password=b'', ne... method brute_master_password (line 472) | def brute_master_password(self, key_data, new_version=True): method remove_padding (line 491) | def remove_padding(self, data): method decrypt (line 506) | def decrypt(self, key, iv, ciphertext): method run (line 513) | def run(self): FILE: Linux/lazagne/softwares/browsers/opera.py class Opera (line 20) | class Opera(ModuleInfo): method __init__ (line 21) | def __init__(self): method get_paths (line 24) | def get_paths(self): method run (line 27) | def run(self): method decipher_old_version (line 50) | def decipher_old_version(self, path): method master_password_used (line 100) | def master_password_used(self, path): method parse_results (line 118) | def parse_results(self, passwords): FILE: Linux/lazagne/softwares/chats/pidgin.py class Pidgin (line 12) | class Pidgin(ModuleInfo): method __init__ (line 13) | def __init__(self): method get_password_from_dbus (line 17) | def get_password_from_dbus(self): method run (line 52) | def run(self): FILE: Linux/lazagne/softwares/chats/psi.py class PSI (line 10) | class PSI(ModuleInfo): method __init__ (line 11) | def __init__(self): method get_profiles_files (line 16) | def get_profiles_files(self): method decode_password (line 29) | def decode_password(self, password, jid): method process_one_file (line 38) | def process_one_file(self, _path): method run (line 58) | def run(self): FILE: Linux/lazagne/softwares/databases/dbvis.py class DbVisualizer (line 18) | class DbVisualizer(ModuleInfo): method __init__ (line 19) | def __init__(self): method get_salt (line 25) | def get_salt(self): method get_derived_key (line 31) | def get_derived_key(self, password, salt, count): method decrypt (line 39) | def decrypt(self, msg): method run (line 46) | def run(self): FILE: Linux/lazagne/softwares/databases/sqldeveloper.py class SQLDeveloper (line 23) | class SQLDeveloper(ModuleInfo): method __init__ (line 24) | def __init__(self): method get_salt (line 30) | def get_salt(self): method get_derived_key (line 36) | def get_derived_key(self, password, salt, count): method decrypt (line 43) | def decrypt(self, msg): method aes_cbc_decrypt (line 50) | def aes_cbc_decrypt(self, encrypted_password, decryption_key, iv): method decrypt_v19_2 (line 57) | def decrypt_v19_2(self, encrypted, db_system_id): method get_passphrase (line 72) | def get_passphrase(self, path): method run (line 95) | def run(self): FILE: Linux/lazagne/softwares/databases/squirrel.py class Squirrel (line 12) | class Squirrel(ModuleInfo): method __init__ (line 13) | def __init__(self): method get_paths (line 16) | def get_paths(self): method parse_xml (line 19) | def parse_xml(self, path): method run (line 34) | def run(self): FILE: Linux/lazagne/softwares/git/gitforlinux.py class GitForLinux (line 14) | class GitForLinux(ModuleInfo): method __init__ (line 15) | def __init__(self): method extract_credentials (line 18) | def extract_credentials(self, location): method run (line 41) | def run(self): FILE: Linux/lazagne/softwares/mails/clawsmail.py class ClawsMail (line 26) | class ClawsMail(ModuleInfo): method __init__ (line 27) | def __init__(self): method get_paths (line 43) | def get_paths(self): method get_clawsrc_conf (line 46) | def get_clawsrc_conf(self, path): method pass_decrypt_old (line 57) | def pass_decrypt_old(self, p): method pass_decrypt_new (line 75) | def pass_decrypt_new(self, encrypted_pwd): method parse_passwordstorerc (line 99) | def parse_passwordstorerc(self, path, section): method parse_accountrc (line 111) | def parse_accountrc(self, path): method run (line 158) | def run(self): FILE: Linux/lazagne/softwares/memory/memorydump.py class MemoryDump (line 56) | class MemoryDump(ModuleInfo): method __init__ (line 57) | def __init__(self): method run (line 62) | def run(self): FILE: Linux/lazagne/softwares/memory/mimipy.py class Mimipy (line 26) | class Mimipy(ModuleInfo): method __init__ (line 27) | def __init__(self): method get_shadow_hashes (line 77) | def get_shadow_hashes(self): method memstrings (line 86) | def memstrings(self, mw, start_offset=None, end_offset=None, optimizat... method password_list_match (line 91) | def password_list_match(self, password_list, near): method cleanup_string (line 97) | def cleanup_string(self, s): method test_shadow (line 108) | def test_shadow(self, name, pid, rule, optimizations='nsrx'): method mimipy_loot_passwords (line 146) | def mimipy_loot_passwords(self, optimizations='nsrx'): method run (line 159) | def run(self): FILE: Linux/lazagne/softwares/sysadmin/apachedirectorystudio.py class ApacheDirectoryStudio (line 11) | class ApacheDirectoryStudio(ModuleInfo): method __init__ (line 13) | def __init__(self): method extract_connections_credentials (line 18) | def extract_connections_credentials(self): method run (line 45) | def run(self): FILE: Linux/lazagne/softwares/sysadmin/aws.py class Aws (line 15) | class Aws(ModuleInfo): method __init__ (line 16) | def __init__(self): method get_paths (line 19) | def get_paths(self): method get_creds (line 22) | def get_creds(self, path): method run (line 37) | def run(self): FILE: Linux/lazagne/softwares/sysadmin/cli.py class Cli (line 17) | class Cli(ModuleInfo): method __init__ (line 18) | def __init__(self): method get_files (line 21) | def get_files(self): method get_lines (line 59) | def get_lines(self): method suspicious (line 97) | def suspicious(self, user, line): method run (line 129) | def run(self): FILE: Linux/lazagne/softwares/sysadmin/docker.py class Docker (line 10) | class Docker(ModuleInfo): method __init__ (line 11) | def __init__(self): method get_paths (line 14) | def get_paths(self): method get_creds (line 17) | def get_creds(self, path): method run (line 30) | def run(self): FILE: Linux/lazagne/softwares/sysadmin/env_variable.py class Env_variable (line 13) | class Env_variable(ModuleInfo): method __init__ (line 14) | def __init__(self): method run (line 17) | def run(self): FILE: Linux/lazagne/softwares/sysadmin/filezilla.py class Filezilla (line 13) | class Filezilla(ModuleInfo): method __init__ (line 14) | def __init__(self): method run (line 17) | def run(self): FILE: Linux/lazagne/softwares/sysadmin/fstab.py class Fstab (line 9) | class Fstab(ModuleInfo): method __init__ (line 10) | def __init__(self): method run (line 13) | def run(self): FILE: Linux/lazagne/softwares/sysadmin/gftp.py class gFTP (line 13) | class gFTP(ModuleInfo): method __init__ (line 15) | def __init__(self): method decode_password (line 19) | def decode_password(self, encoded_pass): method get_parameter (line 33) | def get_parameter(self, name, file_content): method run (line 39) | def run(self): FILE: Linux/lazagne/softwares/sysadmin/grub.py class Grub (line 10) | class Grub(ModuleInfo): method __init__ (line 12) | def __init__(self): method dictionary_attack (line 15) | def dictionary_attack(self, crypt_pwd): method run (line 50) | def run(self): FILE: Linux/lazagne/softwares/sysadmin/keepassconfig.py class KeePassConfig (line 15) | class KeePassConfig(ModuleInfo): method __init__ (line 17) | def __init__(self): method run (line 21) | def run(self): FILE: Linux/lazagne/softwares/sysadmin/rclone.py class Rclone (line 22) | class Rclone(ModuleInfo): method __init__ (line 23) | def __init__(self): method get_paths (line 28) | def get_paths(self): method base64_urlsafedecode (line 31) | def base64_urlsafedecode(self, string): method aes_ctr_decrypt (line 40) | def aes_ctr_decrypt(self, encrypted_password, iv): method deobscure (line 50) | def deobscure(self, obscured): method run (line 56) | def run(self): FILE: Linux/lazagne/softwares/sysadmin/shadow.py class Shadow (line 10) | class Shadow(ModuleInfo): method __init__ (line 12) | def __init__(self): method dictionary_attack (line 15) | def dictionary_attack(self, user, crypt_pwd): method run (line 65) | def run(self): FILE: Linux/lazagne/softwares/sysadmin/ssh.py class Ssh (line 9) | class Ssh(ModuleInfo): method __init__ (line 10) | def __init__(self): method get_ids (line 13) | def get_ids(self): method get_configs (line 44) | def get_configs(self): method create_pw_object (line 47) | def create_pw_object(self, identity, host, port, user): method get_ids_from_config (line 57) | def get_ids_from_config(self, default_user, config): method run (line 108) | def run(self): FILE: Linux/lazagne/softwares/wallet/kde.py class Kde (line 14) | class Kde(ModuleInfo): method __init__ (line 15) | def __init__(self): method run (line 23) | def run(self): FILE: Linux/lazagne/softwares/wallet/libsecret.py function make_auth_external (line 17) | def make_auth_external(): class Libsecret (line 23) | class Libsecret(ModuleInfo): method __init__ (line 24) | def __init__(self): method run (line 27) | def run(self): FILE: Linux/lazagne/softwares/wifi/wifi.py class Wifi (line 17) | class Wifi(ModuleInfo): method __init__ (line 18) | def __init__(self): method run (line 21) | def run(self): FILE: Linux/lazagne/softwares/wifi/wpa_supplicant.py class Wpa_supplicant (line 16) | class Wpa_supplicant(ModuleInfo): method __init__ (line 17) | def __init__(self): method parse_file_network (line 20) | def parse_file_network(self, fd): method run (line 34) | def run(self): FILE: Mac/laZagne.py function output (line 30) | def output(output_dir=None, txt_format=False, json_format=False, all_for... function quiet_mode (line 55) | def quiet_mode(is_quiet_mode=False): function verbosity (line 60) | def verbosity(verbose=0): function manage_advanced_options (line 80) | def manage_advanced_options(user_password=None, dictionary_attack=None): function clean_args (line 88) | def clean_args(arg): function runLaZagne (line 100) | def runLaZagne(category_selected='all', subcategories={}, password=None,... FILE: Mac/lazagne/config/constant.py class constant (line 9) | class constant(): FILE: Mac/lazagne/config/crypto/pyDes.py class _baseDes (line 108) | class _baseDes(object): method __init__ (line 109) | def __init__(self, mode=ECB, IV=None, pad=None, padmode=PAD_NORMAL): method getKey (line 127) | def getKey(self): method setKey (line 131) | def setKey(self, key): method getMode (line 136) | def getMode(self): method setMode (line 140) | def setMode(self, mode): method getPadding (line 144) | def getPadding(self): method setPadding (line 148) | def setPadding(self, pad): method getPadMode (line 154) | def getPadMode(self): method setPadMode (line 158) | def setPadMode(self, mode): method getIV (line 162) | def getIV(self): method setIV (line 166) | def setIV(self, IV): method _padData (line 173) | def _padData(self, data, pad, padmode): method _unpadData (line 203) | def _unpadData(self, data, pad, padmode): method _guardAgainstUnicode (line 230) | def _guardAgainstUnicode(self, data): class des (line 250) | class des(_baseDes): method __init__ (line 398) | def __init__(self, key, mode=ECB, IV=None, pad=None, padmode=PAD_NORMAL): method setKey (line 412) | def setKey(self, key): method __String_to_BitList (line 417) | def __String_to_BitList(self, data): method __BitList_to_String (line 438) | def __BitList_to_String(self, data): method __permutate (line 455) | def __permutate(self, table, block): method __create_sub_keys (line 461) | def __create_sub_keys(self): method __des_crypt (line 486) | def __des_crypt(self, block, crypt_type): method crypt (line 565) | def crypt(self, data, crypt_type): method encrypt (line 644) | def encrypt(self, data, pad=None, padmode=None): method decrypt (line 663) | def decrypt(self, data, pad=None, padmode=None): class triple_des (line 688) | class triple_des(_baseDes): method __init__ (line 710) | def __init__(self, key, mode=ECB, IV=None, pad=None, padmode=PAD_NORMAL): method setKey (line 714) | def setKey(self, key): method setMode (line 741) | def setMode(self, mode): method setPadding (line 747) | def setPadding(self, pad): method setPadMode (line 753) | def setPadMode(self, mode): method setIV (line 759) | def setIV(self, IV): method encrypt (line 765) | def encrypt(self, data, pad=None, padmode=None): method decrypt (line 809) | def decrypt(self, data, pad=None, padmode=None): FILE: Mac/lazagne/config/crypto/pyaes/aes.py function _compact_word (line 61) | def _compact_word(word): function _string_to_bytes (line 64) | def _string_to_bytes(text): function _bytes_to_string (line 67) | def _bytes_to_string(binary): function _concat_list (line 70) | def _concat_list(a, b): function _string_to_bytes (line 81) | def _string_to_bytes(text): function _bytes_to_string (line 87) | def _bytes_to_string(binary): function _concat_list (line 91) | def _concat_list(a, b): class AES (line 97) | class AES(object): method __init__ (line 131) | def __init__(self, key): method encrypt (line 203) | def encrypt(self, plaintext): method decrypt (line 237) | def decrypt(self, ciphertext): class Counter (line 272) | class Counter(object): method __init__ (line 278) | def __init__(self, initial_value = 1): method increment (line 285) | def increment(self): class AESBlockModeOfOperation (line 301) | class AESBlockModeOfOperation(object): method __init__ (line 303) | def __init__(self, key): method decrypt (line 306) | def decrypt(self, ciphertext): method encrypt (line 309) | def encrypt(self, plaintext): class AESStreamModeOfOperation (line 313) | class AESStreamModeOfOperation(AESBlockModeOfOperation): class AESSegmentModeOfOperation (line 316) | class AESSegmentModeOfOperation(AESStreamModeOfOperation): class AESModeOfOperationECB (line 323) | class AESModeOfOperationECB(AESBlockModeOfOperation): method encrypt (line 340) | def encrypt(self, plaintext): method decrypt (line 347) | def decrypt(self, ciphertext): class AESModeOfOperationCBC (line 356) | class AESModeOfOperationCBC(AESBlockModeOfOperation): method __init__ (line 377) | def __init__(self, key, iv = None): method encrypt (line 387) | def encrypt(self, plaintext): method decrypt (line 397) | def decrypt(self, ciphertext): class AESModeOfOperationCFB (line 409) | class AESModeOfOperationCFB(AESSegmentModeOfOperation): method __init__ (line 422) | def __init__(self, key, iv, segment_size = 1): method encrypt (line 438) | def encrypt(self, plaintext): method decrypt (line 458) | def decrypt(self, ciphertext): class AESModeOfOperationOFB (line 480) | class AESModeOfOperationOFB(AESStreamModeOfOperation): method __init__ (line 496) | def __init__(self, key, iv = None): method encrypt (line 508) | def encrypt(self, plaintext): method decrypt (line 521) | def decrypt(self, ciphertext): class AESModeOfOperationCTR (line 527) | class AESModeOfOperationCTR(AESStreamModeOfOperation): method __init__ (line 556) | def __init__(self, key, counter = None): method encrypt (line 565) | def encrypt(self, plaintext): method decrypt (line 577) | def decrypt(self, crypttext): FILE: Mac/lazagne/config/crypto/pyaes/blockfeeder.py function _block_can_consume (line 54) | def _block_can_consume(self, size): function _block_final_encrypt (line 59) | def _block_final_encrypt(self, data, padding = PADDING_DEFAULT): function _block_final_decrypt (line 75) | def _block_final_decrypt(self, data, padding = PADDING_DEFAULT): function _segment_can_consume (line 94) | def _segment_can_consume(self, size): function _segment_final_encrypt (line 98) | def _segment_final_encrypt(self, data, padding = PADDING_DEFAULT): function _segment_final_decrypt (line 107) | def _segment_final_decrypt(self, data, padding = PADDING_DEFAULT): function _stream_can_consume (line 123) | def _stream_can_consume(self, size): function _stream_final_encrypt (line 126) | def _stream_final_encrypt(self, data, padding = PADDING_DEFAULT): function _stream_final_decrypt (line 132) | def _stream_final_decrypt(self, data, padding = PADDING_DEFAULT): class BlockFeeder (line 144) | class BlockFeeder(object): method __init__ (line 149) | def __init__(self, mode, feed, final, padding = PADDING_DEFAULT): method feed (line 156) | def feed(self, data = None): class Encrypter (line 186) | class Encrypter(BlockFeeder): method __init__ (line 189) | def __init__(self, mode, padding = PADDING_DEFAULT): class Decrypter (line 193) | class Decrypter(BlockFeeder): method __init__ (line 196) | def __init__(self, mode, padding = PADDING_DEFAULT): function _feed_stream (line 203) | def _feed_stream(feeder, in_stream, out_stream, block_size = BLOCK_SIZE): function encrypt_stream (line 216) | def encrypt_stream(mode, in_stream, out_stream, block_size = BLOCK_SIZE,... function decrypt_stream (line 223) | def decrypt_stream(mode, in_stream, out_stream, block_size = BLOCK_SIZE,... FILE: Mac/lazagne/config/crypto/pyaes/util.py function to_bufferable (line 29) | def to_bufferable(binary): function _get_byte (line 32) | def _get_byte(c): function to_bufferable (line 39) | def to_bufferable(binary): function _get_byte (line 44) | def _get_byte(c): function append_PKCS7_padding (line 47) | def append_PKCS7_padding(data): function strip_PKCS7_padding (line 51) | def strip_PKCS7_padding(data): FILE: Mac/lazagne/config/dico.py function get_dic (line 1) | def get_dic(): FILE: Mac/lazagne/config/manage_modules.py function get_categories (line 7) | def get_categories(): function get_modules_names (line 17) | def get_modules_names(): function get_modules (line 30) | def get_modules(): FILE: Mac/lazagne/config/module_info.py class ModuleInfo (line 20) | class ModuleInfo(object): method __init__ (line 21) | def __init__(self, name, category, sub_options=[]): method error (line 32) | def error(self, message): method info (line 35) | def info(self, message): method debug (line 38) | def debug(self, message): method warning (line 41) | def warning(self, message): FILE: Mac/lazagne/config/run.py function create_module_dic (line 13) | def create_module_dic(): function get_safe_storage_key (line 31) | def get_safe_storage_key(key): function run_cmd (line 42) | def run_cmd(cmd): function run_module (line 51) | def run_module(module, subcategories): function run_modules (line 80) | def run_modules(category_selected, subcategories): function run_lazagne (line 91) | def run_lazagne(category_selected='all', subcategories={}, password=None... FILE: Mac/lazagne/config/soft_import_module.py function soft_import (line 9) | def soft_import(package_name, module_name): class _MOCK_ImportErrorInModule (line 25) | class _MOCK_ImportErrorInModule(ModuleInfo): method __init__ (line 27) | def __init__(self, name, exception): method run (line 31) | def run(self): FILE: Mac/lazagne/config/write_output.py class Bcolors (line 14) | class Bcolors(object): class StandardOutput (line 24) | class StandardOutput(object): method __init__ (line 25) | def __init__(self): method set_color (line 36) | def set_color(self, color=None): method first_title (line 44) | def first_title(self): method print_title (line 51) | def print_title(self, title): method title_info (line 56) | def title_info(self, title): method write_header (line 60) | def write_header(self): method write_footer (line 71) | def write_footer(self): method print_footer (line 76) | def print_footer(self, elapsed_time=None): method print_logging (line 84) | def print_logging(self, function, prefix='[!]', message='', color=False): method try_unicode (line 100) | def try_unicode(self, obj, encoding='utf-8'): method print_without_error (line 109) | def print_without_error(self, message): method do_print (line 116) | def do_print(self, message='', color=None): method checks_write (line 129) | def checks_write(self, values, category): method print_output (line 135) | def print_output(self, software_name, pwd_found): function print_debug (line 207) | def print_debug(error_level, message): function parse_json_result_to_buffer (line 235) | def parse_json_result_to_buffer(json_string, color=False): function write_in_file (line 279) | def write_in_file(result): FILE: Mac/lazagne/softwares/browsers/chrome.py function pbkdf2_bin (line 23) | def pbkdf2_bin(hash_fxn, password, salt, iterations, key_len=16): class Chrome (line 52) | class Chrome(ModuleInfo): method __init__ (line 53) | def __init__(self, safe_storage_key=None): method get_cc (line 61) | def get_cc(self, cc_num): method chrome_decrypt (line 73) | def chrome_decrypt(self, encrypted, iv, key): method chrome_process (line 88) | def chrome_process(self, safe_storage_key, chrome_data): method run (line 126) | def run(self): FILE: Mac/lazagne/softwares/browsers/mozilla.py function l (line 32) | def l(n): function convert_to_byte (line 43) | def convert_to_byte(s): function o (line 50) | def o(c): function long_to_bytes (line 57) | def long_to_bytes(n, blocksize=0): class Mozilla (line 88) | class Mozilla(ModuleInfo): method __init__ (line 90) | def __init__(self, browser_name, path): method get_firefox_profiles (line 94) | def get_firefox_profiles(self, directory): method get_key (line 123) | def get_key(self, profile): method get_short_le (line 210) | def get_short_le(d, a): method get_long_be (line 214) | def get_long_be(d, a): method print_asn1 (line 217) | def print_asn1(self, d, l, rl): method read_bsddb (line 246) | def read_bsddb(self, name): method decrypt_3des (line 304) | def decrypt_3des(decoded_item, master_password, global_salt): method extract_secret_key (line 351) | def extract_secret_key(self, key_data, global_salt, master_password, e... method decode_login_data (line 375) | def decode_login_data(data): method get_login_data (line 380) | def get_login_data(self, profile): method manage_masterpassword (line 417) | def manage_masterpassword(self, master_password=b'', key_data=None, ne... method is_master_password_correct (line 435) | def is_master_password_correct(self, key_data, master_password=b'', ne... method brute_master_password (line 474) | def brute_master_password(self, key_data, new_version=True): method remove_padding (line 494) | def remove_padding(self, data): method decrypt (line 509) | def decrypt(self, key, iv, ciphertext): method run (line 516) | def run(self): FILE: Mac/lazagne/softwares/mails/thunderbird.py class Thunderbird (line 5) | class Thunderbird(Mozilla): method __init__ (line 7) | def __init__(self): FILE: Mac/lazagne/softwares/system/chainbreaker.py class ChainBreaker (line 18) | class ChainBreaker(ModuleInfo): method __init__ (line 19) | def __init__(self): method list_users (line 22) | def list_users(self): method list_keychains (line 32) | def list_keychains(self, keychains_path): method run (line 40) | def run(self): FILE: Mac/lazagne/softwares/system/chainbreaker_module/chainbreaker.py class _APPL_DB_HEADER (line 42) | class _APPL_DB_HEADER(BigEndianStructure): class _APPL_DB_SCHEMA (line 52) | class _APPL_DB_SCHEMA(BigEndianStructure): class _KEY_BLOB_REC_HEADER (line 59) | class _KEY_BLOB_REC_HEADER(BigEndianStructure): class _GENERIC_PW_HEADER (line 67) | class _GENERIC_PW_HEADER(BigEndianStructure): class _APPLE_SHARE_HEADER (line 94) | class _APPLE_SHARE_HEADER(BigEndianStructure): class _INTERNET_PW_HEADER (line 125) | class _INTERNET_PW_HEADER(BigEndianStructure): class _X509_CERT_HEADER (line 156) | class _X509_CERT_HEADER(BigEndianStructure): class _SECKEY_HEADER (line 178) | class _SECKEY_HEADER(BigEndianStructure): class _TABLE_HEADER (line 216) | class _TABLE_HEADER(BigEndianStructure): class _SCHEMA_INFO_RECORD (line 228) | class _SCHEMA_INFO_RECORD(BigEndianStructure): class _COMMON_BLOB (line 243) | class _COMMON_BLOB(BigEndianStructure): class _KEY_BLOB (line 251) | class _KEY_BLOB(BigEndianStructure): class _DB_PARAMETERS (line 260) | class _DB_PARAMETERS(BigEndianStructure): class _DB_BLOB (line 267) | class _DB_BLOB(BigEndianStructure): class _SSGP (line 281) | class _SSGP(BigEndianStructure): function _memcpy (line 289) | def _memcpy(buf, fmt): class KeyChain (line 293) | class KeyChain(): method __init__ (line 294) | def __init__(self, filepath): method open (line 298) | def open(self): method checkValidKeychain (line 309) | def checkValidKeychain(self): method getHeader (line 315) | def getHeader(self): method getSchemaInfo (line 320) | def getSchemaInfo(self, offset): method getTable (line 331) | def getTable(self, offset): method getTablenametoList (line 356) | def getTablenametoList(self, recordList, tableList): method getKeyblobRecord (line 364) | def getKeyblobRecord(self, base_addr, offset): method getGenericPWRecord (line 388) | def getGenericPWRecord(self, base_addr, offset): method getInternetPWRecord (line 418) | def getInternetPWRecord(self, base_addr, offset): method getx509Record (line 450) | def getx509Record(self, base_addr, offset): method getKeyRecord (line 474) | def getKeyRecord(self, base_addr, offset): ## PUBLIC and PRIVATE KEY method getEncryptedDatainBlob (line 499) | def getEncryptedDatainBlob(self, BlobBuf): method getKeychainTime (line 508) | def getKeychainTime(self, BASE_ADDR, pCol): method getInt (line 515) | def getInt(self, BASE_ADDR, pCol): method getFourCharCode (line 521) | def getFourCharCode(self, BASE_ADDR, pCol): method getLV (line 527) | def getLV(self, BASE_ADDR, pCol): method getAppleshareRecord (line 545) | def getAppleshareRecord(self, base_addr, offset): method SSGPDecryption (line 580) | def SSGPDecryption(self, ssgp, dbkey): method KeyblobDecryption (line 589) | def KeyblobDecryption(self, encryptedblob, iv, dbkey): method PrivateKeyDecryption (line 616) | def PrivateKeyDecryption(self, encryptedblob, iv, dbkey): method generateMasterKey (line 638) | def generateMasterKey(self, pw, symmetrickey_offset): method findWrappingKey (line 647) | def findWrappingKey(self, master, symmetrickey_offset): function kcdecrypt (line 669) | def kcdecrypt(key, iv, data): function dump_creds (line 699) | def dump_creds(keychain_file, password=None, key=None): FILE: Mac/lazagne/softwares/system/chainbreaker_module/pbkdf2.py function pbkdf2 (line 18) | def pbkdf2(password, salt, itercount, keylen, hashfn=sha1): function xorstr (line 33) | def xorstr(a, b): function prf (line 44) | def prf(h, data): function pbkdf2_F (line 52) | def pbkdf2_F(h, salt, itercount, blocknum): FILE: Mac/lazagne/softwares/system/hashdump.py class HashDump (line 26) | class HashDump(ModuleInfo): method __init__ (line 27) | def __init__(self): method root_access (line 35) | def root_access(self): method check_version (line 41) | def check_version(self): method run_cmd (line 53) | def run_cmd(self, cmd): method list_users (line 61) | def list_users(self): method get_hash_using_guid (line 72) | def get_hash_using_guid(self, guid): method get_user_hash_using_niutil (line 85) | def get_user_hash_using_niutil(self, username): method get_user_hash_using_dscl (line 101) | def get_user_hash_using_dscl(self, username): method get_user_hash_from_plist (line 117) | def get_user_hash_from_plist(self, username): method dictionary_attack (line 152) | def dictionary_attack(self, username, dic, pbkdf2=True): method dictionary_attack_pbkdf2 (line 178) | def dictionary_attack_pbkdf2(self, password, salt, iterations): method run (line 185) | def run(self): FILE: Mac/lazagne/softwares/system/system.py class System (line 8) | class System(ModuleInfo): method __init__ (line 9) | def __init__(self): method run (line 12) | def run(self): FILE: Windows/laZagne.py function output (line 27) | def output(output_dir=None, txt_format=False, json_format=False, all_for... function quiet_mode (line 52) | def quiet_mode(is_quiet_mode=False): function verbosity (line 57) | def verbosity(verbose=0): function manage_advanced_options (line 77) | def manage_advanced_options(user_password=None): function runLaZagne (line 82) | def runLaZagne(category_selected='all', subcategories={}, password=None): function clean_args (line 91) | def clean_args(arg): FILE: Windows/lazagne/config/DPAPI/blob.py class DPAPIBlob (line 23) | class DPAPIBlob(DataStruct): method __init__ (line 26) | def __init__(self, raw=None): method parse (line 51) | def parse(self, data): method decrypt (line 82) | def decrypt(self, masterkey, entropy=None, strongPassword=None): method decrypt_encrypted_blob (line 119) | def decrypt_encrypted_blob(self, mkp, entropy_hex=False): FILE: Windows/lazagne/config/DPAPI/credfile.py class CredentialDecryptedHeader (line 14) | class CredentialDecryptedHeader(DataStruct): method __init__ (line 19) | def __init__(self, raw=None): method parse (line 32) | def parse(self, data): class CredentialDecrypted (line 45) | class CredentialDecrypted(DataStruct): method __init__ (line 49) | def __init__(self, raw=None): method parse (line 60) | def parse(self, data): class CredFile (line 73) | class CredFile(DataStruct): method __init__ (line 77) | def __init__(self, raw=None): method parse (line 84) | def parse(self, data): method decrypt (line 92) | def decrypt(self, mkp, credfile): FILE: Windows/lazagne/config/DPAPI/credhist.py class RPC_SID (line 17) | class RPC_SID(DataStruct): method __init__ (line 21) | def __init__(self, raw=None): method parse (line 27) | def parse(self, data): method __str__ (line 33) | def __str__(self): class CredhistEntry (line 39) | class CredhistEntry(DataStruct): method __init__ (line 41) | def __init__(self, raw=None): method parse (line 58) | def parse(self, data): method decrypt_with_hash (line 78) | def decrypt_with_hash(self, pwdhash): method decrypt_with_key (line 86) | def decrypt_with_key(self, enckey): class CredHistFile (line 98) | class CredHistFile(DataStruct): method __init__ (line 100) | def __init__(self, raw=None): method parse (line 108) | def parse(self, data): method addEntry (line 118) | def addEntry(self, blob): method decrypt_with_hash (line 126) | def decrypt_with_hash(self, pwdhash): method decrypt_with_password (line 137) | def decrypt_with_password(self, password): FILE: Windows/lazagne/config/DPAPI/crypto.py class CryptoAlgo (line 40) | class CryptoAlgo(object): class Algo (line 45) | class Algo(object): method __init__ (line 46) | def __init__(self, data): method __getattr__ (line 49) | def __getattr__(self, attr): method add_algo (line 57) | def add_algo(cls, algnum, **kargs): method get_algo (line 64) | def get_algo(cls, algnum): method __init__ (line 67) | def __init__(self, i): method do_fixup_key (line 78) | def do_fixup_key(self, key): method __repr__ (line 84) | def __repr__(self): function des_set_odd_parity (line 88) | def des_set_odd_parity(key): function CryptSessionKeyXP (line 129) | def CryptSessionKeyXP(masterkey, nonce, hashAlgo, entropy=None, strongPa... function CryptSessionKeyWin7 (line 168) | def CryptSessionKeyWin7(masterkey, nonce, hashAlgo, entropy=None, strong... function CryptDeriveKey (line 198) | def CryptDeriveKey(h, cipherAlgo, hashAlgo): function decrypt_lsa_key_nt5 (line 215) | def decrypt_lsa_key_nt5(lsakey, syskey): function decrypt_lsa_key_nt6 (line 228) | def decrypt_lsa_key_nt6(lsakey, syskey): function SystemFunction005 (line 255) | def SystemFunction005(secret, key): function decrypt_lsa_secret (line 286) | def decrypt_lsa_secret(secret, lsa_keys): function pbkdf2 (line 306) | def pbkdf2(passphrase, salt, keylen, iterations, digest='sha1'): function derivePwdHash (line 330) | def derivePwdHash(pwdhash, sid, digest='sha1'): function dataDecrypt (line 337) | def dataDecrypt(cipherAlgo, hashAlgo, raw, encKey, iv, rounds): function DPAPIHmac (line 356) | def DPAPIHmac(hashAlgo, pwdhash, hmacSalt, value): FILE: Windows/lazagne/config/DPAPI/eater.py class Eater (line 23) | class Eater(object): method __init__ (line 26) | def __init__(self, raw, offset=0, end=None, endianness="<"): method prepare_fmt (line 34) | def prepare_fmt(self, fmt): method read (line 47) | def read(self, fmt): method eat (line 59) | def eat(self, fmt): method eat_string (line 72) | def eat_string(self, length): method eat_length_and_string (line 76) | def eat_length_and_string(self, fmt): method pop (line 84) | def pop(self, fmt): method pop_string (line 93) | def pop_string(self, length): method pop_length_and_string (line 97) | def pop_length_and_string(self, fmt): method remain (line 105) | def remain(self): method eat_sub (line 109) | def eat_sub(self, length): method __nonzero__ (line 115) | def __nonzero__(self): class DataStruct (line 119) | class DataStruct(object): method __init__ (line 122) | def __init__(self, raw=None): method parse (line 126) | def parse(self, eater_obj): FILE: Windows/lazagne/config/DPAPI/masterkey.py class MasterKey (line 26) | class MasterKey(DataStruct): method __init__ (line 31) | def __init__(self, raw=None): method parse (line 46) | def parse(self, data): method decrypt_with_hash (line 54) | def decrypt_with_hash(self, sid, pwdhash): method decrypt_with_password (line 61) | def decrypt_with_password(self, sid, pwd): method decrypt_with_key (line 85) | def decrypt_with_key(self, pwdhash): class CredHist (line 106) | class CredHist(DataStruct): method __init__ (line 109) | def __init__(self, raw=None): method parse (line 114) | def parse(self, data): class DomainKey (line 119) | class DomainKey(DataStruct): method __init__ (line 127) | def __init__(self, raw=None): method parse (line 136) | def parse(self, data): class MasterKeyFile (line 145) | class MasterKeyFile(DataStruct): method __init__ (line 150) | def __init__(self, raw=None): method parse (line 162) | def parse(self, data): method get_key (line 186) | def get_key(self): method jhash (line 197) | def jhash(self, sid=None, context='local'): class MasterKeyPool (line 235) | class MasterKeyPool(object): method __init__ (line 241) | def __init__(self): method add_master_key (line 256) | def add_master_key(self, mkey): method load_directory (line 267) | def load_directory(self, directory): method get_master_keys (line 283) | def get_master_keys(self, guid): method get_password (line 289) | def get_password(self, guid): method add_credhist_file (line 295) | def add_credhist_file(self, sid, credfile): method get_preferred_guid (line 306) | def get_preferred_guid(self): method get_cleartext_password (line 331) | def get_cleartext_password(self, guid=None): method get_dpapi_hash (line 342) | def get_dpapi_hash(self, sid, context='local'): method add_system_credential (line 355) | def add_system_credential(self, blob): method try_credential (line 362) | def try_credential(self, sid, password=None): method try_credential_hash (line 415) | def try_credential_hash(self, sid, pwdhash=None): method try_system_credential (line 451) | def try_system_credential(self): FILE: Windows/lazagne/config/DPAPI/system.py class CredSystem (line 13) | class CredSystem(DataStruct): method __init__ (line 22) | def __init__(self, raw=None): method parse (line 28) | def parse(self, data): FILE: Windows/lazagne/config/DPAPI/vault.py class VaultPolicyKey (line 27) | class VaultPolicyKey(DataStruct): method __init__ (line 31) | def __init__(self, raw=None): method parse (line 41) | def parse(self, data): class VaultPolicyKeys (line 54) | class VaultPolicyKeys(DataStruct): method __init__ (line 60) | def __init__(self, raw=None): method parse (line 67) | def parse(self, data): class VaultPolicy (line 79) | class VaultPolicy(DataStruct): method __init__ (line 85) | def __init__(self, raw=None): method parse (line 101) | def parse(self, data): class VaultAttribute (line 123) | class VaultAttribute(DataStruct): method __init__ (line 127) | def __init__(self, raw=None): method parse (line 143) | def parse(self, data): class VaultAttributeMapEntry (line 163) | class VaultAttributeMapEntry(DataStruct): method __init__ (line 167) | def __init__(self, raw=None): method parse (line 175) | def parse(self, data): class VaultVcrd (line 181) | class VaultVcrd(DataStruct): method __init__ (line 185) | def __init__(self, raw=None): method parse (line 197) | def parse(self, data): class VaultVsch (line 217) | class VaultVsch(DataStruct): method __init__ (line 222) | def __init__(self, raw=None): method parse (line 230) | def parse(self, data): class VaultAttributeItem (line 238) | class VaultAttributeItem(object): method __init__ (line 239) | def __init__(self, id_, item): class VaultSchemaGeneric (line 244) | class VaultSchemaGeneric(DataStruct): method __init__ (line 248) | def __init__(self, raw=None): method parse (line 255) | def parse(self, data): class VaultSchemaPin (line 276) | class VaultSchemaPin(DataStruct): method __init__ (line 280) | def __init__(self, raw=None): method parse (line 295) | def parse(self, data): class VaultSchemaWebPassword (line 311) | class VaultSchemaWebPassword(DataStruct): method __init__ (line 315) | def __init__(self, raw=None): method parse (line 327) | def parse(self, data): class VaultSchemaActiveSync (line 339) | class VaultSchemaActiveSync(DataStruct): method __init__ (line 343) | def __init__(self, raw=None): method parse (line 355) | def parse(self, data): class Vault (line 380) | class Vault(object): method __init__ (line 384) | def __init__(self, vaults_dir): method decrypt_vault_attribute (line 387) | def decrypt_vault_attribute(self, vault_attr, key_aes128, key_aes256): method get_vault_schema (line 405) | def get_vault_schema(self, guid, base_dir, default_schema): method decrypt (line 422) | def decrypt(self, mkp): FILE: Windows/lazagne/config/change_privileges.py function get_token_info (line 13) | def get_token_info(hToken): function enable_privilege (line 36) | def enable_privilege(privilegeStr, hToken=None): function get_debug_privilege (line 72) | def get_debug_privilege(): function list_sids (line 79) | def list_sids(): function get_sid_token (line 111) | def get_sid_token(token_sid): function impersonate_sid (line 158) | def impersonate_sid(sid, close=True): function impersonate_sid_long_handle (line 175) | def impersonate_sid_long_handle(*args, **kwargs): function impersonate_token (line 191) | def impersonate_token(hToken): function rev2self (line 209) | def rev2self(): FILE: Windows/lazagne/config/constant.py class constant (line 12) | class constant(): FILE: Windows/lazagne/config/crypto/md4.py class MD4 (line 19) | class MD4: method __init__ (line 28) | def __init__(self, msg=None): method __repr__ (line 44) | def __repr__(self): method __str__ (line 49) | def __str__(self): method __eq__ (line 52) | def __eq__(self, other): method bytes (line 55) | def bytes(self): method hexbytes (line 59) | def hexbytes(self): method hexdigest (line 63) | def hexdigest(self): method _process (line 67) | def _process(self, chunks): method F (line 99) | def F(x, y, z): method G (line 103) | def G(x, y, z): method H (line 107) | def H(x, y, z): method lrot (line 111) | def lrot(value, n): FILE: Windows/lazagne/config/crypto/pyDes.py class _baseDes (line 107) | class _baseDes(object): method __init__ (line 108) | def __init__(self, mode=ECB, IV=None, pad=None, padmode=PAD_NORMAL): method getKey (line 126) | def getKey(self): method setKey (line 130) | def setKey(self, key): method getMode (line 135) | def getMode(self): method setMode (line 139) | def setMode(self, mode): method getPadding (line 143) | def getPadding(self): method setPadding (line 147) | def setPadding(self, pad): method getPadMode (line 153) | def getPadMode(self): method setPadMode (line 157) | def setPadMode(self, mode): method getIV (line 161) | def getIV(self): method setIV (line 165) | def setIV(self, IV): method _padData (line 172) | def _padData(self, data, pad, padmode): method _unpadData (line 201) | def _unpadData(self, data, pad, padmode): method _guardAgainstUnicode (line 228) | def _guardAgainstUnicode(self, data): class des (line 247) | class des(_baseDes): method __init__ (line 397) | def __init__(self, key, mode=ECB, IV=None, pad=None, padmode=PAD_NORMAL): method setKey (line 411) | def setKey(self, key): method __String_to_BitList (line 416) | def __String_to_BitList(self, data): method __BitList_to_String (line 437) | def __BitList_to_String(self, data): method __permutate (line 454) | def __permutate(self, table, block): method __create_sub_keys (line 460) | def __create_sub_keys(self): method __des_crypt (line 485) | def __des_crypt(self, block, crypt_type): method crypt (line 564) | def crypt(self, data, crypt_type): method encrypt (line 642) | def encrypt(self, data, pad=None, padmode=None): method decrypt (line 661) | def decrypt(self, data, pad=None, padmode=None): class triple_des (line 687) | class triple_des(_baseDes): method __init__ (line 708) | def __init__(self, key, mode=ECB, IV=None, pad=None, padmode=PAD_NORMAL): method setKey (line 712) | def setKey(self, key): method setMode (line 739) | def setMode(self, mode): method setPadding (line 745) | def setPadding(self, pad): method setPadMode (line 751) | def setPadMode(self, mode): method setIV (line 757) | def setIV(self, IV): method encrypt (line 763) | def encrypt(self, data, pad=None, padmode=None): method decrypt (line 807) | def decrypt(self, data, pad=None, padmode=None): FILE: Windows/lazagne/config/crypto/pyaes/aes.py function _compact_word (line 61) | def _compact_word(word): function _string_to_bytes (line 64) | def _string_to_bytes(text): function _bytes_to_string (line 67) | def _bytes_to_string(binary): function _concat_list (line 70) | def _concat_list(a, b): function _string_to_bytes (line 81) | def _string_to_bytes(text): function _bytes_to_string (line 87) | def _bytes_to_string(binary): function _concat_list (line 91) | def _concat_list(a, b): class AES (line 97) | class AES(object): method __init__ (line 131) | def __init__(self, key): method encrypt (line 203) | def encrypt(self, plaintext): method decrypt (line 237) | def decrypt(self, ciphertext): class Counter (line 272) | class Counter(object): method __init__ (line 278) | def __init__(self, initial_value = 1): method increment (line 285) | def increment(self): class AESBlockModeOfOperation (line 301) | class AESBlockModeOfOperation(object): method __init__ (line 303) | def __init__(self, key): method decrypt (line 306) | def decrypt(self, ciphertext): method encrypt (line 309) | def encrypt(self, plaintext): class AESStreamModeOfOperation (line 313) | class AESStreamModeOfOperation(AESBlockModeOfOperation): class AESSegmentModeOfOperation (line 316) | class AESSegmentModeOfOperation(AESStreamModeOfOperation): class AESModeOfOperationECB (line 323) | class AESModeOfOperationECB(AESBlockModeOfOperation): method encrypt (line 340) | def encrypt(self, plaintext): method decrypt (line 347) | def decrypt(self, ciphertext): class AESModeOfOperationCBC (line 356) | class AESModeOfOperationCBC(AESBlockModeOfOperation): method __init__ (line 377) | def __init__(self, key, iv = None): method encrypt (line 387) | def encrypt(self, plaintext): method decrypt (line 397) | def decrypt(self, ciphertext): class AESModeOfOperationCFB (line 409) | class AESModeOfOperationCFB(AESSegmentModeOfOperation): method __init__ (line 422) | def __init__(self, key, iv, segment_size = 1): method encrypt (line 438) | def encrypt(self, plaintext): method decrypt (line 458) | def decrypt(self, ciphertext): class AESModeOfOperationOFB (line 480) | class AESModeOfOperationOFB(AESStreamModeOfOperation): method __init__ (line 496) | def __init__(self, key, iv = None): method encrypt (line 508) | def encrypt(self, plaintext): method decrypt (line 521) | def decrypt(self, ciphertext): class AESModeOfOperationCTR (line 527) | class AESModeOfOperationCTR(AESStreamModeOfOperation): method __init__ (line 556) | def __init__(self, key, counter = None): method encrypt (line 565) | def encrypt(self, plaintext): method decrypt (line 577) | def decrypt(self, crypttext): FILE: Windows/lazagne/config/crypto/pyaes/blockfeeder.py function _block_can_consume (line 54) | def _block_can_consume(self, size): function _block_final_encrypt (line 59) | def _block_final_encrypt(self, data, padding = PADDING_DEFAULT): function _block_final_decrypt (line 75) | def _block_final_decrypt(self, data, padding = PADDING_DEFAULT): function _segment_can_consume (line 94) | def _segment_can_consume(self, size): function _segment_final_encrypt (line 98) | def _segment_final_encrypt(self, data, padding = PADDING_DEFAULT): function _segment_final_decrypt (line 107) | def _segment_final_decrypt(self, data, padding = PADDING_DEFAULT): function _stream_can_consume (line 123) | def _stream_can_consume(self, size): function _stream_final_encrypt (line 126) | def _stream_final_encrypt(self, data, padding = PADDING_DEFAULT): function _stream_final_decrypt (line 132) | def _stream_final_decrypt(self, data, padding = PADDING_DEFAULT): class BlockFeeder (line 144) | class BlockFeeder(object): method __init__ (line 149) | def __init__(self, mode, feed, final, padding = PADDING_DEFAULT): method feed (line 156) | def feed(self, data = None): class Encrypter (line 186) | class Encrypter(BlockFeeder): method __init__ (line 189) | def __init__(self, mode, padding = PADDING_DEFAULT): class Decrypter (line 193) | class Decrypter(BlockFeeder): method __init__ (line 196) | def __init__(self, mode, padding = PADDING_DEFAULT): function _feed_stream (line 203) | def _feed_stream(feeder, in_stream, out_stream, block_size = BLOCK_SIZE): function encrypt_stream (line 216) | def encrypt_stream(mode, in_stream, out_stream, block_size = BLOCK_SIZE,... function decrypt_stream (line 223) | def decrypt_stream(mode, in_stream, out_stream, block_size = BLOCK_SIZE,... FILE: Windows/lazagne/config/crypto/pyaes/util.py function to_bufferable (line 29) | def to_bufferable(binary): function _get_byte (line 32) | def _get_byte(c): function to_bufferable (line 39) | def to_bufferable(binary): function _get_byte (line 44) | def _get_byte(c): function append_PKCS7_padding (line 47) | def append_PKCS7_padding(data): function strip_PKCS7_padding (line 51) | def strip_PKCS7_padding(data): FILE: Windows/lazagne/config/crypto/rc4.py class RC4 (line 7) | class RC4(object): method __init__ (line 9) | def __init__(self, key): method text_to_bytes (line 12) | def text_to_bytes(self, text): method bytes_to_text (line 22) | def bytes_to_text(self, byte_list): method encrypt (line 28) | def encrypt(self, data): method crypt (line 33) | def crypt(self, plain_bytes, key_bytes): FILE: Windows/lazagne/config/dico.py function get_dic (line 1) | def get_dic(): FILE: Windows/lazagne/config/dpapi_structure.py function are_masterkeys_retrieved (line 15) | def are_masterkeys_retrieved(): function manage_response (line 39) | def manage_response(ok, msg): class UserDpapi (line 47) | class UserDpapi(object): method __init__ (line 52) | def __init__(self, password=None, pwdhash=None): method check_credentials (line 89) | def check_credentials(self, passwords): method decrypt_blob (line 99) | def decrypt_blob(self, dpapi_blob): method decrypt_cred (line 108) | def decrypt_cred(self, credfile): method decrypt_vault (line 118) | def decrypt_vault(self, vaults_dir): method decrypt_encrypted_blob (line 127) | def decrypt_encrypted_blob(self, ciphered, entropy_hex=False): method get_dpapi_hash (line 136) | def get_dpapi_hash(self, context='local'): method get_cleartext_password (line 143) | def get_cleartext_password(self): class SystemDpapi (line 152) | class SystemDpapi(object): method __init__ (line 158) | def __init__(self): method decrypt_wifi_blob (line 179) | def decrypt_wifi_blob(self, key_material): FILE: Windows/lazagne/config/execute_cmd.py function powershell_execute (line 20) | def powershell_execute(script, func): function save_hives (line 67) | def save_hives(): function delete_hives (line 88) | def delete_hives(): FILE: Windows/lazagne/config/lib/memorpy/Address.py class AddressException (line 19) | class AddressException(Exception): class Address (line 23) | class Address(object): method __init__ (line 26) | def __init__(self, value, process, default_type = 'uint'): method read (line 32) | def read(self, type = None, maxlen = None, errors='raise'): method write (line 48) | def write(self, data, type = None): method symbol (line 53) | def symbol(self): method get_instruction (line 56) | def get_instruction(self): method dump (line 59) | def dump(self, ftype = 'bytes', size = 512, before = 32): method __nonzero__ (line 63) | def __nonzero__(self): method __add__ (line 66) | def __add__(self, other): method __sub__ (line 69) | def __sub__(self, other): method __repr__ (line 72) | def __repr__(self): method __str__ (line 77) | def __str__(self): method __int__ (line 82) | def __int__(self): method __hex__ (line 85) | def __hex__(self): method __get__ (line 88) | def __get__(self, instance, owner): method __set__ (line 91) | def __set__(self, instance, value): method __lt__ (line 94) | def __lt__(self, other): method __le__ (line 97) | def __le__(self, other): method __eq__ (line 100) | def __eq__(self, other): method __ne__ (line 103) | def __ne__(self, other): method __gt__ (line 106) | def __gt__(self, other): method __ge__ (line 109) | def __ge__(self, other): FILE: Windows/lazagne/config/lib/memorpy/BaseProcess.py class ProcessException (line 11) | class ProcessException(Exception): class BaseProcess (line 14) | class BaseProcess(object): method __init__ (line 16) | def __init__(self, *args, **kwargs): method __del__ (line 24) | def __del__(self): method close (line 27) | def close(self): method iter_region (line 29) | def iter_region(self, *args, **kwargs): method write_bytes (line 31) | def write_bytes(self, address, data): method read_bytes (line 34) | def read_bytes(self, address, bytes = 4): method get_symbolic_name (line 37) | def get_symbolic_name(self, address): method read (line 40) | def read(self, address, type = 'uint', maxlen = 50, errors='raise'): method write (line 59) | def write(self, address, data, type = 'uint'): FILE: Windows/lazagne/config/lib/memorpy/LinProcess.py function errcheck (line 36) | def errcheck(ret, func, args): class LinProcess (line 70) | class LinProcess(BaseProcess): method __init__ (line 71) | def __init__(self, pid=None, name=None, debug=True, ptrace=None): method check_ptrace_scope (line 89) | def check_ptrace_scope(self): method close (line 132) | def close(self): method __del__ (line 142) | def __del__(self): method _open (line 145) | def _open(self): method list (line 161) | def list(): method pid_from_name (line 172) | def pid_from_name(name): method _ptrace (line 187) | def _ptrace(self, attach): method iter_region (line 207) | def iter_region(self, start_offset=None, end_offset=None, protec=None,... method ptrace_attach (line 240) | def ptrace_attach(self): method ptrace_detach (line 246) | def ptrace_detach(self): method write_bytes (line 252) | def write_bytes(self, address, data): method read_bytes (line 280) | def read_bytes(self, address, bytes = 4): FILE: Windows/lazagne/config/lib/memorpy/Locator.py class Locator (line 24) | class Locator(object): method __init__ (line 30) | def __init__(self, mw, type = 'unknown', start = None, end = None): method find (line 38) | def find(self, value, erase_last = True): method feed (line 41) | def feed(self, value, erase_last = True): method get_addresses (line 78) | def get_addresses(self): method diff (line 81) | def diff(self, erase_last = False): method get_modified_addr (line 84) | def get_modified_addr(self, erase_last = False): FILE: Windows/lazagne/config/lib/memorpy/MemWorker.py class MemWorker (line 33) | class MemWorker(object): method __init__ (line 35) | def __init__(self, pid=None, name=None, end_offset = None, start_offse... method __enter__ (line 38) | def __enter__(self): method __exit__ (line 41) | def __exit__(self, type, value, traceback): method Address (line 44) | def Address(self, value, default_type = 'uint'): method umem_replace (line 48) | def umem_replace(self, regex, replace): method mem_replace (line 54) | def mem_replace(self, regex, replace): method umem_search (line 66) | def umem_search(self, regex): method group_search (line 72) | def group_search(self, group, start_offset = None, end_offset = None): method search_address (line 83) | def search_address(self, addr): method parse_re_function (line 93) | def parse_re_function(self, b, value, offset): method parse_float_function (line 107) | def parse_float_function(self, b, value, offset): method parse_named_groups_function (line 118) | def parse_named_groups_function(self, b, value, offset=None): method parse_groups_function (line 123) | def parse_groups_function(self, b, value, offset=None): method parse_any_function (line 128) | def parse_any_function(self, b, value, offset): method mem_search (line 135) | def mem_search(self, value, ftype = 'match', protec = PAGE_READWRITE |... FILE: Windows/lazagne/config/lib/memorpy/OSXProcess.py class vm_region_basic_info_64 (line 37) | class vm_region_basic_info_64(ctypes.Structure): class OSXProcess (line 55) | class OSXProcess(BaseProcess): method __init__ (line 56) | def __init__(self, pid=None, name=None, debug=True): method close (line 69) | def close(self): method __del__ (line 72) | def __del__(self): method _open (line 75) | def _open(self): method list (line 84) | def list(): method pid_from_name (line 99) | def pid_from_name(name): method iter_region (line 105) | def iter_region(self, start_offset=None, end_offset=None, protec=None,... method write_bytes (line 157) | def write_bytes(self, address, data): method read_bytes (line 161) | def read_bytes(self, address, bytes = 4): FILE: Windows/lazagne/config/lib/memorpy/SunProcess.py class SunProcess (line 39) | class SunProcess(BaseProcess): method __init__ (line 40) | def __init__(self, pid=None, name=None, debug=True, ptrace=None): method close (line 55) | def close(self): method __del__ (line 59) | def __del__(self): method _open (line 62) | def _open(self): method _name_args (line 72) | def _name_args(pid): method list (line 78) | def list(): method pid_from_name (line 94) | def pid_from_name(name): method iter_region (line 109) | def iter_region(self, start_offset=None, end_offset=None, protec=None,... method write_bytes (line 153) | def write_bytes(self, address, data): method read_bytes (line 162) | def read_bytes(self, address, bytes = 4): FILE: Windows/lazagne/config/lib/memorpy/WinProcess.py class WinProcess (line 35) | class WinProcess(BaseProcess): method __init__ (line 37) | def __init__(self, pid=None, name=None, debug=True): method __del__ (line 57) | def __del__(self): method is_64bit (line 60) | def is_64bit(self): method list (line 71) | def list(): method processes_from_name (line 99) | def processes_from_name(processName): method name_from_process (line 109) | def name_from_process(dwProcessId): method _open (line 117) | def _open(self, dwProcessId, debug=False): method close (line 136) | def close(self): method _open_from_name (line 146) | def _open_from_name(self, processName, debug=False): method GetSystemInfo (line 157) | def GetSystemInfo(self): method GetNativeSystemInfo (line 162) | def GetNativeSystemInfo(self): method VirtualQueryEx (line 167) | def VirtualQueryEx(self, lpAddress): method VirtualQueryEx64 (line 173) | def VirtualQueryEx64(self, lpAddress): method VirtualProtectEx (line 179) | def VirtualProtectEx(self, base_address, size, protection): method iter_region (line 185) | def iter_region(self, start_offset=None, end_offset=None, protec=None,... method write_bytes (line 209) | def write_bytes(self, address, data): method read_bytes (line 231) | def read_bytes(self, address, bytes = 4, use_NtWow64ReadVirtualMemory6... method list_modules (line 268) | def list_modules(self): method get_symbolic_name (line 284) | def get_symbolic_name(self, address): method hasModule (line 291) | def hasModule(self, module): method get_instruction (line 301) | def get_instruction(self, address): FILE: Windows/lazagne/config/lib/memorpy/WinStructures.py class SECURITY_DESCRIPTOR (line 26) | class SECURITY_DESCRIPTOR(Structure): class MEMORY_BASIC_INFORMATION (line 36) | class MEMORY_BASIC_INFORMATION(Structure): class MEMORY_BASIC_INFORMATION64 (line 46) | class MEMORY_BASIC_INFORMATION64(Structure): class SYSTEM_INFO (line 59) | class SYSTEM_INFO(Structure): class PROCESSENTRY32 (line 73) | class PROCESSENTRY32(Structure): class MODULEENTRY32 (line 89) | class MODULEENTRY32(Structure): class THREADENTRY32 (line 102) | class THREADENTRY32(Structure): class TH32CS_CLASS (line 112) | class TH32CS_CLASS(object): FILE: Windows/lazagne/config/lib/memorpy/utils.py function re_to_unicode (line 20) | def re_to_unicode(s): function type_unpack (line 28) | def type_unpack(type): function hex_dump (line 62) | def hex_dump(data, addr = 0, prefix = '', ftype = 'bytes'): FILE: Windows/lazagne/config/lib/memorpy/wintools.py function start_winforeground_daemon (line 20) | def start_winforeground_daemon(): function window_foreground_loop (line 26) | def window_foreground_loop(timeout=20): FILE: Windows/lazagne/config/manage_modules.py function get_modules_names (line 10) | def get_modules_names(): function get_categories (line 81) | def get_categories(): function get_modules (line 104) | def get_modules(): FILE: Windows/lazagne/config/module_info.py class ModuleInfo (line 20) | class ModuleInfo(object): method __init__ (line 22) | def __init__(self, name, category, options={}, suboptions=[], registry... method error (line 39) | def error(self, message): method info (line 42) | def info(self, message): method debug (line 45) | def debug(self, message): method warning (line 48) | def warning(self, message): FILE: Windows/lazagne/config/run.py function create_module_dic (line 21) | def create_module_dic(): function run_module (line 39) | def run_module(title, module): function run_modules (line 56) | def run_modules(module, subcategories={}, system_module=False): function run_category (line 99) | def run_category(category_selected, subcategories={}, system_module=False): function run_lazagne (line 132) | def run_lazagne(category_selected='all', subcategories={}, password=None): FILE: Windows/lazagne/config/soft_import_module.py function soft_import (line 9) | def soft_import(package_name, module_name): class _MOCK_ImportErrorInModule (line 25) | class _MOCK_ImportErrorInModule(ModuleInfo): method __init__ (line 27) | def __init__(self, name, exception): method run (line 31) | def run(self): FILE: Windows/lazagne/config/users.py function get_user_list_on_filesystem (line 11) | def get_user_list_on_filesystem(impersonated_user=[]): function set_env_variables (line 37) | def set_env_variables(user, to_impersonate=False): function get_username_winapi (line 64) | def get_username_winapi(): FILE: Windows/lazagne/config/winstructure.py class CREDENTIAL_ATTRIBUTE (line 74) | class CREDENTIAL_ATTRIBUTE(Structure): class CREDENTIAL (line 86) | class CREDENTIAL(Structure): class DATA_BLOB (line 107) | class DATA_BLOB(Structure): class GUID (line 114) | class GUID(Structure): class VAULT_CREDENTIAL_ATTRIBUTEW (line 126) | class VAULT_CREDENTIAL_ATTRIBUTEW(Structure): class VAULT_BYTE_BUFFER (line 139) | class VAULT_BYTE_BUFFER(Structure): class DATA (line 146) | class DATA(Structure): class Flag (line 164) | class Flag(Structure): class VAULT_ITEM_DATA (line 183) | class VAULT_ITEM_DATA(Structure): class VAULT_ITEM_WIN8 (line 197) | class VAULT_ITEM_WIN8(Structure): class VAULT_ITEM_WIN7 (line 216) | class VAULT_ITEM_WIN7(Structure): class OSVERSIONINFOEXW (line 232) | class OSVERSIONINFOEXW(Structure): class CRYPTPROTECT_PROMPTSTRUCT (line 248) | class CRYPTPROTECT_PROMPTSTRUCT(Structure): class LUID (line 260) | class LUID(Structure): class SID_AND_ATTRIBUTES (line 270) | class SID_AND_ATTRIBUTES(Structure): class TOKEN_USER (line 277) | class TOKEN_USER(Structure): class LUID_AND_ATTRIBUTES (line 282) | class LUID_AND_ATTRIBUTES(Structure): class TOKEN_PRIVILEGES (line 289) | class TOKEN_PRIVILEGES(Structure): class SECURITY_ATTRIBUTES (line 299) | class SECURITY_ATTRIBUTES(Structure): class SID_NAME_USE (line 310) | class SID_NAME_USE(DWORD): method __init__ (line 315) | def __init__(self, value=None): method __str__ (line 321) | def __str__(self): method __repr__ (line 326) | def __repr__(self): function get_vault_objects_for_this_version_of_windows (line 431) | def get_vault_objects_for_this_version_of_windows(): function EnumProcesses (line 473) | def EnumProcesses(): function LookupAccountSidW (line 500) | def LookupAccountSidW(lpSystemName, lpSid): function QueryFullProcessImageNameW (line 524) | def QueryFullProcessImageNameW(hProcess, dwFlags=0): function RtlAdjustPrivilege (line 548) | def RtlAdjustPrivilege(privilege_id): function getData (line 567) | def getData(blobOut): function get_full_path_from_pid (line 576) | def get_full_path_from_pid(pid): function Win32CryptUnprotectData (line 596) | def Win32CryptUnprotectData(cipherText, entropy=False, is_current_user=T... function get_os_version (line 647) | def get_os_version(): function isx64machine (line 661) | def isx64machine(): function OpenKey (line 673) | def OpenKey(key, path, index=0, access=KEY_READ): function string_to_unicode (line 683) | def string_to_unicode(string): function chr_or_byte (line 690) | def chr_or_byte(integer): function int_or_bytes (line 697) | def int_or_bytes(integer): function char_to_int (line 704) | def char_to_int(string): function convert_to_byte (line 711) | def convert_to_byte(string): FILE: Windows/lazagne/config/write_output.py class StandardOutput (line 25) | class StandardOutput(object): method __init__ (line 26) | def __init__(self): method set_color (line 40) | def set_color(self, color='white', intensity=False): method first_title (line 49) | def first_title(self): method print_title (line 56) | def print_title(self, title): method title_info (line 61) | def title_info(self, title): method print_user (line 65) | def print_user(self, user, force_print=False): method print_footer (line 69) | def print_footer(self, elapsed_time=None): method print_hex (line 77) | def print_hex(self, src, length=8): method try_unicode (line 88) | def try_unicode(self, obj, encoding='utf-8'): method do_print (line 103) | def do_print(self, message='', color=False, intensity=False): method print_without_error (line 116) | def print_without_error(self, message): method print_logging (line 125) | def print_logging(self, function, prefix='[!]', message='', color=Fals... method print_output (line 141) | def print_output(self, software_name, pwd_found): method write_header (line 230) | def write_header(self): method write_footer (line 246) | def write_footer(self): method checks_write (line 250) | def checks_write(self, values, category): function print_debug (line 257) | def print_debug(error_level, message): function json_to_string (line 284) | def json_to_string(json_string): function write_in_file (line 323) | def write_in_file(result): FILE: Windows/lazagne/softwares/browsers/chromium_based.py class ChromiumBased (line 29) | class ChromiumBased(ModuleInfo): method __init__ (line 30) | def __init__(self, browser_name, paths): method _get_database_dirs (line 35) | def _get_database_dirs(self): method _decrypt_v80 (line 83) | def _decrypt_v80(self, buff, master_key): method _yandex_extract_enc_key (line 94) | def _yandex_extract_enc_key(self, db_cursor, decrypted_key): method _yandex_decrypt (line 130) | def _yandex_decrypt(self, key : bytes, encrypted_data : bytes, nonce :... method _export_credentials (line 137) | def _export_credentials(self, db_path, is_yandex=False, master_key=Non... method copy_db (line 235) | def copy_db(self, database_path): method clean_file (line 257) | def clean_file(self, db_path): method run (line 263) | def run(self): FILE: Windows/lazagne/softwares/browsers/ie.py class IE (line 23) | class IE(ModuleInfo): method __init__ (line 24) | def __init__(self): method get_hash_table (line 27) | def get_hash_table(self): method get_history (line 41) | def get_history(self): method history_from_powershell (line 52) | def history_from_powershell(self): method history_from_regedit (line 101) | def history_from_regedit(self): method decipher_password (line 117) | def decipher_password(self, cipher_text, u): method run (line 159) | def run(self): FILE: Windows/lazagne/softwares/browsers/mozilla.py function l (line 33) | def l(n): function long_to_bytes (line 44) | def long_to_bytes(n, blocksize=0): class Mozilla (line 75) | class Mozilla(ModuleInfo): method __init__ (line 77) | def __init__(self, browser_name, path, category='browsers'): method get_firefox_profiles (line 81) | def get_firefox_profiles(self, directory): method get_key (line 111) | def get_key(self, profile): method get_short_le (line 198) | def get_short_le(d, a): method get_long_be (line 202) | def get_long_be(d, a): method print_asn1 (line 205) | def print_asn1(self, d, l, rl): method read_bsddb (line 234) | def read_bsddb(self, name): method decrypt_3des (line 292) | def decrypt_3des(decoded_item, master_password, global_salt): method extract_secret_key (line 339) | def extract_secret_key(self, key_data, global_salt, master_password, e... method decode_login_data (line 363) | def decode_login_data(data): method get_login_data (line 368) | def get_login_data(self, profile): method manage_masterpassword (line 405) | def manage_masterpassword(self, master_password=b'', key_data=None, ne... method is_master_password_correct (line 423) | def is_master_password_correct(self, key_data, master_password=b'', ne... method brute_master_password (line 462) | def brute_master_password(self, key_data, new_version=True): method remove_padding (line 481) | def remove_padding(self, data): method decrypt (line 496) | def decrypt(self, key, iv, ciphertext): method run (line 503) | def run(self): FILE: Windows/lazagne/softwares/browsers/ucbrowser.py class UCBrowser (line 9) | class UCBrowser(ChromiumBased): method __init__ (line 10) | def __init__(self): method _get_database_dirs (line 14) | def _get_database_dirs(self): FILE: Windows/lazagne/softwares/chats/pidgin.py class Pidgin (line 9) | class Pidgin(ModuleInfo): method __init__ (line 10) | def __init__(self): method run (line 13) | def run(self): FILE: Windows/lazagne/softwares/chats/psi.py class PSI (line 12) | class PSI(ModuleInfo): method __init__ (line 13) | def __init__(self): method get_profiles_files (line 18) | def get_profiles_files(self): method decode_password (line 31) | def decode_password(self, password, jid): method process_one_file (line 40) | def process_one_file(self, _path): method run (line 60) | def run(self): FILE: Windows/lazagne/softwares/chats/skype.py class Skype (line 20) | class Skype(ModuleInfo): method __init__ (line 21) | def __init__(self): method aes_encrypt (line 26) | def aes_encrypt(self, message, passphrase): method get_regkey (line 32) | def get_regkey(self): method get_hash_credential (line 50) | def get_hash_credential(self, xml_file): method get_md5_hash (line 59) | def get_md5_hash(self, enc_hex, key): method dictionary_attack (line 82) | def dictionary_attack(self, login, md5): method get_username (line 90) | def get_username(self, path): method get_info (line 101) | def get_info(self, key, username, path): method run (line 127) | def run(self): FILE: Windows/lazagne/softwares/databases/dbvis.py class Dbvisualizer (line 15) | class Dbvisualizer(ModuleInfo): method __init__ (line 16) | def __init__(self): method get_salt (line 23) | def get_salt(self): method get_derived_key (line 29) | def get_derived_key(self, password, salt, count): method decrypt (line 37) | def decrypt(self, msg): method run (line 44) | def run(self): FILE: Windows/lazagne/softwares/databases/postgresql.py class PostgreSQL (line 9) | class PostgreSQL(ModuleInfo): method __init__ (line 10) | def __init__(self): method run (line 13) | def run(self): FILE: Windows/lazagne/softwares/databases/robomongo.py class Robomongo (line 9) | class Robomongo(ModuleInfo): method __init__ (line 11) | def __init__(self): method read_file_content (line 25) | def read_file_content(self, file_path): method parse_json (line 40) | def parse_json(self, connection_file_path): method run (line 89) | def run(self): FILE: Windows/lazagne/softwares/databases/sqldeveloper.py class SQLDeveloper (line 21) | class SQLDeveloper(ModuleInfo): method __init__ (line 22) | def __init__(self): method get_salt (line 29) | def get_salt(self): method get_derived_key (line 35) | def get_derived_key(self, password, salt, count): method decrypt (line 42) | def decrypt(self, msg): method aes_cbc_decrypt (line 49) | def aes_cbc_decrypt(self, encrypted_password, decryption_key, iv): method decrypt_v19_2 (line 56) | def decrypt_v19_2(self, encrypted, db_system_id): method get_passphrase (line 71) | def get_passphrase(self, path): method run (line 94) | def run(self): FILE: Windows/lazagne/softwares/databases/squirrel.py class Squirrel (line 9) | class Squirrel(ModuleInfo): method __init__ (line 10) | def __init__(self): method run (line 13) | def run(self): FILE: Windows/lazagne/softwares/games/galconfusion.py class GalconFusion (line 15) | class GalconFusion(ModuleInfo): method __init__ (line 16) | def __init__(self): method run (line 19) | def run(self): FILE: Windows/lazagne/softwares/games/kalypsomedia.py class KalypsoMedia (line 15) | class KalypsoMedia(ModuleInfo): method __init__ (line 16) | def __init__(self): method xorstring (line 19) | def xorstring(self, s, k): method run (line 25) | def run(self): FILE: Windows/lazagne/softwares/games/roguestale.py class RoguesTale (line 10) | class RoguesTale(ModuleInfo): method __init__ (line 11) | def __init__(self): method run (line 14) | def run(self): FILE: Windows/lazagne/softwares/games/turba.py class Turba (line 15) | class Turba(ModuleInfo): method __init__ (line 16) | def __init__(self): method run (line 19) | def run(self): FILE: Windows/lazagne/softwares/git/gitforwindows.py class GitForWindows (line 14) | class GitForWindows(ModuleInfo): method __init__ (line 15) | def __init__(self): method extract_credentials (line 18) | def extract_credentials(self, location): method run (line 41) | def run(self): FILE: Windows/lazagne/softwares/mails/outlook.py class Outlook (line 12) | class Outlook(ModuleInfo): method __init__ (line 13) | def __init__(self): method trySingleKey (line 16) | def trySingleKey(self, keyPath): method retrieve_info (line 48) | def retrieve_info(self, hkey, name_key): method run (line 72) | def run(self): FILE: Windows/lazagne/softwares/maven/mavenrepositories.py class MavenRepositories (line 9) | class MavenRepositories(ModuleInfo): method __init__ (line 11) | def __init__(self): method extract_master_password (line 17) | def extract_master_password(self): method extract_repositories_credentials (line 39) | def extract_repositories_credentials(self): method use_key_auth (line 66) | def use_key_auth(self, creds_dict): method run (line 81) | def run(self): FILE: Windows/lazagne/softwares/memory/keepass.py class Keepass (line 15) | class Keepass(ModuleInfo): method __init__ (line 16) | def __init__(self): method run (line 19) | def run(self): FILE: Windows/lazagne/softwares/memory/keethief.py class KeeThief (line 11) | class KeeThief(): method run (line 27) | def run(self, full_exe_path): FILE: Windows/lazagne/softwares/memory/libkeepass/__init__.py function open (line 18) | def open(filename, **credentials): function add_kdb_reader (line 40) | def add_kdb_reader(sub_signature, cls): function get_kdb_reader (line 55) | def get_kdb_reader(signature): FILE: Windows/lazagne/softwares/memory/libkeepass/common.py class HeaderDictionary (line 17) | class HeaderDictionary(dict): method __init__ (line 78) | def __init__(self, *args): method __getitem__ (line 81) | def __getitem__(self, key): method __setitem__ (line 87) | def __setitem__(self, key, val): method __getattr__ (line 93) | def __getattr__(self, key): method __setattr__ (line 123) | def __setattr__(self, key, val): class KDBFile (line 131) | class KDBFile(object): method __init__ (line 132) | def __init__(self, stream=None, **credentials): method read_from (line 155) | def read_from(self, stream): method _read_header (line 161) | def _read_header(self, stream): method _decrypt (line 165) | def _decrypt(self, stream): method write_to (line 172) | def write_to(self, stream): method add_credentials (line 175) | def add_credentials(self, **credentials): method clear_credentials (line 181) | def clear_credentials(self): method add_key_hash (line 185) | def add_key_hash(self, key_hash): method _make_master_key (line 194) | def _make_master_key(self): method close (line 198) | def close(self): method read (line 202) | def read(self, n=-1): method seek (line 215) | def seek(self, offset, whence=io.SEEK_SET): method tell (line 219) | def tell(self): function load_keyfile (line 225) | def load_keyfile(filename): function load_xml_keyfile (line 236) | def load_xml_keyfile(filename): function load_plain_keyfile (line 257) | def load_plain_keyfile(filename): function stream_unpack (line 275) | def stream_unpack(stream, offset, length, typecode='I'): function read_signature (line 282) | def read_signature(stream): FILE: Windows/lazagne/softwares/memory/libkeepass/crypto.py function sha256 (line 11) | def sha256(s): function transform_key (line 16) | def transform_key(key, seed, rounds): function aes_cbc_decrypt (line 27) | def aes_cbc_decrypt(data, key, enc_iv): function aes_cbc_encrypt (line 33) | def aes_cbc_encrypt(data, key, enc_iv): function unpad (line 38) | def unpad(data): function pad (line 43) | def pad(s): function xor (line 48) | def xor(aa, bb): FILE: Windows/lazagne/softwares/memory/libkeepass/hbio.py function read_int (line 16) | def read_int(stream, length): class HashedBlockIO (line 23) | class HashedBlockIO(io.BytesIO): method __init__ (line 41) | def __init__(self, block_stream=None, bytes=None): method read_block_stream (line 53) | def read_block_stream(self, block_stream): method _next_block (line 65) | def _next_block(self, block_stream): method write_block_stream (line 82) | def write_block_stream(self, stream, block_length=BLOCK_LENGTH): FILE: Windows/lazagne/softwares/memory/libkeepass/kdb4.py class KDB4Header (line 26) | class KDB4Header(HeaderDictionary): class KDB4File (line 53) | class KDB4File(KDBFile): method __init__ (line 54) | def __init__(self, stream=None, **credentials): method set_compression (line 58) | def set_compression(self, flag=1): method read_from (line 67) | def read_from(self, stream): method _read_header (line 89) | def _read_header(self, stream): method _decrypt (line 171) | def _decrypt(self, stream): method _encrypt (line 194) | def _encrypt(self): method _unzip (line 220) | def _unzip(self): method _zip (line 229) | def _zip(self): method _make_master_key (line 241) | def _make_master_key(self): class KDBXmlExtension (line 256) | class KDBXmlExtension: method __init__ (line 266) | def __init__(self, unprotect=True): method unprotect (line 280) | def unprotect(self): method to_dic (line 320) | def to_dic(self): method _reset_salsa (line 346) | def _reset_salsa(self): method _get_salsa (line 351) | def _get_salsa(self, length): method _unprotect (line 363) | def _unprotect(self, string): method _protect (line 371) | def _protect(self, string): class KDB4Reader (line 380) | class KDB4Reader(KDB4File, KDBXmlExtension): method __init__ (line 399) | def __init__(self, stream=None, **credentials): method read_from (line 402) | def read_from(self, stream, unprotect=True): FILE: Windows/lazagne/softwares/memory/libkeepass/pureSalsa20.py class Salsa20 (line 188) | class Salsa20(object): method __init__ (line 189) | def __init__(self, key=None, iv=None, rounds=20): method set_key (line 200) | def set_key(self, key): method set_iv (line 215) | def set_iv(self, iv): method set_counter (line 225) | def set_counter(self, counter): method get_counter (line 231) | def get_counter(self): method set_rounds (line 234) | def set_rounds(self, rounds, testing=False): method encrypt_bytes (line 238) | def encrypt_bytes(self, data): function salsa20_wordtobyte (line 258) | def salsa20_wordtobyte(input, n_rounds=20, check_rounds=True): function trunc32 (line 319) | def trunc32(w): function add32 (line 327) | def add32(a, b): function rot32 (line 337) | def rot32(w, n_left): FILE: Windows/lazagne/softwares/memory/memorydump.py class MemoryDump (line 66) | class MemoryDump(ModuleInfo): method __init__ (line 67) | def __init__(self): method run (line 72) | def run(self): FILE: Windows/lazagne/softwares/memory/onepassword.py class OnePassword (line 5) | class OnePassword(ModuleInfo): method __init__ (line 7) | def __init__(self): method run (line 10) | def run(self): FILE: Windows/lazagne/softwares/multimedia/eyecon.py class EyeCON (line 13) | class EyeCON(ModuleInfo): method __init__ (line 18) | def __init__(self): method deobfuscate (line 25) | def deobfuscate(self, ciphered_str): method get_db_hosts (line 28) | def get_db_hosts(self): method credentials_from_registry (line 50) | def credentials_from_registry(self): method run (line 93) | def run(self): FILE: Windows/lazagne/softwares/php/composer.py class Composer (line 10) | class Composer(ModuleInfo): method __init__ (line 12) | def __init__(self): method extract_credentials (line 15) | def extract_credentials(self, location): method run (line 42) | def run(self): FILE: Windows/lazagne/softwares/svn/tortoise.py class Tortoise (line 11) | class Tortoise(ModuleInfo): method __init__ (line 12) | def __init__(self): method run (line 15) | def run(self): FILE: Windows/lazagne/softwares/sysadmin/apachedirectorystudio.py class ApacheDirectoryStudio (line 10) | class ApacheDirectoryStudio(ModuleInfo): method __init__ (line 12) | def __init__(self): method extract_connections_credentials (line 17) | def extract_connections_credentials(self): method run (line 44) | def run(self): FILE: Windows/lazagne/softwares/sysadmin/coreftp.py class CoreFTP (line 13) | class CoreFTP(ModuleInfo): method __init__ (line 14) | def __init__(self): method decrypt (line 19) | def decrypt(self, hex): method run (line 25) | def run(self): FILE: Windows/lazagne/softwares/sysadmin/cyberduck.py class Cyberduck (line 14) | class Cyberduck(ModuleInfo): method __init__ (line 15) | def __init__(self): method get_application_path (line 19) | def get_application_path(self): method run (line 28) | def run(self): FILE: Windows/lazagne/softwares/sysadmin/d3des.py function decrypt_passwd (line 54) | def decrypt_passwd(data): function generate_response (line 59) | def generate_response(passwd, challange): function deskey (line 97) | def deskey(key, decrypt): # Thanks to James Gillogly & Phil Karn! function cookey (line 140) | def cookey(raw): function desfunc (line 310) | def desfunc(block, keys): FILE: Windows/lazagne/softwares/sysadmin/filezilla.py class Filezilla (line 12) | class Filezilla(ModuleInfo): method __init__ (line 13) | def __init__(self): method run (line 16) | def run(self): FILE: Windows/lazagne/softwares/sysadmin/filezillaserver.py class FilezillaServer (line 10) | class FilezillaServer(ModuleInfo): method __init__ (line 11) | def __init__(self): method run (line 14) | def run(self): FILE: Windows/lazagne/softwares/sysadmin/ftpnavigator.py class FtpNavigator (line 10) | class FtpNavigator(ModuleInfo): method __init__ (line 11) | def __init__(self): method decode (line 14) | def decode(self, encode_password): method run (line 20) | def run(self): FILE: Windows/lazagne/softwares/sysadmin/iisapppool.py class IISAppPool (line 9) | class IISAppPool(ModuleInfo): method __init__ (line 10) | def __init__(self): method find_files (line 13) | def find_files(self, path, file): method execute_get_stdout (line 25) | def execute_get_stdout(self, exe_file, arguments): method run (line 35) | def run(self): FILE: Windows/lazagne/softwares/sysadmin/iiscentralcertp.py class IISCentralCertP (line 20) | class IISCentralCertP(ModuleInfo): method __init__ (line 21) | def __init__(self): method find_files (line 24) | def find_files(self, path, file): method create_RSAKeyValueFile (line 36) | def create_RSAKeyValueFile(self, exe_file, container): method get_registry_key (line 46) | def get_registry_key(self, reg_key, parameter): method decrypt_hash_b64 (line 58) | def decrypt_hash_b64(self, hash_b64, privkey): method GetLong (line 66) | def GetLong(self, nodelist): method read_RSAKeyValue (line 76) | def read_RSAKeyValue(self, rsa_key_xml): method run (line 91) | def run(self): FILE: Windows/lazagne/softwares/sysadmin/keepassconfig.py class KeePassConfig (line 9) | class KeePassConfig(ModuleInfo): method __init__ (line 11) | def __init__(self): method run (line 15) | def run(self): FILE: Windows/lazagne/softwares/sysadmin/mRemoteNG.py class mRemoteNG (line 28) | class mRemoteNG(ModuleInfo): method __init__ (line 34) | def __init__(self): method gcm_decrypt (line 42) | def gcm_decrypt(self, password): method cbc_decrypt (line 86) | def cbc_decrypt(self, password): method decrypt (line 98) | def decrypt(self, password): method run (line 107) | def run(self, software_name = None): method parser (line 118) | def parser(self, filename): method get_configuration_files (line 173) | def get_configuration_files(self): FILE: Windows/lazagne/softwares/sysadmin/opensshforwindows.py class OpenSSHForWindows (line 9) | class OpenSSHForWindows(ModuleInfo): method __init__ (line 11) | def __init__(self): method extract_private_keys_unprotected (line 42) | def extract_private_keys_unprotected(self): method run (line 76) | def run(self): FILE: Windows/lazagne/softwares/sysadmin/openvpn.py class OpenVPN (line 13) | class OpenVPN(ModuleInfo): method __init__ (line 14) | def __init__(self): method check_openvpn_installed (line 17) | def check_openvpn_installed(self): method decrypt_password (line 25) | def decrypt_password(self, encrypted_password, entropy): method get_credentials (line 32) | def get_credentials(self, key): method get_vpn_config_file_path (line 63) | def get_vpn_config_file_path(profile_name): method collect_extra_data_for_profile (line 92) | def collect_extra_data_for_profile(self, profile_name): method run (line 127) | def run(self): FILE: Windows/lazagne/softwares/sysadmin/puttycm.py class Puttycm (line 15) | class Puttycm(ModuleInfo): method __init__ (line 16) | def __init__(self): method run (line 19) | def run(self): method get_default_database (line 24) | def get_default_database(self): method parse_xml (line 33) | def parse_xml(self, database_path): FILE: Windows/lazagne/softwares/sysadmin/rclone.py class Rclone (line 21) | class Rclone(ModuleInfo): method __init__ (line 22) | def __init__(self): method base64_urlsafedecode (line 27) | def base64_urlsafedecode(self, string): method aes_ctr_decrypt (line 36) | def aes_ctr_decrypt(self, encrypted_password, iv): method deobscure (line 46) | def deobscure(self, obscured): method run (line 52) | def run(self): FILE: Windows/lazagne/softwares/sysadmin/rdpmanager.py class RDPManager (line 13) | class RDPManager(ModuleInfo): method __init__ (line 14) | def __init__(self): method decrypt_password (line 17) | def decrypt_password(self, encrypted_password): method format_output_tag (line 28) | def format_output_tag(self, tag): method check_tag_content (line 36) | def check_tag_content(self, values, c): method parse_element (line 44) | def parse_element(self, root, element): method run (line 65) | def run(self): method parse_xml (line 100) | def parse_xml(self, xml_file): FILE: Windows/lazagne/softwares/sysadmin/unattended.py class Unattended (line 14) | class Unattended(ModuleInfo): method __init__ (line 15) | def __init__(self): method try_b64_decode (line 19) | def try_b64_decode(self, message): method run (line 25) | def run(self): FILE: Windows/lazagne/softwares/sysadmin/vnc.py class Vnc (line 17) | class Vnc(ModuleInfo): method __init__ (line 18) | def __init__(self): method split_len (line 22) | def split_len(self, seq, length): method do_crypt (line 25) | def do_crypt(self, password, decrypt): method unhex (line 32) | def unhex(self, s): method reverse_vncpassword (line 43) | def reverse_vncpassword(self, hash): method vnc_from_registry (line 63) | def vnc_from_registry(self): method vnc_from_filesystem (line 115) | def vnc_from_filesystem(self): method vnc_from_process (line 157) | def vnc_from_process(self): method run (line 161) | def run(self): FILE: Windows/lazagne/softwares/sysadmin/winscp.py class WinSCP (line 11) | class WinSCP(ModuleInfo): method __init__ (line 12) | def __init__(self): method decrypt_char (line 17) | def decrypt_char(self): method check_winscp_installed (line 33) | def check_winscp_installed(self): method check_masterPassword (line 41) | def check_masterPassword(self, key): method get_credentials (line 49) | def get_credentials(self): method decrypt_password (line 93) | def decrypt_password(self, username, hostname, _hash): method run (line 121) | def run(self): FILE: Windows/lazagne/softwares/sysadmin/wsl.py class Wsl (line 9) | class Wsl(ModuleInfo): method __init__ (line 10) | def __init__(self): method run (line 13) | def run(self): FILE: Windows/lazagne/softwares/wifi/wifi.py class Wifi (line 14) | class Wifi(ModuleInfo): method __init__ (line 15) | def __init__(self): method decrypt_using_lsa_secret (line 18) | def decrypt_using_lsa_secret(self, key): method decrypt_using_netsh (line 30) | def decrypt_using_netsh(self, ssid): method run (line 54) | def run(self): FILE: Windows/lazagne/softwares/windows/autologon.py class Autologon (line 14) | class Autologon(ModuleInfo): method __init__ (line 15) | def __init__(self): method run (line 18) | def run(self): FILE: Windows/lazagne/softwares/windows/cachedump.py class Cachedump (line 8) | class Cachedump(ModuleInfo): method __init__ (line 9) | def __init__(self): method run (line 12) | def run(self): FILE: Windows/lazagne/softwares/windows/creddump7/addrspace.py class FileAddressSpace (line 36) | class FileAddressSpace: method __init__ (line 37) | def __init__(self, fname, mode='rb', fast=False): method fread (line 46) | def fread(self, len): method read (line 49) | def read(self, addr, len): method read_long (line 53) | def read_long(self, addr): method get_address_range (line 58) | def get_address_range(self): method get_available_addresses (line 61) | def get_available_addresses(self): method is_valid_address (line 64) | def is_valid_address(self, addr): method close (line 67) | def close(self): class HiveFileAddressSpace (line 76) | class HiveFileAddressSpace: method __init__ (line 77) | def __init__(self, fname): method vtop (line 81) | def vtop(self, vaddr): method read (line 84) | def read(self, vaddr, length, zero=False): method read_long_phys (line 136) | def read_long_phys(self, addr): method is_valid_address (line 141) | def is_valid_address(self, vaddr): FILE: Windows/lazagne/softwares/windows/creddump7/newobj.py function get_ptr_type (line 28) | def get_ptr_type(structure, member): class Obj (line 48) | class Obj(object): method __new__ (line 55) | def __new__(typ, name, address, space): method __init__ (line 66) | def __init__(self, name, address, space): method __getattribute__ (line 76) | def __getattribute__(self, attr): method __truediv__ (line 109) | def __truediv__(self, other): method __div__ (line 117) | def __div__(self, other): method members (line 125) | def members(self): method values (line 133) | def values(self): method bytes (line 141) | def bytes(self, length=-1): method size (line 153) | def size(self): method __repr__ (line 161) | def __repr__(self): method __eq__ (line 164) | def __eq__(self, other): method __ne__ (line 169) | def __ne__(self, other): method __hash__ (line 172) | def __hash__(self): method is_valid (line 175) | def is_valid(self): method get_offset (line 178) | def get_offset(self, member): class Primitive (line 182) | class Primitive(Obj): method __new__ (line 189) | def __new__(typ, *args, **kwargs): method __init__ (line 193) | def __init__(self, name, address, space): method __repr__ (line 202) | def __repr__(self): method members (line 205) | def members(self): class Pointer (line 209) | class Pointer(Obj): method __new__ (line 218) | def __new__(typ, *args, **kwargs): method __init__ (line 222) | def __init__(self, name, address, space, ptr_type): method __getattribute__ (line 230) | def __getattribute__(self, attr): method __repr__ (line 240) | def __repr__(self): method members (line 243) | def members(self): class _UNICODE_STRING (line 247) | class _UNICODE_STRING(Obj): method __new__ (line 256) | def __new__(typ, *args, **kwargs): method __str__ (line 260) | def __str__(self): method getBuffer (line 264) | def getBuffer(self): class _CM_KEY_NODE (line 269) | class _CM_KEY_NODE(Obj): method __new__ (line 270) | def __new__(typ, *args, **kwargs): method getName (line 274) | def getName(self): class _CM_KEY_VALUE (line 279) | class _CM_KEY_VALUE(Obj): method __new__ (line 280) | def __new__(typ, *args, **kwargs): method getName (line 284) | def getName(self): class _CHILD_LIST (line 289) | class _CHILD_LIST(Obj): method __new__ (line 290) | def __new__(typ, *args, **kwargs): method getList (line 294) | def getList(self): class _CM_KEY_INDEX (line 303) | class _CM_KEY_INDEX(Obj): method __new__ (line 304) | def __new__(typ, *args, **kwargs): method getList (line 308) | def getList(self): FILE: Windows/lazagne/softwares/windows/creddump7/object.py function obj_size (line 44) | def obj_size(types, objname): function builtin_size (line 51) | def builtin_size(builtin): function read_value (line 58) | def read_value(addr_space, value_type, vaddr): function read_unicode_string (line 81) | def read_unicode_string(addr_space, types, member_list, vaddr): function read_string (line 108) | def read_string(addr_space, types, member_list, vaddr, max_length=256): function read_null_string (line 118) | def read_null_string(addr_space, types, member_list, vaddr, max_length=2... function get_obj_offset (line 130) | def get_obj_offset(types, member_list): function read_obj (line 170) | def read_obj(addr_space, types, member_list, vaddr): FILE: Windows/lazagne/softwares/windows/creddump7/win32/domcachedump.py function get_nlkm (line 37) | def get_nlkm(secaddr, lsakey, vista): function decrypt_hash (line 41) | def decrypt_hash(edata, nlkm, ch): function decrypt_hash_vista (line 50) | def decrypt_hash_vista(edata, nlkm, ch): function parse_cache_entry (line 65) | def parse_cache_entry(cache_data): function parse_decrypted_cache (line 73) | def parse_decrypted_cache(dec_data, uname_len, domain_len, domain_name_l... function dump_hashes (line 94) | def dump_hashes(sysaddr, secaddr, vista): function dump_file_hashes (line 139) | def dump_file_hashes(syshive_fname, sechive_fname, vista): FILE: Windows/lazagne/softwares/windows/creddump7/win32/hashdump.py function str_to_key (line 69) | def str_to_key(s): function sid_to_key (line 87) | def sid_to_key(sid): function find_control_set (line 101) | def find_control_set(sysaddr): function get_bootkey (line 115) | def get_bootkey(sysaddr): function get_hbootkey (line 141) | def get_hbootkey(samaddr, bootkey): function get_user_keys (line 177) | def get_user_keys(samaddr): function decrypt_single_hash (line 190) | def decrypt_single_hash(rid, hbootkey, enc_hash, lmntstr): function decrypt_single_salted_hash (line 205) | def decrypt_single_salted_hash(rid, hbootkey, enc_hash, lmntstr, salt): function get_user_hashes (line 218) | def get_user_hashes(user_key, hbootkey): function get_user_name (line 260) | def get_user_name(user_key): function dump_hashes (line 276) | def dump_hashes(sysaddr, samaddr): function dump_file_hashes (line 292) | def dump_file_hashes(syshive_fname, samhive_fname): FILE: Windows/lazagne/softwares/windows/creddump7/win32/lsasecrets.py function get_lsa_key (line 33) | def get_lsa_key(secaddr, bootkey, vista): function decrypt_secret (line 70) | def decrypt_secret(secret, key): function decrypt_aes (line 96) | def decrypt_aes(secret, key): function get_secret_by_name (line 115) | def get_secret_by_name(secaddr, name, lsakey, vista): function get_secrets (line 143) | def get_secrets(sysaddr, secaddr, vista): function get_file_secrets (line 179) | def get_file_secrets(sysfile, secfile, vista): FILE: Windows/lazagne/softwares/windows/creddump7/win32/rawreg.py function get_root (line 31) | def get_root(address_space): function open_key (line 35) | def open_key(root, key): function subkeys (line 50) | def subkeys(key, stable=True): function values (line 75) | def values(key): function walk (line 80) | def walk(root): FILE: Windows/lazagne/softwares/windows/credfiles.py class CredFiles (line 7) | class CredFiles(ModuleInfo): method __init__ (line 8) | def __init__(self): method run (line 11) | def run(self): FILE: Windows/lazagne/softwares/windows/credman.py class Credman (line 6) | class Credman(ModuleInfo): method __init__ (line 7) | def __init__(self): method run (line 10) | def run(self): FILE: Windows/lazagne/softwares/windows/hashdump.py class Hashdump (line 7) | class Hashdump(ModuleInfo): method __init__ (line 8) | def __init__(self): method run (line 11) | def run(self): FILE: Windows/lazagne/softwares/windows/lsa_secrets.py class LSASecrets (line 10) | class LSASecrets(ModuleInfo): method __init__ (line 11) | def __init__(self): method run (line 14) | def run(self): FILE: Windows/lazagne/softwares/windows/ppypykatz.py class Pypykatz (line 15) | class Pypykatz(ModuleInfo): method __init__ (line 23) | def __init__(self): method run (line 26) | def run(self): FILE: Windows/lazagne/softwares/windows/vault.py class Vault (line 7) | class Vault(ModuleInfo): method __init__ (line 8) | def __init__(self): method run (line 11) | def run(self): FILE: Windows/lazagne/softwares/windows/vaultfiles.py class VaultFiles (line 7) | class VaultFiles(ModuleInfo): method __init__ (line 8) | def __init__(self): method run (line 11) | def run(self): FILE: Windows/lazagne/softwares/windows/windows.py class WindowsPassword (line 13) | class WindowsPassword(ModuleInfo): method __init__ (line 14) | def __init__(self): method is_in_domain (line 18) | def is_in_domain(self): method run (line 31) | def run(self):