UNPKG

ya-express-ntlm

Version:

ya-express-ntlm

github.com/Bazilio-san/ya-express-ntlm

Bazilio-san/ya-express-ntlm

92 lines (72 loc) 3.01 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
// noinspection JSBitwiseOperatorUsage,JSUnusedLocalSymbols import { Buffer } from 'buffer'; import { getSuppliedDomainData } from './createMessageType1'; const NEGOTIATE_UNICODE = 1; const NEGOTIATE_OEM = 1 << 1; const REQUEST_TARGET = 1 << 2; const NEGOTIATE_NTLM_KEY = 1 << 9; const TARGET_TYPE_DOMAIN = 1 << 16; const NEGOTIATE_NTLM2_KEY = 1 << 19; const NEGOTIATE_TARGET_INFO = 1 << 23; export const createMessageType2 = (messageType1: Buffer): Buffer => { const targetName = getSuppliedDomainData(messageType1); let challengeFlags = REQUEST_TARGET | TARGET_TYPE_DOMAIN; // Follow requested NTLM protocol version const requestFlags = messageType1.readUInt32LE(12); const ntlmVersion = requestFlags & NEGOTIATE_NTLM2_KEY ? 2 : 1; const useUnicode = requestFlags & NEGOTIATE_UNICODE; let headerLen: number; let dataLen: number; let targetNameBufferLen: number; if (useUnicode) { challengeFlags |= NEGOTIATE_UNICODE; targetNameBufferLen = targetName.length * 2; } else { challengeFlags |= NEGOTIATE_OEM; targetNameBufferLen = targetName.length; } if (ntlmVersion === 2) { challengeFlags |= NEGOTIATE_NTLM2_KEY | NEGOTIATE_TARGET_INFO; headerLen = 40 + 8; dataLen = targetNameBufferLen + ((2 * targetName.length) + 8); } else { challengeFlags |= NEGOTIATE_NTLM_KEY; headerLen = 40; dataLen = targetNameBufferLen; } const messageType2: Buffer = Buffer.alloc(headerLen + dataLen); let offset = 0; const header = 'NTLMSSP\0'; offset += messageType2.write(header, 0, 'ascii'); // Type 2 message offset = messageType2.writeUInt32LE(0x00000002, offset); // Target name security buffer offset = messageType2.writeUInt16LE(targetNameBufferLen, offset); offset = messageType2.writeUInt16LE(targetNameBufferLen, offset); offset = messageType2.writeUInt32LE(headerLen, offset); // Flags offset = messageType2.writeUInt32LE(challengeFlags, offset); // Server challenge offset = messageType2.writeUInt32LE(0x89abcdef, offset); offset = messageType2.writeUInt32LE(0x01234567, offset); // Context offset = messageType2.writeUInt32LE(0, offset); offset = messageType2.writeUInt32LE(0, offset); if (ntlmVersion === 2) { // Target info security buffer offset = messageType2.writeUInt16LE(targetName.length * 2 + 8, offset); offset = messageType2.writeUInt16LE(targetName.length * 2 + 8, offset); offset = messageType2.writeUInt32LE(headerLen + targetNameBufferLen, offset); } // Target name data offset += messageType2.write(targetName, offset, useUnicode ? 'ucs2' : 'ascii'); if (ntlmVersion === 2) { // Target info data offset = messageType2.writeUInt16LE(0x0002, offset); // Domain offset = messageType2.writeUInt16LE(targetName.length * 2, offset); offset += messageType2.write(targetName, offset, 'ucs2'); offset = messageType2.writeUInt16LE(0x0000, offset); // Terminator block messageType2.writeUInt16LE(0, offset); } return messageType2; };