Update version v1.1.4

Rvn0xsy · Oct 3, 2020 · e09353a · e09353a
1 parent 450e6ec
commit e09353a
Show file tree

Hide file tree

Showing 8 changed files with 913 additions and 10 deletions.
diff --git a/Cooolis-ms-Loader/Cooolis-ms/Cooolis-Http.cpp b/Cooolis-ms-Loader/Cooolis-ms/Cooolis-Http.cpp
@@ -0,0 +1,291 @@
+#include "Cooolis-Http.h"
+
+CCooolisHttp::CCooolisHttp()
+{
+	hSession = WinHttpOpen(
+		LIB_HTTP_USER_AGENT,
+		WINHTTP_ACCESS_TYPE_DEFAULT_PROXY,
+		WINHTTP_NO_PROXY_NAME,
+		WINHTTP_NO_PROXY_BYPASS,
+		0);
+}
+
+BOOL CCooolisHttp::ConnectServer(LPCWSTR pswzServerName, INTERNET_PORT nServerPort)
+{
+	if (hSession == NULL) {
+		// Session初始化错误！
+		return FALSE;
+	}
+	hConnect = WinHttpConnect(hSession, pswzServerName, nServerPort, 0);
+	if (hConnect != NULL) {
+		return TRUE;
+	}
+	return FALSE;
+}
+
+BOOL CCooolisHttp::HttpAddHeaders(LPCWSTR szHeader)
+{
+	// 如果长度大于0则添加
+	if (lstrlen(szHeader) > 0) {
+		// 添加Header
+		this->szHeaders.push_back(szHeader);
+		return TRUE;
+	}
+	return FALSE;
+}
+
+BOOL CCooolisHttp::HttpAddHeaders(std::vector<std::wstring> szHeaders)
+{
+	// 直接赋值外部Headers,后面的将直接替换
+	this->szHeaders = szHeaders;
+	return 0;
+}
+
+DWORD CCooolisHttp::HttpGet(LPCWSTR pszServerURI, std::vector<BYTE>& wszResponse)
+{
+	DWORD dwResponseContentLen = 0; // 响应体大小
+	LPVOID lpszResponseBody = NULL; // 响应内容
+	// 连接服务器
+	if (!hConnect) {
+		// 连接错误！
+		return -1;
+	}
+	// 连接成功
+	// printf("[+] hSession WinHttpConnect Host \n");
+	// 创建请求对象
+	hRequest = WinHttpOpenRequest(
+		hConnect,
+		TEXT("GET"),   // Request Method
+		pszServerURI,  // Request URI
+		NULL,
+		WINHTTP_NO_REFERER, // 没有Referer
+		WINHTTP_DEFAULT_ACCEPT_TYPES,
+		WINHTTP_FLAG_ESCAPE_DISABLE
+	);
+	// 设置HTTP头
+	this->SetHeaders();
+
+	// 发送HTTP请求
+	if (this->SendRequest() == FALSE) {
+		return -1;
+	}
+	// 获取响应 ContentLength,如果没有内容,则返回 0
+	dwResponseContentLen = this->GetResponseContentLength();
+	if (dwResponseContentLen == 0) {
+		return dwResponseContentLen;
+	}
+	// 申请内存空间用于存放返回内容
+	lpszResponseBody = HeapAlloc(GetProcessHeap(), HEAP_ZERO_MEMORY, dwResponseContentLen);
+	// 从HTTP响应读取内容
+	if (WinHttpReadData(hRequest, lpszResponseBody, dwResponseContentLen, &dwResponseContentLen) == FALSE) {
+		return -1;
+	}
+	// printf("[+] GET Request Content-Length : %d \n", dwResponseContentLen);
+	// 将响应内容返回
+	for (DWORD i = 0; i < dwResponseContentLen; i++)
+	{
+		BYTE byS = (BYTE) * ((PCHAR)lpszResponseBody + i);
+		wszResponse.push_back(byS);
+	}
+
+	// printf("[+] Error %u in WinHttpReadData.\n", GetLastError());
+	// 释放原先申请的内存
+	HeapFree(GetProcessHeap(), HEAP_NO_SERIALIZE, lpszResponseBody);
+	// 关闭请求句柄
+	if (hRequest) WinHttpCloseHandle(hRequest);
+	// 返回网页大小
+	return dwResponseContentLen;
+}
+
+DWORD CCooolisHttp::HttpPost(LPCWSTR pszServerURI, LPVOID pszSendData, DWORD dwSendDataLen, std::vector<BYTE>& wszResponse)
+{
+	DWORD dwResponseContentLen = 0; // 响应体大小
+	LPVOID lpszResponseBody = NULL; // 响应内容
+	// 连接服务器
+	if (!hConnect) {
+		// 连接错误！
+		return -1;
+	}
+	// 连接成功
+	// printf("[+] hSession WinHttpConnect Host \n");
+	// 创建请求对象
+	hRequest = WinHttpOpenRequest(
+		hConnect,
+		TEXT("POST"),   // Request Method
+		pszServerURI,  // Request URI
+		NULL,
+		WINHTTP_NO_REFERER, // 没有Referer
+		WINHTTP_DEFAULT_ACCEPT_TYPES,
+		WINHTTP_FLAG_ESCAPE_DISABLE
+	);
+	// 设置HTTP头
+	this->SetHeaders();
+
+	// 发送HTTP请求
+	if (this->SendRequest(pszSendData, dwSendDataLen) == FALSE) {
+		return -1;
+	}
+	// 获取响应 ContentLength,如果没有内容,则返回 0
+	dwResponseContentLen = this->GetResponseContentLength();
+	if (dwResponseContentLen == 0) {
+		return dwResponseContentLen;
+	}
+	// 申请内存空间用于存放返回内容
+	lpszResponseBody = HeapAlloc(GetProcessHeap(), HEAP_ZERO_MEMORY, dwResponseContentLen);
+	// 从HTTP响应读取内容
+	if (WinHttpReadData(hRequest, lpszResponseBody, dwResponseContentLen, &dwResponseContentLen) == FALSE) {
+		return -1;
+	}
+	// printf("[+] POST Request Content-Length : %d \n", dwResponseContentLen);
+	// 将响应内容返回
+	for (DWORD i = 0; i < dwResponseContentLen; i++)
+	{
+		BYTE byS = (BYTE) * ((PCHAR)lpszResponseBody + i);
+		wszResponse.push_back(byS);
+
+	}
+	// 释放原先申请的内存
+	HeapFree(GetProcessHeap(), HEAP_NO_SERIALIZE, lpszResponseBody);
+	// 关闭请求句柄
+	if (hRequest) WinHttpCloseHandle(hRequest);
+	// 返回网页大小
+	return dwResponseContentLen;
+}
+
+// 将Http文件读到内存
+LPVOID CCooolisHttp::ReadHttpFile(LPCWSTR pszServerURI, DWORD& dwResponseLength)
+{
+	// DWORD dwResponseContentLen = 0; // 响应体大小
+	LPVOID lpszResponseBody = NULL; // 响应内容
+	// 连接服务器
+	if (!hConnect) {
+		// 连接错误！
+		return NULL;
+	}
+	// 连接成功
+	// printf("[+] hSession WinHttpConnect Host \n");
+	// 创建请求对象
+	hRequest = WinHttpOpenRequest(
+		hConnect,
+		TEXT("GET"),   // Request Method
+		pszServerURI,  // Request URI
+		NULL,
+		WINHTTP_NO_REFERER, // 没有Referer
+		WINHTTP_DEFAULT_ACCEPT_TYPES,
+		WINHTTP_FLAG_ESCAPE_DISABLE | WINHTTP_FLAG_SECURE
+	);
+	// 设置HTTP头
+	this->SetHeaders();
+
+	// 发送HTTP请求
+	if (this->SendRequest() == FALSE) {
+		return NULL;
+	}
+	// 获取响应 ContentLength,如果没有内容,则返回 0
+	dwResponseLength = this->GetResponseContentLength();
+	if (dwResponseLength == 0) {
+		return NULL;
+	}
+	// 申请内存空间用于存放返回内容
+	lpszResponseBody = HeapAlloc(GetProcessHeap(), HEAP_ZERO_MEMORY, dwResponseLength);
+	// 从HTTP响应读取内容
+	if (WinHttpReadData(hRequest, lpszResponseBody, dwResponseLength, &dwResponseLength) == FALSE) {
+		return NULL;
+	}
+
+	// 关闭请求句柄
+	if (hRequest) WinHttpCloseHandle(hRequest);
+	// 返回网页大小
+	return lpszResponseBody;
+}
+
+VOID CCooolisHttp::SetHeaders()
+{
+	INT nHeaderCount = this->szHeaders.size();
+	// wprintf(TEXT("[+] Header Size : %d \n"), nHeaderCount);
+	if (nHeaderCount <= 0) {
+		return VOID();
+	}
+	for (INT i = 0; i < nHeaderCount; i++)
+	{
+		WinHttpAddRequestHeaders(hRequest,
+			szHeaders[i].data(),
+			szHeaders[i].length(),
+			WINHTTP_ADDREQ_FLAG_ADD | WINHTTP_ADDREQ_FLAG_REPLACE);
+	}
+	return VOID();
+}
+
+DWORD CCooolisHttp::GetResponseContentLength()
+{
+	DWORD dwResponseLength = 0;
+	DWORD dwCch = sizeof(DWORD);
+	WinHttpQueryHeaders(hRequest,
+		WINHTTP_QUERY_CONTENT_LENGTH | WINHTTP_QUERY_FLAG_NUMBER,
+		WINHTTP_HEADER_NAME_BY_INDEX,
+		&dwResponseLength,
+		&dwCch,
+		WINHTTP_NO_HEADER_INDEX);
+	return dwResponseLength;
+}
+
+BOOL CCooolisHttp::SendRequest()
+{
+	BOOL bIsSend = FALSE;
+
+
+	if (hRequest == NULL)
+		return FALSE;
+
+
+	DWORD dwFlags = SECURITY_FLAG_IGNORE_UNKNOWN_CA |
+		SECURITY_FLAG_IGNORE_CERT_WRONG_USAGE |
+		SECURITY_FLAG_IGNORE_CERT_CN_INVALID |
+		SECURITY_FLAG_IGNORE_CERT_DATE_INVALID;
+	// 设置HTTPS
+	WinHttpSetOption(hRequest, WINHTTP_OPTION_SECURITY_FLAGS, &dwFlags, sizeof(dwFlags));
+	WinHttpSetOption(hRequest, WINHTTP_OPTION_CLIENT_CERT_CONTEXT, WINHTTP_NO_CLIENT_CERT_CONTEXT, 0);
+
+	// 发送HTTP请求
+	bIsSend = WinHttpSendRequest(
+		hRequest,
+		WINHTTP_NO_ADDITIONAL_HEADERS,
+		0,
+		WINHTTP_NO_REQUEST_DATA,
+		NULL,
+		0,
+		0);
+	if (bIsSend) {
+		// 开始接受响应
+		WinHttpReceiveResponse(hRequest, NULL);
+		return TRUE;
+	}
+	return bIsSend;
+}
+
+BOOL CCooolisHttp::SendRequest(LPVOID pswzSendData, DWORD dwSendDataLen)
+{
+	// 如果不填写请求长度,默认不发送任何数据
+	if (dwSendDataLen == 0) {
+		return this->SendRequest();
+	}
+	// 是否请求成功
+	BOOL bIsSend = FALSE;
+	if (hRequest == NULL)
+		return FALSE;
+	// 发送HTTP请求
+	bIsSend = WinHttpSendRequest(
+		hRequest,
+		WINHTTP_NO_ADDITIONAL_HEADERS,
+		0,
+		pswzSendData,
+		dwSendDataLen,
+		dwSendDataLen,
+		0);
+	if (bIsSend) {
+		// 开始接受响应
+		WinHttpReceiveResponse(hRequest, NULL);
+		return TRUE;
+	}
+	return bIsSend;
+}
diff --git a/Cooolis-ms-Loader/Cooolis-ms/Cooolis-Http.h b/Cooolis-ms-Loader/Cooolis-ms/Cooolis-Http.h
@@ -0,0 +1,41 @@
+#pragma once
+#include <Windows.h>
+#include <Winhttp.h>
+#include <iostream>
+#include <vector>
+
+#define LIB_HTTP_USER_AGENT L"Mozilla/5.02 (Linux; Android 4.1.1; Nexus 7 Build/JRO03D) AppleWebKit/535.19 (KHTML, like Gecko) Chrome/18.0.1025.166 Safari"
+
+
+class CCooolisHttp {
+public:
+	CCooolisHttp();
+	virtual BOOL ConnectServer(LPCWSTR pswzServerName, INTERNET_PORT nServerPort);
+	virtual BOOL HttpAddHeaders(LPCWSTR szHeader); // 添加HTTP头
+	virtual BOOL HttpAddHeaders(std::vector<std::wstring> szHeaders); // 添加多个HTTP头
+	// 发送GET请求
+	virtual DWORD HttpGet(
+		LPCWSTR pszServerURI,
+		std::vector<BYTE>& wszResponse
+	);
+	// 发送POST请求
+	virtual DWORD HttpPost(
+		LPCWSTR pszServerURI,
+		LPVOID pszSendData,
+		DWORD dwSendDataLen,
+		std::vector<BYTE>& wszResponse
+	);
+	// 从Http Server读取文件到内存
+	virtual LPVOID ReadHttpFile(LPCWSTR pszServerURI, DWORD & dwResponseLength);
+
+private:
+	HINTERNET   hSession = NULL;
+	HINTERNET	hConnect = NULL;
+	HINTERNET	hRequest = NULL;
+	std::vector<std::wstring> szHeaders; // 请求头
+	VOID SetHeaders(); // 设置请求头
+	DWORD GetResponseContentLength(); // 获取响应内容长度
+	BOOL SendRequest(); // 发送请求
+	BOOL SendRequest(LPVOID pswzSendData, DWORD dwSendDataLen); // 发送带参数的请求
+
+};