Sigma-C2/operator/operator.go

package main

import (
	"crypto/tls"
	"crypto/x509"
	"flag"
	"fmt"
	"log"
	"os"

	"github.com/chzyer/readline"
)

// Default server address
var defaultServerAddr = "127.0.0.1:8080"

// Path to certificates
var clientCertPath = "certificates/client.crt"
var clientKeyPath = "certificates/client.key"
var caCertPath = "certificates/ca.crt"

// Configure readline interface
func setupReadline() (*readline.Instance, error) {
	rlConfig := &readline.Config{
		Prompt:                 "\033[31mSigma >\033[0m ", // Colored prompt
		HistoryFile:            "/tmp/operator_history.txt",
		AutoComplete:           getCompleter(),
		InterruptPrompt:        "^C",
		DisableAutoSaveHistory: false,
		HistorySearchFold:      true,
		UniqueEditLine:         true,
	}

	rl, err := readline.NewEx(rlConfig)
	if err != nil {
		return nil, fmt.Errorf("error initializing readline: %v", err)
	}

	rl.SetVimMode(false)
	return rl, nil
}

// Prepares the TLS configuration for secure connection
func setupTLSConfig() (*tls.Config, error) {
	// Load CA certificate
	caCert, err := os.ReadFile(caCertPath)
	if err != nil {
		return nil, fmt.Errorf("failed to read CA certificate: %v", err)
	}

	caCertPool := x509.NewCertPool()
	if !caCertPool.AppendCertsFromPEM(caCert) {
		return nil, fmt.Errorf("failed to append CA certificate to pool")
	}

	// Load client certificate and key
	clientCert, err := tls.LoadX509KeyPair(clientCertPath, clientKeyPath)
	if err != nil {
		return nil, fmt.Errorf("failed to load client certificate and key: %v", err)
	}

	// Configure TLS
	return &tls.Config{
		Certificates:       []tls.Certificate{clientCert},
		RootCAs:            caCertPool,
		InsecureSkipVerify: false, // Ensure server's certificate is validated
	}, nil
}

// Establishes a secure connection to the server
func connectToServer(serverAddr string, tlsConfig *tls.Config) (*tls.Conn, error) {
	conn, err := tls.Dial("tcp", serverAddr, tlsConfig)
	if err != nil {
		return nil, fmt.Errorf("error connecting to server: %v", err)
	}

	fmt.Println("Connected to server")
	return conn, nil
}

// Pretty simple authentication of user with the server
func authenticateUser(conn *tls.Conn, userID, password string) error {
	fmt.Println("Starting authentication")

	// Send authentication message
	authMessage := fmt.Sprintf("AUTH:%s:%s", userID, password)
	_, err := conn.Write([]byte(authMessage))
	if err != nil {
		return fmt.Errorf("error sending credentials: %v", err)
	}

	// Receive server response
	buffer := make([]byte, 4096)
	n, err := conn.Read(buffer)
	if err != nil {
		return fmt.Errorf("error reading from server: %v", err)
	}

	response := string(buffer[:n])
	if response == "AUTH_OK" {
		fmt.Println("Auth successful. You can now issue commands.")
		return nil
	}

	return fmt.Errorf("authentication failed")
}

func main() {
	// Define flags for username, password and address of server
	operatorPassword := flag.String("p", "", "Password")
	operatorID := flag.String("u", "", "Username")
	serverAddr := flag.String("ip", defaultServerAddr, "IP and port of server")
	flag.Parse()

	// Check if password and username are provided
	if *operatorPassword == "" || *operatorID == "" {
		fmt.Println("Usage: client.exe -u <username> -p <password> -ip <ip:port>")
		return
	}
	fmt.Println("Client's username and password provided")

	// Setup TLS
	tlsConfig, err := setupTLSConfig()
	if err != nil {
		log.Fatalf("TLS setup failed: %v", err)
	}

	// Connect to server
	conn, err := connectToServer(*serverAddr, tlsConfig)
	if err != nil {
		log.Fatalf("Server connection failed: %v", err)
	}
	defer conn.Close()

	// Authenticate
	err = authenticateUser(conn, *operatorID, *operatorPassword)
	if err != nil {
		log.Fatalf("Authentication failed: %v", err)
	}

	// Setup readline
	rl, err := setupReadline()
	if err != nil {
		log.Fatalf("Readline setup failed: %v", err)
	}
	defer rl.Close()

	// Create exit channel
	exitChan := make(chan struct{})
	doneChan := make(chan struct{}) // new: signals graceful exit

	// Start server message listener
	startServerListener(conn, rl, exitChan, doneChan)

	// Run main command loop
	runCommandLoop(conn, rl, exitChan, doneChan)
}
Initialised a repository 2025-02-06 14:42:06 +01:00			`package main`

			`import (`
			`"crypto/tls"`
			`"crypto/x509"`
			`"flag"`
			`"fmt"`
			`"log"`
Removed unnecessary "chan" and "select" blocks from listener.go and remove some other minor redundant pieces of code. 2025-04-01 20:28:14 +02:00			`"os"`
Initialised a repository 2025-02-06 14:42:06 +01:00
			`"github.com/chzyer/readline"`
			`)`

			`// Default server address`
			`var defaultServerAddr = "127.0.0.1:8080"`

+ You can now change context and directly interact with agents by typing "interact <agent id>" and sending commands directly. + But uou can still issue command without switching to agent's context, just by typing <agent id> <command> <args> + Some minor refinements, like output beautify and cleaning 2025-04-06 09:36:31 +02:00			`// Path to certificates`
Restrucuted folders 2025-07-11 14:06:11 +02:00			`var clientCertPath = "certificates/client.crt"`
			`var clientKeyPath = "certificates/client.key"`
			`var caCertPath = "certificates/ca.crt"`
Initialised a repository 2025-02-06 14:42:06 +01:00
Modularized operator code, so it does not look like a garbage 2025-04-06 10:39:09 +02:00			`// Configure readline interface`
			`func setupReadline() (*readline.Instance, error) {`
			`rlConfig := &readline.Config{`
			`Prompt: "\033[31mSigma >\033[0m ", // Colored prompt`
			`HistoryFile: "/tmp/operator_history.txt",`
			`AutoComplete: getCompleter(),`
			`InterruptPrompt: "^C",`
Initialised a repository 2025-02-06 14:42:06 +01:00			`DisableAutoSaveHistory: false,`
			`HistorySearchFold: true,`
Modularized operator code, so it does not look like a garbage 2025-04-06 10:39:09 +02:00			`UniqueEditLine: true,`
Initialised a repository 2025-02-06 14:42:06 +01:00			`}`

			`rl, err := readline.NewEx(rlConfig)`
			`if err != nil {`
Modularized operator code, so it does not look like a garbage 2025-04-06 10:39:09 +02:00			`return nil, fmt.Errorf("error initializing readline: %v", err)`
Initialised a repository 2025-02-06 14:42:06 +01:00			`}`

			`rl.SetVimMode(false)`
Modularized operator code, so it does not look like a garbage 2025-04-06 10:39:09 +02:00			`return rl, nil`
			`}`
Initialised a repository 2025-02-06 14:42:06 +01:00
Enchanced operator prompt to better display output and history 2025-08-03 18:57:10 +02:00			`// Prepares the TLS configuration for secure connection`
			`func setupTLSConfig() (*tls.Config, error) {`
			`// Load CA certificate`
			`caCert, err := os.ReadFile(caCertPath)`
			`if err != nil {`
			`return nil, fmt.Errorf("failed to read CA certificate: %v", err)`
			`}`

			`caCertPool := x509.NewCertPool()`
			`if !caCertPool.AppendCertsFromPEM(caCert) {`
			`return nil, fmt.Errorf("failed to append CA certificate to pool")`
			`}`

			`// Load client certificate and key`
			`clientCert, err := tls.LoadX509KeyPair(clientCertPath, clientKeyPath)`
			`if err != nil {`
			`return nil, fmt.Errorf("failed to load client certificate and key: %v", err)`
			`}`

			`// Configure TLS`
			`return &tls.Config{`
			`Certificates: []tls.Certificate{clientCert},`
			`RootCAs: caCertPool,`
			`InsecureSkipVerify: false, // Ensure server's certificate is validated`
			`}, nil`
			`}`

			`// Establishes a secure connection to the server`
			`func connectToServer(serverAddr string, tlsConfig tls.Config) (tls.Conn, error) {`
			`conn, err := tls.Dial("tcp", serverAddr, tlsConfig)`
			`if err != nil {`
			`return nil, fmt.Errorf("error connecting to server: %v", err)`
			`}`

			`fmt.Println("Connected to server")`
			`return conn, nil`
			`}`

			`// Pretty simple authentication of user with the server`
			`func authenticateUser(conn *tls.Conn, userID, password string) error {`
			`fmt.Println("Starting authentication")`

			`// Send authentication message`
			`authMessage := fmt.Sprintf("AUTH:%s:%s", userID, password)`
			`_, err := conn.Write([]byte(authMessage))`
			`if err != nil {`
			`return fmt.Errorf("error sending credentials: %v", err)`
			`}`

			`// Receive server response`
			`buffer := make([]byte, 4096)`
			`n, err := conn.Read(buffer)`
			`if err != nil {`
			`return fmt.Errorf("error reading from server: %v", err)`
			`}`

			`response := string(buffer[:n])`
			`if response == "AUTH_OK" {`
			`fmt.Println("Auth successful. You can now issue commands.")`
			`return nil`
			`}`

			`return fmt.Errorf("authentication failed")`
			`}`

Modularized operator code, so it does not look like a garbage 2025-04-06 10:39:09 +02:00			`func main() {`
			`// Define flags for username, password and address of server`
			`operatorPassword := flag.String("p", "", "Password")`
			`operatorID := flag.String("u", "", "Username")`
			`serverAddr := flag.String("ip", defaultServerAddr, "IP and port of server")`
			`flag.Parse()`
+ You can now change context and directly interact with agents by typing "interact <agent id>" and sending commands directly. + But uou can still issue command without switching to agent's context, just by typing <agent id> <command> <args> + Some minor refinements, like output beautify and cleaning 2025-04-06 09:36:31 +02:00
Modularized operator code, so it does not look like a garbage 2025-04-06 10:39:09 +02:00			`// Check if password and username are provided`
			`if operatorPassword == "" \|\| operatorID == "" {`
			`fmt.Println("Usage: client.exe -u <username> -p <password> -ip <ip:port>")`
			`return`
			`}`
			`fmt.Println("Client's username and password provided")`
+ You can now change context and directly interact with agents by typing "interact <agent id>" and sending commands directly. + But uou can still issue command without switching to agent's context, just by typing <agent id> <command> <args> + Some minor refinements, like output beautify and cleaning 2025-04-06 09:36:31 +02:00
Modularized operator code, so it does not look like a garbage 2025-04-06 10:39:09 +02:00			`// Setup TLS`
			`tlsConfig, err := setupTLSConfig()`
			`if err != nil {`
			`log.Fatalf("TLS setup failed: %v", err)`
			`}`
Initialised a repository 2025-02-06 14:42:06 +01:00
Modularized operator code, so it does not look like a garbage 2025-04-06 10:39:09 +02:00			`// Connect to server`
			`conn, err := connectToServer(*serverAddr, tlsConfig)`
			`if err != nil {`
			`log.Fatalf("Server connection failed: %v", err)`
Initialised a repository 2025-02-06 14:42:06 +01:00			`}`
Modularized operator code, so it does not look like a garbage 2025-04-06 10:39:09 +02:00			`defer conn.Close()`
+ You can now change context and directly interact with agents by typing "interact <agent id>" and sending commands directly. + But uou can still issue command without switching to agent's context, just by typing <agent id> <command> <args> + Some minor refinements, like output beautify and cleaning 2025-04-06 09:36:31 +02:00
Modularized operator code, so it does not look like a garbage 2025-04-06 10:39:09 +02:00			`// Authenticate`
			`err = authenticateUser(conn, operatorID, operatorPassword)`
			`if err != nil {`
			`log.Fatalf("Authentication failed: %v", err)`
+ You can now change context and directly interact with agents by typing "interact <agent id>" and sending commands directly. + But uou can still issue command without switching to agent's context, just by typing <agent id> <command> <args> + Some minor refinements, like output beautify and cleaning 2025-04-06 09:36:31 +02:00			`}`

Modularized operator code, so it does not look like a garbage 2025-04-06 10:39:09 +02:00			`// Setup readline`
			`rl, err := setupReadline()`
			`if err != nil {`
			`log.Fatalf("Readline setup failed: %v", err)`
+ You can now change context and directly interact with agents by typing "interact <agent id>" and sending commands directly. + But uou can still issue command without switching to agent's context, just by typing <agent id> <command> <args> + Some minor refinements, like output beautify and cleaning 2025-04-06 09:36:31 +02:00			`}`
Modularized operator code, so it does not look like a garbage 2025-04-06 10:39:09 +02:00			`defer rl.Close()`

			`// Create exit channel`
			`exitChan := make(chan struct{})`
Restructured operator's terminal code and added channel to gracefully close terminal on "exit\|quit" command and Ctrl+C 2025-08-03 20:11:41 +02:00			`doneChan := make(chan struct{}) // new: signals graceful exit`
Modularized operator code, so it does not look like a garbage 2025-04-06 10:39:09 +02:00
			`// Start server message listener`
Restructured operator's terminal code and added channel to gracefully close terminal on "exit\|quit" command and Ctrl+C 2025-08-03 20:11:41 +02:00			`startServerListener(conn, rl, exitChan, doneChan)`
Modularized operator code, so it does not look like a garbage 2025-04-06 10:39:09 +02:00
			`// Run main command loop`
Restructured operator's terminal code and added channel to gracefully close terminal on "exit\|quit" command and Ctrl+C 2025-08-03 20:11:41 +02:00			`runCommandLoop(conn, rl, exitChan, doneChan)`
+ You can now change context and directly interact with agents by typing "interact <agent id>" and sending commands directly. + But uou can still issue command without switching to agent's context, just by typing <agent id> <command> <args> + Some minor refinements, like output beautify and cleaning 2025-04-06 09:36:31 +02:00			`}`