Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Parse BMC cache #1302

Open
MariasStory opened this issue Sep 1, 2022 · 3 comments
Open

Parse BMC cache #1302

MariasStory opened this issue Sep 1, 2022 · 3 comments
Labels
new feature

Comments

@MariasStory
Copy link

MariasStory commented Sep 1, 2022
edited
Loading

Hi team,
Thanks again for the very cool tool it is.
Please implement a BMC cache paser for remote desktop cache.
The tool I am using:
https://github.com/ANSSI-FR/bmc-tools
The images are little squares from the remote desktop sessions. They can be reconstructed and give a valuable inside in the RDP related attacks.
@lfcnassif
Copy link
Member

This could be very useful, thanks for pointing. I don't know French, but the license summary of above tool seems not compatible with ours:

Strong copyleft license made by three French public research organisations, CEA, CNRS, and Inria, compatible with AGPL-3.0, EUPL-1.1, and GPL-2.0, or later versions of those licenses.

But, integrating it as a plugin module loaded at runtime may possible...

@patrickdalla
Copy link
Collaborator

This seems very simple as the cache has only the tiles images to be extracted. I implemented a parser that works for BIN file in RDPTilesCache branch.

@lfcnassif
Copy link
Member

Thank you @patrickdalla! But I would like you to help me finish works already started. Could you help the progress on #1341?

PS: Today I'm giving lectures all day.

# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
new feature
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@MariasStory @lfcnassif @patrickdalla