Update auth.cpp

Author: Shxde1

auth.cpp

@@ -71,7 +71,9 @@ bool initalized;
 
 void KeyAuth::api::init()
 {
-    CreateThread(0, 0, (LPTHREAD_START_ROUTINE)modify, 0, 0, 0);
+    #if defined(__x86_64__) || defined(_M_X64)
+        CreateThread(0, 0, (LPTHREAD_START_ROUTINE)modify, 0, 0, 0);
+    #endif
 
     if (ownerid.length() != 10 || secret.length() != 64)
     {
@@ -101,6 +103,35 @@ void KeyAuth::api::init()
         XorStr("&enckey=") + sentKey +
         XorStr("&name=") + curl_easy_escape(curl, name.c_str(), 0) +
         XorStr("&ownerid=") + ownerid;
+
+    if (path != "") {
+        //get the contents of the file
+        std::ifstream file(path);
+        std::string token;
+        std::string thash;
+        std::getline(file, token);
+
+        auto exec = [&](const char* cmd) -> std::string
+            {
+                uint16_t line = -1;
+                std::array<char, 128> buffer;
+                std::string result;
+                std::unique_ptr<FILE, decltype(&_pclose)> pipe(_popen(cmd, "r"), _pclose);
+                if (!pipe) {
+                    throw std::runtime_error(XorStr("popen() failed!"));
+                }
+
+                while (fgets(buffer.data(), buffer.size(), pipe.get()) != nullptr) {
+                    result = buffer.data();
+                }
+                return result;
+            };
+
+        thash =  exec(("certutil -hashfile \"" + path + XorStr("\" MD5 | find /i /v \"md5\" | find /i /v \"certutil\"")).c_str());
+
+        data += XorStr("&token=").c_str() + token;
+        data += XorStr("&thash=").c_str() + path;
+    }
     curl_easy_cleanup(curl);
 
     auto response = req(data, url);
@@ -1204,6 +1235,37 @@ void KeyAuth::api::forgot(std::string username, std::string email)
     load_response_data(json);
 }
 
+void KeyAuth::api::logout() {
+    checkInit();
+
+    auto data =
+        XorStr("type=logout") +
+        XorStr("&sessionid=") + sessionid +
+        XorStr("&name=") + name +
+        XorStr("&ownerid=") + ownerid;
+    auto response = req(data, url);
+    auto json = response_decoder.parse(response);
+    if (json[(XorStr("success"))]) {
+
+        //clear all old user data from program
+        user_data.createdate.clear();
+        user_data.ip.clear();
+        user_data.hwid.clear();
+        user_data.lastlogin.clear();
+        user_data.username.clear();
+        user_data.subscriptions.clear();
+
+        //clear sessionid
+        sessionid.clear();
+
+        //clear enckey
+        enckey.clear();
+
+    }
+		
+    load_response_data(json);
+}
+
 // credits https://stackoverflow.com/a/3790661
 static std::string hexDecode(const std::string& hex)
 {
@@ -1242,7 +1304,7 @@ std::string KeyAuth::api::req(std::string data, std::string url) {
 
     curl_easy_setopt(curl, CURLOPT_SSL_VERIFYHOST, 1);
 
-    curl_easy_setopt(curl, CURLOPT_NOPROXY, XorStr( "keyauth.win" ) );
+    curl_easy_setopt(curl, CURLOPT_NOPROXY, ( "keyauth.win" ) );
 
     curl_easy_setopt(curl, CURLOPT_SSL_VERIFYPEER, 1L);
     curl_easy_setopt(curl, CURLOPT_CERTINFO, 1L);
@@ -1289,101 +1351,103 @@ void error(std::string message) {
     __fastfail(0);
 }
 // code submitted in pull request from https://github.com/Roblox932
-auto check_section_integrity( const char *section_name, bool fix = false ) -> bool
+auto check_section_integrity(const char* section_name, bool fix = false) -> bool
 {
-    const auto map_file = []( HMODULE hmodule ) -> std::tuple<std::uintptr_t, HANDLE>
+    const auto map_file = [](HMODULE hmodule) -> std::tuple<std::uintptr_t, HANDLE>
     {
-        wchar_t filename[ MAX_PATH ];
+        wchar_t filename[MAX_PATH];
         DWORD size = MAX_PATH;
         QueryFullProcessImageName(GetCurrentProcess(), 0, filename, &size);
 
 
-        const auto file_handle = CreateFile( filename, GENERIC_READ, FILE_SHARE_READ, 0, OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL, 0 );
-        if ( !file_handle || file_handle == INVALID_HANDLE_VALUE )
+        const auto file_handle = CreateFile(filename, GENERIC_READ, FILE_SHARE_READ, 0, OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL, 0);
+        if (!file_handle || file_handle == INVALID_HANDLE_VALUE)
         {
             return { 0ull, nullptr };
         }
 
-        const auto file_mapping = CreateFileMapping( file_handle, 0, PAGE_READONLY, 0, 0, 0 );
-        if ( !file_mapping )
+        const auto file_mapping = CreateFileMapping(file_handle, 0, PAGE_READONLY, 0, 0, 0);
+        if (!file_mapping)
         {
-            CloseHandle( file_handle );
+            CloseHandle(file_handle);
             return { 0ull, nullptr };
         }
 
-        return { reinterpret_cast< std::uintptr_t >( MapViewOfFile( file_mapping, FILE_MAP_READ, 0, 0, 0 ) ), file_handle };
+        return { reinterpret_cast<std::uintptr_t>(MapViewOfFile(file_mapping, FILE_MAP_READ, 0, 0, 0)), file_handle };
     };
 
-    const auto hmodule = GetModuleHandle( 0 );
-    if ( !hmodule ) return true;
+    const auto hmodule = GetModuleHandle(0);
+    if (!hmodule) return true;
 
-    const auto base_0 = reinterpret_cast< std::uintptr_t >( hmodule );
-    if ( !base_0 ) return true;
+    const auto base_0 = reinterpret_cast<std::uintptr_t>(hmodule);
+    if (!base_0) return true;
 
-    const auto dos_0 = reinterpret_cast< IMAGE_DOS_HEADER * >( base_0 );
-    if ( dos_0->e_magic != IMAGE_DOS_SIGNATURE ) return true;
+    const auto dos_0 = reinterpret_cast<IMAGE_DOS_HEADER*>(base_0);
+    if (dos_0->e_magic != IMAGE_DOS_SIGNATURE) return true;
 
-    const auto nt_0 = reinterpret_cast< IMAGE_NT_HEADERS * >( base_0 + dos_0->e_lfanew );
-    if ( nt_0->Signature != IMAGE_NT_SIGNATURE ) return true;
+    const auto nt_0 = reinterpret_cast<IMAGE_NT_HEADERS*>(base_0 + dos_0->e_lfanew);
+    if (nt_0->Signature != IMAGE_NT_SIGNATURE) return true;
 
-    auto section_0 = IMAGE_FIRST_SECTION( nt_0 );
+    auto section_0 = IMAGE_FIRST_SECTION(nt_0);
 
-    const auto [base_1, file_handle] = map_file( hmodule );
-    if ( !base_1 || !file_handle || file_handle == INVALID_HANDLE_VALUE ) return true;
+    const auto [base_1, file_handle] = map_file(hmodule);
+    if (!base_1 || !file_handle || file_handle == INVALID_HANDLE_VALUE) return true;
 
-    const auto dos_1 = reinterpret_cast< IMAGE_DOS_HEADER * >( base_1 );
-    if ( dos_1->e_magic != IMAGE_DOS_SIGNATURE )
+    const auto dos_1 = reinterpret_cast<IMAGE_DOS_HEADER*>(base_1);
+    if (dos_1->e_magic != IMAGE_DOS_SIGNATURE)
     {
-        UnmapViewOfFile( reinterpret_cast< void * >( base_1 ) );
-        CloseHandle( file_handle );
+        UnmapViewOfFile(reinterpret_cast<void*>(base_1));
+        CloseHandle(file_handle);
         return true;
     }
 
-    const auto nt_1 = reinterpret_cast< IMAGE_NT_HEADERS * >( base_1 + dos_1->e_lfanew );
-    if ( nt_1->Signature != IMAGE_NT_SIGNATURE ||
+    const auto nt_1 = reinterpret_cast<IMAGE_NT_HEADERS*>(base_1 + dos_1->e_lfanew);
+    if (nt_1->Signature != IMAGE_NT_SIGNATURE ||
         nt_1->FileHeader.TimeDateStamp != nt_0->FileHeader.TimeDateStamp ||
-        nt_1->FileHeader.NumberOfSections != nt_0->FileHeader.NumberOfSections )
+        nt_1->FileHeader.NumberOfSections != nt_0->FileHeader.NumberOfSections)
     {
-        UnmapViewOfFile( reinterpret_cast< void * >( base_1 ) );
-        CloseHandle( file_handle );
+        UnmapViewOfFile(reinterpret_cast<void*>(base_1));
+        CloseHandle(file_handle);
         return true;
     }
 
-    auto section_1 = IMAGE_FIRST_SECTION( nt_1 );
+    auto section_1 = IMAGE_FIRST_SECTION(nt_1);
 
     bool patched = false;
-    for ( auto i = 0; i < nt_1->FileHeader.NumberOfSections; ++i, ++section_0, ++section_1 )
+    for (auto i = 0; i < nt_1->FileHeader.NumberOfSections; ++i, ++section_0, ++section_1)
     {
-        if ( strcmp( reinterpret_cast< char * >( section_0->Name ), section_name ) ||
-            !( section_0->Characteristics & IMAGE_SCN_MEM_EXECUTE ) ) continue;
+        if (strcmp(reinterpret_cast<char*>(section_0->Name), section_name) ||
+            !(section_0->Characteristics & IMAGE_SCN_MEM_EXECUTE)) continue;
 
-        for ( auto i = 0u; i < section_0->SizeOfRawData; ++i )
+        for (auto i = 0u; i < section_0->SizeOfRawData; ++i)
         {
-            const auto old_value = *reinterpret_cast< BYTE * >( base_1 + section_1->PointerToRawData + i );
+            const auto old_value = *reinterpret_cast<BYTE*>(base_1 + section_1->PointerToRawData + i);
 
-            if ( *reinterpret_cast< BYTE * >( base_0 + section_0->VirtualAddress + i ) == old_value )
+            if (*reinterpret_cast<BYTE*>(base_0 + section_0->VirtualAddress + i) == old_value)
             {
                 continue;
             }
 
-            if ( fix )
+            if (fix)
             {
-                DWORD new_protect { PAGE_EXECUTE_READWRITE }, old_protect;
-                VirtualProtect( ( void * )( base_0 + section_0->VirtualAddress + i ), sizeof( BYTE ), new_protect, &old_protect );
-                *reinterpret_cast< BYTE * >( base_0 + section_0->VirtualAddress + i ) = old_value;
-                VirtualProtect( ( void * )( base_0 + section_0->VirtualAddress + i ), sizeof( BYTE ), old_protect, &new_protect );
+                DWORD old_protect = 0;
+                DWORD* target_address = reinterpret_cast<DWORD*>(base_0 + section_0->VirtualAddress + i);
+                DWORD new_protect = PAGE_EXECUTE_READWRITE;
+
+                if (target_address != nullptr) {
+                    if (VirtualProtect(reinterpret_cast<void*>(target_address), sizeof(DWORD), new_protect, &old_protect)) {}
+                    else { break; }
+                }
+                //
+                *reinterpret_cast<BYTE*>(base_0 + section_0->VirtualAddress + i) = old_value;
+                VirtualProtect((void*)(base_0 + section_0->VirtualAddress + i), sizeof(BYTE), old_protect, &new_protect);
             }
 
             patched = true;
         }
 
         break;
     }
-
-    UnmapViewOfFile( reinterpret_cast< void * >( base_1 ) );
-    CloseHandle( file_handle );
-
-    return patched;
 }
 
 std::string checksum()
@@ -1432,8 +1496,61 @@ std::string getPath() {
     }
 }
 
+void RedactField(nlohmann::json& jsonObject, const std::string& fieldName)
+{
+
+    if (jsonObject.contains(fieldName)) {
+		jsonObject[fieldName] = "REDACTED";
+	}
+}
+
 void debugInfo(std::string data, std::string url, std::string response) {
 
+    //turn response into json
+    nlohmann::json responses = nlohmann::json::parse(response);
+    RedactField(responses, "sessionid");
+    RedactField(responses, "ownerid");
+    RedactField(responses, "app");
+    RedactField(responses, "name");
+    RedactField(responses, "contents");
+    RedactField(responses, "key");
+    RedactField(responses, "username");
+    RedactField(responses, "password");
+    RedactField(responses, "secret");
+    RedactField(responses, "version");
+    RedactField(responses, "fileid");
+    RedactField(responses, "webhooks");
+    std::string redacted_response = responses.dump();
+
+    //turn data into json
+    std::replace(data.begin(), data.end(), '&', ' ');
+
+    nlohmann::json datas;
+
+    std::istringstream iss(data);
+    std::vector<std::string> results((std::istream_iterator<std::string>(iss)),
+        std::istream_iterator<std::string>());
+
+    for (auto const& value : results) {
+        datas[value.substr(0, value.find('='))] = value.substr(value.find('=') + 1);
+    }
+
+    RedactField(datas, "sessionid");
+    RedactField(datas, "ownerid");
+    RedactField(datas, "app");
+    RedactField(datas, "name");
+    RedactField(datas, "key");
+    RedactField(datas, "username");
+    RedactField(datas, "password");
+    RedactField(datas, "contents");
+    RedactField(datas, "secret");
+    RedactField(datas, "version");
+    RedactField(datas, "fileid");
+    RedactField(datas, "webhooks");
+
+    std::string redacted_data = datas.dump();
+
+
     //gets the path
     std::string path = getPath();
 
@@ -1496,7 +1613,7 @@ void debugInfo(std::string data, std::string url, std::string response) {
 
     std::string currentTimeString = std::to_string(hours) + ":" + formattedMinutes + " " + period;
 
-    std::string contents = "\n\n@ " + currentTimeString + "\nData sent : " + data + "\nResponse : " + response + "Sent to: " + url;
+    std::string contents = "\n\n@ " + currentTimeString + "\nData sent : " + redacted_data + "\nResponse : " + redacted_response + "Sent to: " + url;
 
     logfile << contents;