Created
March 29, 2015 19:44
-
-
Save phikshun/16e376db8b23711b344e to your computer and use it in GitHub Desktop.
Fortinet FSSO DCAgent Protocol Peach Pit
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?xml version="1.0" encoding="utf-8"?> | |
| <Peach xmlns="http://peachfuzzer.com/2012/Peach" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://peachfuzzer.com/2012/Peach ../peach.xsd"> | |
| <DataModel name="DataTSAgent"> | |
| <Number name="Length" size="16" endian="big"> | |
| <Relation type="size" of="Main" expressionSet="size+2" /> | |
| </Number> | |
| <Block name="Main"> | |
| <Number name="Timestamp" size="32" valueType="string" value="1420054000" signed="false" endian="big"> | |
| <Fixup class="SequenceIncrementFixup" /> | |
| </Number> | |
| <Number size="32" signed="false" endian="big" valueType="string" value="3232296754" token="true" /> | |
| <Number name="RecordSize" size="16" signed="false" endian="big"> | |
| <Relation type="size" of="LoginRecord" /> | |
| </Number> | |
| <Block name="LoginRecord"> | |
| <String name="IPAddress" value="172.16.8.10" /> | |
| <String value="/" token="true" /> | |
| <String name="Domain" value="." /> | |
| <String value="/" token="true" /> | |
| <String name="Username" value="Guest" /> | |
| </Block> | |
| <Blob name="NullBytes" length="13" value="00 00 00 00 00 00 00 00 00 00 00 00 00" valueType="hex" /> | |
| <Number name="Unknown1" valueType="hex" value="00 00 00 02" size="32" endian="big" /> | |
| <Number name="Unknown2" valueType="hex" value="80 00" size="16" endian="big" /> | |
| <Number name="Unknown3" valueType="hex" value="00 14" size="16" endian="big" /> | |
| <Number name="Unknown4" valueType="hex" value="00 00 00 01" size="32" endian="big" /> | |
| <Number name="Unknown5" valueType="hex" value="00 00 00 01" size="32" endian="big" /> | |
| <Blob name="Trailer" length="4" value="13 89 14 50" valueType="hex" /> | |
| </Block> | |
| </DataModel> | |
| <Import import="time" /> | |
| <StateModel name="StateTSAgent" initialState="Initial"> | |
| <State name="Initial"> | |
| <Action type="output" onComplete="time.sleep(2)"> | |
| <DataModel ref="DataTSAgent"/> | |
| </Action> | |
| </State> | |
| </StateModel> | |
| <Agent name="Local"> | |
| <Monitor class="WindowsDebugger"> | |
| <Param name="Service" value="Fortinet_FSAE" /> | |
| <Param name="WinDbgPath" value="C:\SDK\Debuggers\x64" /> | |
| </Monitor> | |
| </Agent> | |
| <Test name="TestTSAgent"> | |
| <Agent ref="Local" /> | |
| <StateModel ref="StateTSAgent" /> | |
| <Publisher class="Udp"> | |
| <Param name="Host" value="172.16.28.135" /> | |
| <Param name="Port" value="8002" /> | |
| </Publisher> | |
| <Logger class="File"> | |
| <Param name="Path" value="Logs" /> | |
| </Logger> | |
| </Test> | |
| </Peach> |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment