Fixed detection (#61)

Author: andro2157

DiscordTokenProtector/Crypto/Crypto.cpp

@@ -199,7 +199,7 @@ namespace Crypto {
 		return retries;
 	}
 
-	int Yubi::authentificate(const secure_string& pin) {
+	int Yubi::authenticate(const secure_string& pin) {
 		int tries = 0;
 		m_err = ykpiv_verify(m_state, pin.c_str(), &tries);
 		if (m_err == YKPIV_OK || m_err == YKPIV_WRONG_PIN)

DiscordTokenProtector/Crypto/Crypto.h

@@ -58,7 +58,7 @@ namespace Crypto {
 		int getRetryCount();
 
 		//Returns -1 if authentificated, else it returns the amount of retries
-		int authentificate(const secure_string& pin);
+		int authenticate(const secure_string& pin);
 		//in.size() == 256
 		secure_string signData(const CryptoPP::SecByteBlock& in);
 

DiscordTokenProtector/Discord.cpp

@@ -486,6 +486,32 @@ DiscordUserInfo Discord::getUserInfo(const secure_string& token) {
 	};
 }
 
+std::vector<secure_string> Discord::extractTokens(const secure_string& data) {
+	constexpr auto MAX_TOKEN_SIZE = 200;
+
+	static const std::vector<std::regex> tokenRegex = {
+		//std::regex(R"([\w-]{24}\.[\w-]{6}\.[\w-]{27,})"),
+		std::regex(R"([\w-]{24,30}\.[\w-]{6}\.[\w-]{27,100})"),
+		std::regex(R"(mfa\.[\w-]{84})")
+	};
+
+	std::vector<secure_string> results;
+
+	for (const auto& reg : tokenRegex) {
+		std::smatch matches;
+		secure_string data_copy(data);
+
+		while (std::regex_search(data_copy, matches, reg)) {
+			if (matches.length(0) <= MAX_TOKEN_SIZE) {
+				results.push_back(secure_string(matches.str()));
+			}
+			data_copy = secure_string(matches.suffix().str());//Unsafe maybe ?
+		}
+	}
+
+	return results;
+}
+
 secure_string Discord::getMemoryToken(bool verify) {
 	DWORD discordPid = getDiscordPID(DiscordType::Discord);
 	if (discordPid == 0) {
@@ -547,36 +573,25 @@ secure_string Discord::getMemoryToken(bool verify) {
 					else if (currentString.size() < MIN_TOKEN_SIZE)
 						currentString.clear();
 					else {
-						static const std::vector<std::regex> tokenRegex = {
-							std::regex(R"([\w-]{24}\.[\w-]{6}\.[\w-]{27,})"),
-							std::regex(R"(mfa\.[\w-]{84})")
-						};
-
-						for (const auto& reg : tokenRegex) {
-							auto possize = getRegPosSize(currentString, reg);
-
-							for (const auto& [pos, size] : possize) {
-								secure_string match = currentString.substr(pos, size);
-
-								if (results.find(match) == results.end()) {//A new token! let's add it to the list
-									if (std::find(invalids.begin(), invalids.end(), match) == invalids.end()) {//If not invalid
-										if (verify) {
-											try {
-												auto userinfo = getUserInfo(match);
-												results.insert({ match, 1 });
-											}
-											catch (invalid_token_exception& e) {
-												invalids.push_back(match);
-											}
-											//Every other exceptions won't be catched!
-										}
-										else
+						for (const auto& match : extractTokens(currentString)) {
+							if (results.find(match) == results.end()) {//A new token! let's add it to the list
+								if (std::find(invalids.begin(), invalids.end(), match) == invalids.end()) {//If not invalid
+									if (verify) {
+										try {
+											auto userinfo = getUserInfo(match);
 											results.insert({ match, 1 });
+										}
+										catch (invalid_token_exception& e) {
+											invalids.push_back(match);
+										}
+										//Every other exceptions won't be catched!
 									}
+									else
+										results.insert({ match, 1 });
 								}
-								else {//Already known!
-									results[match] += 1;
-								}
+							}
+							else {//Already known!
+								results[match] += 1;
 							}
 						}
 

DiscordTokenProtector/Discord.h

@@ -43,6 +43,8 @@ class Discord {
 	static bool AcceptHandoff(const std::string& port, const std::string& key, const secure_string& token);
 	static DiscordUserInfo getUserInfo(const secure_string& token);
 
+	static std::vector<secure_string> extractTokens(const secure_string& data);
+
 	secure_string getMemoryToken(bool verify);
 
 	[[deprecated("Patched by Discord : Use memory reading one instead")]]

DiscordTokenProtector/DiscordTokenProtector.rc

@@ -64,7 +64,7 @@ MAINICON                ICON                    "512x icon.ico"
 
 VS_VERSION_INFO VERSIONINFO
  FILEVERSION 1,0,0,0
- PRODUCTVERSION 0,0,0,10
+ PRODUCTVERSION 0,0,0,11
  FILEFLAGSMASK 0x3fL
 #ifdef _DEBUG
  FILEFLAGS 0x1L
@@ -86,7 +86,7 @@ BEGIN
             VALUE "LegalCopyright", "Copyright (C) 2021"
             VALUE "OriginalFilename", "DiscordTokenProtector.exe"
             VALUE "ProductName", "Discord Token Protector"
-            VALUE "ProductVersion", "0.0.0.10"
+            VALUE "ProductVersion", "0.0.0.11"
         END
     END
     BLOCK "VarFileInfo"

DiscordTokenProtector/Includes.h

@@ -28,7 +28,7 @@ __forceinline void FATALERROR_STR(std::string str) {
 	FATALERROR(str.c_str());
 }
 
-#define VER "dev-10"
+#define VER "dev-11"
 
 #pragma comment(lib, "OpenGL32.lib")
 #pragma comment(lib, "crypt32.lib")

DiscordTokenProtector/Menu/Menu.cpp

@@ -38,6 +38,9 @@ namespace Menu {
 
 	bool running = true;
 
+	//TODO make a proper thing
+	static bool addingAccount = false;
+
 	EasyAsync stopAsync([]() {
 		g_context.stopProtection();
 	});
@@ -365,7 +368,7 @@ namespace Menu {
 #ifdef YUBIKEYSUPPORT
 			if (g_context.encryptionType_cache == EncryptionType::Yubi) {
 				try {
-					ykRetries = yk->authentificate(pin);
+					ykRetries = yk->authenticate(pin);
 					if (ykRetries != -1) {
 						MessageBoxA(NULL, "Invalid PIN", "Discord Token Protector", MB_ICONWARNING | MB_OK);
 						return;
@@ -535,13 +538,36 @@ namespace Menu {
 				return tokenDetectionFuture.wait_for(std::chrono::milliseconds(1)) == std::future_status::ready;
 			};
 
+			//TODO proper ui ?
+			auto tryToGetTokenInClip = []() {
+				if (ImGui::GetIO().KeyCtrl && ImGui::IsKeyPressed(ImGui::GetKeyIndex(ImGuiKey_V))) {
+					secure_string clipboard = ImGui::GetClipboardText();
+					auto tokens = Discord::extractTokens(clipboard);
+					if (!tokens.empty()) {
+						try {
+							userInfo = Discord::getUserInfo(tokens[0]);
+							detectedToken = tokens[0];
+							g_context.state = State::DiscoveredToken;
+							return true;
+						}
+						catch (...) {
+
+						}
+					}
+				}
+				return false;
+			};
+
 			if (updateTimer.getElapsed<std::chrono::milliseconds>() > 1000) {
 				if (step == 0) {
 					if (g_discord->isDiscordRunning() != DiscordType::None) {
 						step = 1;
 						//g_context.initTokenState();
 						startDetection();
 					}
+					else {
+						tryToGetTokenInClip();
+					}
 				}
 				else {
 					if (detectionReady()) {
@@ -555,12 +581,13 @@ namespace Menu {
 						}
 						catch (discord_not_running_exception& e) {
 							error = "Please run Discord";
+							step = 0;
 						}
 						catch (no_token_exception& e) {
 							error = "Unable to find token in memory";
 						}
 
-						if (!error.empty()) {
+						if (!error.empty() && !tryToGetTokenInClip()) {
 							startDetection();
 							step++;
 						}
@@ -585,6 +612,9 @@ namespace Menu {
 
 			if (step > 15)
 				ImGui::TextWrapped("If the detection doesn\'t work, please make a ticket on GitHub.");
+
+			ImGui::NewLine();
+			ImGui::TextColored(Colors::GrayPurple, "(Tip : hold CTRL+V with your token in the clipboard to add it)");
 		}
 		else if (g_context.state == State::DiscoveredToken) {
 			ImGui::TextWrapped("We found this account:");
@@ -679,9 +709,9 @@ namespace Menu {
 						if (ImGui::Button("Refresh"))
 							ykDetectAsync.start();
 
-						ImGui::TextWrapped("Please make sure you have a certificate in the card authentification slot!");
+						ImGui::TextWrapped("Please make sure you have a certificate in the card authentication slot!");
 						ImGui::SameLine();
-						ImGui::TextTooltip("(?)", "Using the YubiKey Manager app, you can generate a card authentification certificate. "
+						ImGui::TextTooltip("(?)", "Using the YubiKey Manager app, you can generate a card authentication certificate. "
 							"A random message signed with this certificate is going to be used as the encryption key. "
 							"A guide can be found on the Github repo.");
 
@@ -739,7 +769,7 @@ namespace Menu {
 					else if (selectedEncryptionMode == 3) {
 						g_context.kd.type = EncryptionType::Yubi;
 						try {
-							ykRetries = yk->authentificate(pin);
+							ykRetries = yk->authenticate(pin);
 							if (ykRetries != -1) {
 								MessageBoxA(NULL, "Invalid PIN", "Discord Token Protector", MB_ICONWARNING | MB_OK);
 								return;
@@ -770,7 +800,7 @@ namespace Menu {
 				}
 
 				g_tokenManager.firstSetup(detectedToken, userInfo);
-				detectedToken.clear();
+				secure_string().swap(detectedToken);
 
 				//Clean the local storage and session storage
 				g_context.remover_canary_LocalStorage.Remove();
@@ -835,24 +865,30 @@ namespace Menu {
 	void MainMenu() {
 		ImGui::Indent(4.f);
 
-		if (ImGui::BeginTabBar("##Tabs")) {
-			if (ImGui::BeginTabItem("Home")) {
-				HomeTab();
-				ImGui::EndTabItem();
-			}
-			if (ImGui::BeginTabItem("Accounts")) {
-				AccountTab();
-				ImGui::EndTabItem();
-			}
-			if (ImGui::BeginTabItem("Settings")) {
-				SettingsTab();
-				ImGui::EndTabItem();
-			}
-			if (ImGui::BeginTabItem("About")) {
-				AboutTab();
-				ImGui::EndTabItem();
+		//TODO proper thing ?
+		if (addingAccount) {
+			AccountTab();
+		}
+		else {
+			if (ImGui::BeginTabBar("##Tabs")) {
+				if (ImGui::BeginTabItem("Home")) {
+					HomeTab();
+					ImGui::EndTabItem();
+				}
+				if (ImGui::BeginTabItem("Accounts")) {
+					AccountTab();
+					ImGui::EndTabItem();
+				}
+				if (ImGui::BeginTabItem("Settings")) {
+					SettingsTab();
+					ImGui::EndTabItem();
+				}
+				if (ImGui::BeginTabItem("About")) {
+					AboutTab();
+					ImGui::EndTabItem();
+				}
+				ImGui::EndTabBar();
 			}
-			ImGui::EndTabBar();
 		}
 
 		ImGui::Unindent();
@@ -964,7 +1000,6 @@ namespace Menu {
 
 	void AccountTab() {
 		if (ImGui::BeginChild("AccountTab")) {
-			static bool addingAccount = false;
 			if (addingAccount) {
 				//TODO combine with setup code
 				static secure_string detectedToken;
@@ -1003,6 +1038,26 @@ namespace Menu {
 					addingAccount = false;
 				};
 
+				//TODO proper ui ?
+				auto tryToGetTokenInClip = [&reset]() {
+					if (ImGui::GetIO().KeyCtrl && ImGui::IsKeyPressed(ImGui::GetKeyIndex(ImGuiKey_V))) {
+						secure_string clipboard = ImGui::GetClipboardText();
+						auto tokens = Discord::extractTokens(clipboard);
+						if (!tokens.empty()) {
+							try {
+								g_tokenManager.addToken(tokens[0], Discord::getUserInfo(tokens[0]));
+								Discord::killDiscord();
+								reset();
+								return true;
+							}
+							catch (...) {
+
+							}
+						}
+					}
+					return false;
+				};
+
 				if (killDiscordAsync.isRunning()) {
 					ImGui::Text("Closing Discord...");
 					ImGui::NewLine();
@@ -1018,6 +1073,9 @@ namespace Menu {
 								step = 1;
 								startDetection();
 							}
+							else {
+								tryToGetTokenInClip();
+							}
 						}
 						else {
 							if (detectionReady()) {
@@ -1034,12 +1092,13 @@ namespace Menu {
 								}
 								catch (discord_not_running_exception& e) {
 									error = "Please run Discord";
+									step = 0;
 								}
 								catch (no_token_exception& e) {
 									error = "Unable to find token in memory";
 								}
 
-								if (!error.empty()) {
+								if (!error.empty() && !tryToGetTokenInClip()) {
 									startDetection();
 									step++;
 								}
@@ -1067,6 +1126,9 @@ namespace Menu {
 
 					if (step > 15)
 						ImGui::TextWrapped("If the detection doesn\'t work, please make a ticket on GitHub.");
+
+					ImGui::NewLine();
+					ImGui::TextColored(Colors::GrayPurple, "(Tip : hold CTRL+V with your token in the clipboard to add it)");
 				}
 			}
 			else {
@@ -1360,9 +1422,9 @@ namespace Menu {
 							if (ImGui::Button("Refresh"))
 								ykDetectAsync.start();
 
-							ImGui::TextWrapped("Please make sure you have a certificate in the card authentification slot!");
+							ImGui::TextWrapped("Please make sure you have a certificate in the card authentication slot!");
 							ImGui::SameLine();
-							ImGui::TextTooltip("(?)", "Using the YubiKey Manager app, you can generate a card authentification certificate. "
+							ImGui::TextTooltip("(?)", "Using the YubiKey Manager app, you can generate a card authentication certificate. "
 								"A random message signed with this certificate is going to be used as the encryption key. "
 								"A guide can be found on the Github repo.");
 
@@ -1422,7 +1484,7 @@ namespace Menu {
 						else if (selectedEncryptionMode == 3) {
 							newKeydata.type = EncryptionType::Yubi;
 							try {
-								ykRetries = yk->authentificate(pin);
+								ykRetries = yk->authenticate(pin);
 								if (ykRetries != -1) {
 									MessageBoxA(NULL, "Invalid PIN", "Discord Token Protector", MB_ICONWARNING | MB_OK);
 									return;

DiscordTokenProtector/Storage/TokenManager.cpp

@@ -94,7 +94,7 @@ bool TokenManager::migrateOldToken() {
 	return true;
 }
 
-size_t TokenManager::addToken(const secure_string token, const DiscordUserInfo info) {
+void TokenManager::addToken(const secure_string token, const DiscordUserInfo info) {
 	m_mutex.lock();
 
 	secure_string encrypted_token = CryptoUtils::KD_encrypt(token, g_context.kd);