BinaryObjectScanner.Protection/CactusDataShield.cs

using System.Collections.Generic;
using System.Linq;
using BinaryObjectScanner.Interfaces;
using BinaryObjectScanner.Matching;

namespace BinaryObjectScanner.Protection
{
    public class CactusDataShield : IContentCheck
    {
        /// <inheritdoc/>
        public string CheckContents(string file, byte[] fileContent, bool includeDebug)
        {
            // TODO: Limit these checks to Mac binaries
            // TODO: Obtain a sample to find where this string is in a typical executable
            if (includeDebug)
            {
                var contentMatchSets = new List<ContentMatchSet>
                {
                    // CDSPlayer
                    new ContentMatchSet(new byte?[] { 0x43, 0x44, 0x53, 0x50, 0x6C, 0x61, 0x79, 0x65, 0x72 }, "Cactus Data Shield 200"),

                    // yucca.cds
                    new ContentMatchSet(new byte?[] { 0x79, 0x75, 0x63, 0x63, 0x61, 0x2E, 0x63, 0x64, 0x73 }, "Cactus Data Shield 200"),
                };

                if (contentMatchSets != null && contentMatchSets.Any())
                    return MatchUtil.GetFirstMatch(file, fileContent, contentMatchSets, includeDebug);
            }

            return null;
        }
    }
}
-												Migrate CDS path checks

											
										
										
											2023-03-07 11:31:55 -05:00
+								using System.Collections.Generic;
-												Separate protections into their own classes

											
										
										
											2019-09-27 23:52:24 -07:00
+								using System.Linq;
-												Move most interfaces to separate library

											
										
										
											2023-03-09 11:52:28 -05:00
+								using BinaryObjectScanner.Interfaces;
-												BOS.* -> BOS.*

											
										
										
											2023-03-07 16:59:14 -05:00
+								using BinaryObjectScanner.Matching;
-												Separate protections into their own classes

											
										
										
											2019-09-27 23:52:24 -07:00
-												Move protection scans to their own library

This change also removes a couple of things from `BurnOutSharp.Tools.Utilities` that are no longer needed there. Linear executables are included in the scanning classes. Update the guides accordingly.

											
										
										
											2023-03-09 23:19:27 -05:00
+								namespace BinaryObjectScanner.Protection
-												Separate protections into their own classes

											
										
										
											2019-09-27 23:52:24 -07:00
+								{
-												Migrate CDS path checks

											
										
										
											2023-03-07 11:31:55 -05:00
+								    public class CactusDataShield : IContentCheck
-												Separate protections into their own classes

											
										
										
											2019-09-27 23:52:24 -07:00
+								    {
-												ContentMatchSets are now expected in IContentCheck

											
										
										
											2021-08-25 19:37:32 -07:00
+								        /// <inheritdoc/>
-												Better naming

											
										
										
											2022-05-01 17:17:15 -07:00
+								        public string CheckContents(string file, byte[] fileContent, bool includeDebug)
-												Migrate protections to new interfaces

											
										
										
											2022-03-14 11:20:11 -07:00
+								        {
 								            // TODO: Limit these checks to Mac binaries
 								            // TODO: Obtain a sample to find where this string is in a typical executable
 								            if (includeDebug)
 								            {
-												Simplify CDS code a bit

											
										
										
											2022-03-14 11:52:49 -07:00
+								                var contentMatchSets = new List<ContentMatchSet>
 								                {
 								                    // CDSPlayer
 								                    new ContentMatchSet(new byte?[] { 0x43, 0x44, 0x53, 0x50, 0x6C, 0x61, 0x79, 0x65, 0x72 }, "Cactus Data Shield 200"),
 								                    // yucca.cds
 								                    new ContentMatchSet(new byte?[] { 0x79, 0x75, 0x63, 0x63, 0x61, 0x2E, 0x63, 0x64, 0x73 }, "Cactus Data Shield 200"),
 								                };
-												Migrate protections to new interfaces

											
										
										
											2022-03-14 11:20:11 -07:00
+								                if (contentMatchSets != null && contentMatchSets.Any())
 								                    return MatchUtil.GetFirstMatch(file, fileContent, contentMatchSets, includeDebug);
 								            }
 								            return null;
 								        }
-												Separate protections into their own classes

											
										
										
											2019-09-27 23:52:24 -07:00
+								    }
 								}