ruby_smb 0.0.8

data/lib/ruby_smb/smb1/packet/session_setup_request.rb

@@ -0,0 +1,71 @@
+module RubySMB
+  module SMB1
+    module Packet
+
+      # A SMB1 SMB_COM_SESSION_SETUP_ANDX Request Packet as defined in
+      # [2.2.4.6.1](https://msdn.microsoft.com/en-us/library/cc246328.aspx)
+      class SessionSetupRequest < RubySMB::GenericPacket
+
+        # A SMB1 Parameter Block as defined by the {SessionSetupRequest}
+        class ParameterBlock < RubySMB::SMB1::ParameterBlock
+          and_x_block   :andx_block
+          uint16        :max_buffer_size,       label: 'Max Buffer Size'
+          uint16        :max_mpx_count,         label: 'Max Mpx Count'
+          uint16        :vc_number,             label: 'VC Number'
+          uint32        :session_key,           label: 'Session Key'
+          uint16        :security_blob_length,  label: 'Security Blob Length'
+          uint32        :reserved
+          capabilities  :capabilities
+        end
+
+        # Represents the specific layout of the DataBlock for a {SessionSetupRequest} Packet.
+        # Due to vagaries of character encoding and the way we currently handle NTLM authentication
+        # for the security blob, you must null-terminate the {native_os} and {native_lan_man} fields
+        # yourself if you set them away from their defaults.
+        class DataBlock < RubySMB::SMB1::DataBlock
+          string      :security_blob,  label: 'Security Blob (GSS-API)', length: lambda { self.parent.parameter_block.security_blob_length }
+          stringz     :native_os,      label: 'Native OS',             initial_value: 'Windows 7 Ultimate N 7601 Service Pack 1'
+          stringz     :native_lan_man, label: 'Native LAN Manager',    initial_value: 'Windows 7 Ultimate N 6.1'
+        end
+
+        smb_header        :smb_header
+        parameter_block   :parameter_block
+        data_block        :data_block
+
+        def initialize_instance
+          super
+          smb_header.command = RubySMB::SMB1::Commands::SMB_COM_SESSION_SETUP
+        end
+
+        # Takes an NTLM Type 1 Message and creates the GSS Security Blob
+        # for it and sets it in the {RubySMB::SMB1::Packet::SessionSetupRequest::DataBlock#security_blob}
+        # field. It also automaticaly sets the length in
+        # {RubySMB::SMB1::Packet::SessionSetupRequest::ParameterBlock#security_blob_length}
+        #
+        # @param type1_message [String] the serialized Type 1 NTLM message
+        # @return [void]
+        def set_type1_blob(type1_message)
+          gss_blob = RubySMB::Gss.gss_type1(type1_message)
+          parameter_block.security_blob_length = gss_blob.length
+          data_block.security_blob = gss_blob
+
+        end
+
+        # Takes an NTLM Type 3 Message and creates the GSS Security Blob
+        # for it and sets it in the {RubySMB::SMB1::Packet::SessionSetupRequest::DataBlock#security_blob}
+        # field. It also automaticaly sets the length in
+        # {RubySMB::SMB1::Packet::SessionSetupRequest::ParameterBlock#security_blob_length}
+        #
+        # @param type3_message [String] the serialized Type 3 NTLM message
+        # @return [void]
+        def set_type3_blob(type3_message)
+          gss_blob = RubySMB::Gss.gss_type3(type3_message)
+          parameter_block.security_blob_length = gss_blob.length
+          data_block.security_blob = gss_blob
+        end
+
+
+      end
+    end
+  end
+end

data/lib/ruby_smb/smb1/packet/session_setup_response.rb

@@ -0,0 +1,48 @@
+module RubySMB
+  module SMB1
+    module Packet
+
+      # A SMB1 SMB_COM_SESSION_SETUP Response Packet as defined in
+      # [2.2.4.6.2](https://msdn.microsoft.com/en-us/library/cc246329.aspx)
+      class SessionSetupResponse < RubySMB::GenericPacket
+
+        # A SMB1 Parameter Block as defined by the {SessionSetupResponse}
+        class ParameterBlock < RubySMB::SMB1::ParameterBlock
+          and_x_block   :andx_block
+          uint16        :action,       label: 'Action'
+          uint16        :security_blob_length,  label: 'Security Blob Length'
+        end
+
+        # Represents the specific layout of the DataBlock for a {SessionSetupResponse} Packet.
+        class DataBlock < RubySMB::SMB1::DataBlock
+          string      :security_blob,  label: 'Security Blob (GSS-API)', length: lambda { self.parent.parameter_block.security_blob_length }
+          stringz     :native_os,      label: 'Native OS'
+          stringz     :native_lan_man, label: 'Native LAN Manager'
+        end
+
+        smb_header        :smb_header
+        parameter_block   :parameter_block
+        data_block        :data_block
+
+        def initialize_instance
+          super
+          smb_header.command = RubySMB::SMB1::Commands::SMB_COM_SESSION_SETUP
+          smb_header.flags.reply = 1
+        end
+
+        # Takes an NTLM Type 2 Message and creates the GSS Security Blob
+        # for it and sets it in the {RubySMB::SMB1::Packet::SessionSetupRequest::DataBlock#security_blob}
+        # field. It also automaticaly sets the length in
+        # {RubySMB::SMB1::Packet::SessionSetupRequest::ParameterBlock#security_blob_length}
+        #
+        # @param type2_message [String] the serialized Type 2 NTLM message
+        # @return [void]
+        def set_type2_blob(type2_message)
+          gss_blob = RubySMB::Gss.gss_type2(type2_message)
+          data_block.security_blob = gss_blob
+          parameter_block.security_blob_length = gss_blob.length
+        end
+      end
+    end
+  end
+end

data/lib/ruby_smb/smb1/packet.rb

@@ -0,0 +1,12 @@
+module RubySMB
+  module SMB1
+    module Packet
+      require 'ruby_smb/smb1/packet/error_packet'
+      require 'ruby_smb/smb1/packet/negotiate_request'
+      require 'ruby_smb/smb1/packet/negotiate_response'
+      require 'ruby_smb/smb1/packet/negotiate_response_extended'
+      require 'ruby_smb/smb1/packet/session_setup_request'
+      require 'ruby_smb/smb1/packet/session_setup_response'
+    end
+  end
+end

data/lib/ruby_smb/smb1/parameter_block.rb

@@ -0,0 +1,42 @@
+module RubySMB
+  module SMB1
+    # Represents the ParameterBlock portion of an SMB1 Packet. The ParameterBlock will
+    # always contain a word_count field that gives the size of the rest of
+    # the data block in words.
+    class ParameterBlock < BinData::Record
+      endian  :little
+
+      uint8   :word_count, label: 'Word Count', value: -> { calculate_word_count }
+
+      # Class method to stub word count calculation during
+      # lazy evaluation.
+      #
+      # @param [Fixnum] will always return 0
+      def self.calculate_word_count
+        0
+      end
+
+      # Returns the name of all fields, other than word_count, in
+      # the ParameterBlock as symbols.
+      #
+      # @return [Array<Symbol>] the names of all other ParameterBlock fields
+      def self.parameter_fields
+        fields = self.fields.collect(&:name)
+        fields.reject { |field| field == :word_count }
+      end
+
+      # Calculates the size of the other fields in the ParameterBlock
+      # in Words.
+      #
+      # @return [Fixnum] The size of the ParameterBlock in Words
+      def calculate_word_count
+        total_count = 0
+        self.class.parameter_fields.each do |field_name|
+          field_value = send(field_name)
+          total_count += field_value.do_num_bytes
+        end
+        total_count.to_i / 2
+      end
+    end
+  end
+end

data/lib/ruby_smb/smb1/smb_header.rb

@@ -0,0 +1,21 @@
+module RubySMB
+  module SMB1
+    # Represents the Header of an SMB1 packet as defined in
+    # [2.2.3.1 SMB Header Extensions](https://msdn.microsoft.com/en-us/library/cc246254.aspx)
+    class SMBHeader < BinData::Record
+      endian :little
+      bit32         :protocol,                    label: 'Protocol ID Field', initial_value: RubySMB::SMB1::SMB_PROTOCOL_ID
+      bit8          :command,                     label: 'SMB Command ID'
+      nt_status     :nt_status,                   label: 'NTStatus Code'
+      header_flags  :flags
+      header_flags2 :flags2
+      bit16         :pid_high,                    label: 'PID High Bytes'
+      string        :security_features,           label: 'Security Features', length: 8
+      bit16         :reserved,                    label: 'Reserved'
+      bit16         :tid,                         label: 'Tree ID'
+      bit16         :pid_low,                     label: 'PID Low Bytes'
+      bit16         :uid,                         label: 'User ID'
+      bit16         :mid,                         label: 'Multiplex ID'
+    end
+  end
+end

data/lib/ruby_smb/smb1.rb

@@ -0,0 +1,16 @@
+# This module adds the namespace for version 1 of the SMB Protocol
+# as defined in [MS-SMB](https://msdn.microsoft.com/en-us/library/cc246231.aspx)
+module RubySMB::SMB1
+  # Protocol ID value. Translates to \xFFSMB
+  SMB_PROTOCOL_ID = 0xFF534D42
+
+  require 'ruby_smb/smb1/commands'
+  require 'ruby_smb/smb1/andx_block'
+  require 'ruby_smb/smb1/bit_field'
+  require 'ruby_smb/smb1/smb_header'
+  require 'ruby_smb/smb1/parameter_block'
+  require 'ruby_smb/smb1/data_block'
+  require 'ruby_smb/smb1/dialect'
+  require 'ruby_smb/smb1/packet'
+
+end

data/lib/ruby_smb/smb2/bit_field/session_flags.rb

@@ -0,0 +1,17 @@
+module RubySMB
+  module SMB2
+    module BitField
+      # The SessionsFlags bit-field for a {RubySMB::SMB2::Packet::SessionSetupResponse}
+      class SessionFlags < BinData::Record
+        endian  :little
+        bit6    :reserved3,           label: 'Reserved', value: 0
+        bit1    :null,                label: 'ASYNC Command', initial_value: 0
+        bit1    :guest,               label: 'Is Guest?',     initial_value: 0
+        resume_byte_alignment
+        # byte border
+        uint8   :reserved1,           label: 'Reserved',           value: 0
+
+      end
+    end
+  end
+end

data/lib/ruby_smb/smb2/bit_field/smb2_capabailities.rb

@@ -0,0 +1,23 @@
+module RubySMB
+  module SMB2
+    module BitField
+      # Represents a Capabilities BitField as defined by
+      # [2.2.3 SMB2 NEGOTIATE Request](https://msdn.microsoft.com/en-us/library/cc246543.aspx)
+      class Smb2Capabilities < BinData::Record
+        endian  :little
+        bit1    :reserved1,           label: 'Reserved'
+        bit1    :encryption,          label: 'Encryption'
+        bit1    :directory_leasing,   label: 'Directory Leasing'
+        bit1    :persistent_handles,  label: 'Persistent Handles'
+        bit1    :multi_channel,       label: 'Multi Channel'
+        bit1    :large_mtu,           label: 'Large MTU'
+        bit1    :leasing,             label: 'Leasing'
+        bit1    :dfs,                 label: 'DFS'
+        # byte border
+        uint8   :reserved2,           label: 'Reserved'
+        uint8   :reserved3,           label: 'Reserved'
+        uint8   :reserved4,           label: 'Reserved'
+      end
+    end
+  end
+end

data/lib/ruby_smb/smb2/bit_field/smb2_header_flags.rb

@@ -0,0 +1,23 @@
+module RubySMB
+  module SMB2
+    module BitField
+      # The Flags bit-field for an SMB2 Header as defined in
+      # [2.2.1.2 SMB2 Packet Header - SYNC](https://msdn.microsoft.com/en-us/library/cc246529.aspx)
+      class Smb2HeaderFlags < BinData::Record
+        endian  :little
+        bit4    :reserved3,           label: 'Reserved', value: 0
+        bit1    :signed,              label: 'Packet Signed'
+        bit1    :related_operations,  label: 'Chained Request'
+        bit1    :async_command,       label: 'ASYNC Command', value: 0
+        bit1    :reply,               label: 'Response'
+        # byte border
+        uint16  :reserved2,           label: 'Reserved',           value: 0
+        # byte border
+        bit2    :reserved1,           label: 'Reserved',           value: 0
+        bit1    :replay_operation,    label: 'Replay Operation'
+        bit1    :dfs_operation,       label: 'DFS Operation'
+        resume_byte_alignment
+      end
+    end
+  end
+end

data/lib/ruby_smb/smb2/bit_field/smb2_security_mode.rb

@@ -0,0 +1,15 @@
+module RubySMB
+  module SMB2
+    module BitField
+      # Represents a Security Mode BitField as defined by
+      # [2.2.3 SMB2 NEGOTIATE Request](https://msdn.microsoft.com/en-us/library/cc246543.aspx)
+      class Smb2SecurityMode < BinData::Record
+        endian :little
+        bit6    :reserved,          label: 'Reserved'
+        bit1    :signing_required,  label: 'Signing Required'
+        bit1    :signing_enabled,   label: 'Signing Enabled'
+        uint8   :reserved2,         label: 'Reserved'
+      end
+    end
+  end
+end

data/lib/ruby_smb/smb2/bit_field/smb2_security_mode_single.rb

@@ -0,0 +1,14 @@
+module RubySMB
+  module SMB2
+    module BitField
+      # Represents a Security Mode BitField as defined by
+      # [2.2.3 SMB2 NEGOTIATE Request](https://msdn.microsoft.com/en-us/library/cc246543.aspx)
+      class Smb2SecurityModeSingle < BinData::Record
+        endian :little
+        bit6    :reserved,          label: 'Reserved'
+        bit1    :signing_required,  label: 'Signing Required'
+        bit1    :signing_enabled,   label: 'Signing Enabled'
+      end
+    end
+  end
+end

data/lib/ruby_smb/smb2/bit_field.rb

@@ -0,0 +1,11 @@
+module RubySMB
+  module SMB2
+    module BitField
+      require 'ruby_smb/smb2/bit_field/smb2_header_flags'
+      require 'ruby_smb/smb2/bit_field/smb2_security_mode'
+      require 'ruby_smb/smb2/bit_field/smb2_security_mode_single'
+      require 'ruby_smb/smb2/bit_field/smb2_capabailities'
+      require 'ruby_smb/smb2/bit_field/session_flags'
+    end
+  end
+end

data/lib/ruby_smb/smb2/commands.rb

@@ -0,0 +1,25 @@
+module RubySMB
+  module SMB2
+    # [[MS-SMB2] 2.2 Message Syntax](https://msdn.microsoft.com/en-us/library/cc246497.aspx)
+    module Commands
+      NEGOTIATE       = 0x00
+      SESSION_SETUP   = 0x01
+      LOGOFF          = 0x02
+      TREE_CONNECT    = 0x03
+      TREE_DISCONNECT = 0x04
+      CREATE          = 0x05
+      CLOSE           = 0x06
+      FLUSH           = 0x07
+      READ            = 0x08
+      WRITE           = 0x09
+      LOCK            = 0x0a
+      IOCTL           = 0x0b
+      CANCEL          = 0x0c
+      QUERY_DIRECTORY = 0x0e
+      ECHO            = 0x0d
+      CHANGE_NOTIFY   = 0x0f
+      QUERY_INFO      = 0x10
+      SET_INFO        = 0x11
+    end
+  end
+end

data/lib/ruby_smb/smb2/packet/negotiate_request.rb

@@ -0,0 +1,50 @@
+module RubySMB
+  module SMB2
+    module Packet
+      # An SMB2 NEGOTIATE Request packet as defined by
+      # [2.2.3 SMB2 NEGOTIATE Request](https://msdn.microsoft.com/en-us/library/cc246543.aspx)
+      class NegotiateRequest < RubySMB::GenericPacket
+        endian              :little
+        smb2_header         :smb2_header
+        uint16              :structure_size,      label: 'Structure Size', initial_value: 36
+        uint16              :dialect_count,       label: 'Dialect Count'
+        smb2_security_mode  :security_mode
+        uint16              :reserved1, label: 'Reserved', initial_value: 0
+        smb2_capabilities   :capabilities
+        string              :client_guid,         label: 'Client GUID',        length: 16
+        file_time           :client_start_time,   label: 'Client Start Time',  initial_value: 0
+        array               :dialects,            label: 'Dialects',           type: :uint16, read_until: :eof
+
+        def initialize_instance
+          super
+          smb2_header.command = RubySMB::SMB2::Commands::NEGOTIATE
+        end
+
+        # Adds a dialect to the Dialects array and increments the dialect count
+        #
+        # @param [Fixnum] the numeric code for the dialect you wish to add
+        # @return [Array<Fixnum>] the array of all currently selected dialects
+        def add_dialect(dialect)
+          return ArgumentError, 'Must be a number' unless dialect.is_a? Fixnum
+          self.dialect_count += 1
+          dialects << dialect
+        end
+
+        # Takes an array of dialects and sets it on the packet. Also updates
+        # the dialect_count field appropriately. Will erase any previously set
+        # dialects.
+        #
+        # @param [Array<Fixnum>] the array of dialects to set
+        # @return [Array<Fixnum>] the current value of the dialects array
+        def set_dialects(add_dialects = [])
+          self.dialects = []
+          self.dialect_count = 0
+          add_dialects.each do |dialect|
+            add_dialect(dialect)
+          end
+          dialects
+        end
+      end
+    end
+  end
+end

data/lib/ruby_smb/smb2/packet/negotiate_response.rb

@@ -0,0 +1,33 @@
+module RubySMB
+  module SMB2
+    module Packet
+      # An SMB2 NEGOTIATE Response packet as defined by
+      # [2.2.4 SMB2 NEGOTIATE Response](https://msdn.microsoft.com/en-us/library/cc246561.aspx)
+      class NegotiateResponse < RubySMB::GenericPacket
+        endian              :little
+        smb2_header         :smb2_header
+        uint16              :structure_size,   label: 'Structure Size', initial_value: 65
+        smb2_security_mode  :security_mode
+        uint16              :dialect_revision,          label: 'Dialect Revision'
+        uint16              :negotiate_context_count,   label: 'Negotiate Context Count',      initial_value: 0
+        string              :server_guid,               label: 'Server GUID',                  length: 16
+        smb2_capabilities   :capabilities
+        uint32              :max_transact_size,         label: 'Max Transaction Size'
+        uint32              :max_read_size,             label: 'Max Read Size'
+        uint32              :max_write_size,            label: 'Max Write Size'
+        file_time           :system_time,               label: 'Server System Time'
+        file_time           :server_start_time,         label: 'Server Start Time'
+        uint16              :security_buffer_offset,    label: 'Offset to Security Buffer'
+        uint16              :security_buffer_length,    label: 'Security Buffer Length', value: -> { security_buffer.length }
+        uint32              :negotiate_context_offset,  label: 'Offset to Negotiate Context'
+        string              :security_buffer,           label: 'Security Buffer', read_length: :security_buffer_length
+
+        def initialize_instance
+          super
+          smb2_header.command = RubySMB::SMB2::Commands::NEGOTIATE
+          smb2_header.flags.reply = 1
+        end
+      end
+    end
+  end
+end

data/lib/ruby_smb/smb2/packet/session_setup_request.rb

@@ -0,0 +1,53 @@
+module RubySMB
+  module SMB2
+    module Packet
+
+      # An SMB2 SessionSetupRequest Packet as defined in
+      # [2.2.5 SMB2 SESSION_SETUP Request](https://msdn.microsoft.com/en-us/library/cc246563.aspx)
+      class SessionSetupRequest < RubySMB::GenericPacket
+        endian                     :little
+        smb2_header                :smb2_header
+        uint16                     :structure_size,          label: 'Structure Size',          initial_value: 25
+        uint8                      :flags,                   label: 'Flags',                   initial_value: 0x00
+        smb2_security_mode_single  :security_mode
+        smb2_capabilities          :capabilities
+        uint32                     :channel,                 label: 'Channel',                 initial_value: 0x00
+        uint16                     :security_buffer_offset,  label: 'Security Buffer Offset',  initial_value: 0x58
+        uint16                     :security_buffer_length,  label: 'Security Buffer Length'
+        uint64                     :previous_session_id,     label: 'Previous Session ID'
+        string                     :buffer,                  label: 'Security Buffer',         length: lambda { self.security_buffer_length }
+
+
+        def initialize_instance
+          super
+          smb2_header.command = RubySMB::SMB2::Commands::SESSION_SETUP
+        end
+
+        # Takes a serialized NTLM Type 1 message and wraps it in the GSS ASN1 encoding
+        # and inserts it into the {RubySMB::SMB2::Packet::SessionSetupRequest#buffer}
+        # as well as updating the {RubySMB::SMB2::Packet::SessionSetupRequest#security_buffer_length}
+        #
+        # @param type1_message [String] the serialized NTLM Type 1 message
+        # @return [void]
+        def set_type1_blob(type1_message)
+          gss_blob = RubySMB::Gss.gss_type1(type1_message)
+          self.security_buffer_length = gss_blob.length
+          self.buffer = gss_blob
+        end
+
+        # Takes a serialized NTLM Type 3 message and wraps it in the GSS ASN1 encoding
+        # and inserts it into the {RubySMB::SMB2::Packet::SessionSetupRequest#buffer}
+        # as well as updating the {RubySMB::SMB2::Packet::SessionSetupRequest#security_buffer_length}
+        #
+        # @param type3_message [String] the serialized NTLM Type 3 message
+        # @return [void]
+        def set_type3_blob(type3_message)
+          gss_blob = RubySMB::Gss.gss_type3(type3_message)
+          self.security_buffer_length = gss_blob.length
+          self.buffer = gss_blob
+        end
+
+      end
+    end
+  end
+end

data/lib/ruby_smb/smb2/packet/session_setup_response.rb

@@ -0,0 +1,38 @@
+module RubySMB
+  module SMB2
+    module Packet
+
+      # An SMB2 SessionSetupResponse Packet as defined in
+      # [2.2.6 SMB2 SESSION_SETUP Response](https://msdn.microsoft.com/en-us/library/cc246564.aspx)
+      class SessionSetupResponse < RubySMB::GenericPacket
+        endian :little
+        smb2_header         :smb2_header
+        uint16              :structure_size,          label: 'Structure Size',          initial_value: 9
+        session_flags       :session_flags
+        uint16              :security_buffer_offset,  label: 'Security Buffer Offset',  initial_value: 0x48
+        uint16              :security_buffer_length,  label: 'Security Buffer Length'
+        string              :buffer,                  label: 'Security Buffer',         length: lambda { self.security_buffer_length }
+
+
+        def initialize_instance
+          super
+          smb2_header.command = RubySMB::SMB2::Commands::SESSION_SETUP
+          smb2_header.flags.reply = 1
+        end
+
+        # Takes a serialized NTLM Type 2 message and wraps it in the GSS ASN1 encoding
+        # and inserts it into the {RubySMB::SMB2::Packet::SessionSetupRequest#buffer}
+        # as well as updating the {RubySMB::SMB2::Packet::SessionSetupRequest#security_buffer_length}
+        #
+        # @param type1_message [String] the serialized NTLM Type 1 message
+        # @return [void]
+        def set_type2_blob(type1_message)
+          gss_blob = RubySMB::Gss.gss_type2(type1_message)
+          self.security_buffer_length = gss_blob.length
+          self.buffer = gss_blob
+        end
+
+      end
+    end
+  end
+end

data/lib/ruby_smb/smb2/packet.rb

@@ -0,0 +1,10 @@
+module RubySMB
+  module SMB2
+    module Packet
+      require 'ruby_smb/smb2/packet/negotiate_request'
+      require 'ruby_smb/smb2/packet/negotiate_response'
+      require 'ruby_smb/smb2/packet/session_setup_request'
+      require 'ruby_smb/smb2/packet/session_setup_response'
+    end
+  end
+end

data/lib/ruby_smb/smb2/smb2_header.rb

@@ -0,0 +1,22 @@
+module RubySMB
+  module SMB2
+    # Represents the Header of an SMB2 packet as defined in
+    # [2.2.1.2 SMB2 Packet Header - SYNC](https://msdn.microsoft.com/en-us/library/cc246529.aspx)
+    class SMB2Header < BinData::Record
+      endian              :little
+      bit32               :protocol,          label: 'Protocol ID Field',      initial_value: RubySMB::SMB2::SMB2_PROTOCOL_ID
+      uint16              :structure_size,    label: 'Header Structure Size',  initial_value: 64
+      uint16              :credit_charge,     label: 'Credit Charge',          initial_value: 0
+      nt_status           :nt_status,         label: 'NT Status',              initial_value: 0
+      uint16              :command,           label: 'Command'
+      uint16              :credits,           label: 'Credit Request/Response'
+      smb2_header_flags   :flags,             label: 'Flags'
+      uint32              :next_command,      label: 'Command Chain Offset', initial_value: 0
+      uint64              :message_id,        label: 'Message ID'
+      uint32              :process_id,        label: 'Process ID', initial_value: 0x0000feff
+      uint32              :tree_id,           label: 'Tree ID'
+      uint64              :session_id,        label: 'Session ID'
+      string              :signature,         label: 'Signature', length: 16
+    end
+  end
+end

data/lib/ruby_smb/smb2.rb

@@ -0,0 +1,12 @@
+# A packet parsing and manipulation library for the SMB2 protocol
+#
+# [[MS-SMB2] Server Mesage Block (SMB) Protocol Versions 2 and 3](https://msdn.microsoft.com/en-us/library/cc246482.aspx)
+module RubySMB::SMB2
+  # Protocol ID value. Translates to \xFESMB
+  SMB2_PROTOCOL_ID = 0xFE534D42
+
+  require 'ruby_smb/smb2/commands'
+  require 'ruby_smb/smb2/bit_field'
+  require 'ruby_smb/smb2/smb2_header'
+  require 'ruby_smb/smb2/packet'
+end

data/lib/ruby_smb/version.rb

@@ -0,0 +1,3 @@
+module RubySMB
+  VERSION = '0.0.8'.freeze
+end

data/lib/ruby_smb.rb

@@ -0,0 +1,22 @@
+require 'bit-struct'
+require 'bindata'
+require 'net/ntlm'
+require 'net/ntlm/client'
+require 'windows_error'
+require 'windows_error/nt_status'
+# A packet parsing and manipulation library for the SMB1 and SMB2 protocols
+#
+# [[MS-SMB] Server Mesage Block (SMB) Protocol Version 1](https://msdn.microsoft.com/en-us/library/cc246482.aspx)
+# [[MS-SMB2] Server Mesage Block (SMB) Protocol Versions 2 and 3](https://msdn.microsoft.com/en-us/library/cc246482.aspx)
+module RubySMB
+  require 'ruby_smb/gss'
+  require 'ruby_smb/field'
+  require 'ruby_smb/generic_packet'
+  require 'ruby_smb/dispatcher'
+  require 'ruby_smb/error'
+  require 'ruby_smb/version'
+  require 'ruby_smb/version'
+  require 'ruby_smb/smb2'
+  require 'ruby_smb/smb1'
+  require 'ruby_smb/client'
+end

data/ruby_smb.gemspec

@@ -0,0 +1,38 @@
+# coding: utf-8
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'ruby_smb/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = 'ruby_smb'
+  spec.version       = RubySMB::VERSION
+  spec.authors       = ['David Maloney', 'James Lee']
+  spec.email         = ['DMaloney@rapid7.com', 'egypt@metasploit.com']
+  spec.summary       = 'A message creator and parser for the SMB protocol family'
+  spec.description   = ''
+  spec.homepage      = 'http://www.metasploit.com'
+  spec.license       = 'BSD-3-clause'
+
+  spec.files         = `git ls-files -z`.split("\x0")
+  spec.executables   = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
+  spec.test_files    = spec.files.grep(%r{^(test|spec|features)/})
+  spec.require_paths = ['lib']
+
+  if RUBY_PLATFORM =~ /java/
+    spec.add_development_dependency 'kramdown'
+    spec.platform = Gem::Platform::JAVA
+  else
+    spec.add_development_dependency 'redcarpet'
+    spec.platform = Gem::Platform::RUBY
+  end
+
+  spec.add_development_dependency 'bundler'
+  spec.add_development_dependency 'fivemat'
+  spec.add_development_dependency 'rake'
+  spec.add_development_dependency 'yard'
+
+  spec.add_runtime_dependency 'rubyntlm', '~> 0.5'
+  spec.add_runtime_dependency 'bit-struct'
+  spec.add_runtime_dependency 'windows_error'
+  spec.add_runtime_dependency 'bindata'
+end