parsing bitlocker encryption results

[gcue]

hello world =)

i am using the script below to capture the bitlocker encryption status of a remote PC.  works great but breaks if the user has another drive like a usb flash drive connected

is there a way to isolate each device result into an array?  it gets difficult because theres a blank line in between results..

expandcollapse popup

#include <Constants.au3>
#include <array.au3>

$msg_normal = 0

$strComputer = "."

Local $line

$values = "'" & $strComputer & "',"


Local $foo = Run(@ComSpec & ' /c manage-bde -status -cn ' & $strComputer, @SystemDir, @SW_HIDE, $STDERR_CHILD + $STDOUT_CHILD)


While 1
$line = StdoutRead($foo)
If @error Then ExitLoop
If StringInStr($line, "Size:") <> 0 Then
$array = StringRegExp($line, "Size:([\h\w\W\d_]*)", 3)
Debug($array)
$size = StringStripWS($array[0], 1 + 2)
$values &= "'" & $size & "',"
EndIf

If StringInStr($line, "Conversion Status:") <> 0 Then
$array = StringRegExp($line, "Conversion Status:([\h\w\d_]*)", 3)
$conversion_status = StringStripWS($array[0], 1 + 2)
$values &= "'" & $conversion_status & "',"
EndIf

If StringInStr($line, "Percentage Encrypted:") <> 0 Then
$array = StringRegExp($line, "Percentage Encrypted:([\h\W\d_]*)", 3)
$percentage_encrypted = StringStripWS($array[0], 1 + 2)
$values &= "'" & $percentage_encrypted & "',"
EndIf

If StringInStr($line, "Protection Status:") <> 0 Then
$array = StringRegExp($line, "Protection Status:([\h\w\d_]*)", 3)
$protection_status = StringStripWS($array[0], 1 + 2)
$values &= "'" & $protection_status & "',"
EndIf

If StringInStr($line, "Lock Status:") <> 0 Then
$array = StringRegExp($line, "Lock Status:([\h\w\d_]*)", 3)
$lock_status = StringStripWS($array[0], 1 + 2)
$values &= "'" & $lock_status & "'"
EndIf
WEnd

Debug($values)

Func Debug($variable1 = "", $variable2 = "", $variable3 = "")

;~  #include <array.au3>
;~  $msg_normal = 0

If IsArray($variable1) Then
_ArrayDisplay($variable1)
Else
If $variable2 <> "" Then
$variable1 &= @CRLF & $variable2
EndIf

If $variable3 <> "" Then
$variable1 &= @CRLF & $variable3
EndIf

ClipPut($variable1)
MsgBox($msg_normal, "Debug", $variable1)
EndIf


EndFunc   ;==>Debug

example output to process (including more than 1 device)

BitLocker Drive Encryption: Configuration Tool version 6.1.7601

Copyright © Microsoft Corporation. All rights reserved.

 

Computer Name: GHAR2912

 

Disk volumes that can be protected with

BitLocker Drive Encryption:

Volume E: [GSDBOOTKEY]

[Data Volume]

 

    Size:                 1.24 GB

    BitLocker Version:    None

    Conversion Status:    Fully Decrypted

    Percentage Encrypted: 0%

    Encryption Method:    None

    Protection Status:    Protection Off

    Lock Status:          Unlocked

    Identification Field: None

    Automatic Unlock:     Disabled

    Key Protectors:       None Found

 

Volume C: [L0132011 ]

[OS Volume]

 

    Size:                 167.39 GB

    BitLocker Version:    Windows 7

    Conversion Status:    Fully Encrypted

    Percentage Encrypted: 100%

    Encryption Method:    AES 128 with Diffuser

    Protection Status:    Protection On

    Lock Status:          Unlocked

    Identification Field: CGC

    Key Protectors:

        TPM

        Numerical Password

 

 

Thank you in advance!

Edited August 12, 2014 by gcue

[guinness]

If you post code make sure it's runnable. What is the expected output for each element? i.e. What do you expect?

 I am sure someone will come along and make a lucky guess, but I am not up for second guessing what you want. Oh, and in the class having w d _ is bloat, as w includes digits and underscore.

[gcue]

updated - thanks

[gcue]

sorry i didnt read your message very carefully haha sorry about that.

the command shows encryption status for the hard drives found in the remote PC.  the script works if there's only one drive in the system.. but doesnt if there's multiple

id like to be able to build an array of results for each device if possible

thanks again!

[sahsanu]

Hello,

Just an example to put the Volumes found into a 2D array:

expandcollapse popup

#Region ;**** Directives created by AutoIt3Wrapper_GUI ****
#AutoIt3Wrapper_UseX64=y   ; I added this just to allow the script run properly on my 64 bits machine
#EndRegion ;**** Directives created by AutoIt3Wrapper_GUI ****

#include <Array.au3>

$strComputer = "."
$iPid = Run(@ComSpec & ' /c manage-bde -status -cn ' & $strComputer, @SystemDir, @SW_HIDE, $STDERR_CHILD + $STDOUT_CHILD)

Local $sOutput = ""
While 1
    $sOutput &= StdoutRead($iPid)
    If @error Then
        ExitLoop
    EndIf
WEnd


$array = StringRegExp($sOutput, ".+", 3)
Local $arrayVolumes[17][5] ;this array allows 17 lines of information per Volume and max 5 volumes per computer
$countrow = 0
$countcolumn = 0
For $i = 0 To UBound($array) - 1
    If StringRegExp($array[$i], "(?i)Volume [a-z]:.+") Then
        $arrayVolumes[$countrow][$countcolumn] = StringStripWS($array[$i], 1)
        For $x = $i + 1 To UBound($array) - 1
            If StringRegExp($array[$x], "(?i)Volume [a-z]:.+") Then
                $countcolumn += 1
                $arrayVolumes[$countrow][$countcolumn] = StringStripWS($array[$x], 1)
                $countrow = 0
                ExitLoop
            ElseIf StringStripWS($array[$x],1) <> "" Then
                $countrow += 1
                $arrayVolumes[$countrow][$countcolumn] = StringStripWS($array[$x], 1)
            EndIf
        Next
    EndIf
Next


_ArrayDisplay($arrayVolumes)

Remove empty lines/columns in 2D array or do whatever you need with that array is your homework . I hope at least it could show you just one way to put the volumes into an array.

I'm sure it could be done in an easy way so maybe one of our forum buddies will improve it in just a couple of lines

Cheers,

sahsanu

[guinness]

I dunno what jchd thinks, but I need the expected output, e.g. what each element should contain. I asked for this back in post #2.

[jchd]

That's the missing part of the "problem". Once we are given a (definitive) list of characteristics gcue is interested in for every volume, then building a regexp returning the desired array should be pretty easy (from what I see).

To make clear what I mean, picking the numeric value of Size without indication of unit seems pretty meaningless to me. For instance a partition on a volume might well be 1.08 Gb or 1.08 Tb. Grabbing 1.08 only means nothing more than 42.

Edited August 13, 2014 by jchd

[gcue]

sorry guys ive been out of the office the last few days and just got back hadnt gotten a chance to send you output guiness - my apologies

thanks sahsanu... that solution works =)

[sahsanu]

thanks sahsanu... that solution works =)

 

You are welcome

[gcue]

actually i found an easier way....

the STATUS switch allows us to specify VOLUME.  so i listed out the local disk drives and looped through them to get each result

[sahsanu]

actually i found an easier way....

the STATUS switch allows us to specify VOLUME.  so i listed out the local disk drives and looped through them to get each result

 

And that is the reason you should specify what are the exact requirements you need to accomplish the task

[gcue]

it accomplishes the same thign you did though - just a different way

i didnt know one could specify volume.

Edited August 18, 2014 by gcue