行业智能>> shellcode>> 返回
项目作者: 4thel00z

项目描述 :
cli which converts shellcode back to assembly
高级语言: Python
项目地址: git://github.com/4thel00z/shellcode.git
创建时间: 2021-05-15T15:02:44Z
项目社区:https://github.com/4thel00z/shellcode
开源协议:GNU General Public License v3.0
下载


shellcode

shellcode logo

Motivation

In the course of pawning n00bs often the need arises to introspect some (generated) shellcode or check
it for sanity.

This tools does exactly that.

Installation

  1. pip install shellcode

Usage

With defaults (x86 in 32bit mode)

  1. echo "\x48\x83\xEC\x40\xB0\x3B\x48\x31\xD2\x48\x31\xF6\x52\x48\xBB\x2F\x2F\x62\x69\x6E\x2F\x73\x68\x53\x54\x5F\x0F\x05" | shellcode

Outputs:

  1. 0x0:    dec    eax
  2. 0x1:    sub    esp, 0x40
  3. 0x4:    mov    al, 0x3b
  4. 0x6:    dec    eax
  5. 0x7:    xor    edx, edx
  6. 0x9:    dec    eax
  7. 0xa:    xor    esi, esi
  8. 0xc:    push    edx
  9. 0xd:    dec    eax
  10. 0xe:    mov    ebx, 0x69622f2f
  11. 0x13:    outsb    dx, byte ptr [esi]
  12. 0x14:    das    
  13. 0x15:    jae    0x7f
  14. 0x17:    push    ebx
  15. 0x18:    push    esp
  16. 0x19:    pop    edi
  17. 0x1a:    syscall

Fullblown

  1. Usage: shellcode [OPTIONS] COMMAND [ARGS]...
  3.   Supported archs are (default: CS_ARCH_X86):
  5.           - CS_ARCH_ARM
  7.           - CS_ARCH_ARM64
  9.           - CS_ARCH_MIPS
  11.           - CS_ARCH_X86
  13.           - CS_ARCH_PPC
  15.           - CS_ARCH_SPARC
  17.           - CS_ARCH_SYSZ
  19.           - CS_ARCH_XCORE
  21.           - CS_ARCH_M68K
  23.           - CS_ARCH_TMS320C64X
  25.           - CS_ARCH_M680X
  27.           - CS_ARCH_EVM
  29.           - CS_ARCH_ALL
  31.   Supported modes are (default: CS_MODE_32):
  33.           - CS_MODE_LITTLE_ENDIAN
  35.           - CS_MODE_BIG_ENDIAN
  37.           - CS_MODE_16
  39.           - CS_MODE_32
  41.           - CS_MODE_64
  43.           - CS_MODE_ARM
  45.           - CS_MODE_THUMB
  47.           - CS_MODE_MCLASS
  49.           - CS_MODE_MICRO
  51.           - CS_MODE_MIPS3
  53.           - CS_MODE_MIPS32R6
  55.           - CS_MODE_MIPS2
  57.           - CS_MODE_V8
  59.           - CS_MODE_V9
  61.           - CS_MODE_QPX
  63.           - CS_MODE_M68K_000
  65.           - CS_MODE_M68K_010
  67.           - CS_MODE_M68K_020
  69.           - CS_MODE_M68K_030
  71.           - CS_MODE_M68K_040
  73.           - CS_MODE_M68K_060
  75.           - CS_MODE_MIPS32
  77.           - CS_MODE_MIPS64
  79.           - CS_MODE_M680X_6301
  81.           - CS_MODE_M680X_6309
  83.           - CS_MODE_M680X_6800
  85.           - CS_MODE_M680X_6801
  87.           - CS_MODE_M680X_6805
  89.           - CS_MODE_M680X_6808
  91.           - CS_MODE_M680X_6809
  93.           - CS_MODE_M680X_6811
  95.           - CS_MODE_M680X_CPU12
  97.           - CS_MODE_M680X_HCS08
  99. Options:
  100.   --arch TEXT                     [default: CS_ARCH_X86]
  101.   --mode TEXT                     [default: CS_MODE_32]
  102.   --color / --no-color            [default: True]
  103.   --verbose / --no-verbose        [default: False]
  104.   --b64 / --no-b64                [default: False]
  105.   --start INTEGER                 [default: 0]
  106.   --install-completion [bash|zsh|fish|powershell|pwsh]
  107.                                   Install completion for the specified shell.
  108.   --show-completion [bash|zsh|fish|powershell|pwsh]
  109.                                   Show completion for the specified shell, to
  110.                                   copy it or customize the installation.
  112.   --help                          Show this message and exit.

License

This project is licensed under the GPL-3 license.