summaryrefslogblamecommitdiffstats
path: root/sploit/rev/elf.py
blob: e3c0a551050356477acb84b400353e678232827d (plain) (tree) 
13a1931

d0aee78

13a1931

509a8cf

13a1931



d0aee78




8897faa

fc1c413

d0aee78



13a1931

a412a9a

13a1931


d0aee78









7f6ca05

d0aee78


8897faa

13a1931

fc1c413

8897faa







a412a9a

8897faa


7f6ca05

d0aee78

8897faa

fc1c413

8897faa

fc1c413

d7c7c96

fc1c413


d0aee78


































fc1c413



873cf63


fc1c413

873cf63


1

2

3

4

5
6
7

8
9
10
11

12

13

14
15
16

17

18

19
20

21
22
23
24
25
26
27
28
29

30

31
32

33

34

35

36
37
38
39
40
41
42

43

44
45

46

47

48

49

50

51

52

53
54

55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88

89
90
91

92
93

94

95
96

                              
                                 
 
          


                                                



                                               
                                       
                                           


                                                 
 
                       

                      








                                                                                                        
                          

                          
                           
                
 






                                                                                      
                           

                                         
                                                                                            
                            
 
                     
                                
                          
                                   

                                                                           

































                                                                                                     


                                                                                   

                                                             
 

                                                 
from sploit.rev import ldd, r2
from itertools import zip_longest

class ELF:
    def __init__(self, path):
        self.path = path
        self.sym = r2.get_elf_symbols(self.path)
        try:
            libs = ldd.get_libraries(self.path)
        except:
            libs = {}
        self.libs = self.__LIBS__(libs)
        self.locals = self.__LOCALS__(self)
        bininfo = r2.get_bin_info(self.path)
        self.info = self.__BININFO__(bininfo)
        self.security = self.__SECINFO__(bininfo)

    def __repr__(self):
        s = 'ELF: '
        s += self.path
        s += f'\n{len(self.sym)} symbols @ {hex(self.sym)}'
        column_fmt = '\n{0:36}{1:36}'
        border = '------------'
        s += column_fmt.format(border,border)
        s += column_fmt.format('Binary Info','Security Info')
        s += column_fmt.format(border,border)
        for line in zip_longest(str(self.info).split('\n'),str(self.security).split('\n'),fillvalue=''):
            s += column_fmt.format(line[0],line[1])
        s += f'\n{border}'
        s += '\nLibraries'
        s += f'\n{border}'
        s += '\n'
        s += str(self.libs)
        return s

    class __LIBS__(dict):
        def __init__(self, libs):
            super().__init__({lib.name:lib.path for lib in libs.values() if lib.path})
        def __getitem__(self, lib):
            get = super().__getitem__
            if(type(get(lib))==str):self[lib] = ELF(get(lib))
            return get(lib)
        def __repr__(self):
            s = ''
            for name,lib in self.items():
                s += '\n' + str(name) + ' => ' + (lib if(type(lib)==str) else str(lib.path))
            return s.strip()

    class __LOCALS__:
        def __init__(self, elf):
            self.elf = elf
        def __getattr__(self, sym):
            return r2.get_locals(self.elf.path, getattr(self.elf.sym, sym))

    class __BININFO__:
        # Fancy magic class that provides a psuedo-namespace to get properties of the binary
        def __init__(self, bininfo):
            self.info = {
                    "type"          : bininfo.bintype,
                    "os"            : bininfo.os,
                    "baddr"         : int(bininfo.baddr,0),
                    "arch_string"   : bininfo.arch,
                    "wordsize"      : int(bininfo.bits)//8,
                    "endianness"    : bininfo.endian,
                }
        def __getattr__(self, k):
            return self.info[k]
        def __repr__(self):
            s = ''
            for name,val in self.info.items():
                if name == 'baddr': val = hex(val)
                s += '\n{0:14}{1}'.format(name,val)
            return s.strip()

    class __SECINFO__(__BININFO__):
        # Fancy magic class that provides a psuedo-namespace to get security properties of the binary
        def __init__(self, bininfo):
            bool = lambda s : s == 'true' or s == 'True'
            self.info = {
                    "stripped"      : bool(bininfo.stripped),
                    "pic"           : bool(bininfo.pic),
                    "relro"         : bininfo.relro,
                    "relocs"        : bool(bininfo.relocs),
                    "canary"        : bool(bininfo.canary),
                    "nx"            : bool(bininfo.nx),
                    "rpath"         : bininfo.rpath,
                }

    def retaddr(self, caller, callee):
        return [c.ret_addr for c in r2.get_call_returns(self.path, caller, callee)]

    def gadgets(self, *regexes, cont=False):
        return r2.rop_gadgets(self.path, *regexes, cont=cont)

    def gadget(self, *regexes):
        return r2.rop_gadget(self.path, *regexes)
cgit-1.2.3-r5 | srcnode v0.4.0