-
Notifications
You must be signed in to change notification settings - Fork 31
/
shellcodetoasm.py
77 lines (73 loc) · 2.28 KB
/
shellcodetoasm.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
from capstone import *
import time, sys, os
# Change here
shellcode = '\x31\xf6'
def loading():
print "Loading..."
for i in range(0, 100):
time.sleep(0.1)
width = (i + 1) / 4
bar = "[" + "#" * width + " " * (25 - width) + "]"
sys.stdout.write(u"\u001b[1000D" + bar)
sys.stdout.flush()
print
def cls():
os.system('cls' if os.name == 'nt' else 'clear')
def holefunc(architecture, mode):
options = Cs(architecture, mode)
try:
if sys.argv[3] == 'att':
options.syntax = CS_OPT_SYNTAX_ATT
except:
options.syntax = CS_OPT_SYNTAX_INTEL
listofinstructions = options.disasm(shellcode, 0x2000)
print("\n")
for shtoasm in listofinstructions:
print("%x\t%s\t%s" %(shtoasm.address, shtoasm.mnemonic, shtoasm.op_str))
s = raw_input("\nDo you want to write shellcode bytes to an file ? Y/n : ")
if s == 'Y' or s == 'y' or s == '':
with open("shellcode", "w") as f:
f.write(shtoasm.bytes)
f.close()
else:
return False
def error(error):
cls()
print("Select the bit %s" % (error))
sys.exit(1)
if len(sys.argv) < 3:
cls()
print("Author : https://www.github.com/blacknbunny")
print("Usage:\t./shellcodetoasm.py [returnbit] [architecture] [assembly-flavor]")
sys.exit(1)
else:
cls()
loading()
returnbit = sys.argv[1]
arch = sys.argv[2]
if returnbit == '64':
if arch == 'arm':
holefunc(CS_ARCH_ARM, CS_MODE_ARM)
elif arch == 'arm64':
holefunc(CS_ARCH_ARM64, CS_MODE_ARM)
elif arch == 'mips':
holefunc(CS_ARCH_MIPS, CS_MODE_MIPS64)
elif arch == 'ppc':
holefunc(CS_ARCH_PPC, CS_MODE_64)
elif arch == 'x86':
holefunc(CS_ARCH_X86, CS_MODE_64)
else:
error("architecture")
elif returnbit == '32':
if arch == 'arm':
holefunc(CS_ARCH_ARM, CS_MODE_ARM)
elif arch == 'arm64':
holefunc(CS_ARCH_ARM64, CS_MODE_ARM)
elif arch == 'mips':
holefunc(CS_ARCH_MIPS, CS_MODE_MIPS32)
elif arch == 'ppc':
holefunc(CS_ARCH_PPC, CS_MODE_32)
elif arch == 'x86':
holefunc(CS_ARCH_X86, CS_MODE_32)
else:
error("architecture")