【Python】exe2shellcode,shellcode2exe
阿新 • • 發佈:2017-12-04
/usr https encode 數據 load int message == cmd
用python寫這類程序真簡潔,要是用C++又不知道得多寫多少行代碼了。
exe2shellcode
#! /usr/bin/env python # -*- coding: utf-8 -*- import os import sys def payload(files): shellcode = "" ctr = 1 maxlen = 15 #to create rows try: for b in open(files, "rb").read(): shellcode +=b.encode("hex") if ctr == maxlen: ctr = 0 ctr += 1 print "Code length: " + str(len(shellcode)) return shellcode except: print "轉換失敗,請檢查!" f = open(‘messagebox.txt‘,‘w‘) files = "messagebox.exe" a = payload(files) f.write(a) f.close()
shellcode2exe
#! /usr/bin/env python
# -*- coding: utf-8 -*-
# 計算messagebox大小
c = open(‘messagebox.txt‘,‘r‘)
r = c.read()
print len(r)
# 將cmd.exe中的opcode再轉換為HEX數據
s = open(‘messagebox.txt‘,‘rb‘)
b = s.read()
bb = b[-len(r):]
cb = bb.decode("hex")
f = open(‘mess.exe‘,‘wb‘)
f.write(cb)
參考
分解型後門構想初探
https://mp.weixin.qq.com/s/KLR2s9PkHqy97eZjYTeM2w
【Python】exe2shellcode,shellcode2exe