https://dnsdb.isc.org/
Self reminder
#/usr/bin/env python
import getopt
import struct
import immutils
from immlib import *
import immlib
import binascii
class code_hook(LogBpHook):
def __init__(self):
self.imm = Debugger()
LogBpHook.__init__(self)
return
# def splitString(s,block):
# return [s[i:i+block] for i in range(0,block,255)]
def run(self,regs):
# try:
# self.imm.log(str(regs['EIP']))
if (regs['EIP'] == 0x0x00XXXXXX):
self.imm.log("Password is-->" +self.imm.readString(self.imm.readLong(regs['EBP']-4)))
if (regs['EIP'] == 0x0x00XXXXXX):
output = str(self.imm.readMemory(regs['EAX'],self.imm.readLong(regs['EAX']-4)))
# self.imm.log(output)
# for k in [output[i:i+255] for i in range(0, len(output), 255)]:
ch=code_hook()
for k in [output[i:i+255] for i in range(0,len(output),255)]:
self.imm.log(str(k))
# self.imm.log("SHA256 of -->" +binascii.hexlify(self.imm.readLong(regs['EAX'])))
if (regs['EIP'] == 0x0x00XXXXXX):
self.imm.log("IV is -->" +self.imm.readMemory(self.imm.readLong(regs['EAX']+0xC),8))
# except:
# self.imm.log("peopeo")
# return
def main(args):
code_hooker = code_hook()
code_hooker.add("break point on password",0x00XXXXXX)
code_hooker.add("break point on hash 256",0x00XXXXXX)
code_hooker.add("break point on 3des iv",0x00XXXXXX
return ">> my hook is ready!"
