lib/rex/encoding/xor/generic.rb

#!/usr/bin/env ruby

require 'rex/encoding/xor/exceptions'
require 'rex/text'

module Rex
module Encoding
module Xor

class Generic

	def Generic.keysize
		# special case:
		# 0 means we encode based on the length of the key
		# we don't enforce any perticular key length
		return 0
	end

	#
	# Now for some internal check methods
	#	

	# hook stylies!
	# return index of offending byte or nil
	def Generic._check(data, key, badchars)
		return _check_key(key, badchars) || _check_encode(data, key, badchars)
	end
	def Generic._check_key(key, badchars)
		return Rex::Text.badchar_index(key, badchars)
	end
	def Generic._check_encode(data, key, badchars)
		return Rex::Text.badchar_index(encode(data, key), badchars)
	end

	def Generic.find_key(data, badchars)
		return _find_good_key(data, _find_bad_keys(data, badchars), badchars)
	end

	# !!! xxx MAKE THESE BITCHE PRIVATE

	#
	# Find a list of bytes that can't be valid xor keys, from the data and badchars.
	# This returns a Array of hashes, length keysize
	#
	def Generic._find_bad_keys(data, badchars)

		ksize = keysize

		# array of hashes for the bad characters based
		# on their position in the data
		badkeys = [ ]
		ksize.times { badkeys << { } }

		badchars.each_byte { |badchar|
			pos = 0
			data.each_byte { |char|
				badkeys[pos % ksize][char ^ badchar] = true
				pos += 1
			}
		}

		return badkeys
	end

	#
	# (Hopefully) find a good key, from badkeys and badchars
	#
	def Generic._find_good_key(data, badkeys, badchars)

		ksize = keysize
		strip = 0
		key   = ""

		while strip < keysize

			kbyte = rand(256)

			catch(:found_kbyte) do
				256.times {

					if !badkeys[strip][kbyte] && !badchars[kbyte.chr]
						throw :found_kbyte
					end
					
					kbyte = (kbyte + 1) & 0xff
				}

				raise KeySearchError, "Exhausted byte space for strip #{strip}!", caller
			end

			key << kbyte
			strip += 1
		end

		# ok, we should have a good key now, lets double check...
		if _check(data, key, badchars)
			raise KeySearchError, "Key found, but bad character check failed!", caller
		end

		return key
	end

	def Generic.encode(buf, key)

		if !key.kind_of?(String)
			raise ::ArgumentError, "Key must be a string!", caller
		end

		len = key.length

		if len == 0
			raise ::ArgumentError, "Zero key length!", caller
		end

		if keysize != 0 && keysize != len
			raise ::ArgumentError, "Key length #{len}, expected #{keysize}", caller
		end

		encoded = ""
		pos     = 0

		while pos < buf.length
			encoded += (buf[pos,1].unpack("C*")[0] ^ key[pos % len, 1].unpack("C*")[0]).chr
			key = _encode_mutate_key(buf, key, pos, len)
			pos += 1
		end

		return [ encoded, key ]

	end

	# kind of ghetto, but very convenient for mutating keys
	# by default, do no key mutations
	def Generic._encode_mutate_key(buf, key, pos, len)
		return key
	end

	# maybe a bit a smaller of method name?
	def Generic.find_key_and_encode(data, badchars)
		key        = find_key(data, badchars)
		enc, fkey  = encode(data, key)
		return [ enc, key, fkey ]
	end


end end end end # Generic/Xor/Encoding/Rex
/usr/bin/ruby vs /usr/bin/env ruby 2005-12-17 06:46:23 +00:00			`#!/usr/bin/env ruby`
Initial encoding shiz 2005-05-23 00:34:16 +00:00
mass require moving of /lib 2005-07-09 21:18:49 +00:00			`require 'rex/encoding/xor/exceptions'`
move string utils into text 2005-11-09 04:18:08 +00:00			`require 'rex/text'`
New exceptions 2005-06-08 21:39:12 +00:00
Initial encoding shiz 2005-05-23 00:34:16 +00:00			`module Rex`
			`module Encoding`
			`module Xor`

			`class Generic`

			`def Generic.keysize`
			`# special case:`
			`# 0 means we encode based on the length of the key`
			`# we don't enforce any perticular key length`
			`return 0`
			`end`

Changed the way I do check. Before I forgot to check to make sure there was no bad characters in the key byte, and now I just moved everything over to a _check method, and allowed for some hooks that will be handy in the case of Sparc.pm 2005-05-25 17:40:50 +00:00			`#`
			`# Now for some internal check methods`
			`#`

			`# hook stylies!`
			`# return index of offending byte or nil`
			`def Generic._check(data, key, badchars)`
			`return _check_key(key, badchars) \|\| _check_encode(data, key, badchars)`
			`end`
			`def Generic._check_key(key, badchars)`
move string utils into text 2005-11-09 04:18:08 +00:00			`return Rex::Text.badchar_index(key, badchars)`
Changed the way I do check. Before I forgot to check to make sure there was no bad characters in the key byte, and now I just moved everything over to a _check method, and allowed for some hooks that will be handy in the case of Sparc.pm 2005-05-25 17:40:50 +00:00			`end`
			`def Generic._check_encode(data, key, badchars)`
move string utils into text 2005-11-09 04:18:08 +00:00			`return Rex::Text.badchar_index(encode(data, key), badchars)`
Changed the way I do check. Before I forgot to check to make sure there was no bad characters in the key byte, and now I just moved everything over to a _check method, and allowed for some hooks that will be handy in the case of Sparc.pm 2005-05-25 17:40:50 +00:00			`end`

Find_key, hopefully 2005-05-24 06:50:46 +00:00			`def Generic.find_key(data, badchars)`
In theory this means the additive find key should work, wow, that was pretty clean/simple compaired to the perl shiz 2005-05-25 06:24:05 +00:00			`return _find_good_key(data, _find_bad_keys(data, badchars), badchars)`
Find_key, hopefully 2005-05-24 06:50:46 +00:00			`end`

			`# !!! xxx MAKE THESE BITCHE PRIVATE`

			`#`
			`# Find a list of bytes that can't be valid xor keys, from the data and badchars.`
			`# This returns a Array of hashes, length keysize`
			`#`
			`def Generic._find_bad_keys(data, badchars)`

			`ksize = keysize`

			`# array of hashes for the bad characters based`
			`# on their position in the data`
			`badkeys = [ ]`
			`ksize.times { badkeys << { } }`

			`badchars.each_byte { \|badchar\|`
			`pos = 0`
			`data.each_byte { \|char\|`
			`badkeys[pos % ksize][char ^ badchar] = true`
			`pos += 1`
			`}`
			`}`

			`return badkeys`
			`end`

			`#`
			`# (Hopefully) find a good key, from badkeys and badchars`
			`#`
In theory this means the additive find key should work, wow, that was pretty clean/simple compaired to the perl shiz 2005-05-25 06:24:05 +00:00			`def Generic._find_good_key(data, badkeys, badchars)`
Find_key, hopefully 2005-05-24 06:50:46 +00:00
			`ksize = keysize`
			`strip = 0`
			`key = ""`

			`while strip < keysize`

			`kbyte = rand(256)`

			`catch(:found_kbyte) do`
			`256.times {`

			`if !badkeys[strip][kbyte] && !badchars[kbyte.chr]`
			`throw :found_kbyte`
			`end`

			`kbyte = (kbyte + 1) & 0xff`
			`}`

New exceptions 2005-06-08 21:39:12 +00:00			`raise KeySearchError, "Exhausted byte space for strip #{strip}!", caller`
Find_key, hopefully 2005-05-24 06:50:46 +00:00			`end`

			`key << kbyte`
			`strip += 1`
			`end`

Changed the way I do check. Before I forgot to check to make sure there was no bad characters in the key byte, and now I just moved everything over to a _check method, and allowed for some hooks that will be handy in the case of Sparc.pm 2005-05-25 17:40:50 +00:00			`# ok, we should have a good key now, lets double check...`
to_s sucks 2005-06-09 04:25:40 +00:00			`if _check(data, key, badchars)`
New exceptions 2005-06-08 21:39:12 +00:00			`raise KeySearchError, "Key found, but bad character check failed!", caller`
Changed the way I do check. Before I forgot to check to make sure there was no bad characters in the key byte, and now I just moved everything over to a _check method, and allowed for some hooks that will be handy in the case of Sparc.pm 2005-05-25 17:40:50 +00:00			`end`

Find_key, hopefully 2005-05-24 06:50:46 +00:00			`return key`
ya ya encodin 2005-05-24 03:58:47 +00:00			`end`

Initial encoding shiz 2005-05-23 00:34:16 +00:00			`def Generic.encode(buf, key)`

			`if !key.kind_of?(String)`
New exceptions 2005-06-08 21:39:12 +00:00			`raise ::ArgumentError, "Key must be a string!", caller`
Initial encoding shiz 2005-05-23 00:34:16 +00:00			`end`

ya ya encodin 2005-05-24 03:58:47 +00:00			`len = key.length`

			`if len == 0`
New exceptions 2005-06-08 21:39:12 +00:00			`raise ::ArgumentError, "Zero key length!", caller`
ya ya encodin 2005-05-24 03:58:47 +00:00			`end`
Initial encoding shiz 2005-05-23 00:34:16 +00:00
			`if keysize != 0 && keysize != len`
New exceptions 2005-06-08 21:39:12 +00:00			`raise ::ArgumentError, "Key length #{len}, expected #{keysize}", caller`
Initial encoding shiz 2005-05-23 00:34:16 +00:00			`end`

			`encoded = ""`
			`pos = 0`

			`while pos < buf.length`
Fix up the encoding xor to work with both old and new ruby 2009-06-03 02:30:12 +00:00			`encoded += (buf[pos,1].unpack("C")[0] ^ key[pos % len, 1].unpack("C")[0]).chr`
MOTHER FUCK 2005-06-09 20:20:08 +00:00			`key = _encode_mutate_key(buf, key, pos, len)`
ya ya encodin 2005-05-24 03:58:47 +00:00			`pos += 1`
Initial encoding shiz 2005-05-23 00:34:16 +00:00			`end`

Have encode return the final key also 2005-06-09 18:08:06 +00:00			`return [ encoded, key ]`
Initial encoding shiz 2005-05-23 00:34:16 +00:00
			`end`

Feedback... I think this _encode_mutate_key method might be a big ghetto, but it works out really handy for me... thoughts? 2005-05-25 05:31:57 +00:00			`# kind of ghetto, but very convenient for mutating keys`
			`# by default, do no key mutations`
			`def Generic._encode_mutate_key(buf, key, pos, len)`
			`return key`
			`end`

ya ya encodin 2005-05-24 03:58:47 +00:00			`# maybe a bit a smaller of method name?`
to_s sucks 2005-06-09 04:25:40 +00:00			`def Generic.find_key_and_encode(data, badchars)`
Have encode return the final key also 2005-06-09 18:08:06 +00:00			`key = find_key(data, badchars)`
			`enc, fkey = encode(data, key)`
			`return [ enc, key, fkey ]`
ya ya encodin 2005-05-24 03:58:47 +00:00			`end`

Initial encoding shiz 2005-05-23 00:34:16 +00:00
Minor fixes for ruby 1.9.1 compatibility, still quite a bit more to go 2009-06-02 23:36:58 +00:00			`end end end end # Generic/Xor/Encoding/Rex`