adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
6d9d9a70d410cc94de4d3d9afd7a75cd426d43be
metasploit-gs/modules/nops/mipsbe/better.rb
T
bcoles 509153920e modules/nops: Resolve RuboCop violations
2025-04-13 11:27:49 +10:00

100 lines
1.7 KiB
Ruby
Raw Blame History

##
# This module requires Metasploit: https://metasploit.com/download
# Current source: https://github.com/rapid7/metasploit-framework
##
###
#
# MixedNop
# ----------
#
# This class implements a mixed NOP generator for MIPS (big endian)
#
###
class MetasploitModule < Msf::Nop
def initialize
super(
'Name' => 'Better',
'Alias' => 'mipsbe_better',
'Description' => 'Better NOP generator',
'Author' => 'jm',
'License' => MSF_LICENSE,
'Arch' => ARCH_MIPSBE)
register_advanced_options(
[
OptBool.new('RandomNops', [ false, 'Generate a random NOP sled', true ])
]
)
end
def get_register
return rand(1..27)
end
def make_bne(_reg)
op = 0x14000000
rand_reg = get_register
offset = rand(65536)
op = op | (rand_reg << 21) | (rand_reg << 16) | offset
return op
end
def make_or(reg)
op = 0x00000025
op = op | (reg << 21) | (reg << 11)
return op
end
def make_sll(reg)
op = 0x00000000
op = op | (reg << 16) | (reg << 11)
return op
end
def make_sra(reg)
op = 0x00000003
op = op | (reg << 16) | (reg << 11)
return op
end
def make_srl(reg)
op = 0x00000002
op = op | (reg << 16) | (reg << 11)
return op
end
def make_xori(reg)
op = 0x38000000
op = op | (reg << 21) | (reg << 16)
return op
end
def make_ori(reg)
op = 0x34000000
op = op | (reg << 21) | (reg << 16)
return op
end
def generate_sled(length, opts)
nop_fn = %i[make_bne make_or make_sll make_sra make_srl make_xori make_ori]
sled = ''
for _ in 1..length / 4 do
n = nop_fn.sample
sled << [send(n, get_register)].pack('N*')
end
return sled
end
end
Reference in New Issue View Git Blame Copy Permalink