2005-05-23 00:34:16 +00:00
|
|
|
#!/usr/bin/ruby
|
|
|
|
|
|
|
|
|
|
module Rex
|
|
|
|
|
module Encoding
|
|
|
|
|
module Xor
|
|
|
|
|
|
|
|
|
|
class Generic
|
|
|
|
|
|
|
|
|
|
def Generic.keysize
|
|
|
|
|
# special case:
|
|
|
|
|
# 0 means we encode based on the length of the key
|
|
|
|
|
# we don't enforce any perticular key length
|
|
|
|
|
return 0
|
|
|
|
|
end
|
|
|
|
|
|
2005-05-24 06:50:46 +00:00
|
|
|
def Generic.find_key(data, badchars)
|
|
|
|
|
return _find_good_key(_find_bad_keys(data, badchars), badchars)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
# !!! xxx MAKE THESE BITCHE PRIVATE
|
|
|
|
|
|
|
|
|
|
#
|
|
|
|
|
# Find a list of bytes that can't be valid xor keys, from the data and badchars.
|
|
|
|
|
# This returns a Array of hashes, length keysize
|
|
|
|
|
#
|
|
|
|
|
def Generic._find_bad_keys(data, badchars)
|
|
|
|
|
|
|
|
|
|
ksize = keysize
|
|
|
|
|
|
|
|
|
|
# array of hashes for the bad characters based
|
|
|
|
|
# on their position in the data
|
|
|
|
|
badkeys = [ ]
|
|
|
|
|
ksize.times { badkeys << { } }
|
|
|
|
|
|
|
|
|
|
badchars.each_byte { |badchar|
|
|
|
|
|
pos = 0
|
|
|
|
|
data.each_byte { |char|
|
|
|
|
|
badkeys[pos % ksize][char ^ badchar] = true
|
|
|
|
|
pos += 1
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return badkeys
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
#
|
|
|
|
|
# (Hopefully) find a good key, from badkeys and badchars
|
|
|
|
|
#
|
|
|
|
|
def Generic._find_good_key(badkeys, badchars)
|
|
|
|
|
|
|
|
|
|
ksize = keysize
|
|
|
|
|
strip = 0
|
|
|
|
|
key = ""
|
|
|
|
|
|
|
|
|
|
while strip < keysize
|
|
|
|
|
|
|
|
|
|
kbyte = rand(256)
|
|
|
|
|
|
|
|
|
|
catch(:found_kbyte) do
|
|
|
|
|
256.times {
|
|
|
|
|
|
|
|
|
|
if !badkeys[strip][kbyte] && !badchars[kbyte.chr]
|
|
|
|
|
throw :found_kbyte
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
kbyte = (kbyte + 1) & 0xff
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
raise ArgumentError, "FIXME DIFF EXCEPTION", caller
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
key << kbyte
|
|
|
|
|
strip += 1
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
return key
|
2005-05-24 03:58:47 +00:00
|
|
|
end
|
|
|
|
|
|
2005-05-23 00:34:16 +00:00
|
|
|
def Generic.encode(buf, key)
|
|
|
|
|
|
|
|
|
|
if !key.kind_of?(String)
|
|
|
|
|
raise ArgumentError, "Key must be a string!", caller
|
|
|
|
|
end
|
|
|
|
|
|
2005-05-24 03:58:47 +00:00
|
|
|
len = key.length
|
|
|
|
|
|
|
|
|
|
if len == 0
|
|
|
|
|
raise ArgumentError, "Zero key length!", caller
|
|
|
|
|
end
|
2005-05-23 00:34:16 +00:00
|
|
|
|
|
|
|
|
if keysize != 0 && keysize != len
|
|
|
|
|
raise ArgumentError, "Key length #{len}, expected #{keysize}", caller
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
encoded = ""
|
|
|
|
|
pos = 0
|
|
|
|
|
|
|
|
|
|
while pos < buf.length
|
|
|
|
|
encoded += (buf[pos] ^ key[pos % len]).chr
|
2005-05-24 03:58:47 +00:00
|
|
|
pos += 1
|
2005-05-23 00:34:16 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
return encoded
|
|
|
|
|
|
|
|
|
|
end
|
|
|
|
|
|
2005-05-24 03:58:47 +00:00
|
|
|
# maybe a bit a smaller of method name?
|
|
|
|
|
def Generic.find_key_and_encode()
|
|
|
|
|
end
|
|
|
|
|
|
2005-05-23 00:34:16 +00:00
|
|
|
|
|
|
|
|
end end end end # Generic/Xor/Encoding/Rex
|
