Sha256: b50759fbc754dc2241addcf628944534c29d23c96a6783365084add84d28c849
Contents?: true
Size: 836 Bytes
Versions: 2
Compression:
Stored size: 836 Bytes
Contents
#!/usr/bin/env ruby # -*- coding: binary -*- require 'rex/arch/x86' require 'rex/encoder/xor/dword' module Rex module Encoders ### # # Spoon's smaller variable-length encoder (updated to use call $+4 by vlad902) # ### class XorDword < Rex::Encoder::Xor::Dword module Backend def _prepend # set the counter to the rounded up number of dwords to decode Rex::Arch::X86.set( Rex::Arch::X86::ECX, (encoded.length - 1 >> 2) + 1, badchars ) + "\xe8\xff\xff\xff" + # call $+4 "\xff\xc0" + # inc eax "\x5e" + # pop esi "\x81\x76\x0e" + key + # xor_xor: xor [esi + 0x0e], $xorkey "\x83\xee\xfc" + # sub esi, -4 "\xe2\xf4" # loop xor_xor end end include Backend end end end
Version data entries
2 entries across 2 versions & 1 rubygems
| Version | Path |
|---|---|
| librex-0.0.68 | lib/rex/encoders/xor_dword.rb |
| librex-0.0.66 | lib/rex/encoders/xor_dword.rb |