buffer / pylibemu Goto Github PK

Hello,

I have a question for pylibemu.

[environment]--------------------------------------------------------------------------------------------------//
Ubuntu 10.10 Desktop

ga9amel@azrael:~$ uname -a
Linux azrael 2.6.35-28-generic #50-Ubuntu SMP Fri Mar 18 19:00:26 UTC 2011 i686 GNU/Linux

ga9amel@azrael:~$ python -V
Python 2.6.6

ga9amel@azrael:$ sudo apt-get install libtool
ga9amel@azrael:$ sudo apt-get install autoreconf
ga9amel@azrael:$ git clone git://git.carnivore.it/libemu.git
ga9amel@azrael:$ cd libemu
ga9amel@azrael:$ autoreconf -v -i
ga9amel@azrael:$ ./configure --prefix=/opt/libemu
ga9amel@azrael:~$ sudo make install
--------------------------------------------------------------------------------------------------//
I don't know why do i get error...

ga9amel@azrael:~/buffer-pylibemu-4483b0a$ python setup.py build
running build
running build_ext
building 'pylibemu' extension
gcc -pthread -fno-strict-aliasing -DNDEBUG -g -fwrapv -O2 -Wall -Wstrict-prototypes -fPIC -I/opt/libemu/include -I/usr/include/python2.6 -c src/pylibemu.c -o build/temp.linux-i686-2.6/src/pylibemu.o
src/pylibemu.c:1942:157: macro "strncat" passed 4 arguments, but takes just 3
src/pylibemu.c: In function __pyx_f_8pylibemu_10EmuProfile_build_sep': src/pylibemu.c:1942: warning: assignment from incompatible pointer type src/pylibemu.c:2008:177: macro "strncat" passed 4 arguments, but takes just 3 src/pylibemu.c: In function__pyx_f_8pylibemu_10EmuProfile_log_function_header':
src/pylibemu.c:2008: warning: assignment from incompatible pointer type
src/pylibemu.c:2054:171: macro "strncat" passed 4 arguments, but takes just 3
src/pylibemu.c: In function __pyx_f_8pylibemu_10EmuProfile_log_bracket_closed': src/pylibemu.c:2054: warning: assignment from incompatible pointer type src/pylibemu.c:2099:177: macro "strncat" passed 4 arguments, but takes just 3 src/pylibemu.c: In function__pyx_f_8pylibemu_10EmuProfile_log_array_start':
src/pylibemu.c:2099: warning: assignment from incompatible pointer type
src/pylibemu.c:2144:177: macro "strncat" passed 4 arguments, but takes just 3
src/pylibemu.c: In function __pyx_f_8pylibemu_10EmuProfile_log_array_end': src/pylibemu.c:2144: warning: assignment from incompatible pointer type src/pylibemu.c:2189:177: macro "strncat" passed 4 arguments, but takes just 3 src/pylibemu.c: In function__pyx_f_8pylibemu_10EmuProfile_log_struct_start':
src/pylibemu.c:2189: warning: assignment from incompatible pointer type
src/pylibemu.c:2234:177: macro "strncat" passed 4 arguments, but takes just 3
src/pylibemu.c: In function __pyx_f_8pylibemu_10EmuProfile_log_struct_end': src/pylibemu.c:2234: warning: assignment from incompatible pointer type src/pylibemu.c:2279:177: macro "strncat" passed 4 arguments, but takes just 3 src/pylibemu.c: In function__pyx_f_8pylibemu_10EmuProfile_emu_profile_argument_render_int':
src/pylibemu.c:2279: warning: assignment from incompatible pointer type
src/pylibemu.c:2324:177: macro "strncat" passed 4 arguments, but takes just 3
src/pylibemu.c: In function __pyx_f_8pylibemu_10EmuProfile_emu_profile_argument_render_string': src/pylibemu.c:2324: warning: assignment from incompatible pointer type src/pylibemu.c:2369:177: macro "strncat" passed 4 arguments, but takes just 3 src/pylibemu.c: In function__pyx_f_8pylibemu_10EmuProfile_emu_profile_argument_render_bytea':
src/pylibemu.c:2369: warning: assignment from incompatible pointer type
src/pylibemu.c:2437:177: macro "strncat" passed 4 arguments, but takes just 3
src/pylibemu.c: In function __pyx_f_8pylibemu_10EmuProfile_emu_profile_argument_render_ptr': src/pylibemu.c:2437: warning: assignment from incompatible pointer type src/pylibemu.c:2502:177: macro "strncat" passed 4 arguments, but takes just 3 src/pylibemu.c: In function__pyx_f_8pylibemu_10EmuProfile_emu_profile_argument_render_ip':
src/pylibemu.c:2502: warning: assignment from incompatible pointer type
src/pylibemu.c:2557:177: macro "strncat" passed 4 arguments, but takes just 3
src/pylibemu.c: In function __pyx_f_8pylibemu_10EmuProfile_emu_profile_argument_render_port': src/pylibemu.c:2557: warning: assignment from incompatible pointer type src/pylibemu.c:2602:177: macro "strncat" passed 4 arguments, but takes just 3 src/pylibemu.c: In function__pyx_f_8pylibemu_10EmuProfile_emu_profile_argument_render_none':
src/pylibemu.c:2602: warning: assignment from incompatible pointer type
src/pylibemu.c:2677:177: macro "strncat" passed 4 arguments, but takes just 3
src/pylibemu.c: In function __pyx_f_8pylibemu_10EmuProfile_emu_profile_function_render_int': src/pylibemu.c:2677: warning: assignment from incompatible pointer type src/pylibemu.c:2722:177: macro "strncat" passed 4 arguments, but takes just 3 src/pylibemu.c: In function__pyx_f_8pylibemu_10EmuProfile_emu_profile_function_render_ptr':
src/pylibemu.c:2722: warning: assignment from incompatible pointer type
error: command 'gcc' failed with exit status 1

Same as buffer/thug#155

emu_profile_output() result will be flush out if call env_w32_hook_check().

---code begin-----------
01 import pylibemu
02
03 emu = pylibemu.Emulator()
04 '''
05 00000000 B8 6D 13 86 7C mov eax, 0x7C86136D
06 00000005 FF D0 call eax
07 00000007 31 C0 xor eax, eax
08 '''
09 emu.prepare('\xb8\x6d\x13\x86\x7c\xff\xd0\x31\xc0', 0)
10
11 for x in range(1,3):
12 print "eip:", hex(emu.cpu_eip_get())
13 emu.test(1)
14 print x, ') EMU PROFILE OUTPUT:'
15 print emu.emu_profile_output
16
17 #emu.env_w32_hook_check()
18 print "eip:", hex(emu.cpu_eip_get())
19 emu.test(1)
20 print x, ') EMU PROFILE OUTPUT:'
21 print emu.emu_profile_output
-----code end-----------

--------------output-begin---------
eip: 0x417000L
1 ) EMU PROFILE OUTPUT:

eip: 0x417005L
2 ) EMU PROFILE OUTPUT:

eip: 0x7c86136dL
2 ) EMU PROFILE OUTPUT:
UINT WINAPI WinExec (
LPCSTR = 0x01543340 =>
= "";
UINT uCmdShow = 835780476;
) = 32;
---------------output--end--------

Try to uncomment line 17 '#emu.env_w32_hook_check()'.
You will find emu_profile_output result is empty.

When I attempt to import pylibemu, I receive the error "undefined symbol: emu_cpu_debugflag_unset". Any thoughts on resolving this issue?

With current pylibemu, Is it possible to disassemble eip (to assembly)?

Always got Segmentation fault (core dumped) for function
memory_read_byte,
memory_read_dword,
memory_read_word
memory_read_string

This is how I call the function:
print _emu.memory_read_byte(address)

running python 2.7.3 on ubuntu 12.04

These are issues not related to my previous PR.

It appears that a small amount of memory is leaking when running tests/cpu_mem_test.py which can be identified with valgrind in the following functions:

• memory_read_string
• memory_read_block

I have not identified a fix for these at this time.

Hello,

It seems the folder emu/ is not pressent and is producing errors in the compilation build:

felmoltor@kali:~/pylibemu$ sudo python setup.py build
running build
running build_ext
building 'pylibemu' extension
gcc -pthread -fno-strict-aliasing -DNDEBUG -g -fwrapv -O2 -Wall -Wstrict-prototypes -fPIC -I/opt/libemu/include -I/usr/include/python2.7 -c src/pylibemu.c -o build/temp.linux-x86_64-2.7/src/pylibemu.o
src/pylibemu.c:319:28: fatal error: emu/emu_string.h: No such file or directory
compilation terminated.
error: command 'gcc' failed with exit status 1

Could you check it?

Thanks.

Hi,

currently, my work need me to call test repeatedly
for i in range(x):
   #do something
   pylibemu.Emulator().test(1)
   #continue do something

if x less than 5000, its working fine. But when x getting bigger, such as 1000000, my whole desktop freeze :)

looking at test() implementation, it seem quite expensive.
Is it possible to expose/wrap all needed variable to allow my code instrument emu_cpu_parse() and emu_cpu_step() so it wont using the built in function test()?

or if possible add callback function in test(), so I can execute my function in each loop before execute emu_cpu_step().

Hi.

About 3 weeks ago I had a problem with dumping the result of the emulator into my GUI which I created using PyQt4.

Now, with the modified pylibemu, my problem was solved. Here's what I did.

def runShellcode(shellcode):

emulator = Emulator()
text = ""
    shellcode=str(shellcode)

    if shellcode == "":
        return "Empty Field. Please enter shellcode."

    shellcode = shellcode.decode("hex")

emulator.new()
    offset = emulator.shellcode_getpc_test(shellcode)
    if offset < 0:
        offset = 0

    text += "Offset: " + str(offset) +"\n"
    emulator.prepare(shellcode, offset)
emulator.test()
text += emulator.emu_profile_output
    emulator.free()
return text

The emulated shellcode appears perfectly on my GUI. :)

Hello,
I have problems with setup.py.. what am I doing wrong?

running install
running build
running build_clib
running 'autoreconf -v -i -f' for library 'emu'
autoreconf: 'configure.ac' or 'configure.in' is required

root@bt:/Desktop/pylibemu-master# python setup.py build
running build
running build_ext
building 'pylibemu' extension
creating build
creating build/temp.linux-i686-2.6
creating build/temp.linux-i686-2.6/src
gcc -pthread -fno-strict-aliasing -DNDEBUG -g -fwrapv -O2 -Wall -Wstrict-prototypes -fPIC -I/opt/libemu/include -I/usr/include/python2.6 -c src/pylibemu.c -o build/temp.linux-i686-2.6/src/pylibemu.o
creating build/lib.linux-i686-2.6
gcc -pthread -shared -Wl,-O1 -Wl,-Bsymbolic-functions build/temp.linux-i686-2.6/src/pylibemu.o -L/opt/libemu/lib -lemu -o build/lib.linux-i686-2.6/pylibemu.so
root@bt:/Desktop/pylibemu-master# python setup.py install
running install
running build
running build_ext
running install_lib
copying build/lib.linux-i686-2.6/pylibemu.so -> /usr/local/lib/python2.6/dist-packages
running install_egg_info
Writing /usr/local/lib/python2.6/dist-packages/pylibemu-0.2.6.egg-info
root@bt:~/Desktop/pylibemu-master# python
Python 2.6.5 (r265:79063, Apr 16 2010, 13:09:56)
[GCC 4.4.3] on linux2
Type "help", "copyright", "credits" or "license" for more information.

import pylibemu
Traceback (most recent call last):
File "", line 1, in
ImportError: libemu.so.2: cannot open shared object file: No such file or directory
import pylibemu;
Traceback (most recent call last):
File "", line 1, in
ImportError: libemu.so.2: cannot open shared object file: No such file or directory

This is on macOS High Sierra (10.13.6). The initial issue was an install error with "pip install thug" the error was for the pylibemu dependency. I wasn't sure if there was a better place to report this error or seek assistance. Can someone please advise on how I might be able to fix this error? Thanks in advance!

Steps taken:
sudo git clone --recursive https://github.com/buffer/pylibemu.git
sudo python setup.py install

Output (Error):

running install
running build
running build_clib
running 'autoreconf -v -i -f' for library 'emu'
autoreconf: Entering directory `.'
autoreconf: configure.ac: not using Gettext
autoreconf: running: aclocal --output=aclocal.m4t
Can't exec "aclocal": No such file or directory at /usr/local/Cellar/autoconf/2.69/share/autoconf/Autom4te/FileUtils.pm line 326.
autoreconf: failed to run aclocal: No such file or directory
Traceback (most recent call last):
File "setup.py", line 244, in
libraries = ["emu"]
File "/System/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/distutils/core.py", line 151, in setup
dist.run_commands()
File "/System/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/distutils/dist.py", line 953, in run_commands
self.run_command(cmd)
File "/System/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/distutils/dist.py", line 972, in run_command
cmd_obj.run()
File "/System/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/distutils/command/install.py", line 573, in run
self.run_command('build')
File "/System/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/distutils/cmd.py", line 326, in run_command
self.distribution.run_command(command)
File "/System/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/distutils/dist.py", line 972, in run_command
cmd_obj.run()
File "/System/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/distutils/command/build.py", line 127, in run
self.run_command(cmd_name)
File "/System/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/distutils/cmd.py", line 326, in run_command
self.distribution.run_command(command)
File "/System/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/distutils/dist.py", line 971, in run_command
cmd_obj.ensure_finalized()
File "/System/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/distutils/cmd.py", line 109, in ensure_finalized
self.finalize_options()
File "setup.py", line 88, in finalize_options
check_call(['autoreconf', '-v', '-i', '-f'], cwd = build_info['local_source'], env = env)
File "/System/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/subprocess.py", line 540, in check_call
raise CalledProcessError(retcode, cmd)
subprocess.CalledProcessError: Command '['autoreconf', '-v', '-i', '-f']' returned non-zero exit status 1

It would be nice if pylibemu can tell any given address is a hooked winapi or not.

hint from Markus>> http://src.carnivore.it/libemu/tree/src/environment/win32/emu_env_w32.c#n553

Hi,
This is requesting to add new method to class Emulator.
These method will allow me execute shellcode without depending on test(steps) function.

def create_new_env(self):
    self._env = emu_env_new(self._emu)
    self._env.profile = emu_profile_new()


def env_linux_syscall_check_using_class_env(self):
    if self._env is NULL:
        print emu_strerror(self._emu)
        raise RuntimeError('Emulator environment error')

    #  hook = emu_env_linux_syscall_check(_env)
    if emu_env_linux_syscall_check(self._env) is NULL:
        return False

    return True

With above method, the shellcode can be emulate as follow:

    emu.create_new_env()

    for x in range (12):
        if emu.env_w32_hook_check_using_class_env() == True:
            print " eip is a hook function",
        else:
            emu.cpu_debugflag_set(1)
            ret = emu.cpu_parse()
            emu.cpu_debugflag_unset(1)
            if ret != -1:
                instr = emu.cpu_get_cpu_instr_string()
                print instr

                emu.cpu_step()
            else:
                x = "break"

Hello,

I am trying to install the program and have tried both pip install pylibemu and also using the files recursively grabbed from git and I am getting the following error and could use some help.

Package libemu was not found in the pkg-config search path.
Perhaps you should add the directory containing `libemu.pc'
to the PKG_CONFIG_PATH environment variable
No package 'libemu' found

Now I have looked for the file libemu.pc and I cannot seem to find it in this git. Can anyone assist me?