Added python2, python3, perl output options

Author: p0dalirius

README.md

@@ -1,17 +1,19 @@
-[![img release](https://img.shields.io/github/commit-activity/m/Ooggle/shellcoding-companion.svg?sanitize=true&color=blue)](#)
-[![img last commit](https://img.shields.io/github/last-commit/Ooggle/shellcoding-companion.svg)](#)
-[![img last release](https://img.shields.io/github/release/Ooggle/shellcoding-companion.svg?color=red)](#)
-[![img last release](https://img.shields.io/twitter/follow/Ooggle_.svg?style=social)](https://twitter.com/Ooggle_)
+![](./.github/banner.png)
 
-# shellcoding-companion
+<p align="center">
+    A python script to automatically generate shellcode payload from assembly files.
+    <br>
+    <img alt="GitHub release (latest by date)" src="https://img.shields.io/github/v/release/Ooggle/shellcoding-companion">
+    <img alt="img release" src="https://img.shields.io/github/commit-activity/m/Ooggle/shellcoding-companion.svg?sanitize=true&color=blue">
+    <img alt="img last commit" src="https://img.shields.io/github/last-commit/Ooggle/shellcoding-companion.svg">
+    <img alt="img last release" src="https://img.shields.io/github/release/Ooggle/shellcoding-companion.svg?color=red">
+    <a href="https://twitter.com/intent/follow?screen_name=Ooggle_" title="Follow"><img src="https://img.shields.io/twitter/follow/Ooggle_?label=Ooggle_&style=social"></a>
+    <br>
+</p>
 
-## Dependancies
+## Requirements
 
-- nasm
-- objdump
-- python3
-
-## Setup
+To use this tool, you first need to install `nasm`, `objdump` and `python3`. You can install them with:
 
 ```sh
 sudo apt install nasm
@@ -20,5 +22,32 @@ sudo apt install nasm
 ## Usage
 
 ```sh
-python3 shellcoding-companion.py -h
+$ ./shellcoding-companion.py -h
+
+ __ _          _ _               _ _                      
+/ _\ |__   ___| | | ___ ___   __| (_)_ __   __ _          
+\ \| '_ \ / _ \ | |/ __/ _ \ / _` | | '_ \ / _` |         
+_\ \ | | |  __/ | | (_| (_) | (_| | | | | | (_| |         
+\__/_| |_|\___|_|_|\___\___/ \__,_|_|_| |_|\__, |_v0.2.0
+           / __\___  _ __ ___  _ __   __ _ |___/(_) ___  _ __
+          / /  / _ \| '_ ` _ \| '_ \ / _` | '_ \| |/ _ \| '_ \ 
+         / /__| (_) | | | | | | |_) | (_| | | | | | (_) | | | |
+         \____/\___/|_| |_| |_| .__/ \__,_|_| |_|_|\___/|_| |_|
+                    By Ooggle |_| https://twitter.com/Ooggle_
+
+
+usage: ./shellcoding-companion.py [-h] [-o OUTPUT] [-p] source [source ...]
+
+positional arguments:
+  source                NASM source(s) file(s) (Example: shellcode.s)
+
+optional arguments:
+  -h, --help            show this help message and exit
+  -o OUTPUT, --output OUTPUT
+                        Output file for the shellcode. (default: None)
+  -p, --python          Output python command to generate the shellcode from command line. (default: False)
 ```
+
+## Contributing
+
+Pull requests are welcome. Feel free to open an issue if you want to add other features.

lib/shellcode_parser.py

@@ -1,36 +1,42 @@
 #!/usr/bin/env python3
+# -*- coding: utf-8 -*-
+# File name          : shellcode_parser.py
+# Author             : Ooggle (@Ooggle_)
+# Date created       : 21 Jun 2022
+
+import os
 
-from os import popen, system
 
 def asm_parse(pathname, label_start, opcode_end=False, debug=False):
-    objdump = popen(f' objdump -d {pathname}').read().split('\n')
+    objdump = os.popen(f'objdump -d {pathname}').read().split('\n')
 
     # skip to start of shellcode
     i = 0
     for i in range(len(objdump)):
         if label_start in objdump[i]:
             break
-    i+= 1
+    i += 1
 
     shellcode = ''
     # start parsing
     while i < len(objdump):
         if objdump[i][10:32].rstrip() != '':
-            shellcode+= objdump[i][10:32].rstrip() + ' '
+            shellcode += objdump[i][10:32].rstrip() + ' '
             if opcode_end:
                 if opcode_end in objdump[i]:
                     break
-            i+= 1
+            i += 1
         else:
             break
-    
+
     shellcode_len = len(shellcode.split(' ')) - 1
     if debug:
-        print(f'Shellcode  length: {(shellcode_len)}')
+        print(f'Shellcode length: {(shellcode_len)}')
         print(shellcode)
     return shellcode, shellcode_len
 
+
 def asm_build(program_name):
-    ret = system(f'nasm -f elf64 {program_name} -o {program_name}.o && ld -s ./{program_name}.o -o ./{program_name}.bin')
-    system(f'rm -rf {program_name}.o')
+    ret = os.system(f'nasm -f elf64 {program_name} -o {program_name}.o && ld -s ./{program_name}.o -o ./{program_name}.bin')
+    os.system(f'rm -rf {program_name}.o')
     return ret

shellcoding-companion.py

@@ -1,5 +1,11 @@
 #!/usr/bin/env python3
+# -*- coding: utf-8 -*-
+# File name          : shellcode_parser.py
+# Author             : Ooggle (@Ooggle_)
+# Date created       : 21 Jun 2022
 
+import os
+import sys
 from lib.shellcode_parser import asm_parse, asm_build
 from binascii import unhexlify
 import argparse
@@ -22,57 +28,100 @@
 
 print(banner)
 
+
 def parse_args():
     parser = argparse.ArgumentParser(
-        prog='shellcoding-companion.py',
-        formatter_class=argparse.ArgumentDefaultsHelpFormatter)
-    parser.add_argument('-o', '--output', nargs=1, help='output file for the shellcode')
-    parser.add_argument('-p', '--python', action=argparse.BooleanOptionalAction, help='output python command to generate the shellcode from command line', metavar='')
-    parser.add_argument('source', nargs='+', help='nasm source(s) file(s) (Example: shellcode.s)')
+        prog=sys.argv[0],
+        formatter_class=argparse.ArgumentDefaultsHelpFormatter
+    )
+    parser.add_argument("-o", "--output", default=None, help="Output file for the shellcode.")
+
+    group = parser.add_argument_group(description="Output languages")
+    group.add_argument("-p2", "--python2", default=False, action="store_true", help='Output python2 command to generate the shellcode from command line.')
+    group.add_argument("-p3", "--python3", default=False, action="store_true", help='Output python3 command to generate the shellcode from command line.')
+    group.add_argument("-P", "--perl", default=False, action="store_true", help='Output perl command to generate the shellcode from command line.')
+
+    parser.add_argument("source", nargs="+", help="NASM source(s) file(s) (Example: shellcode.s)")
     args = parser.parse_args()
-    #parser.print_help()
     return args
 
+
 if __name__ == '__main__':
     args = parse_args()
-    
+
+    if len(os.popen("which nasm").read()) == 0:
+        print("\x1b[1;31m[!] Missing requirement: nasm\x1b[0m")
+        exit(0)
+
+    if len(os.popen("which objdump").read()) == 0:
+        print("\x1b[1;31m[!] Missing requirement: objdump\x1b[0m")
+        exit(0)
+
     # building shellcode(s)
-    print(f'\x1b[1;32m[+] building shellcode(s): {args.source}\x1b[0m')
+    print(f'\x1b[1;32m[+] Building shellcode(s): {args.source}\x1b[0m')
     for source in args.source:
-        print(f'\x1b[0;32m[+] {source}...\x1b[0m', end='')
+        print(f'\x1b[0;32m[+] {source} ...\x1b[0m', end='')
         if asm_build(source) != 0:
-            print(f'\x1b[1;31m[-] ERROR: build failed for "{source}"\x1b[0m')
-            quit(1)
-        print(f'\x1b[1;32m success\x1b[0m')
-
+            print(f'\x1b[1;31m[!] ERROR: build failed for "{source}"\x1b[0m')
+            exit(1)
+        print(f'\x1b[1;32m Success!\x1b[0m')
 
     # parsing shellcode(s)
-    print('\n\x1b[1;32m[+] parsing shellcode(s)\x1b[0m')
+    print('\n\x1b[1;32m[+] Parsing shellcode(s)\x1b[0m')
     bytecodes = []
     for source in args.source:
-        print(f'\x1b[0;32m[+] {source}.bin...\x1b[0m')
+        print(f'\x1b[0;32m[+] {source}.bin ...\x1b[0m')
         (tmpbytes, _) = asm_parse(f'{source}.bin', '<.text>')
         bytecodes.append([unhexlify(b) for b in tmpbytes.split(' ') if b != ''])
 
-
     # saving final shellcode to file
     if args.output:
-        print(f'\n\x1b[1;32m[+] saving shellcode to "{args.output[0]}"\x1b[0m')
-        
-        with open(args.output[0], 'wb') as f:
+        print(f'\n\x1b[1;32m[+] Saving shellcode to "{args.output}"\x1b[0m')
+
+        with open(args.output, 'wb') as f:
             for bytecode in bytecodes:
                 for b in bytecode:
                     f.write(b)
-        print(f'\x1b[0;32m[+] done\x1b[0m')
 
-    if args.python:
-        print(f'\n\x1b[1;32m[+] generating python command\x1b[0m')
+        print(f'\x1b[0;32m[+] Done! {sum([len(b) for b in bytecodes])} bytes written to {args.output}\x1b[0m')
+
+    if args.python2:
+        print(f'\n\x1b[1;32m[+] Generating python command\x1b[0m')
+
+        hex_bytecodes = ""
+        for bytecode in bytecodes:
+            hex_bytecode = ''.join([
+                '\\x' + hex(int.from_bytes(c, 'big'))[2:].rjust(2, '0')
+                for c in bytecode
+            ])
+            hex_bytecodes += hex_bytecode
+
+        print(f'python2 -c \'print "{hex_bytecodes}"\'')
+
+    if args.python3:
+        print(f'\n\x1b[1;32m[+] Generating python command\x1b[0m')
+
+        hex_bytecodes = ""
+        for bytecode in bytecodes:
+            hex_bytecode = ''.join([
+                '\\x' + hex(int.from_bytes(c, 'big'))[2:].rjust(2, '0')
+                for c in bytecode
+            ])
+            hex_bytecodes += hex_bytecode
+
+        print(f'python3 -c \'print "{hex_bytecodes}"\'')
+
+    if args.perl:
+        print(f'\n\x1b[1;32m[+] Generating perl command\x1b[0m')
 
-        print('python2 -c \'print "', end='')
+        hex_bytecodes = ""
         for bytecode in bytecodes:
-            for c in bytecode:
-                print('\\x' + hex(int.from_bytes(c, 'big'))[2:].rjust(2, '0'), end='')
+            hex_bytecode = ''.join([
+                '\\x' + hex(int.from_bytes(c, 'big'))[2:].rjust(2, '0')
+                for c in bytecode
+            ])
+            hex_bytecodes += hex_bytecode
 
-        print('"\'')
+        print(f'perl -e \'print "{hex_bytecodes}"\'')
 
-    print('\n\x1b[1;32m[+] done\x1b[0m\n')
+    print('\n\x1b[1;32m[+] Done!\x1b[0m\n')