2014-09-30 11:01:45 +02:00
.Dd Sep 30 , 2014
.Dt RAGG2 1
2014-09-30 11:37:26 +02:00
.Sh NAME
.Nm ragg2
2015-04-27 23:15:39 -04:00
.Nd radare2 frontend for r_egg, compile programs into tiny binaries for x86-32/64 and arm.
2011-10-12 03:24:19 +02:00
.Sh SYNOPSIS
.Nm ragg2
.Op Fl a Ar arch
.Op Fl b Ar bits
.Op Fl k Ar kernel
.Op Fl f Ar format
.Op Fl o Ar file
2011-11-30 20:59:58 +01:00
.Op Fl i Ar shellcode
.Op Fl I Ar path
.Op Fl e Ar encoder
.Op Fl B Ar hexpairs
.Op Fl c Ar k=v
.Op Fl C Ar file
2014-10-29 02:44:21 +01:00
.Op Fl n Ar num32
.Op Fl N Ar num64
2011-11-30 20:59:58 +01:00
.Op Fl d Ar off:dword
.Op Fl D Ar off:qword
.Op Fl w Ar off:hexpair
.Op Fl p Ar padding
2014-09-05 16:03:40 +02:00
.Op Fl P Ar pattern
2015-12-13 11:51:32 -05:00
.Op Fl q Ar fragment
2014-10-20 02:14:19 +02:00
.Op Fl FOLsrxvhz
2011-10-12 03:24:19 +02:00
.Sh DESCRIPTION
2011-10-13 01:00:07 +02:00
ragg2 is a frontend for r_egg, compile programs into tiny binaries for x86-32/64 and arm.
2011-10-12 03:24:19 +02:00
.Pp
This tool is experimental and it is a rewrite of the old rarc2 and rarc2-tool programs as a library and integrated with r_asm and r_bin.
.Pp
Programs generated by r_egg are relocatable and can be injected in a running process or on-disk binary file.
2011-11-30 20:59:58 +01:00
.Pp
ragg2-cc is another tool that comes with r2 and it is used to generate shellcodes from C code. The final code can be linked with rabin2 and it is relocatable, so it can be used to inject it on any remote process.
.Pp
ragg2-cc is conceptually based on shellforge4, but only linux/osx x86-32/64 platforms are supported.
2011-10-12 03:24:19 +02:00
.Sh DIRECTIVES
.Pp
The rr2 (ragg2) configuration file accepts the following directives, described as key=value entries and comments defined as lines starting with '#'.
.Bl -tag -width Fl
.It Fl a Ar arch
set architecture x86, arm
.It Fl b Ar bits
32 or 64
.It Fl k Ar kernel
windows, linux or osx
.It Fl f Ar format
select binary format (pe, elf, mach0)
.It Fl o Ar file
output file to write result of compilation
2011-11-30 20:59:58 +01:00
.It Fl i Ar shellcode
2011-12-05 02:42:06 +01:00
specify shellcode name to be used (see \- L)
2011-11-30 20:59:58 +01:00
.It Fl e Ar encoder
2011-12-05 02:42:06 +01:00
specify encoder name to be used (see \- L)
2011-11-30 20:59:58 +01:00
.It Fl B Ar hexpair
specify shellcode as hexpairs
.It Fl c Ar k=v
set configure option for the shellcode encoder. The argument must be key=value.
.It Fl C Ar file
include contents of file
.It Fl d Ar off:dword
Patch final buffer with given dword at specified offset
.It Fl D Ar off:qword
Patch final buffer with given qword at specified offset
.It Fl w Ar off:hexpairs
Patch final buffer with given hexpairs at specified offset
2014-10-29 02:44:21 +01:00
.It Fl n Ar num32
Append a 32bit number in little endian
.It Fl N Ar num64
Append a 64bit number in little endian
2011-11-30 20:59:58 +01:00
.It Fl p Ar padding
Specify generic paddings with a format string.
2014-09-05 16:03:40 +02:00
.It Fl P Ar size
Prepend debruijn sequence of given length.
2015-07-22 02:39:00 -04:00
.It Fl q Ar fragment
Output offset of debruijn sequence fragment.
2011-10-12 03:24:19 +02:00
.It Fl F
autodetect native file format (osx=mach0, linux=elf, ..)
.It Fl O
use default output file (filename without extension or a.out)
2011-11-30 20:59:58 +01:00
.It Fl I Ar path
2011-10-12 03:24:19 +02:00
add include path
.It Fl s
show assembler code
2015-05-28 11:04:00 -04:00
.It Fl r
show raw bytes instead of hexpairs
2011-10-12 03:24:19 +02:00
.It Fl x
execute (just-in-time)
2014-10-20 02:14:19 +02:00
.It Fl z
output in C string syntax
2011-10-12 03:24:19 +02:00
.El
.Sh EXAMPLE
.Pp
$ cat hi.r
/* hello world in r_egg */
2015-06-01 16:34:51 +02:00
write@syscall(4); //x64 write@syscall(1);
exit@syscall(1); //x64 exit@syscall(60);
2013-12-31 23:52:46 -08:00
.Pp
2011-10-12 03:24:19 +02:00
main@global(128) {
2012-07-02 00:38:02 +02:00
.var0 = "hi!\\ n";
2011-10-12 03:24:19 +02:00
write(1,.var0, 4);
exit(0);
}
2011-10-13 01:00:07 +02:00
$ ragg2 \- O \- F hi.r
2011-10-12 03:24:19 +02:00
$ ./hi
hi!
.Pp
2011-11-30 20:59:58 +01:00
.Pp
$ cat hi.c
main() {
write(1, "Hello\n ", 6);
exit(0);
}
$ ragg2 hi.c
$ ./hi.c.bin
Hello
2011-10-12 03:24:19 +02:00
.Sh SEE ALSO
.Pp
.Xr radare2(1) ,
.Xr rahash2(1) ,
.Xr rafind2(1) ,
.Xr rabin2(1) ,
.Xr rafind2(1) ,
.Xr radiff2(1) ,
.Xr rasm2(1) ,
.Sh AUTHORS
.Pp
2013-12-31 23:52:46 -08:00
Written by pancake <pancake@nopcode.org>.