Magic-Mirror/radare2
1
0
Fork 0
mirror of https://github.com/radareorg/radare2.git synced 2024-12-04 19:47:31 +00:00
Code Issues Actions 6 Packages Projects Releases Wiki Activity

Implement bin.b64str to automatically decode base64 strings

Browse Source
This commit is contained in:
pancake 2017-10-21 12:01:46 +02:00
parent a2f7cbeb73
commit acecc645cf
2 changed files with 15 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
libr/core/cbin.c
View File

@ -309,6 +309,7 @@ static bool string_filter(RCore *core, const char *str) {
}
static void _print_strings(RCore *r, RList *list, int mode, int va) {
bool b64str = r_config_get_i (r->config, "bin.b64str");
int minstr = r_config_get_i (r->config, "bin.minstr");
int maxstr = r_config_get_i (r->config, "bin.maxstr");
RBin *bin = r->bin;
@ -330,6 +331,7 @@ static void _print_strings(RCore *r, RList *list, int mode, int va) {
r_flag_space_set (r->flags, "strings");
r_cons_break_push (NULL, NULL);
}
RBinString b64 = {0};
r_list_foreach (list, iter, string) {
const char *section_name, *type_string;
ut64 paddr, vaddr, addr;
@ -349,6 +351,17 @@ static void _print_strings(RCore *r, RList *list, int mode, int va) {
section = r_bin_get_section_at (obj, paddr, 0);
section_name = section ? section->name : "unknown";
type_string = r_bin_string_type (string->type);
if (b64str) {
ut8 *s = r_base64_decode_dyn (string->string, -1);
if (s && *s && IS_PRINTABLE (*s)) {
// TODO: add more checks
free (b64.string);
memcpy (&b64, string, sizeof (b64));
b64.string = (char *)s;
b64.size = strlen (b64.string);
string = &b64;
}
}
if (IS_MODE_SET (mode)) {
char *f_name, *str;
if (r_cons_is_breaked ()) {
@ -459,6 +472,7 @@ static void _print_strings(RCore *r, RList *list, int mode, int va) {
r_cons_printf ("\n");
}
}
R_FREE (b64.string);
if (IS_MODE_JSON (mode)) {
r_cons_printf ("]");
}

1
libr/core/cconfig.c
View File

@ -2298,6 +2298,7 @@ R_API int r_core_config_init(RCore *core) {
SETDESC (n, "Assumed string encoding for disasm");
SETOPTIONS (n, "latin1", "utf8", "utf16le", "utf32le", "guess", NULL);
SETCB ("bin.strpurge", "false", &cb_strpurge, "Try to purge false positive strings");
SETPREF ("bin.b64str", "false", "Try to debase64 the strings");
SETPREF ("bin.libs", "false", "Try to load libraries after loading main binary");
n = NODECB ("bin.strfilter", "", &cb_strfilter);
SETDESC (n, "Filter strings");