Create a gist now

Instantly share code, notes, and snippets.

@williballenthin /strings.py
Last active Jul 12, 2017

What would you like to do?
Download ZIP
Extract ASCII and Unicode strings using Python.
Raw
strings.py
import re
from collections import namedtuple
ASCII_BYTE = " !\"#\$%&\'\(\)\*\+,-\./0123456789:;<=>\?@ABCDEFGHIJKLMNOPQRSTUVWXYZ\[\]\^_`abcdefghijklmnopqrstuvwxyz\{\|\}\\\~\t"
String = namedtuple("String", ["s", "offset"])
def ascii_strings(buf, n=4):
reg = "([%s]{%d,})" % (ASCII_BYTE, n)
ascii_re = re.compile(reg)
for match in ascii_re.finditer(buf):
yield String(match.group().decode("ascii"), match.start())
def unicode_strings(buf, n=4):
reg = b"((?:[%s]\x00){%d,})" % (ASCII_BYTE, n)
uni_re = re.compile(reg)
for match in uni_re.finditer(buf):
try:
yield String(match.group().decode("utf-16"), match.start())
except UnicodeDecodeError:
pass
def main():
import sys
with open(sys.argv[1], 'rb') as f:
b = f.read()
for s in ascii_strings(b, n=4):
print('0x{:x}: {:s}'.format(s.offset, s.s))
for s in unicode_strings(b):
print('0x{:x}: {:s}'.format(s.offset, s.s))
if __name__ == '__main__':
main()
@williballenthin
Owner

williballenthin commented Apr 7, 2016 

# ASCII strings from GNU strings
$ strings -n 4 -e l -a /bin/ls  | wc -l
1

# Unicode strings from GNU strings
$ strings -n 4 -a /bin/ls  | wc -l                                                               
1293

# ASCII and Unicode strings from this snippet
$ env/bin/python strings.py /bin/ls | wc -l
1294
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment