nomeaning-ctf 0.0.3

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: c3a7148c4238a98d0574bc50be9b388b0548ed7e
+  data.tar.gz: 367fe6f527bf7bc3a41d49234914ef6e21c9c374
+SHA512:
+  metadata.gz: 00af00ff18cb4c1b208ab194a69bd1daab0ccc61d9bf476fe59116e2b4f6564c03a810c1768f5753fc681bd2eff9fd3086f6017d6143ed7e565b669ca58357ca
+  data.tar.gz: dedf64cbae558382b59f8d47fd5baadb1f3cb4485f5ea59e33132e89e5700bfb2628eb55d759f208798e65265134ab306f5b2f2707abb428964a355ec437df21

data/.gitignore

@@ -0,0 +1,16 @@
+/.bundle/
+/.yardoc
+/Gemfile.lock
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+*.bundle
+*.so
+*.o
+*.a
+mkmf.log
+.idea
+*.swp

data/Gemfile

@@ -0,0 +1,4 @@
+source 'https://rubygems.org'
+
+# Specify your gem's dependencies in ctf.gemspec
+gemspec

data/LICENSE.txt

@@ -0,0 +1,22 @@
+Copyright (c) 2015 nomeaning
+
+MIT License
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,11 @@
+# CTF
+
+Add some useful method for solving CTF problems.
+
+## Usage
+
+See examples directory.
+
+## Contributing
+
+Fork and create pull request.

data/Rakefile

@@ -0,0 +1,2 @@
+require "bundler/gem_tasks"
+

data/ctf.gemspec

@@ -0,0 +1,27 @@
+# coding: utf-8
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'ctf/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = "nomeaning-ctf"
+  spec.version       = CTF::VERSION
+  spec.authors       = ["nomeaning"]
+  spec.email         = ["nomeaning@mma.club.uec.ac.jp"]
+  spec.summary       = %q{Utils for CTF}
+  spec.description   = %q{Utils for CTF}
+  spec.homepage      = "https://bitbucket.org/nomeaning777/ctf"
+  spec.license       = "MIT"
+
+  spec.files         = `git ls-files -z`.split("\x0")
+  spec.executables   = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
+  spec.test_files    = spec.files.grep(%r{^(test|spec|features)/})
+  spec.require_paths = ["lib"]
+
+  spec.add_development_dependency "bundler", "~> 1.7"
+  spec.add_development_dependency "rake", "~> 10.0"
+  spec.add_development_dependency "rspec"
+  spec.add_dependency "io-interactive"
+  spec.add_dependency "highline"
+  spec.add_dependency "metasm", '~> 1.0.2'
+end

data/examples/socket-example.rb

@@ -0,0 +1,8 @@
+require 'ctf'
+
+TCPSocket.open(ARGV[0], ARGV[1]) do |s|
+  s.echo = true # Enable debug output
+  s.echo_color = true # Enable output with color(Default)
+
+  s.expect(/hoge/) # Read until match /hoge/. See IO#expect
+end

data/lib/ctf/math.rb

@@ -0,0 +1,179 @@
+require 'prime'
+require 'pp'
+module CTF
+  module Math
+    def sqrt?(n)
+      sqrtint(n) ** 2 == n
+    end
+
+    def sqrtint(n)
+      root(n, 2)
+    end
+
+    def root(n, k)
+      low, high = 0, n + 1
+      while low + 1 < high
+        mid = (low + high) / 2
+        if n < mid ** k
+          high = mid
+        else
+          low = mid
+        end
+      end
+      low
+    end
+
+    def mod_pow(a, n, mod)
+      ret = 1
+      while n > 0
+        ret = (ret * a) % mod if n.odd?
+        a = (a * a) % mod
+        n >>= 1
+      end
+      ret
+    end
+
+    def extgcd(a,b)
+      return [1,0] if b == 0
+      y,x = extgcd(b, a % b)
+      y -= (a/b)*x
+      return [x,y]
+    end
+
+    def mod_inverse(a, mod)
+      x,y = extgcd(a, mod)
+      return x % mod
+    end
+
+    def chinese_remainder(m1,m2,a,b)
+      return (m2 * a * mod_inverse(m2,m1) + m1 * b * mod_inverse(m1,m2)) % (m1 * m2)
+    end
+
+    # 離散対数 O(k ^ (1/2) * log(mod))
+    def discrete_log(a, b, mod, k = nil)
+      n = ::Math::sqrt(k || mod).ceil + 1
+      p, q = 1, b
+      inverse = mod_pow(mod_inverse(a, mod), n, mod)
+      t = Hash.new
+      n.times do |i|
+        t[p] = i unless t.key?(q)
+        p = p * a  % mod
+      end
+      n.times do |i|
+        return i * n + t[q] if t.key?(q)
+        q = (q * inverse) % mod
+      end
+      return nil # not found
+    end
+
+    # Pohlig-Hellman Algorithmによる離散対数
+    # http://en.wikipedia.org/wiki/Pohlig%E2%80%93Hellman_algorithm
+    # require mod is prime!
+    def discrete_log2(g, e, mod)
+      res = 0
+      mod2 = 1
+      prime_factorization2(mod - 1).each do |pi, ei|
+        m = pi ** ei
+        ng = mod_pow(g,(mod - 1) / m, mod)
+        ne = mod_pow(e,(mod - 1) / m, mod)
+        x = discrete_log(ng, ne, mod, m)
+        res = chinese_remainder(mod2, m, res, x % m)
+        mod2 *= m
+      end
+      return res
+    end
+
+    def check_prime(p, count = nil)
+      return true if [2,3].include?(p)
+      return false if p.even? || p < 2
+
+      d, s = p - 1, 0
+      d, s = d >> 1, s + 1 while d.even?
+
+      count = [16, p.to_s(4).size].max unless count
+      count.times do
+        a = rand(2...(p - 1))
+        return false if p.gcd(a) != 1
+        if (x = mod_pow(a, d, p)) != 1
+          return false unless (0...s).inject(false) do |res, r| 
+            break true if(x == p - 1)
+            x = x * x % p
+            next false
+          end
+        end
+      end
+      return true
+    end
+
+    # 素因数分解(試し割り法)
+    def prime_factorization(n)
+      res = []
+      Prime.each do |p|
+        break if p * p > n
+        cnt = 0
+        cnt, n = cnt + 1, n / p while n % p == 0
+        res << [p,cnt] if cnt > 0
+      end
+      res << [n, 1] if n > 1
+      return res
+    end
+
+    # 素因数分解(Pollards-Rho)
+    def prime_factorization2(n, max_sieve = 65536, rec = true)
+      res = []
+      Prime.each do |p|
+        break if p > max_sieve
+        while n % p == 0
+          res << p
+          n =  n / p
+        end
+      end
+      if check_prime(n)
+        res << n
+      elsif n == 1
+      else
+        [1,51,73].each do |i|
+          x,y,d = 2,2,1
+          while d == 1
+            x = (x * x + i) % n
+            y = (((y * y + i) % n) ** 2 + i) % n
+            d = n.gcd((x-y).abs)
+          end
+          next if d == n
+          res += prime_factorization2(d, 0, false) + prime_factorization2(n / d, 0, false)
+          break
+        end
+      end
+      res = res.sort.uniq.map{|a| [a, res.count(a)]} if rec
+      return res
+    end
+
+    def eulerphi(n, factorized = nil)
+      factorized = prime_factorization2(n) unless factorized
+      phi = n
+      factorized.each do |p,k|
+        phi = phi - phi / p
+      end
+      phi
+    end
+
+    # 元の位数の計算
+    def order(g, mod)
+      tmp = eulerphi(mod)
+      ret = prime_factorization2(tmp)
+      order = 1
+      ret.each do |p, k|
+        order *= p ** (k - (0..k).select{|i|
+          mod_pow(g, tmp / p ** i, mod) == 1
+        }.max)
+      end
+      order
+    end
+
+    module_function :sqrtint, :root, :sqrt?
+    module_function :mod_pow, :extgcd, :mod_inverse, :chinese_remainder, :discrete_log, :check_prime
+    module_function :discrete_log2
+    module_function :prime_factorization
+    module_function :prime_factorization2
+  end
+end

data/lib/ctf/rop.rb

@@ -0,0 +1,34 @@
+require 'metasm'
+module CTF
+  module Rop
+    class RelocatableELF
+      attr :offset
+      attr_reader :elf
+      def initialize(filename, offset = 0)
+        @offset = offset
+        @elf = ::Metasm::ELF.decode_file(filename)
+        @functions = {}
+        @elf.symbols.find_all do |s|
+          s.name and s.type == 'FUNC' && s.shndx != 'UNDEF' && s.bind == 'GLOBAL'
+        end.each do |s|
+          @functions[s.name] = s.value
+        end
+      end
+
+      def function(name)
+        if @functions.include? name.to_s
+          @functions[name.to_s] + offset
+        else
+          raise RuntimeError.new("No such function #{name}")
+        end
+      end
+    end
+
+    class ELF < RelocatableELF
+      def initialize(filename)
+        super filename, 0
+      end
+    end
+  end
+end
+

data/lib/ctf/shellcode.rb

@@ -0,0 +1,32 @@
+require 'metasm'
+module CTF
+  module Shellcode
+    module X86
+      def binsh
+        shellcode = <<EOS
+        xor eax, eax
+        push eax
+        push #{"n/sh".unpack("I")[0]}
+        push #{"//bi".unpack("I")[0]}
+        mov ebx, esp
+        push eax
+        pop ecx
+        push eax
+        pop edx
+        mov al, 0xc
+        dec al
+        int 0x80
+EOS
+        Metasm::Shellcode.assemble(Metasm::Ia32.new, shellcode).encode_string
+      end
+
+      module_function :binsh
+    end
+
+    module Amd64
+      def binsh
+
+      end
+    end
+  end
+end

data/lib/ctf/socket.rb

@@ -0,0 +1,92 @@
+require 'socket'
+require 'expect'
+require 'highline'
+require 'stringio'
+require 'io/interactive'
+
+module CTF
+  module SocketWithEcho
+    attr_accessor :echo, :echo_input, :echo_output, :echo_color
+    def echo_input
+      @echo_input || STDOUT
+    end
+
+    def echo_output
+      @echo_output || STDOUT
+    end
+
+    def echo_color
+      @echo_color || true
+    end
+
+    def write(str)
+      echo_output_print str
+      super str
+    end
+
+    def read(length = nil, outbuf = '')
+      result = super length, outbuf
+      echo_input_print result if result
+      result
+    end
+
+    def interactive!(input = STDIN, output = STDOUT)
+      @echo = false
+      super input, output
+    end
+
+    def gets
+      expect("\n")[0]
+    end
+
+    # TODO: Don't ignore timeout
+    def expect(pattern, timeout = 9999999)
+      result = nil
+      loop do
+        if pattern.is_a?(Regexp)
+          break if result && result.match(pattern)
+        else
+          break if result && result.end_with?(pattern)
+        end
+        data = read(1)
+        break unless data
+        result ||= ''
+        result.force_encoding('ASCII-8BIT')
+        result << data
+      end
+      return result unless result
+      if pattern.is_a?(Regexp)
+        [result] + result.match(pattern).to_a[1..-1]
+      else
+        [result]
+      end
+    end
+
+    private
+    def echo_output_print(str)
+      if echo
+        if echo_color
+          echo_output.print HighLine.color(str, :yellow)
+        else
+          echo_output.print str
+        end
+        echo_output.flush
+      end
+    end
+
+    def echo_input_print(str)
+      if echo
+        if echo_color
+          echo_input.print HighLine.color(str, :green)
+        else
+          echo_input.print str
+        end
+        echo_input.flush
+      end
+    end
+  end
+end
+
+class BasicSocket
+  prepend CTF::SocketWithEcho
+end

data/lib/ctf/utils.rb

@@ -0,0 +1,20 @@
+module CTF
+  module Utils
+    module StringWithXor
+      def ^(s)
+        if s.is_a?(String)
+          chars.zip(s[0, length].chars).map{|a,b|
+            b ? (a.ord ^ b.ord).chr : a
+          }.join
+        else
+          s = s.to_i
+          chars.map{|a|(a.ord^s).chr}.join
+        end
+      end
+    end
+  end
+end
+
+class String
+  include CTF::Utils::StringWithXor
+end

data/lib/ctf/version.rb

@@ -0,0 +1,3 @@
+module CTF
+  VERSION = "0.0.3"
+end

data/lib/ctf.rb

@@ -0,0 +1,9 @@
+require "ctf/version"
+require 'ctf/socket'
+require 'ctf/utils'
+require 'ctf/math'
+require 'ctf/rop'
+require 'ctf/shellcode'
+
+module CTF
+end

data/spec/math_spec.rb

@@ -0,0 +1,35 @@
+require 'spec_helper'
+require 'ctf'
+
+describe CTF::Math do
+  describe '#mod_pow' do
+    it 'returns correct value' do
+      expect(CTF::Math.mod_pow(2, 5, 10)).to eq 2
+    end
+
+    it 'works very big exponent' do
+      expect(CTF::Math.mod_pow(3, 2 ** 2048, 81)).to eq 0
+      expect(CTF::Math.mod_pow(4, 2 ** 2048, 1000000009)).to eq 409738618
+    end
+  end
+
+  describe '#sqrt?' do
+    it 'return correct value' do
+      expect(CTF::Math.sqrt?(100)).to be_truthy
+      expect(CTF::Math.sqrt?(101)).to be_falsey
+      expect(CTF::Math.sqrt?(0)).to be_truthy
+      expect(CTF::Math.sqrt?(1)).to be_truthy
+      expect(CTF::Math.sqrt?(-1)).to be_falsey
+    end
+  end
+
+  describe '#sqrtint' do
+    it 'returns correct value' do
+      expect(CTF::Math.sqrtint(100)).to eq 10
+      expect(CTF::Math.sqrtint(101)).to eq 10
+      expect(CTF::Math.sqrtint(120)).to eq 10
+      expect(CTF::Math.sqrtint(99)).to eq 9
+      expect(CTF::Math.sqrtint(81)).to eq 9
+    end
+  end
+end

metadata

@@ -0,0 +1,146 @@
+--- !ruby/object:Gem::Specification
+name: nomeaning-ctf
+version: !ruby/object:Gem::Version
+  version: 0.0.3
+platform: ruby
+authors:
+- nomeaning
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2016-11-02 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: io-interactive
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: highline
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: metasm
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.0.2
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.0.2
+description: Utils for CTF
+email:
+- nomeaning@mma.club.uec.ac.jp
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- ctf.gemspec
+- examples/socket-example.rb
+- lib/ctf.rb
+- lib/ctf/math.rb
+- lib/ctf/rop.rb
+- lib/ctf/shellcode.rb
+- lib/ctf/socket.rb
+- lib/ctf/utils.rb
+- lib/ctf/version.rb
+- spec/math_spec.rb
+- spec/spec_helper.rb
+homepage: https://bitbucket.org/nomeaning777/ctf
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.5.1
+signing_key: 
+specification_version: 4
+summary: Utils for CTF
+test_files:
+- spec/math_spec.rb
+- spec/spec_helper.rb