├── README.md ├── emulation ├── HG8245 │ └── aescrypt2 │ │ ├── emu.py │ │ └── rootfs │ │ ├── bin │ │ └── aescrypt2 │ │ ├── dev │ │ └── hlp │ │ ├── etc │ │ └── ld-musl-arm.path │ │ ├── lib │ │ ├── ld-linux-armhf.so.3 │ │ ├── ld-linux.so.3 │ │ ├── ld-musl-arm.so.1 │ │ ├── libclang_rt.builtins_s.so │ │ ├── libhw_ssp_basic.so │ │ ├── libpolarssl.so │ │ ├── librtos_musl_extend.so │ │ ├── libunwind_s.so │ │ ├── libunwind_s.so.1 │ │ └── libunwind_s.so.1.0 │ │ ├── proc │ │ └── wap_proc │ │ │ ├── proc_dbg │ │ │ └── wap_msg_group │ │ └── var │ │ └── ksf_check_done └── pancakecon_crack │ ├── crack │ ├── crackme.c │ └── solver.py ├── fuzzing └── airties5650_firmware │ ├── .gdb_history │ ├── 5650v3TT.7z │ ├── afl_inputs │ └── a │ ├── afl_outputs │ └── default │ │ ├── cmdline │ │ ├── crashes │ │ ├── README.txt │ │ ├── id:000000,sig:06,src:000000,time:601826,op:havoc,rep:64 │ │ ├── id:000001,sig:06,src:000000,time:602737,op:havoc,rep:64 │ │ ├── id:000002,sig:06,src:000000,time:603025,op:havoc,rep:8 │ │ ├── id:000003,sig:06,src:000000,time:603241,op:havoc,rep:32 │ │ ├── id:000004,sig:06,src:000000,time:603975,op:havoc,rep:32 │ │ ├── id:000005,sig:06,src:000000,time:604206,op:havoc,rep:16 │ │ ├── id:000006,sig:06,src:000000,time:606752,op:havoc,rep:64 │ │ └── id:000007,sig:06,src:000000,time:607056,op:havoc,rep:32 │ │ ├── fuzz_bitmap │ │ ├── fuzzer_setup │ │ ├── fuzzer_stats │ │ ├── plot_data │ │ └── queue │ │ ├── .state │ │ ├── redundant_edges │ │ │ └── id:000001,src:000000,time:601238,op:havoc,rep:4,+cov │ │ └── variable_behavior │ │ │ └── id:000002,src:000000,time:983114,op:havoc,rep:32,+cov │ │ ├── id:000000,time:0,orig:a │ │ ├── id:000001,src:000000,time:601238,op:havoc,rep:4,+cov │ │ └── id:000002,src:000000,time:983114,op:havoc,rep:32,+cov │ ├── airties5650_mips32.py │ ├── airties5650_mips32_linux.sh │ ├── crash_input │ └── emu.py └── malware └── metasploit_shellcode └── analyzing_metasploit_shellcode.py /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/README.md -------------------------------------------------------------------------------- /emulation/HG8245/aescrypt2/emu.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/emulation/HG8245/aescrypt2/emu.py -------------------------------------------------------------------------------- /emulation/HG8245/aescrypt2/rootfs/bin/aescrypt2: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/emulation/HG8245/aescrypt2/rootfs/bin/aescrypt2 -------------------------------------------------------------------------------- /emulation/HG8245/aescrypt2/rootfs/dev/hlp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/emulation/HG8245/aescrypt2/rootfs/dev/hlp -------------------------------------------------------------------------------- /emulation/HG8245/aescrypt2/rootfs/etc/ld-musl-arm.path: -------------------------------------------------------------------------------- 1 | /lib 2 | -------------------------------------------------------------------------------- /emulation/HG8245/aescrypt2/rootfs/lib/ld-linux-armhf.so.3: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/emulation/HG8245/aescrypt2/rootfs/lib/ld-linux-armhf.so.3 -------------------------------------------------------------------------------- /emulation/HG8245/aescrypt2/rootfs/lib/ld-linux.so.3: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/emulation/HG8245/aescrypt2/rootfs/lib/ld-linux.so.3 -------------------------------------------------------------------------------- /emulation/HG8245/aescrypt2/rootfs/lib/ld-musl-arm.so.1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/emulation/HG8245/aescrypt2/rootfs/lib/ld-musl-arm.so.1 -------------------------------------------------------------------------------- /emulation/HG8245/aescrypt2/rootfs/lib/libclang_rt.builtins_s.so: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/emulation/HG8245/aescrypt2/rootfs/lib/libclang_rt.builtins_s.so -------------------------------------------------------------------------------- /emulation/HG8245/aescrypt2/rootfs/lib/libhw_ssp_basic.so: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/emulation/HG8245/aescrypt2/rootfs/lib/libhw_ssp_basic.so -------------------------------------------------------------------------------- /emulation/HG8245/aescrypt2/rootfs/lib/libpolarssl.so: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/emulation/HG8245/aescrypt2/rootfs/lib/libpolarssl.so -------------------------------------------------------------------------------- /emulation/HG8245/aescrypt2/rootfs/lib/librtos_musl_extend.so: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/emulation/HG8245/aescrypt2/rootfs/lib/librtos_musl_extend.so -------------------------------------------------------------------------------- /emulation/HG8245/aescrypt2/rootfs/lib/libunwind_s.so: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/emulation/HG8245/aescrypt2/rootfs/lib/libunwind_s.so -------------------------------------------------------------------------------- /emulation/HG8245/aescrypt2/rootfs/lib/libunwind_s.so.1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/emulation/HG8245/aescrypt2/rootfs/lib/libunwind_s.so.1 -------------------------------------------------------------------------------- /emulation/HG8245/aescrypt2/rootfs/lib/libunwind_s.so.1.0: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/emulation/HG8245/aescrypt2/rootfs/lib/libunwind_s.so.1.0 -------------------------------------------------------------------------------- /emulation/HG8245/aescrypt2/rootfs/proc/wap_proc/proc_dbg: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /emulation/HG8245/aescrypt2/rootfs/proc/wap_proc/wap_msg_group: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/emulation/HG8245/aescrypt2/rootfs/proc/wap_proc/wap_msg_group -------------------------------------------------------------------------------- /emulation/HG8245/aescrypt2/rootfs/var/ksf_check_done: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /emulation/pancakecon_crack/crack: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/emulation/pancakecon_crack/crack -------------------------------------------------------------------------------- /emulation/pancakecon_crack/crackme.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/emulation/pancakecon_crack/crackme.c -------------------------------------------------------------------------------- /emulation/pancakecon_crack/solver.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/emulation/pancakecon_crack/solver.py -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/.gdb_history: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/fuzzing/airties5650_firmware/.gdb_history -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/5650v3TT.7z: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/fuzzing/airties5650_firmware/5650v3TT.7z -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/afl_inputs/a: -------------------------------------------------------------------------------- 1 | a 2 | -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/afl_outputs/default/cmdline: -------------------------------------------------------------------------------- 1 | python3 2 | ./airties5630_mips32.py 3 | @@ 4 | -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/afl_outputs/default/crashes/README.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/fuzzing/airties5650_firmware/afl_outputs/default/crashes/README.txt -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/afl_outputs/default/crashes/id:000000,sig:06,src:000000,time:601826,op:havoc,rep:64: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/fuzzing/airties5650_firmware/afl_outputs/default/crashes/id:000000,sig:06,src:000000,time:601826,op:havoc,rep:64 -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/afl_outputs/default/crashes/id:000001,sig:06,src:000000,time:602737,op:havoc,rep:64: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/fuzzing/airties5650_firmware/afl_outputs/default/crashes/id:000001,sig:06,src:000000,time:602737,op:havoc,rep:64 -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/afl_outputs/default/crashes/id:000002,sig:06,src:000000,time:603025,op:havoc,rep:8: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/fuzzing/airties5650_firmware/afl_outputs/default/crashes/id:000002,sig:06,src:000000,time:603025,op:havoc,rep:8 -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/afl_outputs/default/crashes/id:000003,sig:06,src:000000,time:603241,op:havoc,rep:32: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/fuzzing/airties5650_firmware/afl_outputs/default/crashes/id:000003,sig:06,src:000000,time:603241,op:havoc,rep:32 -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/afl_outputs/default/crashes/id:000004,sig:06,src:000000,time:603975,op:havoc,rep:32: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/fuzzing/airties5650_firmware/afl_outputs/default/crashes/id:000004,sig:06,src:000000,time:603975,op:havoc,rep:32 -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/afl_outputs/default/crashes/id:000005,sig:06,src:000000,time:604206,op:havoc,rep:16: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/fuzzing/airties5650_firmware/afl_outputs/default/crashes/id:000005,sig:06,src:000000,time:604206,op:havoc,rep:16 -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/afl_outputs/default/crashes/id:000006,sig:06,src:000000,time:606752,op:havoc,rep:64: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/fuzzing/airties5650_firmware/afl_outputs/default/crashes/id:000006,sig:06,src:000000,time:606752,op:havoc,rep:64 -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/afl_outputs/default/crashes/id:000007,sig:06,src:000000,time:607056,op:havoc,rep:32: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/fuzzing/airties5650_firmware/afl_outputs/default/crashes/id:000007,sig:06,src:000000,time:607056,op:havoc,rep:32 -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/afl_outputs/default/fuzz_bitmap: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/fuzzing/airties5650_firmware/afl_outputs/default/fuzz_bitmap -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/afl_outputs/default/fuzzer_setup: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/fuzzing/airties5650_firmware/afl_outputs/default/fuzzer_setup -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/afl_outputs/default/fuzzer_stats: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/afl_outputs/default/plot_data: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/fuzzing/airties5650_firmware/afl_outputs/default/plot_data -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/afl_outputs/default/queue/.state/redundant_edges/id:000001,src:000000,time:601238,op:havoc,rep:4,+cov: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/afl_outputs/default/queue/.state/variable_behavior/id:000002,src:000000,time:983114,op:havoc,rep:32,+cov: -------------------------------------------------------------------------------- 1 | ../../id:000002,src:000000,time:983114,op:havoc,rep:32,+cov -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/afl_outputs/default/queue/id:000000,time:0,orig:a: -------------------------------------------------------------------------------- 1 | a 2 | -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/afl_outputs/default/queue/id:000001,src:000000,time:601238,op:havoc,rep:4,+cov: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/fuzzing/airties5650_firmware/afl_outputs/default/queue/id:000001,src:000000,time:601238,op:havoc,rep:4,+cov -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/afl_outputs/default/queue/id:000002,src:000000,time:983114,op:havoc,rep:32,+cov: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/fuzzing/airties5650_firmware/afl_outputs/default/queue/id:000002,src:000000,time:983114,op:havoc,rep:32,+cov -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/airties5650_mips32.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/fuzzing/airties5650_firmware/airties5650_mips32.py -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/airties5650_mips32_linux.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/fuzzing/airties5650_firmware/airties5650_mips32_linux.sh -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/crash_input: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/fuzzing/airties5650_firmware/crash_input -------------------------------------------------------------------------------- /fuzzing/airties5650_firmware/emu.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/fuzzing/airties5650_firmware/emu.py -------------------------------------------------------------------------------- /malware/metasploit_shellcode/analyzing_metasploit_shellcode.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/echel0nn/having-fun-with-qiling/HEAD/malware/metasploit_shellcode/analyzing_metasploit_shellcode.py --------------------------------------------------------------------------------