├── CHANGELOG
├── LICENSE
├── README.md
├── README_EN.md
├── docker-menu.sh
├── fap.config
├── fap.py
├── firmadyne
    ├── .gitignore
    ├── .gitmodules
    ├── README.md
    ├── analyses
    │   ├── README.md
    │   ├── metasploit
    │   │   └── linksys_tmunblock_admin_reset_bof.rb
    │   ├── nmap.sh
    │   ├── runExploits.py
    │   ├── snmpwalk.sh
    │   └── webAccess.py
    ├── binaries
    │   ├── README.md
    │   ├── console.armel
    │   ├── console.mipseb
    │   ├── console.mipsel
    │   ├── libnvram.so.armel
    │   ├── libnvram.so.mipseb
    │   ├── libnvram.so.mipsel
    │   ├── vmlinux.mipseb
    │   ├── vmlinux.mipsel
    │   └── zImage.armel
    ├── database
    │   └── schema
    ├── download.sh
    ├── firmadyne.config
    ├── paper
    │   └── paper.pdf
    ├── scripts
    │   ├── delete.sh
    │   ├── fixImage.sh
    │   ├── getArch.sh
    │   ├── inferNetwork.sh
    │   ├── makeImage.sh
    │   ├── makeNetwork.py
    │   ├── mount.sh
    │   ├── preInit.sh
    │   ├── run-debug.sh
    │   ├── run.armel-debug.sh
    │   ├── run.armel.sh
    │   ├── run.mipseb-debug.sh
    │   ├── run.mipseb.sh
    │   ├── run.mipsel-debug.sh
    │   ├── run.mipsel.sh
    │   ├── run.sh
    │   ├── tar2db.py
    │   └── umount.sh
    └── sources
    │   ├── console
    │       ├── LICENSE.txt
    │       ├── Makefile
    │       ├── README.md
    │       └── console.c
    │   ├── extractor
    │       ├── Dockerfile
    │       ├── LICENSE.txt
    │       ├── README.md
    │       ├── extract.sh
    │       └── extractor.py
    │   ├── libnvram
    │       ├── LICENSE.txt
    │       ├── Makefile
    │       ├── README.md
    │       ├── alias.c
    │       ├── alias.h
    │       ├── config.h
    │       ├── nvram.c
    │       ├── nvram.h
    │       └── test.c
    │   └── scraper
    │       ├── .gitignore
    │       ├── LICENSE.txt
    │       ├── README.md
    │       ├── TODO.txt
    │       ├── firmware
    │           ├── __init__.py
    │           ├── items.py
    │           ├── loader.py
    │           ├── pipelines.py
    │           ├── settings.py
    │           └── spiders
    │           │   ├── 360.py
    │           │   ├── __init__.py
    │           │   ├── actiontec.py
    │           │   ├── airlink101.py
    │           │   ├── asus.py
    │           │   ├── att.py
    │           │   ├── belkin.py
    │           │   ├── buffalo.py
    │           │   ├── centurylink.py
    │           │   ├── dlink.py
    │           │   ├── foscam.py
    │           │   ├── huawei_en.py
    │           │   ├── huawei_zh.py
    │           │   ├── linksys.py
    │           │   ├── mercury.py
    │           │   ├── microstrain.py
    │           │   ├── mikrotik.py
    │           │   ├── netcore.py
    │           │   ├── netgear.py
    │           │   ├── openwireless.py
    │           │   ├── openwrt.py
    │           │   ├── pfsense.py
    │           │   ├── phicomm.py
    │           │   ├── polycom.py
    │           │   ├── qnap.py
    │           │   ├── seiki.py
    │           │   ├── supermicro.py
    │           │   ├── synology.py
    │           │   ├── tenda_en.py
    │           │   ├── tenda_zh.py
    │           │   ├── tenvis.py
    │           │   ├── ti.py
    │           │   ├── tomato-shibby.py
    │           │   ├── tomato.py
    │           │   ├── tp-link_en.py
    │           │   ├── tp-link_zh.py
    │           │   ├── trendnet.py
    │           │   ├── ubiquiti.py
    │           │   ├── ublox.py
    │           │   ├── verizon.py
    │           │   ├── xerox.py
    │           │   └── zyxel.py
    │       ├── ftp.sh
    │       ├── scraper-64332e251865a419616dd493b9e74c30fad02024
    │           ├── .gitignore
    │           ├── LICENSE.txt
    │           ├── README.md
    │           ├── TODO.txt
    │           ├── firmware
    │           │   ├── __init__.py
    │           │   ├── items.py
    │           │   ├── loader.py
    │           │   ├── pipelines.py
    │           │   ├── settings.py
    │           │   └── spiders
    │           │   │   ├── 360.py
    │           │   │   ├── __init__.py
    │           │   │   ├── actiontec.py
    │           │   │   ├── airlink101.py
    │           │   │   ├── asus.py
    │           │   │   ├── att.py
    │           │   │   ├── belkin.py
    │           │   │   ├── buffalo.py
    │           │   │   ├── centurylink.py
    │           │   │   ├── dlink.py
    │           │   │   ├── foscam.py
    │           │   │   ├── huawei_en.py
    │           │   │   ├── huawei_zh.py
    │           │   │   ├── linksys.py
    │           │   │   ├── mercury.py
    │           │   │   ├── microstrain.py
    │           │   │   ├── mikrotik.py
    │           │   │   ├── netcore.py
    │           │   │   ├── netgear.py
    │           │   │   ├── openwireless.py
    │           │   │   ├── openwrt.py
    │           │   │   ├── pfsense.py
    │           │   │   ├── phicomm.py
    │           │   │   ├── polycom.py
    │           │   │   ├── qnap.py
    │           │   │   ├── seiki.py
    │           │   │   ├── supermicro.py
    │           │   │   ├── synology.py
    │           │   │   ├── tenda_en.py
    │           │   │   ├── tenda_zh.py
    │           │   │   ├── tenvis.py
    │           │   │   ├── ti.py
    │           │   │   ├── tomato-shibby.py
    │           │   │   ├── tomato.py
    │           │   │   ├── tp-link_en.py
    │           │   │   ├── tp-link_zh.py
    │           │   │   ├── trendnet.py
    │           │   │   ├── ubiquiti.py
    │           │   │   ├── ublox.py
    │           │   │   ├── verizon.py
    │           │   │   ├── xerox.py
    │           │   │   └── zyxel.py
    │           ├── ftp.sh
    │           └── scrapy.cfg
    │       └── scrapy.cfg
├── images
    └── run.png
├── qemu-builds
    ├── 2.5.0
    │   ├── qemu-system-arm
    │   ├── qemu-system-mips
    │   ├── qemu-system-mipsel
    │   └── share
    │   │   └── qemu
    │   │       ├── QEMU,cgthree.bin
    │   │       ├── QEMU,tcx.bin
    │   │       ├── acpi-dsdt.aml
    │   │       ├── bamboo.dtb
    │   │       ├── bios-256k.bin
    │   │       ├── bios.bin
    │   │       ├── efi-e1000.rom
    │   │       ├── efi-eepro100.rom
    │   │       ├── efi-ne2k_pci.rom
    │   │       ├── efi-pcnet.rom
    │   │       ├── efi-rtl8139.rom
    │   │       ├── efi-virtio.rom
    │   │       ├── keymaps
    │   │           ├── ar
    │   │           ├── bepo
    │   │           ├── common
    │   │           ├── cz
    │   │           ├── da
    │   │           ├── de
    │   │           ├── de-ch
    │   │           ├── en-gb
    │   │           ├── en-us
    │   │           ├── es
    │   │           ├── et
    │   │           ├── fi
    │   │           ├── fo
    │   │           ├── fr
    │   │           ├── fr-be
    │   │           ├── fr-ca
    │   │           ├── fr-ch
    │   │           ├── hr
    │   │           ├── hu
    │   │           ├── is
    │   │           ├── it
    │   │           ├── ja
    │   │           ├── lt
    │   │           ├── lv
    │   │           ├── mk
    │   │           ├── modifiers
    │   │           ├── nl
    │   │           ├── nl-be
    │   │           ├── no
    │   │           ├── pl
    │   │           ├── pt
    │   │           ├── pt-br
    │   │           ├── ru
    │   │           ├── sl
    │   │           ├── sv
    │   │           ├── th
    │   │           └── tr
    │   │       ├── kvmvapic.bin
    │   │       ├── linuxboot.bin
    │   │       ├── multiboot.bin
    │   │       ├── openbios-ppc
    │   │       ├── openbios-sparc32
    │   │       ├── openbios-sparc64
    │   │       ├── palcode-clipper
    │   │       ├── petalogix-ml605.dtb
    │   │       ├── petalogix-s3adsp1800.dtb
    │   │       ├── ppc_rom.bin
    │   │       ├── pxe-e1000.rom
    │   │       ├── pxe-eepro100.rom
    │   │       ├── pxe-ne2k_pci.rom
    │   │       ├── pxe-pcnet.rom
    │   │       ├── pxe-rtl8139.rom
    │   │       ├── pxe-virtio.rom
    │   │       ├── q35-acpi-dsdt.aml
    │   │       ├── qemu-icon.bmp
    │   │       ├── qemu_logo_no_text.svg
    │   │       ├── s390-ccw.img
    │   │       ├── s390-zipl.rom
    │   │       ├── sgabios.bin
    │   │       ├── slof.bin
    │   │       ├── spapr-rtas.bin
    │   │       ├── trace-events
    │   │       ├── u-boot.e500
    │   │       ├── vgabios-cirrus.bin
    │   │       ├── vgabios-qxl.bin
    │   │       ├── vgabios-stdvga.bin
    │   │       ├── vgabios-virtio.bin
    │   │       ├── vgabios-vmware.bin
    │   │       └── vgabios.bin
    └── README.txt
├── reset.py
├── setup.sh
├── shutdown.py
└── testcases
    ├── README.md
    └── iot_dir880l_110b01.bin


/CHANGELOG:
--------------------------------------------------------------------------------
 1 | ### v2.0
 2 | - 安装流程进一步简化，增加新版本库的支持，删除冗余库
 3 | - 移除 `python2`，之前的版本需要 `python2` 和 `python3` 的同时支持
 4 | - 移除 `setup2kali.sh`，同时修改 `setup.sh`
 5 | - 修改 `firmadyne` 源码中的 `inferNetwork.sh` 文件
 6 | - 修改 `firmaydne` 源码中的 `extractor.py` 文件
 7 | - 修改 `binwalk` 安装脚本
 8 | 
 9 | ### v2.1
10 | - 增加无binwalk模式
11 | - 修改若干描述
12 | - 修复mips架构不能调试的问题
13 | 
14 | ### v2.2 [2022-05-07]
15 | - Fix mipsel and armel network error
16 | - Fix directory from nvram
17 | 
18 | ### v2.3 [2022-07-20]
19 | - 修复`Ubuntu16.04`下一些bug (Fix some bugs in ubuntu16.04)
20 | - `Kali2022/Ubuntu2022-binwalk`无法解压很多固件，所以抛弃了这两个操作系统 (Binwalk could not decompress many firmware, so it abandoned these two operating systems)
21 | 
22 | ### v2.3.1 [2022-07-21]
23 | - 修复Fap在多个Linux发行版中的兼容性问题 (Fix FAP compatibility issues in multiple Linux distributions)
24 | - 创建docker镜像 (Create a docker image)


--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
 1 | MIT License
 2 | 
 3 | Copyright (c) 2021 liyansong2018
 4 | 
 5 | Permission is hereby granted, free of charge, to any person obtaining a copy
 6 | of this software and associated documentation files (the "Software"), to deal
 7 | in the Software without restriction, including without limitation the rights
 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 9 | copies of the Software, and to permit persons to whom the Software is
10 | furnished to do so, subject to the following conditions:
11 | 
12 | The above copyright notice and this permission notice shall be included in all
13 | copies or substantial portions of the Software.
14 | 
15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21 | SOFTWARE.
22 | 


--------------------------------------------------------------------------------
/README_EN.md:
--------------------------------------------------------------------------------
 1 | # Firmware Analysis Plus (Fap)
 2 | 
 3 | Fap is a greate simulator based on the [firmadyne](https://github.com/firmadyne/firmadyne)  that can run common router firmware from TP-Link, D-Link and other IoT manufacturer.
 4 | 
 5 | ## Build
 6 | 
 7 | Installing Fap is easy. **We strongly recommend installing Fap on the latest version of Ubuntu 20.04 and [binwalk-f4a5759](https://github.com/liyansong2018/binwalk)**.  [VMware Image](https://pan.baidu.com/s/1eVNxoLKlqAQHcrSMfI7tQw?pwd=jpy4) and docker `docker-menu.sh` is also available.
 8 | 
 9 | ```shell
10 | git clone https://github.com/liyansong2018/firmware-analysis-plus.git
11 | cd firmware-analysis-plus
12 | ./setup.sh
13 | ```
14 | 
15 | ## Usage
16 | 
17 | Modify password in the `fap.config`
18 | 
19 | ```Shell
20 | [DEFAULT]
21 | sudo_password=toor
22 | firmadyne_path=/home/lys/Tools/firmware-analysis-plus/firmadyne
23 | ```
24 | 
25 | Monitor firmware
26 | 
27 | ```Shell
28 | ./fap.py -q ./qemu-builds/2.5.0/ ./testcases/iot.bin
29 | ```
30 | 
31 | Shut down the simulator
32 | 
33 | ```
34 | ./shutdown.py
35 | ```
36 | 
37 | Reset the simulator
38 | 
39 | ```shell
40 | ./reset.py
41 | ```
42 | 
43 | Help information
44 | 
45 | ```shell
46 | ./fap.py --help                                          
47 | usage: fap.py [-h] [-q qemu_path] [-b compiled_binwalk] [-t network_infer_time] firm_path
48 | 
49 | options:
50 |   -h, --help            show this help message and exit
51 |   -q qemu_path, --qemu qemu_path
52 |                         The qemu version to use (must exist within qemu-builds directory). If not specified, the qemu
53 |                         version installed system-wide will be used
54 |   -b compiled_binwalk, --binwalk compiled_binwalk
55 |                         Has binwalk been compiled? yes or no, 1 or 0
56 |   -t network_infer_time, --time network_infer_time
57 |                         Network infer time
58 | ```
59 | 
60 | ## List of firmware supported
61 | 
62 | ### Common
63 | 
64 | - [wnap320_V3.7.11.4_firmware.tar](https://github.com/liyansong2018/firmware-analysis-plus/tree/master/testcases)
65 | - DIR-601_REVB_FIRMWARE_2.01.BIN
66 | - DIR890A1_FW103b07.bin
67 | - DIR-505L_FIRMWARE_1.01.ZIP
68 | - DIR-615_REVE_FIRMWARE_5.11.ZIP
69 | - DGL-5500_REVA_FIRMWARE_1.12B05.ZIP
70 | - WRT54G3G_2.11.05_ETSI_code.bin
71 | - NBG-416N_V1.00(USA.7)C0.zip
72 | - TEW-638v2%201.1.5.zip
73 | - Firmware_TEW-411BRPplus_2.07_EU.zip
74 | - DGND3700 Firmware Version 1.0.0.17(NA).zip
75 | - **DIR-300A1_FW105b09.bin**
76 | - HG532eV100R001C01B020_upgrade_packet.bin
77 | - DIR-860/865/880...
78 | - ...
79 | 
80 | ###  Custom
81 | 
82 | - [FAP-DIR2640.tar.bz2](https://github.com/liyansong2018/firmware-analysis-plus/releases)
83 | - TL-WR802N(US)_V4_200
84 | - Archer_C50v5_US_0.9.1_0.2


--------------------------------------------------------------------------------
/docker-menu.sh:
--------------------------------------------------------------------------------
  1 | #!/bin/bash
  2 | # 检测shell是否为bash
  3 | if [ -z "$BASH_VERSION" ]; then
  4 |     echo "请使用bash运行此脚本，不要使用sh"
  5 |     exit 1
  6 | fi
  7 | 
  8 | function menu {
  9 |     clear
 10 |     echo
 11 |     echo -e "\t\tDocker 启动菜单\n"
 12 |     echo -e "\t1. 启动容器"
 13 |     echo -e "\t2. 停止容器"
 14 |     echo -e "\t3. 删除容器"
 15 |     echo -e "\t4. 进入容器"
 16 |     echo 
 17 |     echo -e "\t<Any> 退出"
 18 |     echo -en "\t\t请输入选项:"
 19 |     read -n 1 option
 20 | }
 21 | 
 22 | function start {
 23 |     clear
 24 |     # 判断fap容器是否存在，存在则直接启动
 25 |     if [ $(sudo docker ps -a | grep fap | wc -l) -gt 0 ]; then
 26 |         echo -e "\n\n\t\t容器已存在，直接启动"
 27 |         echo "启动中..."
 28 |         sudo docker start fap
 29 |         return
 30 |     fi
 31 |     if [ -f run.sh ]; then
 32 |         echo -e "\n\n\t\t启动命令已存在，从run.sh文件启动；或是重新配置启动命令？"
 33 |         echo -en "\n\n\t\t是否从run.sh文件启动？(y/n):"
 34 |         echo -en "\n\n\t\trun.sh文件内容如下：\n\n"
 35 |         cat run.sh
 36 |         read -n 1 yn
 37 |         if [ "$yn" == "y" ]; then
 38 |             echo "启动中..."
 39 |             ./run.sh
 40 |             return
 41 |         fi
 42 |     fi
 43 |     echo -e "\n\n\t\t启动容器，容器名称默认为：fap"
 44 |     echo -e "\n\n\t\t请输入挂载路径，多条请使用半角分号分隔，例如：./:/root/mnt"
 45 |     read -e -p "请输入路径：" path
 46 |     echo -e "\n\n\t\t请输入端口映射，多条请使用半角分号分隔，例如：8080:80"
 47 |     read -e -p "请输入端口：" port
 48 |     allports=""
 49 |     allpath=""
 50 |     for i in $(echo $port | tr ";" "\n")
 51 |     do
 52 |         allports="-p $i $allports"
 53 |     done
 54 |     for i in $(echo $path | tr ";" "\n")
 55 |     do
 56 |         allpath="-v $i $allpath"
 57 |     done
 58 |     # 保存启动配置到配置文件
 59 |     echo "sudo docker run -it --privileged $allports $allpath --name fap liyansong2022/fap-docker:2.3.1 /bin/bash" > run.sh
 60 |     chmod +x run.sh
 61 |     echo "启动命令已保存到run.sh文件"
 62 |     cat run.sh
 63 |     echo "启动中..."
 64 |     ./run.sh
 65 | }
 66 | 
 67 | function stop {
 68 |     clear
 69 |     echo -e "\n\n\t\t停止容器"
 70 |     sudo docker stop fap
 71 |     echo -e "\n\n\t\t停止成功"
 72 | }
 73 | 
 74 | function delete {
 75 |     clear
 76 |     echo -e "\n\n\t\t删除容器"
 77 |     sudo docker rm -f fap
 78 |     echo -e "\n\n\t\t删除成功"
 79 | }
 80 | 
 81 | function enter {
 82 |     clear
 83 |     echo -e "\n\n\t\t进入容器"
 84 |     sudo docker exec -it fap /bin/bash
 85 | }
 86 | 
 87 | while [ 1 ]
 88 | do
 89 |     menu
 90 |     case $option in
 91 |     1) 
 92 |         start;;
 93 |     2)
 94 |         stop;;
 95 |     3)
 96 |         delete;;
 97 |     4)
 98 |         enter;;
 99 |     *)
100 |         break;;
101 |     esac
102 |     echo -en "\n\n\t\t按任意键继续"
103 |     read -n 1 line
104 | done
105 | clear
106 | 


--------------------------------------------------------------------------------
/fap.config:
--------------------------------------------------------------------------------
1 | [DEFAULT]
2 | sudo_password=kali
3 | firmadyne_path=/home/kali/firmware-analysis-plus/firmadyne
4 | 


--------------------------------------------------------------------------------
/firmadyne/.gitignore:
--------------------------------------------------------------------------------
 1 | firmadyne.config
 2 | 
 3 | *.o
 4 | *.armel
 5 | *.mipseb
 6 | *.mipsel
 7 | binaries/
 8 | images/
 9 | scratch/
10 | 


--------------------------------------------------------------------------------
/firmadyne/.gitmodules:
--------------------------------------------------------------------------------
 1 | [submodule "sources/extractor"]
 2 | 	path = sources/extractor
 3 | 	url = https://github.com/firmadyne/extractor.git
 4 | [submodule "sources/console"]
 5 | 	path = sources/console
 6 | 	url = https://github.com/firmadyne/console.git
 7 | [submodule "sources/scraper"]
 8 | 	path = sources/scraper
 9 | 	url = https://github.com/firmadyne/scraper.git
10 | [submodule "sources/libnvram"]
11 | 	path = sources/libnvram
12 | 	url = https://github.com/firmadyne/libnvram.git
13 | 


--------------------------------------------------------------------------------
/firmadyne/analyses/nmap.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | set -u
 4 | 
 5 | if [ -e ./firmadyne.config ]; then
 6 |     source ./firmadyne.config
 7 | elif [ -e ../firmadyne.config ]; then
 8 |     source ../firmadyne.config
 9 | else
10 |     echo "Error: Could not find 'firmadyne.config'!"
11 |     exit 1
12 | fi
13 | 
14 | if [ $# -ne 1 ]; then
15 |     echo "Usage: $0 <image ID>"
16 |     exit 1
17 | fi
18 | 
19 | IID=${1}
20 | WORK_DIR=`get_scratch ${IID}`
21 | 
22 | #Nmap options to use for scanning:
23 | NMAP_OPTS="-v -n -sSV"
24 | 
25 | if ! which nmap > /dev/null; then
26 |     echo "[-] missing nmap binary"
27 |     exit 1
28 | fi
29 | 
30 | if ! [ -d ${WORK_DIR} ]; then
31 |     echo "[-] missing working directory of image ID ${IID}"
32 |     exit 1
33 | fi
34 | 
35 | if ! [ -f ${WORK_DIR}/run.sh ]; then
36 |     echo "[-] missing start script (run.sh) of image ID ${IID}"
37 |     exit 1
38 | fi
39 | 
40 | TARGET_IP=`grep "GUESTIP=" "${WORK_DIR}"/run.sh | cut -d= -f2`
41 | 
42 | if [ -z "${TARGET_IP}" ]; then
43 |     echo "[-] Found no target IP address ..."
44 |     exit 1
45 | fi
46 | 
47 | echo "[+] Found IP: ${TARGET_IP}"
48 | 
49 | sudo nmap ${NMAP_OPTS} "${TARGET_IP}" -oA "$WORK_DIR"nmap-basic-tcp | tee "${WORK_DIR}"nmap-basic-tcp.txt 2>&1
50 | 
51 | echo -e "\nDumped Nmap scan details of ${TARGET_IP} to $WORK_DIR"
52 | 
53 | 
54 | 


--------------------------------------------------------------------------------
/firmadyne/analyses/snmpwalk.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | 
3 | TARGET_IP=$1
4 | 
5 | snmpwalk -v2c -c public $1 .iso > snmp.public.txt 2>&1
6 | snmpwalk -v2c -c private $1 .iso > snmp.private.txt 2>&1
7 | 
8 | echo "Dumped to snmp.public.txt and snmp.private.txt!"
9 | 


--------------------------------------------------------------------------------
/firmadyne/binaries/README.md:
--------------------------------------------------------------------------------
 1 | Binary files used by the FIRMADYNE framework should be placed here. These include:
 2 | 
 3 | * console
 4 |    * `console.armel`
 5 |    * `console.mipseb`
 6 |    * `console.mipsel`
 7 | 
 8 | * libnvram
 9 |    * `libnvram.so.armel`
10 |    * `libnvram.so.mipseb`
11 |    * `libnvram.so.mipsel`
12 | 
13 | * kernel
14 |    * `zImage.armel`
15 |    * `vmlinux.mipseb`
16 |    * `vmlinux.mipsel`
17 | 


--------------------------------------------------------------------------------
/firmadyne/binaries/console.armel:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/firmadyne/binaries/console.armel


--------------------------------------------------------------------------------
/firmadyne/binaries/console.mipseb:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/firmadyne/binaries/console.mipseb


--------------------------------------------------------------------------------
/firmadyne/binaries/console.mipsel:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/firmadyne/binaries/console.mipsel


--------------------------------------------------------------------------------
/firmadyne/binaries/libnvram.so.armel:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/firmadyne/binaries/libnvram.so.armel


--------------------------------------------------------------------------------
/firmadyne/binaries/libnvram.so.mipseb:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/firmadyne/binaries/libnvram.so.mipseb


--------------------------------------------------------------------------------
/firmadyne/binaries/libnvram.so.mipsel:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/firmadyne/binaries/libnvram.so.mipsel


--------------------------------------------------------------------------------
/firmadyne/binaries/vmlinux.mipseb:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/firmadyne/binaries/vmlinux.mipseb


--------------------------------------------------------------------------------
/firmadyne/binaries/vmlinux.mipsel:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/firmadyne/binaries/vmlinux.mipsel


--------------------------------------------------------------------------------
/firmadyne/binaries/zImage.armel:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/firmadyne/binaries/zImage.armel


--------------------------------------------------------------------------------
/firmadyne/download.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/sh
 2 | 
 3 | set -e
 4 | 
 5 | echo "Downloading binaries..."
 6 | 
 7 | echo "Downloading kernel 2.6.32 (MIPS)..."
 8 | wget -O ./binaries/vmlinux.mipsel https://github.com/firmadyne/kernel-v2.6.32/releases/download/v1.0/vmlinux.mipsel
 9 | wget -O ./binaries/vmlinux.mipseb https://github.com/firmadyne/kernel-v2.6.32/releases/download/v1.0/vmlinux.mipseb
10 | 
11 | echo "Downloading kernel 4.1 (ARM)..."
12 | wget -O ./binaries/zImage.armel https://github.com/firmadyne/kernel-v4.1/releases/download/v1.0/zImage.armel
13 | 
14 | echo "Downloading console..."
15 | wget -O ./binaries/console.armel https://github.com/firmadyne/console/releases/download/v1.0/console.armel
16 | wget -O ./binaries/console.mipseb https://github.com/firmadyne/console/releases/download/v1.0/console.mipseb
17 | wget -O ./binaries/console.mipsel https://github.com/firmadyne/console/releases/download/v1.0/console.mipsel
18 | 
19 | echo "Downloading libnvram..."
20 | wget -O ./binaries/libnvram.so.armel https://github.com/firmadyne/libnvram/releases/download/v1.0b/libnvram.so.armel
21 | wget -O ./binaries/libnvram.so.mipseb https://github.com/firmadyne/libnvram/releases/download/v1.0b/libnvram.so.mipseb
22 | wget -O ./binaries/libnvram.so.mipsel https://github.com/firmadyne/libnvram/releases/download/v1.0b/libnvram.so.mipsel
23 | 
24 | echo "Done!"
25 | 


--------------------------------------------------------------------------------
/firmadyne/paper/paper.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/firmadyne/paper/paper.pdf


--------------------------------------------------------------------------------
/firmadyne/scripts/delete.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | if [ -e ./firmadyne.config ]; then
 4 |     source ./firmadyne.config
 5 | elif [ -e ../firmadyne.config ]; then
 6 |     source ../firmadyne.config
 7 | else
 8 |     echo "Error: Could not find 'firmadyne.config'!"
 9 |     exit 1
10 | fi
11 | 
12 | if check_number $1; then
13 |     echo "Usage: $0 <image ID>"
14 |     echo "This script deletes a whole project"
15 |     exit 1
16 | fi
17 | IID=${1}
18 | 
19 | #Check that no qemu is running:
20 | echo "checking the process table for a running qemu instance ..."
21 | PID=`ps -ef | grep qemu | grep "${IID}" | grep -v grep | awk '{print $2}'`
22 | if ! [ -z $PID ]; then
23 |     echo "killing process ${PID}"
24 |     sudo kill -9 ${PID}
25 | fi
26 | 
27 | PID1=`ps -ef | grep "${IID}\/run.sh" | grep -v grep | awk '{print $2}'`
28 | if ! [ -z $PID1 ]; then
29 |     echo "killing process ${PID1}"
30 |     sudo kill ${PID1}
31 | fi
32 | 
33 | #Check that nothing is mounted:
34 | echo "In case the filesystem is mounted, umount it now ..."
35 | sudo ./scripts/umount.sh ${IID}
36 | 
37 | #Check network config
38 | echo "In case the network is configured, reconfigure it now ..."
39 | for i in 0 .. 4; do
40 |     sudo ifconfig tap${IID}_${i} down
41 |     sudo tunctl -d tap${IID}_${i}
42 | done
43 | 
44 | #Cleanup database:
45 | echo "Remove the database entries ..."
46 | psql -d firmware -U firmadyne -h 127.0.0.1 -t -q -c "DELETE from image WHERE id=${IID};"
47 | 
48 | #Cleanup filesystem:
49 | echo "Clean up the file system ..."
50 | if [ -f "/tmp/qemu.${IID}*" ]; then
51 |     sudo rm /tmp/qemu.${IID}*
52 | fi
53 | 
54 | if [ -f ./images/${IID}.tar.gz ]; then
55 |     sudo rm ./images/${IID}.tar.gz
56 | fi
57 | 
58 | if [ -f ./images/${IID}.kernel ]; then
59 |     sudo rm ./images/${IID}.kernel
60 | fi
61 | 
62 | if [ -d ./scratch/${IID}/ ]; then
63 |     sudo rm -r ./scratch/${IID}/
64 | fi
65 | 
66 | echo "Done. Removed project ID ${IID}."
67 | 


--------------------------------------------------------------------------------
/firmadyne/scripts/getArch.sh:
--------------------------------------------------------------------------------
  1 | #!/bin/bash
  2 | 
  3 | set -e
  4 | set -u
  5 | 
  6 | if [ -e ./firmadyne.config ]; then
  7 |     source ./firmadyne.config
  8 | elif [ -e ../firmadyne.config ]; then
  9 |     source ../firmadyne.config
 10 | else
 11 |     echo "Error: Could not find 'firmadyne.config'!"
 12 |     exit 1
 13 | fi
 14 | 
 15 | function getArch() {
 16 |     if (echo ${FILETYPE} | grep -q "MIPS64")
 17 |     then
 18 |         ARCH="mips64"
 19 |     elif (echo ${FILETYPE} | grep -q "MIPS")
 20 |     then
 21 |         ARCH="mips"
 22 |     elif (echo ${FILETYPE} | grep -q "ARM64")
 23 |     then
 24 |         ARCH="arm64"
 25 |     elif (echo ${FILETYPE} | grep -q "ARM")
 26 |     then
 27 |         ARCH="arm"
 28 |     elif (echo ${FILETYPE} | grep -q "Intel 80386")
 29 |     then
 30 |         ARCH="intel"
 31 |     elif (echo ${FILETYPE} | grep -q "x86-64")
 32 |     then
 33 |         ARCH="intel64"
 34 |     elif (echo ${FILETYPE} | grep -q "PowerPC")
 35 |     then
 36 |         ARCH="ppc"
 37 |     else
 38 |         ARCH=""
 39 |     fi
 40 | }
 41 | 
 42 | function getEndian() {
 43 |     if (echo ${FILETYPE} | grep -q "LSB")
 44 |     then
 45 |         END="el"
 46 |     elif (echo ${FILETYPE} | grep -q "MSB")
 47 |     then
 48 |         END="eb"
 49 |     else
 50 |         END=""
 51 |     fi
 52 | }
 53 | 
 54 | INFILE=${1}
 55 | BASE=$(basename "$1")
 56 | IID=${BASE%.tar.gz}
 57 | 
 58 | mkdir -p "/tmp/${IID}"
 59 | 
 60 | set +e
 61 | FILES="$(tar -tf $INFILE | grep -e "/busybox\$") "
 62 | FILES+="$(tar -tf $INFILE | grep -E "/sbin/[[:alpha:]]+")"
 63 | FILES+="$(tar -tf $INFILE | grep -E "/bin/[[:alpha:]]+")"
 64 | set -e
 65 | 
 66 | for TARGET in ${FILES}
 67 | do
 68 |     SKIP=$(echo "${TARGET}" | fgrep -o / | wc -l)
 69 |     tar -xf "${INFILE}" -C "/tmp/${IID}/" --strip-components=${SKIP} ${TARGET}
 70 |     TARGETLOC="/tmp/$IID/${TARGET##*/}"
 71 | 
 72 |     if [ -h ${TARGETLOC} ] || [ ! -f ${TARGETLOC} ]
 73 |     then
 74 |         continue
 75 |     fi
 76 | 
 77 |     FILETYPE=$(file ${TARGETLOC})
 78 | 
 79 |     echo -n "${TARGET}: "
 80 |     getArch
 81 |     getEndian
 82 | 
 83 |     if [ -n "${ARCH}" ] && [ -n "${END}" ]
 84 |     then
 85 |         ARCHEND=${ARCH}${END}
 86 |         echo ${ARCHEND}
 87 | 
 88 |         #########psql -d firmware -U firmadyne -h 127.0.0.1 -q -c "UPDATE image SET arch = '$ARCHEND' WHERE id = $IID;"
 89 | 
 90 |         rm -fr "/tmp/${IID}"
 91 |         exit 0
 92 |     else
 93 |         echo -n ${ARCH}
 94 |         echo ${END}
 95 |     fi
 96 | done
 97 | 
 98 | rm -fr "/tmp/${IID}"
 99 | 
100 | exit 1
101 | 


--------------------------------------------------------------------------------
/firmadyne/scripts/inferNetwork.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | set -e
 4 | set -u
 5 | 
 6 | if [ -e ./firmadyne.config ]; then
 7 |     source ./firmadyne.config
 8 | elif [ -e ../firmadyne.config ]; then
 9 |     source ../firmadyne.config
10 | else
11 |     echo "Error: Could not find 'firmadyne.config'!"
12 |     exit 1
13 | fi
14 | 
15 | if check_number $1; then
16 |     echo "Usage: inferNetwork.sh <image ID> [<architecture>] [<time>]"
17 |     exit 1
18 | fi
19 | IID=${1}
20 | 
21 | if [ $# -gt 1 ]; then
22 |     if check_arch "${2}"; then
23 |         echo "Error: Invalid architecture!"
24 |         exit 1
25 |     fi
26 | 
27 |     ARCH=${2}
28 | else
29 |     echo -n "Querying database for architecture... "
30 |     ARCH=$(psql -d firmware -U firmadyne -h 127.0.0.1 -t -q -c "SELECT arch from image WHERE id=${1};")
31 |     ARCH="${ARCH#"${ARCH%%[![:space:]]*}"}"
32 |     echo "${ARCH}"
33 |     if [ -z "${ARCH}" ]; then
34 |         echo "Error: Unable to lookup architecture. Please specify {armel,mipseb,mipsel} as the second argument!"
35 |         exit 1
36 |     fi
37 | fi
38 | 
39 | TIME=${3}
40 | 
41 | echo "[+] [info] Running firmware ${IID}: terminating after ${TIME} secs..."
42 | timeout --preserve-status --signal SIGINT ${TIME} "${SCRIPT_DIR}/run.${ARCH}.sh" "${IID}"
43 | sleep 1
44 | 
45 | echo "[+] [info] Inferring network..."
46 | python3 "${SCRIPT_DIR}makeNetwork.py" -i "${IID}" -q -o -a "${ARCH}" -S "${SCRATCH_DIR}"
47 | 
48 | echo "[+] [info] Done!"
49 | 


--------------------------------------------------------------------------------
/firmadyne/scripts/mount.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | set -e
 4 | set -u
 5 | 
 6 | if [ -e ./firmadyne.config ]; then
 7 |     source ./firmadyne.config
 8 | elif [ -e ../firmadyne.config ]; then
 9 |     source ../firmadyne.config
10 | else
11 |     echo "Error: Could not find 'firmadyne.config'!"
12 |     exit 1
13 | fi
14 | 
15 | if check_number $1; then
16 |     echo "Usage: mount.sh <image ID>"
17 |     exit 1
18 | fi
19 | IID=${1}
20 | 
21 | if check_root; then
22 |     echo "Error: This script requires root privileges!"
23 |     exit 1
24 | fi
25 | 
26 | echo "----Running----"
27 | WORK_DIR=`get_scratch ${IID}`
28 | IMAGE=`get_fs ${IID}`
29 | IMAGE_DIR=`get_fs_mount ${IID}`
30 | 
31 | DEVICE=`get_device`
32 | 
33 | echo "----Adding Device File----"
34 | #/usr/bin/qemu-nbd --connect=/dev/${NBD} "${IMAGE}"
35 | kpartx -a -s -v "${IMAGE}"
36 | sleep 1
37 | 
38 | echo "----Making image directory----"
39 | if [ ! -e "${IMAGE_DIR}" ]
40 | then
41 |         mkdir "${IMAGE_DIR}"
42 | fi
43 | 
44 | echo "----Mounting----"
45 | #sudo /bin/mount /dev/nbd0p1 "${IMAGE_DIR}"
46 | mount "${DEVICE}" "${IMAGE_DIR}"
47 | 


--------------------------------------------------------------------------------
/firmadyne/scripts/preInit.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/sh
 2 | 
 3 | [ -d /dev ] || mkdir -p /dev
 4 | [ -d /root ] || mkdir -p /root
 5 | [ -d /sys ] || mkdir -p /sys
 6 | [ -d /proc ] || mkdir -p /proc
 7 | [ -d /tmp ] || mkdir -p /tmp
 8 | mkdir -p /var/lock
 9 | 
10 | mount -t sysfs sysfs /sys
11 | mount -t proc proc /proc
12 | ln -sf /proc/mounts /etc/mtab
13 | 
14 | mkdir -p /dev/pts
15 | mount -t devpts devpts /dev/pts
16 | mount -t tmpfs tmpfs /run
17 | 


--------------------------------------------------------------------------------
/firmadyne/scripts/run-debug.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | set -e
 4 | set -u
 5 | 
 6 | if [ -e ./firmadyne.config ]; then
 7 |     source ./firmadyne.config
 8 | elif [ -e ../firmadyne.config ]; then
 9 |     source ../firmadyne.config
10 | else
11 |     echo "Error: Could not find 'firmadyne.config'!"
12 |     exit 1
13 | fi
14 | 
15 | if check_number $1; then
16 |     echo "Usage: run-debug.sh <image ID> [<architecture>]"
17 |     exit 1
18 | fi
19 | IID=${1}
20 | 
21 | if [ $# -gt 1 ]; then
22 |     if check_arch "${2}"; then
23 |         echo "Error: Invalid architecture!"
24 |         exit 1
25 |     fi
26 | 
27 |     ARCH=${2}
28 | else
29 |     echo -n "Querying database for architecture... "
30 |     ARCH=$(psql -d firmware -U firmadyne -h 127.0.0.1 -t -q -c "SELECT arch from image WHERE id=${1};")
31 |     ARCH="${ARCH#"${ARCH%%[![:space:]]*}"}"
32 |     echo "${ARCH}"
33 |     if [ -z "${ARCH}" ]; then
34 |         echo "Error: Unable to lookup architecture. Please specify {armel,mipseb,mipsel} as the second argument!"
35 |         exit 1
36 |     fi
37 | fi
38 | 
39 | ${SCRIPT_DIR}/run.${ARCH}-debug.sh ${IID}
40 | 


--------------------------------------------------------------------------------
/firmadyne/scripts/run.armel-debug.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | set -e
 4 | set -u
 5 | 
 6 | if [ -e ./firmadyne.config ]; then
 7 |     source ./firmadyne.config
 8 | elif [ -e ../firmadyne.config ]; then
 9 |     source ../firmadyne.config
10 | else
11 |     echo "Error: Could not find 'firmadyne.config'!"
12 |     exit 1
13 | fi
14 | 
15 | if check_number $1; then
16 |     echo "Usage: run.armel-debug.sh <image ID>"
17 |     exit 1
18 | fi
19 | IID=${1}
20 | 
21 | WORK_DIR=`get_scratch ${IID}`
22 | IMAGE=`get_fs ${IID}`
23 | KERNEL=`get_kernel "armel"`
24 | 
25 | QEMU_AUDIO_DRV=none qemu-system-arm -m 256 -M virt -kernel ${KERNEL} -drive if=none,file=${IMAGE},format=raw,id=rootfs -device virtio-blk-device,drive=rootfs -append "firmadyne.syscall=0 root=/dev/vda1 console=ttyS0 nandsim.parts=64,64,64,64,64,64,64,64,64,64 rdinit=/firmadyne/preInit.sh rw debug ignore_loglevel print-fatal-signals=1 user_debug=31" -nographic -device virtio-net-device,netdev=net1 -netdev socket,listen=:2000,id=net1 -device virtio-net-device,netdev=net2 -netdev socket,listen=:2001,id=net2 -device virtio-net-device,netdev=net3 -netdev socket,listen=:2002,id=net3 -device virtio-net-device,netdev=net4 -netdev socket,listen=:2003,id=net4
26 | 


--------------------------------------------------------------------------------
/firmadyne/scripts/run.armel.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | set -e
 4 | set -u
 5 | 
 6 | if [ -e ./firmadyne.config ]; then
 7 |     source ./firmadyne.config
 8 | elif [ -e ../firmadyne.config ]; then
 9 |     source ../firmadyne.config
10 | else
11 |     echo "Error: Could not find 'firmadyne.config'!"
12 |     exit 1
13 | fi
14 | 
15 | if check_number $1; then
16 |     echo "Usage: run.armel.sh <image ID>"
17 |     exit 1
18 | fi
19 | IID=${1}
20 | 
21 | WORK_DIR=`get_scratch ${IID}`
22 | IMAGE=`get_fs ${IID}`
23 | KERNEL=`get_kernel "armel"`
24 | 
25 | QEMU_AUDIO_DRV=none qemu-system-arm -m 256 -M virt -kernel ${KERNEL} -drive if=none,file=${IMAGE},format=raw,id=rootfs -device virtio-blk-device,drive=rootfs -append "firmadyne.syscall=1 root=/dev/vda1 console=ttyS0 nandsim.parts=64,64,64,64,64,64,64,64,64,64 rdinit=/firmadyne/preInit.sh rw debug ignore_loglevel print-fatal-signals=1 user_debug=31" -serial file:${WORK_DIR}/qemu.initial.serial.log -serial unix:/tmp/qemu.${IID}.S1,server,nowait -monitor unix:/tmp/qemu.${IID},server,nowait -display none -device virtio-net-device,netdev=net1 -netdev socket,listen=:2000,id=net1 -device virtio-net-device,netdev=net2 -netdev socket,listen=:2001,id=net2 -device virtio-net-device,netdev=net3 -netdev socket,listen=:2002,id=net3 -device virtio-net-device,netdev=net4 -netdev socket,listen=:2003,id=net4
26 | 


--------------------------------------------------------------------------------
/firmadyne/scripts/run.mipseb-debug.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | set -e
 4 | set -u
 5 | 
 6 | if [ -e ./firmadyne.config ]; then
 7 |     source ./firmadyne.config
 8 | elif [ -e ../firmadyne.config ]; then
 9 |     source ../firmadyne.config
10 | else
11 |     echo "Error: Could not find 'firmadyne.config'!"
12 |     exit 1
13 | fi
14 | 
15 | if check_number $1; then
16 |     echo "Usage: run.mipseb-debug.sh <image ID>"
17 |     exit 1
18 | fi
19 | IID=${1}
20 | 
21 | WORK_DIR=`get_scratch ${IID}`
22 | IMAGE=`get_fs ${IID}`
23 | KERNEL=`get_kernel "mipseb"`
24 | 
25 | qemu-system-mips -m 256 -M malta -kernel ${KERNEL} -drive if=ide,format=raw,file=${IMAGE} -append "firmadyne.syscall=0 root=/dev/sda1 console=ttyS0 nandsim.parts=64,64,64,64,64,64,64,64,64,64 rdinit=/firmadyne/preInit.sh rw debug ignore_loglevel print-fatal-signals=1" -nographic -net nic,vlan=0 -net socket,vlan=0,listen=:2000 -net nic,vlan=1 -net socket,vlan=1,listen=:2001 -net nic,vlan=2 -net socket,vlan=2,listen=:2002 -net nic,vlan=3 -net socket,vlan=3,listen=:2003
26 | 


--------------------------------------------------------------------------------
/firmadyne/scripts/run.mipseb.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | set -e
 4 | set -u
 5 | 
 6 | if [ -e ./firmadyne.config ]; then
 7 |     source ./firmadyne.config
 8 | elif [ -e ../firmadyne.config ]; then
 9 |     source ../firmadyne.config
10 | else
11 |     echo "Error: Could not find 'firmadyne.config'!"
12 |     exit 1
13 | fi
14 | 
15 | if check_number $1; then
16 |     echo "Usage: run.mipseb.sh <image ID>"
17 |     exit 1
18 | fi
19 | IID=${1}
20 | 
21 | WORK_DIR=`get_scratch ${IID}`
22 | IMAGE=`get_fs ${IID}`
23 | KERNEL=`get_kernel "mipseb"`
24 | 
25 | qemu-system-mips -m 256 -M malta -kernel ${KERNEL} -drive if=ide,format=raw,file=${IMAGE} -append "firmadyne.syscall=1 root=/dev/sda1 console=ttyS0 nandsim.parts=64,64,64,64,64,64,64,64,64,64 rdinit=/firmadyne/preInit.sh rw debug ignore_loglevel print-fatal-signals=1" -serial file:${WORK_DIR}/qemu.initial.serial.log -serial unix:/tmp/qemu.${IID}.S1,server,nowait -monitor unix:/tmp/qemu.${IID},server,nowait -display none -net nic,vlan=0 -net socket,vlan=0,listen=:2000 -net nic,vlan=1 -net socket,vlan=1,listen=:2001 -net nic,vlan=2 -net socket,vlan=2,listen=:2002 -net nic,vlan=3 -net socket,vlan=3,listen=:2003
26 | 


--------------------------------------------------------------------------------
/firmadyne/scripts/run.mipsel-debug.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | set -e
 4 | set -u
 5 | 
 6 | if [ -e ./firmadyne.config ]; then
 7 |     source ./firmadyne.config
 8 | elif [ -e ../firmadyne.config ]; then
 9 |     source ../firmadyne.config
10 | else
11 |     echo "Error: Could not find 'firmadyne.config'!"
12 |     exit 1
13 | fi
14 | 
15 | if check_number $1; then
16 |     echo "Usage: run.mipsel-debug.sh <image ID>"
17 |     exit 1
18 | fi
19 | IID=${1}
20 | 
21 | WORK_DIR=`get_scratch ${IID}`
22 | IMAGE=`get_fs ${IID}`
23 | KERNEL=`get_kernel "mipsel"`
24 | 
25 | qemu-system-mipsel -m 256 -M malta -kernel ${KERNEL} -drive if=ide,format=raw,file=${IMAGE} -append "firmadyne.syscall=0 root=/dev/sda1 console=ttyS0 nandsim.parts=64,64,64,64,64,64,64,64,64,64 rdinit=/firmadyne/preInit.sh rw debug ignore_loglevel print-fatal-signals=1" -nographic -net nic,vlan=0 -net socket,vlan=0,listen=:2000 -net nic,vlan=1 -net socket,vlan=1,listen=:2001 -net nic,vlan=2 -net socket,vlan=2,listen=:2002 -net nic,vlan=3 -net socket,vlan=3,listen=:2003
26 | 


--------------------------------------------------------------------------------
/firmadyne/scripts/run.mipsel.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | set -e
 4 | set -u
 5 | 
 6 | if [ -e ./firmadyne.config ]; then
 7 |     source ./firmadyne.config
 8 | elif [ -e ../firmadyne.config ]; then
 9 |     source ../firmadyne.config
10 | else
11 |     echo "Error: Could not find 'firmadyne.config'!"
12 |     exit 1
13 | fi
14 | 
15 | if check_number $1; then
16 |     echo "Usage: run.mipsel.sh <image ID>"
17 |     exit 1
18 | fi
19 | IID=${1}
20 | 
21 | WORK_DIR=`get_scratch ${IID}`
22 | IMAGE=`get_fs ${IID}`
23 | KERNEL=`get_kernel "mipsel"`
24 | 
25 | qemu-system-mipsel -m 256 -M malta -kernel ${KERNEL} -drive if=ide,format=raw,file=${IMAGE} -append "firmadyne.syscall=1 root=/dev/sda1 console=ttyS0 nandsim.parts=64,64,64,64,64,64,64,64,64,64 rdinit=/firmadyne/preInit.sh rw debug ignore_loglevel print-fatal-signals=1" -serial file:${WORK_DIR}/qemu.initial.serial.log -serial unix:/tmp/qemu.${IID}.S1,server,nowait -monitor unix:/tmp/qemu.${IID},server,nowait -display none -net nic,vlan=0 -net socket,vlan=0,listen=:2000 -net nic,vlan=1 -net socket,vlan=1,listen=:2001 -net nic,vlan=2 -net socket,vlan=2,listen=:2002 -net nic,vlan=3 -net socket,vlan=3,listen=:2003
26 | 


--------------------------------------------------------------------------------
/firmadyne/scripts/run.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | set -e
 4 | set -u
 5 | 
 6 | if [ -e ./firmadyne.config ]; then
 7 |     source ./firmadyne.config
 8 | elif [ -e ../firmadyne.config ]; then
 9 |     source ../firmadyne.config
10 | else
11 |     echo "Error: Could not find 'firmadyne.config'!"
12 |     exit 1
13 | fi
14 | 
15 | if check_number $1; then
16 |     echo "Usage: run.sh <image ID> [<architecture>]"
17 |     exit 1
18 | fi
19 | IID=${1}
20 | 
21 | if [ $# -gt 1 ]; then
22 |     if check_arch "${2}"; then
23 |         echo "Error: Invalid architecture!"
24 |         exit 1
25 |     fi
26 | 
27 |     ARCH=${2}
28 | else
29 |     echo -n "Querying database for architecture... "
30 |     ARCH=$(psql -d firmware -U firmadyne -h 127.0.0.1 -t -q -c "SELECT arch from image WHERE id=${1};")
31 |     ARCH="${ARCH#"${ARCH%%[![:space:]]*}"}"
32 |     echo "${ARCH}"
33 |     if [ -z "${ARCH}" ]; then
34 |         echo "Error: Unable to lookup architecture. Please specify {armel,mipseb,mipsel} as the second argument!"
35 |         exit 1
36 |     fi
37 | fi
38 | 
39 | ${SCRIPT_DIR}/run.${ARCH}.sh ${IID}
40 | 


--------------------------------------------------------------------------------
/firmadyne/scripts/umount.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | set -e
 4 | set -u
 5 | 
 6 | if [ -e ./firmadyne.config ]; then
 7 |     source ./firmadyne.config
 8 | elif [ -e ../firmadyne.config ]; then
 9 |     source ../firmadyne.config
10 | else
11 |     echo "Error: Could not find 'firmadyne.config'!"
12 |     exit 1
13 | fi
14 | 
15 | if check_number $1; then
16 |     echo "Usage: umount.sh <image ID>"
17 |     exit 1
18 | fi
19 | IID=${1}
20 | 
21 | if check_root; then
22 |     echo "Error: This script requires root privileges!"
23 |     exit 1
24 | fi
25 | 
26 | echo "----Running----"
27 | WORK_DIR=`get_scratch ${IID}`
28 | IMAGE=`get_fs ${IID}`
29 | IMAGE_DIR=`get_fs_mount ${IID}`
30 | 
31 | DEVICE=`get_device`
32 | 
33 | echo "----Unmounting----"
34 | umount "${DEVICE}"
35 | 
36 | echo "----Disconnecting Device File----"
37 | kpartx -d "${IMAGE}"
38 | losetup -d "${DEVICE}" &>/dev/null
39 | dmsetup remove $(basename "${DEVICE}") &>/dev/null
40 | 


--------------------------------------------------------------------------------
/firmadyne/sources/console/LICENSE.txt:
--------------------------------------------------------------------------------
 1 | The MIT License (MIT)
 2 | 
 3 | Copyright (c) 2015 - 2016, Daming Dominic Chen
 4 | 
 5 | Permission is hereby granted, free of charge, to any person obtaining a copy
 6 | of this software and associated documentation files (the "Software"), to deal
 7 | in the Software without restriction, including without limitation the rights
 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 9 | copies of the Software, and to permit persons to whom the Software is
10 | furnished to do so, subject to the following conditions:
11 | 
12 | The above copyright notice and this permission notice shall be included in all
13 | copies or substantial portions of the Software.
14 | 
15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21 | SOFTWARE.
22 | 


--------------------------------------------------------------------------------
/firmadyne/sources/console/Makefile:
--------------------------------------------------------------------------------
 1 | CFLAGS=-O2 -Wall
 2 | LDFLAGS=-static
 3 | 
 4 | OBJECTS=$(SOURCES:.c=.o)
 5 | SOURCES=console.c
 6 | TARGET=console
 7 | 
 8 | all: $(SOURCES) $(TARGET)
 9 | 
10 | $(TARGET): $(OBJECTS)
11 | 	$(CC) $(LDFLAGS) $(OBJECTS) -o $@
12 | 
13 | .c.o:
14 | 	$(CC) -c $(CFLAGS) $< -o $@
15 | 
16 | clean:
17 | 	rm -f *.o console
18 | 
19 | .PHONY: clean
20 | 


--------------------------------------------------------------------------------
/firmadyne/sources/console/README.md:
--------------------------------------------------------------------------------
 1 | Introduction
 2 | ============
 3 | 
 4 | This is a small binary that spawns a console on the `/dev/firmadyne` special
 5 | character device at system startup. In conjunction with a patched filesystem
 6 | and instrumented kernel, this allows an analyst to interact with an emulated
 7 | firmware image through QEMU, since some firmware images do not spawn a terminal
 8 | on the primary serial console.
 9 | 
10 | Usage
11 | =====
12 | 
13 | First, create the special character device within the firmware image:
14 | 
15 | `mknod -m 666 /firmadyne/ttyS1 c 4 65`
16 | 
17 | Next, copy this binary into the firmware image:
18 | 
19 | `cp console /firmadyne/console`
20 | 
21 | Then, it will be automatically executed by the instrumented kernel during system
22 | bootup after the 4th `execve()` call if both `firmadyne.execute` and
23 | `firmadyne.syscall` kernel parameters are set to 1 (this is the default).
24 | 


--------------------------------------------------------------------------------
/firmadyne/sources/console/console.c:
--------------------------------------------------------------------------------
 1 | #include <stdio.h>
 2 | #include <stdlib.h>
 3 | #include <sys/types.h>
 4 | #include <sys/stat.h>
 5 | #include <fcntl.h>
 6 | #include <unistd.h>
 7 | 
 8 | // Bind a shell to a serial console (/dev/firmadyne)
 9 | 
10 | int main(int argc, char **argv) {
11 |     int fd;
12 | 
13 |     close(2);
14 |     close(1);
15 |     close(0);
16 | 
17 |     if ((fd = open("/firmadyne/ttyS1", O_RDWR, 0) == -1)) {
18 |         perror("cons: Could not open \"/firmadyne/ttyS1\": ");
19 |         return -1;
20 |     }
21 | 
22 |     dup(fd);
23 |     dup(fd);
24 | 
25 |     putenv("TERM=linux");
26 |     putenv("PATH=/sbin:/bin:/usr/sbin:/usr/bin");
27 | 
28 |     return execl("/bin/sh", "/bin/sh", NULL);
29 | }
30 | 


--------------------------------------------------------------------------------
/firmadyne/sources/extractor/Dockerfile:
--------------------------------------------------------------------------------
 1 | FROM python:2-wheezy
 2 | 
 3 | WORKDIR /root
 4 | 
 5 | RUN apt-get update && \
 6 |     apt-get upgrade -y && \
 7 |     apt-get install -y git-core wget build-essential liblzma-dev liblzo2-dev zlib1g-dev unrar-free && \
 8 |     pip install -U pip
 9 | 
10 | RUN git clone https://github.com/firmadyne/sasquatch && \
11 |     cd sasquatch && \
12 |     make && \
13 |     make install && \
14 |     cd .. && \
15 |     rm -rf sasquatch
16 | 
17 | RUN git clone https://github.com/devttys0/binwalk.git && \
18 |     cd binwalk && \
19 |     ./deps.sh --yes && \
20 |     python setup.py install && \
21 |     pip install 'git+https://github.com/ahupp/python-magic' && \
22 |     pip install 'git+https://github.com/sviehb/jefferson' && \
23 |     cd .. && \
24 |     rm -rf binwalk
25 | 
26 | RUN \
27 |   adduser --disabled-password \
28 |           --gecos '' \
29 |           --home /home/extractor \
30 |           extractor
31 | 
32 | USER extractor
33 | WORKDIR /home/extractor
34 | 
35 | RUN git clone https://github.com/firmadyne/extractor.git
36 | 


--------------------------------------------------------------------------------
/firmadyne/sources/extractor/LICENSE.txt:
--------------------------------------------------------------------------------
 1 | The MIT License (MIT)
 2 | 
 3 | Copyright (c) 2015 - 2016, Daming Dominic Chen
 4 | 
 5 | Permission is hereby granted, free of charge, to any person obtaining a copy
 6 | of this software and associated documentation files (the "Software"), to deal
 7 | in the Software without restriction, including without limitation the rights
 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 9 | copies of the Software, and to permit persons to whom the Software is
10 | furnished to do so, subject to the following conditions:
11 | 
12 | The above copyright notice and this permission notice shall be included in all
13 | copies or substantial portions of the Software.
14 | 
15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21 | SOFTWARE.
22 | 


--------------------------------------------------------------------------------
/firmadyne/sources/extractor/README.md:
--------------------------------------------------------------------------------
 1 | Introduction
 2 | ============
 3 | 
 4 | This is a recursive firmware extractor that aims to extract a kernel image 
 5 | and/or compressed filesystem from a Linux-based firmware image. A number of 
 6 | heuristics are included to avoid extraction of certain blacklisted file types, 
 7 | and to avoid unproductive extraction beyond certain breadth and depth 
 8 | limitations.
 9 | 
10 | Firmware images with multiple filesystems are not fully supported; this tool
11 | cannot reassemble them and will instead extract the first filesystem that has
12 | sufficient UNIX-like root directories (e.g. `/bin`, `/etc/`, etc.)
13 | 
14 | For the impatients: Dockerize all the things!
15 | =============================================
16 | 1. Install [Docker](https://docs.docker.com/engine/getstarted/)
17 | 2. Run the dockerized extractor
18 | ```
19 | git clone https://github.com/firmadyne/extractor.git
20 | cd extractor
21 | ./extract.sh path/to/firmware.img path/to/output/directory
22 | ```
23 | 
24 | Dependencies
25 | ============
26 | * [fakeroot](https://fakeroot.alioth.debian.org)
27 | * [psycopg2](http://initd.org/psycopg/)
28 | * [binwalk](https://github.com/devttys0/binwalk)
29 | * [python-magic](https://github.com/ahupp/python-magic)
30 | 
31 | Please use the latest version of `binwalk`. Note that there are two
32 | Python modules that both share the name `python-magic`; both should be usable,
33 | but only the one linked above has been tested extensively.
34 | 
35 | Binwalk
36 | -------
37 | 
38 | * [jefferson](https://github.com/sviehb/jefferson)
39 | * [sasquatch](https://github.com/firmadyne/sasquatch) (optional)
40 | 
41 | When installing `binwalk`, it is optional to use the forked version of the
42 | `sasquatch` tool, which has been modified to make SquashFS file extraction
43 | errors fatal to prevent false positives.
44 | 
45 | Usage
46 | =====
47 | 
48 | During execution, the extractor will temporarily extract files into `/tmp`
49 | while recursing. Since firmware images can be large, preferably mount this
50 | mount point as `tmpfs` backed by a large amount of memory, to optimize
51 | performance.
52 | 
53 | To preserve filesystem permissions during extraction, while avoiding execution
54 | with root privileges, wrap execution of this extractor within `fakeroot`. This
55 | will emulate privileged operations.
56 | 
57 | `fakeroot python3 ./extractor.py -np <infile> <outdir>`
58 | 
59 | Notes
60 | =====
61 | 
62 | This tool is beta quality. In particular, it was written before the 
63 | `binwalk` API was updated to provide an interface for accessing information
64 | about the extraction of each signature match. As a result, it walks the
65 | filesystem to identify the extracted files that correspond to a given
66 | signature match. Additionally, parallel operation has not been thoroughly
67 | tested.
68 | 
69 | Pull requests are greatly appreciated!
70 | 


--------------------------------------------------------------------------------
/firmadyne/sources/extractor/extract.sh:
--------------------------------------------------------------------------------
 1 | #! /bin/bash
 2 | 
 3 | infile=$1
 4 | outdir=$2
 5 | 
 6 | # override 65535k docker default size with tmpfs default
 7 | mem=$(($(free | awk '/^Mem:/{print $2}') / 2))k
 8 | 
 9 | indir=$(realpath $(dirname "${infile}"))
10 | outdir=$(realpath "${outdir}")
11 | infilebn=$(basename "${infile}")
12 | 
13 | docker run --rm -t -i --tmpfs /tmp:rw,size=${mem} \
14 |   -v "${indir}":/firmware-in:ro \
15 |   -v "${outdir}":/firmware-out \
16 |   "ddcc/firmadyne-extractor:latest" \
17 |   fakeroot /home/extractor/extractor/extractor.py \
18 |   -np \
19 |   /firmware-in/"${infilebn}" \
20 |   /firmware-out
21 | 


--------------------------------------------------------------------------------
/firmadyne/sources/libnvram/LICENSE.txt:
--------------------------------------------------------------------------------
 1 | The MIT License (MIT)
 2 | 
 3 | Copyright (c) 2015 - 2016, Daming Dominic Chen
 4 | 
 5 | Permission is hereby granted, free of charge, to any person obtaining a copy
 6 | of this software and associated documentation files (the "Software"), to deal
 7 | in the Software without restriction, including without limitation the rights
 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 9 | copies of the Software, and to permit persons to whom the Software is
10 | furnished to do so, subject to the following conditions:
11 | 
12 | The above copyright notice and this permission notice shall be included in all
13 | copies or substantial portions of the Software.
14 | 
15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21 | SOFTWARE.
22 | 


--------------------------------------------------------------------------------
/firmadyne/sources/libnvram/Makefile:
--------------------------------------------------------------------------------
 1 | CFLAGS=-O2 -fPIC -Wall
 2 | LDFLAGS=-shared -nostdlib
 3 | 
 4 | OBJECTS=$(SOURCES:.c=.o)
 5 | SOURCES=nvram.c
 6 | TARGET=libnvram.so
 7 | 
 8 | all: $(SOURCES) $(TARGET)
 9 | 
10 | $(TARGET): $(OBJECTS)
11 | 	$(CC) $(LDFLAGS) $(OBJECTS) -o $@
12 | 
13 | .c.o:
14 | 	$(CC) -c $(CFLAGS) $< -o $@
15 | 
16 | clean:
17 | 	rm -f *.o libnvram.so test
18 | 
19 | .PHONY: clean
20 | 


--------------------------------------------------------------------------------
/firmadyne/sources/libnvram/alias.h:
--------------------------------------------------------------------------------
1 | #ifndef INCLUDE_ALIAS_H
2 | #define INCLUDE_ALIAS_H
3 | 
4 | // Iterates through each NVRAM key-value pair, and calls *fp with optional third data parameter.
5 | int foreach_nvram_from(const char *file, void (*fp)(const char *, const char *, void *), void *data);
6 | 
7 | #endif
8 | 


--------------------------------------------------------------------------------
/firmadyne/sources/libnvram/test.c:
--------------------------------------------------------------------------------
 1 | #include <stdio.h>
 2 | 
 3 | #include "nvram.h"
 4 | 
 5 | // Prototypes from "alias.c"
 6 | char *nvram_nget(const char *fmt, ...);
 7 | int nvram_nset(const char *val, const char *fmt, ...);
 8 | int foreach_nvram_from(const char *file, void (*fp)(const char *, const char *, void *), void *data);
 9 | 
10 | 
11 | void test(const char *key, const char*val, void* data) {
12 |     printf("%s = %s, %s\n", key, val, (char *) data);
13 | }
14 | 
15 | int main(int argc, char** argv) {
16 |     char buf[256], *ptr;
17 |     int tmp;
18 | 
19 |     nvram_init();
20 | 
21 |     nvram_clear();
22 | 
23 |     nvram_set_default();
24 | 
25 |     nvram_getall(buf, 256);
26 | 
27 |     nvram_set("str", "test");
28 | 
29 |     nvram_set_int("int", 2048);
30 | 
31 |     ptr = nvram_get("str");
32 | 
33 |     tmp = nvram_get_int("int");
34 | 
35 |     nvram_commit();
36 | 
37 |     nvram_getall(buf, 256);
38 | 
39 |     nvram_reset();
40 | 
41 |     ptr = nvram_get("is_default");
42 | 
43 |     nvram_close();
44 | 
45 |     nvram_unset("is_default");
46 | 
47 |     ptr = nvram_get("is_default");
48 | 
49 |     nvram_nset("test", "%s_file", "a");
50 | 
51 |     ptr = nvram_nget("%s_file", "a");
52 | 
53 |     foreach_nvram_from("/tmp/test.ini", test, "5");
54 | 
55 |     return 0;
56 | }
57 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/.gitignore:
--------------------------------------------------------------------------------
1 | *.pyc
2 | firmware/output
3 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/LICENSE.txt:
--------------------------------------------------------------------------------
 1 | The MIT License (MIT)
 2 | 
 3 | Copyright (c) 2015 - 2016, Daming Dominic Chen
 4 | 
 5 | Permission is hereby granted, free of charge, to any person obtaining a copy
 6 | of this software and associated documentation files (the "Software"), to deal
 7 | in the Software without restriction, including without limitation the rights
 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 9 | copies of the Software, and to permit persons to whom the Software is
10 | furnished to do so, subject to the following conditions:
11 | 
12 | The above copyright notice and this permission notice shall be included in all
13 | copies or substantial portions of the Software.
14 | 
15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21 | SOFTWARE.
22 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/README.md:
--------------------------------------------------------------------------------
 1 | Introduction
 2 | ============
 3 | 
 4 | This is a firmware scraper that aims to download firmware images and associated
 5 | metadata from supported device vendor websites.
 6 | 
 7 | Dependencies
 8 | ============
 9 | * [psycopg2](http://initd.org/psycopg/)
10 | * [scrapy](http://scrapy.org/)
11 | 
12 | Usage
13 | =====
14 | 
15 | 1. Configure the `firmware/settings.py` file. Comment out `SQL_SERVER` if metadata about
16 | downloaded firmware should not be inserted into a SQL server.
17 | 
18 | 2. To run a specific scraper, e.g. `dlink`:
19 | 
20 | `scrapy crawl dlink`
21 | 
22 | To run all scrapers with maximum 4 in parallel, using [GNU Parallel](https://www.gnu.org/software/parallel/):
23 | 
24 | ```parallel -j 4 scrapy crawl ::: `for i in ./firmware/spiders/*.py; do basename ${i%.*}; done` ```
25 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/TODO.txt:
--------------------------------------------------------------------------------
 1 | arris
 2 | canon
 3 | crucial
 4 | digi
 5 | eyefi
 6 | garmin
 7 | hddguru
 8 | intel ssd
 9 | lg
10 | logitech
11 | motorola
12 | phillips
13 | ps3/ps4
14 | rpc1/firmwarehq
15 | samsung
16 | schenider electric
17 | tpm
18 | vizio
19 | westell/kentrox
20 | western digital
21 | zte
22 | zywall
23 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/__init__.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/firmadyne/sources/scraper/firmware/__init__.py


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/items.py:
--------------------------------------------------------------------------------
 1 | from scrapy.item import Item, Field
 2 | 
 3 | class FirmwareImage(Item):
 4 |     product = Field(default=None)
 5 |     vendor = Field()
 6 | 
 7 |     description = Field(default=None)
 8 |     version = Field(default=None)
 9 |     build = Field(default=None)
10 |     date = Field(default=None)
11 | 
12 |     mib = Field(default=None)
13 |     sdk = Field(default=None)
14 |     url = Field()
15 | 
16 |     # used by FilesPipeline
17 |     files = Field()
18 |     file_urls = Field()
19 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/settings.py:
--------------------------------------------------------------------------------
 1 | BOT_NAME = "firmware"
 2 | 
 3 | SPIDER_MODULES = ["firmware.spiders"]
 4 | NEWSPIDER_MODULE = "scraper.spiders"
 5 | 
 6 | ITEM_PIPELINES = {
 7 |     "firmware.pipelines.FirmwarePipeline" : 1,
 8 | }
 9 | 
10 | FILES_STORE = "./output/"
11 | 
12 | AUTOTHROTTLE_ENABLED = True
13 | AUTOTHROTTLE_START_DELAY = 0
14 | AUTOTHROTTLE_MAX_DELAY = 15
15 | CONCURRENT_REQUESTS = 8
16 | 
17 | DOWNLOAD_TIMEOUT = 1200
18 | DOWNLOAD_MAXSIZE = 0
19 | DOWNLOAD_WARNSIZE = 0
20 | 
21 | ROBOTSTXT_OBEY = False
22 | USER_AGENT = "FirmwareBot/1.0 (+https://github.com/firmadyne/scraper)"
23 | 
24 | #SQL_SERVER = "127.0.0.1"
25 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/360.py:
--------------------------------------------------------------------------------
 1 | #coding:utf-8
 2 | from scrapy import Spider
 3 | from scrapy.http import Request
 4 | 
 5 | from firmware.items import FirmwareImage
 6 | from firmware.loader import FirmwareLoader
 7 | 
 8 | import urlparse
 9 | import json
10 | 
11 | class A360Spider(Spider):
12 |     name = "360"
13 |     #allowed_domains = ["luyou.360.cn"]
14 |     json_url = "http://s7.qhres.com/static/ef5bacdd3d93fa90/common_info.js"
15 |     start_urls = ["http://luyou.360.cn/download_center.html?from=nav"]
16 | 
17 |     def parse(self, response):
18 |         yield Request(
19 |             url=self.json_url,
20 |             headers={"Referer": response.url},
21 |             callback=self.parse_product)
22 | 
23 |     def parse_product(self, response):
24 |         js = response.text
25 |         if js.startswith("var commonInfo"):
26 |             print response.url
27 |             print js
28 | 
29 |             p_product = u"id:\"(?P<product>.*?)\""
30 |             p_description = u"title:\"(?P<description>.*?)\""
31 |             p_version = u"romVersions:\"(?P<version>.*?)\""
32 |             p_url = u"romUrl:\"(?P<url>.*?)\""
33 |             p_date = u"updateDate:\"(?P<date>.*?)\""
34 | 
35 |             import re
36 |             products = re.findall(p_version, js)
37 |             descriptions = re.findall(p_description, js)
38 |             versions = re.findall(p_version, js)
39 |             urls = re.findall(p_url, js)
40 |             dates = re.findall(p_date, js)
41 | 
42 |             for i in xrange(len(products)):
43 |                 product = products[i]
44 |                 url = urls[i]
45 |                 version = versions[i]
46 |                 description = descriptions[i]
47 |                 date = dates[i]
48 | 
49 |                 item = FirmwareLoader(
50 |                             item=FirmwareImage(), response=response)
51 |                 item.add_value("url", url)
52 |                 item.add_value("product", product)
53 |                 item.add_value("description", description)
54 |                 item.add_value("date", date)
55 |                 item.add_value("vendor", self.name)
56 |                 yield item.load_item()


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/__init__.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/firmadyne/sources/scraper/firmware/spiders/__init__.py


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/actiontec.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import re
 8 | import urlparse
 9 | 
10 | 
11 | class ActiontecSpider(Spider):
12 |     name = "actiontec"
13 |     allowed_domains = ["actiontec.com"]
14 |     start_urls = ["http://www.actiontec.com/support/"]
15 | 
16 |     def parse(self, response):
17 |         for link in response.xpath("//div[@class='newboxes2']//a"):
18 |             product = link.xpath(".//text()").extract()[0]
19 |             # some product strings are e.g. "(GT701-WRU) - 54 Mbps Wireless
20 |             # Cable/DSL Router"
21 |             actual = re.match(r"\(([\w ,\\/()-]+?)\)", product)
22 |             if actual:
23 |                 product = actual.group(1).replace("(", "").replace(")", "")
24 | 
25 |             yield Request(
26 |                 url=urlparse.urljoin(
27 |                     response.url, link.xpath(".//@href").extract()[0]),
28 |                 headers={"Referer": response.url},
29 |                 meta={"product": product},
30 |                 callback=self.parse_product)
31 | 
32 |     def parse_product(self, response):
33 |         for image in response.xpath(
34 |                 "//div[@id='accordion-2']//tr[position() > 1]"):
35 |             text = image.xpath("./td[2]//a[1]/text()").extract()
36 |             if "firmware" in "".join(text).lower():
37 |                 item = FirmwareLoader(item=FirmwareImage(), response=response,
38 |                                       selector=image, date_fmt=["%Y-%m-%d"])
39 |                 item.add_xpath("date", "td[1]//text()")
40 |                 item.add_value("description", text)
41 |                 item.add_xpath("url", "td[2]//a[1]/@href")
42 |                 item.add_value("product", response.meta["product"])
43 |                 item.add_value("vendor", self.name)
44 |                 item.add_value(
45 |                     "version", FirmwareLoader.find_version_period(text))
46 |                 yield item.load_item()
47 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/airlink101.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import urlparse
 8 | 
 9 | 
10 | class Airlink101Spider(Spider):
11 |     name = "airlink101"
12 |     allowed_domains = ["airlink101.com"]
13 |     start_urls = ["http://www.airlink101.com/support/index.php?cmd=files"]
14 | 
15 |     def parse(self, response):
16 |         for entry in response.xpath(
17 |                 "//div[@class='menu2']//table//table//table[2]//td[1]//td[2]"):
18 |             desc = entry.xpath(".//text()").extract()
19 | 
20 |             for link in entry.xpath(".//a"):
21 |                 href = link.xpath("./@href").extract()[0]
22 |                 text = link.xpath(".//text()").extract()[0]
23 | 
24 |                 if "_a=download" not in href:
25 |                     yield Request(
26 |                         url=urlparse.urljoin(response.url, href),
27 |                         headers={"Referer": response.url},
28 |                         meta={"product": text.strip().split(' ')},
29 |                         callback=self.parse)
30 |                 elif "firmware" in text.lower() or "f/w" in text.lower():
31 |                     item = FirmwareLoader(item=FirmwareImage(),
32 |                                           response=response,
33 |                                           date_fmt=["%m/%d/%Y", "%m/%d/%y"])
34 |                     item.add_value("version", FirmwareLoader.find_version(desc))
35 |                     item.add_value("date", item.find_date(desc))
36 |                     item.add_value("description", text)
37 |                     item.add_value("url", href)
38 |                     item.add_value("product", response.meta["product"])
39 |                     item.add_value("vendor", self.name)
40 |                     yield item.load_item()
41 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/att.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import urlparse
 8 | 
 9 | 
10 | class ATTSpider(Spider):
11 |     name = "att"
12 |     allowed_domains = ["bellsouth.net"]
13 |     start_urls = ["http://cpems.bellsouth.net/firmware"]
14 | 
15 |     def parse(self, response):
16 |         for href in response.xpath("//a/@href").extract():
17 |             if href == ".." or href == "/":
18 |                 continue
19 |             elif href.endswith(".bin") or href.endswith(".upg"):
20 |                 item = FirmwareLoader(item=FirmwareImage(), response=response)
21 |                 item.add_value("url", href)
22 |                 item.add_value("vendor", self.name)
23 |                 yield item.load_item()
24 |             elif "/" in href:
25 |                 yield Request(
26 |                     url=urlparse.urljoin(response.url, href),
27 |                     headers={"Referer": response.url},
28 |                     callback=self.parse)
29 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/buffalo.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import json
 8 | 
 9 | class BuffaloSpider(Spider):
10 |     name = "buffalo"
11 |     allowed_domains = ["buffalotech.com", "cdn.cloudfiles.mosso.com"]
12 |     start_urls = ["http://www.buffalotech.com/products/category/wireless-networking"]
13 | 
14 |     def parse(self, response):
15 |         for href in response.xpath("//article/div/a/@href").extract():
16 |             yield Request(
17 |                 url=href,
18 |                 headers={"Referer": response.url},
19 |                 callback=self.parse_product)
20 | 
21 | 
22 |     def parse_product(self, response):
23 |         
24 |         #<h3 class="firm">Firmware</h3>
25 |         if response.xpath('//h3[@class="firm"]').extract():
26 |             for tr in response.xpath('//*[@id="tab-downloads"]/table[1]/tbody/tr'):
27 |                 print tr.extract()
28 |                 url = tr.xpath("./td[2]/a/@href").extract()[0]
29 |                 date = tr.xpath("./td[4]/text()").extract()[0]
30 |                 version = tr.xpath("./td[5]/text()").extract()[0]
31 |                 description = tr.xpath("./td[7]/text()").extract()[0]
32 |                 product = url.split('-')[0]
33 | 
34 |                 item = FirmwareLoader(item=FirmwareImage(),
35 |                                       response=response)
36 |                                       
37 |                 item.add_value("version", version)
38 |                 item.add_value("description", description)
39 |                 item.add_value("url", url)
40 |                 item.add_value("product", product)
41 |                 item.add_value("vendor", self.name)
42 |                 yield item.load_item()


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/centurylink.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import urlparse
 8 | 
 9 | # http://home.centurytel.net/ihd/
10 | 
11 | 
12 | class CenturyLinkSpider(Spider):
13 |     name = "centurylink"
14 |     allowed_domains = ["centurylink.com"]
15 |     start_urls = ["http://internethelp.centurylink.com/internethelp/downloads-auto-firmware-q.html"]
16 | 
17 |     def parse(self, response):
18 |         product = None
19 |         for section in response.xpath("//div[@class='product-content']/div[@class='product-box2']/div"):
20 |             text = section.xpath(".//text()").extract()
21 |             if not section.xpath(".//a"):
22 |                 product = text[0].strip()
23 |             else:
24 |                 for link in section.xpath(".//a/@href").extract():
25 |                     if link.endswith(".html"):
26 |                         yield Request(
27 |                             url=urlparse.urljoin(response.url, link),
28 |                             meta={"product": product,
29 |                                   "version": FirmwareLoader.find_version(text)},
30 |                             headers={"Referer": response.url},
31 |                             callback=self.parse_download)
32 | 
33 |     def parse_download(self, response):
34 |         for link in response.xpath("//div[@id='auto']//a"):
35 |             href = link.xpath("./@href").extract()[0]
36 |             text = link.xpath(".//text()").extract()[0]
37 | 
38 |             if ("downloads" in href or "firmware" in href) and \
39 |                 not href.endswith(".html"):
40 |                 item = FirmwareLoader(item=FirmwareImage(), response=response)
41 |                 item.add_value("version", response.meta["version"])
42 |                 item.add_value("url", href)
43 |                 item.add_value("description", text)
44 |                 item.add_value("product", response.meta["product"])
45 |                 item.add_value("vendor", self.name)
46 |                 yield item.load_item()
47 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/foscam.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | class FoscamSpider(Spider):
 8 |     name = "foscam"
 9 |     allowed_domains = ["foscam.com"]
10 |     start_urls = [
11 |         "http://www.foscam.com/download-center/firmware-downloads.html"]
12 | 
13 |     def start_requests(self):
14 |         for url in self.start_urls:
15 |             yield Request(url, cookies={'loginEmail': "@.com"}, dont_filter=True)
16 | 
17 |     def parse(self, response):
18 |         for i in range(0, len(response.xpath("//div[@id='main_right']/span[1]/p")), 7):
19 |             prods = response.xpath("//div[@id='main_right']/span[1]//p[%d]/text()" % (i + 2)).extract()[0].split("\r\n")
20 | 
21 |             for product in [x for x in prods]:
22 |                 item = FirmwareLoader(item=FirmwareImage(), response=response)
23 |                 item.add_xpath("version", "//div[@id='main_right']/span[1]//p[%d]/text()" % (i + 3))
24 |                 item.add_xpath("url", "//div[@id='main_right']/span[1]//p[%d]/a/@href" % (i + 7))
25 |                 item.add_value("product", product)
26 |                 item.add_value("vendor", self.name)
27 |                 yield item.load_item()
28 | 
29 |         for i in range(0, len(response.xpath("//div[@id='main_right']/span[2]/p")), 5):
30 |             prods = response.xpath("//div[@id='main_right']/span[2]//p[%d]/text()" % (i + 2)).extract()[0].split(",")
31 | 
32 |             for product in [x for x in prods]:
33 |                 item = FirmwareLoader(item=FirmwareImage(), response=response)
34 |                 item.add_xpath("version", "//div[@id='main_right']/span[2]//p[%d]/text()" % (i + 3))
35 |                 item.add_xpath("url", "//div[@id='main_right']/span[2]//p[%d]/a/@href" % (i + 5))
36 |                 item.add_value("product", product)
37 |                 item.add_value("vendor", self.name)
38 |                 yield item.load_item()
39 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/huawei_en.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import datetime
 8 | import json
 9 | import urlparse
10 | 
11 | 
12 | class HuaweiENSpider(Spider):
13 |     name = "huawei_en"
14 |     vendor = "huawei"
15 |     region = "worldwide"
16 |     allowed_domains = ["huawei.com"]
17 |     start_urls = ["http://consumer.huawei.com/en/support/downloads/index.htm"]
18 | 
19 |     def parse(self, response):
20 |         yield Request(
21 |             url=urlparse.urljoin(
22 |                 response.url, "/support/services/service/product/category?siteCode=%s" % (self.region)),
23 |             headers={"Referer": response.url,
24 |                      "X-Requested-With": "XMLHttpRequest"},
25 |             callback=self.parse_category)
26 | 
27 |     def parse_category(self, response):
28 |         json_response = json.loads(response.body_as_unicode())
29 | 
30 |         for category in json_response:
31 |             yield Request(
32 |                 url=urlparse.urljoin(
33 |                     response.url, "/support/services/service/product/list?productID=%s&siteCode=%s" % (category["productId"], self.region)),
34 |                 headers={"Referer": response.url,
35 |                          "X-Requested-With": "XMLHttpRequest"},
36 |                 callback=self.parse_product)
37 | 
38 |     def parse_product(self, response):
39 |         json_response = json.loads(response.body_as_unicode())
40 | 
41 |         for product in json_response:
42 |             yield Request(
43 |                 url=urlparse.urljoin(
44 |                     response.url, "/support/services/service/file/list?productID=%s&siteCode=%s" % (product["productId"], self.region)),
45 |                 meta={"product": product["productCode"]},
46 |                 headers={"Referer": response.url,
47 |                          "X-Requested-With": "XMLHttpRequest"},
48 |                 callback=self.parse_download)
49 | 
50 |     def parse_download(self, response):
51 |         json_response = json.loads(response.body_as_unicode())
52 | 
53 |         for file in json_response:
54 |             if file["subFileType"] == "firmware":
55 |                 item = FirmwareLoader(
56 |                     item=FirmwareImage(), response=response, date_fmt=["%d/%m/%y"])
57 |                 item.add_value("version", file["fileVersion"])
58 |                 item.add_value("date", datetime.datetime.fromtimestamp(
59 |                     int(file["releaseDate"]) / 1000).strftime(item.context.get("date_fmt")[0]))
60 |                 item.add_value("description", file["fileName"])
61 |                 item.add_value("url", file["downloadUrl"])
62 |                 item.add_value("product", response.meta["product"])
63 |                 item.add_value("vendor", self.vendor)
64 |                 yield item.load_item()
65 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/huawei_zh.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import datetime
 8 | import json
 9 | import urlparse
10 | 
11 | 
12 | class HuaweiZHSpider(Spider):
13 |     name = "huawei_zh"
14 |     vendor = "huawei"
15 |     region = "cn"
16 |     allowed_domains = ["huawei.com"]
17 |     start_urls = ["http://consumer.huawei.com/en/support/downloads/index.htm"]
18 | 
19 |     def parse(self, response):
20 |         yield Request(
21 |             url=urlparse.urljoin(
22 |                 response.url, "/support/services/service/product/category?siteCode=%s" % (self.region)),
23 |             headers={"Referer": response.url,
24 |                      "X-Requested-With": "XMLHttpRequest"},
25 |             callback=self.parse_category)
26 | 
27 |     def parse_category(self, response):
28 |         json_response = json.loads(response.body_as_unicode())
29 | 
30 |         for category in json_response:
31 |             yield Request(
32 |                 url=urlparse.urljoin(
33 |                     response.url, "/support/services/service/product/list?productID=%s&siteCode=%s" % (category["productId"], self.region)),
34 |                 headers={"Referer": response.url,
35 |                          "X-Requested-With": "XMLHttpRequest"},
36 |                 callback=self.parse_product)
37 | 
38 |     def parse_product(self, response):
39 |         json_response = json.loads(response.body_as_unicode())
40 | 
41 |         for product in json_response:
42 |             yield Request(
43 |                 url=urlparse.urljoin(
44 |                     response.url, "/support/services/service/file/list?productID=%s&siteCode=%s" % (product["productId"], self.region)),
45 |                 meta={"product": product["productCode"]},
46 |                 headers={"Referer": response.url,
47 |                          "X-Requested-With": "XMLHttpRequest"},
48 |                 callback=self.parse_download)
49 | 
50 |     def parse_download(self, response):
51 |         json_response = json.loads(response.body_as_unicode())
52 | 
53 |         for file in json_response:
54 |             if file["subFileType"] == "firmware":
55 |                 item = FirmwareLoader(
56 |                     item=FirmwareImage(), response=response, date_fmt=["%d/%m/%y"])
57 |                 item.add_value("version", file["fileVersion"])
58 |                 item.add_value("date", datetime.datetime.fromtimestamp(
59 |                     int(file["releaseDate"]) / 1000).strftime(item.context.get("date_fmt")[0]))
60 |                 item.add_value("description", file["fileName"])
61 |                 item.add_value("url", file["downloadUrl"])
62 |                 item.add_value("product", response.meta["product"])
63 |                 item.add_value("vendor", self.vendor)
64 |                 yield item.load_item()
65 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/microstrain.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | 
 3 | from firmware.items import FirmwareImage
 4 | from firmware.loader import FirmwareLoader
 5 | 
 6 | 
 7 | class MicrostrainSpider(Spider):
 8 |     name = "microstrain"
 9 |     allowed_domains = ["microstrain.com"]
10 |     start_urls = ["http://www.microstrain.com/support"]
11 | 
12 |     # http://files.microstrain.com/8401-0006-Firmware-Upgrades-for-3DM-GX3.pdf
13 | 
14 |     firmware = ["http://files.microstrain.com/MicroStrain_Wireless_Firmware.zip",
15 |                 "http://download.microstrain.com/3DM-GX3-Upgrades/3DM-GX3-15_25_MIP_firmware_upgrade.zip",
16 |                 "http://download.microstrain.com/3DM-GX3-Upgrades/3DM-GX3-25_Single_Byte_firmware_upgrade.zip",
17 |                 "http://download.microstrain.com/3DM-GX3-Upgrades/3DM-GX3-35_MIP_firmware_upgrade.zip",
18 |                 "http://download.microstrain.com/3DM-GX3-Upgrades/3DM-GX3-45_MIP_firmware_upgrade.zip"]
19 | 
20 |     def parse(self, response):
21 |         for url in self.firmware:
22 |             item = FirmwareLoader(item=FirmwareImage())
23 |             item.add_value("url", url)
24 |             item.add_value("product", url.split("/")[-1].split("_")[0])
25 |             item.add_value("vendor", self.name)
26 |             yield item.load_item()
27 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/mikrotik.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import FormRequest
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import urlparse
 8 | 
 9 | 
10 | class MikrotikSpider(Spider):
11 |     name = "mikrotik"
12 |     allowed_domains = ["mikrotik.com"]
13 |     start_urls = ["https://www.mikrotik.com/download"]
14 | 
15 |     def parse(self, response):
16 | 
17 |         for href in response.xpath("//a/@href").extract():
18 |             if href.endswith(".npk") or href.endswith(".lzb"):
19 |                 if href.startswith("//"):
20 |                     href = "http:" + href
21 |                 text = response.xpath("//text()").extract()
22 |                 items = href.split('/')
23 |                 version = items[-2]
24 |                 basename = items[-1]
25 | 
26 |                 item = FirmwareLoader(
27 |                     item=FirmwareImage(), response=response, date_fmt=["%Y-%b-%d"])
28 |                 item.add_value("date", item.find_date(text))
29 |                 item.add_value("url", href)
30 |                 item.add_value("product", basename[0: basename.rfind("-")])
31 |                 item.add_value("vendor", self.name)
32 |                 item.add_value(
33 |                     "version", version)
34 |                 yield item.load_item()


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/netcore.py:
--------------------------------------------------------------------------------
 1 | #coding:utf-8
 2 | from scrapy import Spider
 3 | from scrapy.http import Request
 4 | 
 5 | from firmware.items import FirmwareImage
 6 | from firmware.loader import FirmwareLoader
 7 | 
 8 | import re
 9 | import urlparse
10 | 
11 | 
12 | class NetcoreSpider(Spider):
13 |     name = "netcore"
14 |     allowed_domains = ["netcoretec.com"]
15 |     start_urls = ["http://www.netcoretec.com/softwarelist/&downloadcategoryid=7&isMode=false&pageNo=1&pageSize=1000.html"]
16 |     product_url = 'http://www.netcoretec.com/software_detail/downloadsId={}.html'
17 |     firmware_url = "http://www.netcoretec.com/"
18 | 
19 |     def parse(self, response):
20 |         th = False
21 |         for tr in response.xpath("//table[1]//tr"):
22 |             if not th:
23 |                 th = True
24 |                 continue
25 | 
26 |             href = tr.xpath("./td[@class='name']/a/@href").extract()[0]
27 |             title = tr.xpath("./td[@class='name']/a/@title").extract()[0]
28 |             date = tr.xpath("./td[@class='time']/text()").extract()[0]
29 |             downloadid = re.search('downloadsId=(\d+)\.html', href).group(1)
30 |             url = self.product_url.format(downloadid)
31 | 
32 |             if not title.count(u"升级固件"):
33 |                 continue
34 |             product = re.search('[a-zA-Z0-9\+\-]+',title).group(0)
35 | 
36 |             # filter firmwares count by limit date(year) >= 2015
37 |             if int(date.split('-')[0]) >= 2015:
38 |                 yield Request(
39 |                     url=url,
40 |                     headers={"Referer": response.url},
41 |                     meta={"date": date,
42 |                           "description": title,
43 |                           "product": product,
44 |                           },
45 |                     callback=self.parse_product)
46 | 
47 |     def parse_product(self, response):
48 |         url =self.firmware_url + response.xpath('//a[@id="downLoadHref"]/@href').extract()[0]
49 | 
50 |         item = FirmwareLoader(item=FirmwareImage(), response=response)
51 |         item.add_xpath("date", response.meta['date'])
52 |         item.add_value("description",  response.meta['description'])
53 |         item.add_value("url",  url)
54 |         item.add_value("product", response.meta["product"])
55 |         item.add_value("vendor", self.name)
56 |         yield item.load_item()
57 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/openwireless.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | 
 3 | from firmware.items import FirmwareImage
 4 | from firmware.loader import FirmwareLoader
 5 | 
 6 | 
 7 | class OpenWirelessSpider(Spider):
 8 |     name = "openwireless"
 9 |     allowed_domains = ["openwireless.org", "eff.org"]
10 |     start_urls = ["https://www.openwireless.org/router/download"]
11 | 
12 |     def parse(self, response):
13 |         for href in response.xpath("//a/@href").extract():
14 |             if href.endswith(".img"):
15 |                 basename = href.split("/")[-1].split("-")
16 | 
17 |                 item = FirmwareLoader(item=FirmwareImage(), response=response)
18 |                 item.add_value("url", href)
19 |                 item.add_value("product", self.name)
20 |                 item.add_value("vendor", self.name)
21 |                 item.add_value(
22 |                     "version", basename[-1][0: basename[-1].rfind(".img")])
23 |                 yield item.load_item()
24 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/openwrt.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import urlparse
 8 | 
 9 | 
10 | class OpenWRTSpider(Spider):
11 |     name = "openwrt"
12 |     allowed_domains = ["downloads.openwrt.org"]
13 |     start_urls = ["http://downloads.openwrt.org/"]
14 | 
15 |     def parse(self, response):
16 |         for link in response.xpath("//a"):
17 |             text = link.xpath("text()").extract()[0]
18 |             href = link.xpath("@href").extract()[0]
19 | 
20 |             yield Request(
21 |                 url=urlparse.urljoin(response.url, href),
22 |                 headers={"Referer": response.url},
23 |                 meta={"version": FirmwareLoader.find_version_period(text)},
24 |                 callback=self.parse_url)
25 | 
26 |     def parse_url(self, response):
27 |         for link in response.xpath("//a"):
28 |             text = link.xpath("text()").extract()[0]
29 |             href = link.xpath("@href").extract()[0]
30 | 
31 |             if ".." in href:
32 |                 continue
33 |             elif href.endswith('/'):
34 |                 if "package/" not in text:
35 |                     product = "%s-%s" % (response.meta["product"], text[0: -1]) if "product" in response.meta else text[0: -1]
36 | 
37 |                     yield Request(
38 |                         url=urlparse.urljoin(response.url, href),
39 |                         headers={"Referer": response.url},
40 |                         meta={"version": response.meta[
41 |                             "version"], "product": product},
42 |                         callback=self.parse_url)
43 |             elif any(href.endswith(x) for x in [".bin", ".elf", ".fdt", ".imx", ".chk", ".trx"]):
44 |                 item = FirmwareLoader(
45 |                     item=FirmwareImage(), response=response, date_fmt=["%d-%b-%Y"])
46 |                 item.add_value("version", response.meta["version"])
47 |                 item.add_value("url", href)
48 |                 item.add_value("date", item.find_date(
49 |                     link.xpath("following::text()").extract()))
50 |                 item.add_value("product", response.meta["product"])
51 |                 item.add_value("vendor", self.name)
52 |                 yield item.load_item()
53 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/pfsense.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import os
 8 | import urlparse
 9 | 
10 | 
11 | class PfSenseSpider(Spider):
12 |     name = "pfsense"
13 |     allowed_domains = ["pfsense.org"]
14 |     start_urls = ["http://files.pfsense.org/mirror/downloads/"]
15 | 
16 |     def parse(self, response):
17 |         for link in response.xpath("//a"):
18 |             text = link.xpath(".//text()").extract()[0]
19 |             href = link.xpath(".//@href").extract()[0]
20 | 
21 |             if ".." in href:
22 |                 continue
23 |             elif href.endswith('/'):
24 |                 yield Request(
25 |                     url=urlparse.urljoin(response.url, href),
26 |                     headers={"Referer": response.url},
27 |                     callback=self.parse)
28 |             elif href.endswith(".gz") and ".iso" not in href:
29 |                 # strip off multiple file extensions
30 |                 basename = os.path.splitext(text)[0]
31 |                 while ".img" in basename or ".iso" in basename:
32 |                     basename = os.path.splitext(basename)[0]
33 | 
34 |                 basename = basename.split("-")
35 |                 version = FirmwareLoader.find_version_period(basename)
36 | 
37 |                 # attempt to parse filename and generate product/version
38 |                 # strings
39 |                 remove = [version] if version else []
40 |                 for i in range(0, len(basename)):
41 |                     if "BETA" in basename[i]:
42 |                         version += "-%s%s" % (basename[i], basename[i + 1])
43 |                         remove.append(basename[i])
44 |                         remove.append(basename[i + 1])
45 |                     elif "RC" in basename[i]:
46 |                         version += "-%s" % (basename[i])
47 |                         remove.append(basename[i])
48 |                     elif "RELEASE" in basename[i]:
49 |                         remove.append(basename[i])
50 | 
51 |                 basename = [x for x in basename if x not in remove]
52 | 
53 |                 item = FirmwareLoader(
54 |                     item=FirmwareImage(), response=response, date_fmt=["%d-%b-%Y"])
55 |                 item.add_value("version", version)
56 |                 item.add_value("url", href)
57 |                 item.add_value("date", item.find_date(
58 |                     link.xpath("following::text()").extract()))
59 |                 item.add_value("product", "-".join(basename))
60 |                 item.add_value("vendor", self.name)
61 |                 yield item.load_item()
62 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/phicomm.py:
--------------------------------------------------------------------------------
 1 | #coding:utf-8
 2 | 
 3 | from scrapy import Spider
 4 | from scrapy.http import Request
 5 | 
 6 | from firmware.items import FirmwareImage
 7 | from firmware.loader import FirmwareLoader
 8 | import urlparse
 9 | 
10 | class PhicommSpider(Spider):
11 |     name = "phicomm"
12 |     vendor = "phicomm"
13 |     allowed_domains = ["phicomm.com"]
14 |     #Routers are K serials
15 |     start_urls = ["http://www.phicomm.com/cn/support.php/Soho/search_support/col/6,/keys/K.html"]
16 |     download_path = "http://www.phicomm.com/"
17 | 
18 |     def parse(self, response):
19 |         head = False
20 |         for tr in response.xpath("//table//tr"):
21 |             if not head:
22 |                 head = True
23 |                 continue
24 | 
25 |             description = tr.xpath("./td[2]/text()").extract()[0]
26 |             product = description.split(u'（')[0]
27 |             version = tr.xpath("./td[4]/text()").extract()[0]
28 |             #2017-03-14
29 |             date = tr.xpath("./td[6]/p/text()").extract()[0]
30 |             downloadid = tr.xpath("./td[7]/a/@downloadid").extract()[0]
31 | 
32 |             #http://www.phicomm.com/cn/support.php/Mobile/Downhit.html?id=437
33 |             firmware_url = "http://www.phicomm.com/cn/support.php/Mobile/Downhit.html?id={}".format(downloadid)
34 |             yield Request(
35 |                 url = firmware_url,
36 |                 headers={"Referer": response.url},
37 |                 meta={
38 |                     "product":product,
39 |                     "version":version,
40 |                     "date":date,
41 |                     'description':description
42 |                 },
43 |                 callback = self.parse_product)
44 | 
45 |     def parse_product(self, response):
46 |         import re
47 |         #/cn/Uploads/files/20161024/K1_V22.4.2.15.bin
48 |         print response.text
49 |         path = re.findall(u"(/cn/Uploads/files/.*?\.bin)", response.text)[0]
50 |         url = "http://www.phicomm.com/{}".format(path)
51 | 
52 |         item = FirmwareLoader(
53 |             item=FirmwareImage())
54 |         item.add_value("url", url),
55 |         item.add_value("product", response.meta['product']),
56 |         item.add_value("date", response.meta['date']),
57 |         item.add_value("version", response.meta['version']),
58 |         item.add_value("vendor", self.vendor),
59 |         item.add_value("description", response.meta['description']),
60 |             
61 |         yield item.load_item()


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/qnap.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import urlparse
 8 | 
 9 | 
10 | class QNAPSpider(Spider):
11 |     name = "qnap"
12 |     allowed_domains = ["qnap.com"]
13 |     start_urls = ["http://www.qnap.com/i/useng/product_x_down"]
14 | 
15 |     def parse(self, response):
16 |         yield Request(
17 |             url=urlparse.urljoin(
18 |                 response.url, "/i/useng/product_x_down/ajax/get_module.php"),
19 |             headers={"Referer": response.url},
20 |             callback=self.parse_products)
21 | 
22 |     def parse_products(self, response):
23 |         for product in response.xpath("//select/option"):
24 |             text = product.xpath(".//text()").extract()
25 |             value = product.xpath("./@value").extract()
26 | 
27 |             if value:
28 |                 yield Request(
29 |                     # firmware = 1, utility = 4, etc
30 |                     url=urlparse.urljoin(
31 |                         response.url, "/i/useng/product_x_down/product_down.php?II=%s&cat_choose=%d" % (value[0], 1)),
32 |                     meta={"product": text[0]},
33 |                     callback=self.parse_product)
34 | 
35 |     def parse_product(self, response):
36 |         for row in response.xpath(
37 |                 "//div[@class='main_data_block']//table/tr[position() > 1]"):
38 |             text = row.xpath("./td[1]//text()").extract()
39 |             edition = row.xpath("./td[2]//text()").extract()
40 |             date = row.xpath("./td[4]//text()").extract()
41 |             hrefs = row.xpath("./td[5]//a/@href").extract()
42 | 
43 |             if hrefs:
44 |                 item = FirmwareLoader(
45 |                     item=FirmwareImage(), response=response, date_fmt=["%Y/%m/%d"])
46 |                 item.add_value(
47 |                     "version", FirmwareLoader.find_version_period(edition))
48 |                 item.add_value("build", FirmwareLoader.find_build(edition))
49 |                 item.add_value("url", hrefs[0])
50 |                 item.add_value("date", item.find_date(date))
51 |                 item.add_value("description", text[2].strip())
52 |                 item.add_value("product", response.meta["product"])
53 |                 item.add_value("vendor", self.name)
54 |                 yield item.load_item()
55 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/seiki.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | 
 3 | from firmware.items import FirmwareImage
 4 | from firmware.loader import FirmwareLoader
 5 | 
 6 | 
 7 | class SeikiSpider(Spider):
 8 |     name = "seiki"
 9 |     allowed_domains = ["seiki.com"]
10 |     start_urls = ["http://www.seiki.com/support/download"]
11 | 
12 |     def parse(self, response):
13 |         for entry in response.xpath(
14 |                 "//div[@class='main-container']//p|//div[@class='main-container']//ul"):
15 |             text = entry.xpath(".//text()").extract()
16 | 
17 |             for href in entry.xpath(".//a/@href").extract():
18 |                 if "Firmware" in href:
19 |                     item = FirmwareLoader(
20 |                         item=FirmwareImage(), response=response)
21 |                     item.add_value("url", href)
22 |                     item.add_value(
23 |                         "product", FirmwareLoader.find_product(text))
24 |                     item.add_value("vendor", self.name)
25 |                     yield item.load_item()
26 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/supermicro.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | 
 3 | from firmware.items import FirmwareImage
 4 | from firmware.loader import FirmwareLoader
 5 | 
 6 | class SupermicroSpider(Spider):
 7 |     name = "supermicro"
 8 |     allowed_domains = ["supermicro.com"]
 9 |     start_urls = ["http://supermicro.com/ResourceApps/BIOS_IPMI.aspx?MoboType=1",
10 |                   "http://supermicro.com/ResourceApps/BIOS_IPMI.aspx?MoboType=2", "http://supermicro.com/support/bios/archive.cfm"]
11 | 
12 |     @staticmethod
13 |     def fix_url(url):
14 |         if "url=" in url:
15 |             return url[url.find('=') + 1:]
16 |         return url
17 | 
18 |     def parse(self, response):
19 |         if response.xpath(
20 |                 "//table[@id='ctl00_ctl00_ContentPlaceHolderMain_ContentPlaceHolderSupportMiddle_Table_REC']"):
21 |             for row in response.xpath(
22 |                     "//table[@id='ctl00_ctl00_ContentPlaceHolderMain_ContentPlaceHolderSupportMiddle_Table_REC']/tr[position() > 1]"):
23 |                 product = row.xpath(".//td[1]//text()").extract()[0]
24 |                 rev = row.xpath(".//td[3]//text()").extract()[0]
25 |                 href = row.xpath(".//td[4]//a/@href").extract()[0]
26 | 
27 |                 item = FirmwareLoader(item=FirmwareImage(), response=response)
28 |                 item.add_value("version", rev)
29 |                 item.add_value("url", SupermicroSpider.fix_url(href))
30 |                 item.add_value("product", product)
31 |                 item.add_value("vendor", self.name)
32 |                 yield item.load_item()
33 |         else:
34 |             for row in response.xpath(
35 |                     "//table//table//table//table//table//tr[position() > 1]"):
36 |                 product = row.xpath(".//td[1]//text()").extract()[0]
37 |                 href = row.xpath(".//td[2]//a/@href").extract()[0]
38 |                 rev = row.xpath(".//td[4]//text()").extract()[0]
39 | 
40 |                 item = FirmwareLoader(item=FirmwareImage(), response=response)
41 |                 item.add_value("version", rev)
42 |                 item.add_value("url", SupermicroSpider.fix_url(href))
43 |                 item.add_value("product", product)
44 |                 item.add_value("vendor", self.name)
45 |                 yield item.load_item()
46 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/tenda_en.py:
--------------------------------------------------------------------------------
 1 | #coding:utf-8
 2 | from scrapy import Spider
 3 | from scrapy.http import Request
 4 | 
 5 | from firmware.items import FirmwareImage
 6 | from firmware.loader import FirmwareLoader
 7 | 
 8 | import json
 9 | import urlparse
10 | 
11 | class TendaENSpider(Spider):
12 |     name = "tenda_en"
13 |     vendor = "tenda"
14 |     allowed_domains = ["tendacn.com"]
15 |     start_urls = ["http://www.tendacn.com/en/service/download-cata-11-1.html"]
16 |     url = "http://www.tendacn.com/en/service/download-cata-11-{}.html"
17 | 
18 |     def parse(self, response):
19 |         for page in response.xpath("//div[@class='next-page']/a/text()").extract():
20 |             yield Request(
21 |                 url=self.url.format(page),
22 |                 headers={"Referer": response.url,
23 |                          "X-Requested-With": "XMLHttpRequest"},
24 |                 callback=self.parse_product)
25 | 
26 |     def parse_product(self, response):
27 |         for a in response.xpath("//div[@id='mainbox']//dd/a"):
28 |             url = a.xpath("./@href").extract()[0]
29 |             title = a.xpath("./text()").extract()[0]
30 |             description = title
31 | 
32 |             items = title.split(' ')
33 |             product = items[0]
34 |             version = items[-1]
35 | 
36 |             #FH456V1.0 Firmware V10.1.1.1_EN
37 |             #E101（V2.0） Firmware V1.10.0.1_EN
38 |             #G3(V2.0） Firmware V2.0.0.1_EN
39 |             #O3 Firmware V1.0.0.3_EN
40 |             #i6 Firmware V1.0.0.9(3857)_EN
41 |             import re
42 |             p = ur'^(?P<product>([a-uw-zA-UW-Z0-9])+)[\(\uff08]?(V\d\.0)?'
43 |             try:
44 |                 ret = re.search(p, items[0].decode('utf-8'))
45 | 
46 |                 if ret:
47 |                     product = ret.group('product')
48 |             except:
49 |                 product = item[0]
50 | 
51 |             item = FirmwareLoader(
52 |                 item=FirmwareImage(), response=response)
53 |             item.add_value(
54 |                 "version", version)
55 |             item.add_value("url", url)
56 |             item.add_value("product", product)
57 |             item.add_value("vendor", self.vendor)
58 |             yield item.load_item()


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/tenda_zh.py:
--------------------------------------------------------------------------------
 1 | #coding:utf-8
 2 | #note: 官网bug，升级软件栏目只能打开一页
 3 | from scrapy import Spider
 4 | from scrapy.http import Request
 5 | 
 6 | from firmware.items import FirmwareImage
 7 | from firmware.loader import FirmwareLoader
 8 | 
 9 | import json
10 | import urlparse
11 | 
12 | class TendaZHSpider(Spider):
13 |     name = "tenda_zh"
14 |     vendor = "tenda"
15 |     allowed_domains = ["tenda.com.cn"]
16 |     start_urls = ["http://www.tenda.com.cn/service/download-cata-11.html"]
17 |     base_url = "http://www.tenda.com.cn/{}"
18 | 
19 |     def parse(self, response):
20 |         for a in response.xpath("//dd/a"):
21 |             url = a.xpath("./@href").extract()[0]
22 |             text = a.xpath("./text()").extract()[0]
23 | 
24 |             items = text.split(u'升级软件')
25 |             version = items[-1].strip()
26 |             product = items[0].strip().split(u'（')[0].split(' ')[0]
27 | 
28 |             yield Request(
29 |                 url=self.base_url.format(url),
30 |                 headers={"Referer": response.url},
31 |                 meta={
32 |                     "product":product,
33 |                     "version":version,
34 |                 },
35 |                 callback=self.parse_product)
36 | 
37 |     def parse_product(self, response):
38 |         url = response.xpath("//div[@class='thumbnail']//a/@href").extract()[0]
39 |             
40 |         item = FirmwareLoader(
41 |             item=FirmwareImage(), response=response)
42 |         item.add_value(
43 |             "version", response.meta['version'])
44 |         item.add_value("url", url)
45 |         item.add_value("product", response.meta['product'])
46 |         item.add_value("vendor", self.vendor)
47 |         yield item.load_item()


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/tomato-shibby.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import os
 8 | import urlparse
 9 | 
10 | class TomatoShibbySpider(Spider):
11 |     name = "tomato-shibby"
12 |     allowed_domains = ["tomato.groov.pl"]
13 |     start_urls = ["http://tomato.groov.pl/download"]
14 | 
15 |     def parse(self, response):
16 |         for link in response.xpath("//table//tr"):
17 |             if not link.xpath("./td[2]/a"):
18 |                 continue
19 | 
20 |             text = link.xpath("./td[2]/a/text()").extract()[0]
21 |             href = link.xpath("./td[2]//@href").extract()[0]
22 | 
23 |             if ".." in href:
24 |                 continue
25 |             elif href.endswith('/'):
26 |                 build = response.meta.get("build", None)
27 |                 product = response.meta.get("product", None)
28 | 
29 |                 if not product:
30 |                     product = text
31 |                 elif not build:
32 |                     build = text.replace("build", "")
33 | 
34 |                 yield Request(
35 |                     url=urlparse.urljoin(response.url, href),
36 |                     headers={"Referer": response.url},
37 |                     meta={"build": build, "product": product},
38 |                     callback=self.parse)
39 |             elif any(href.endswith(x) for x in [".bin", ".elf", ".fdt", ".imx", ".chk", ".trx"]):
40 |                 item = FirmwareLoader(
41 |                     item=FirmwareImage(), response=response, date_fmt=["%Y-%m-%d"])
42 |                 item.add_value("build", response.meta["build"])
43 |                 item.add_value("url", href)
44 |                 item.add_value("version", FirmwareLoader.find_version_period(
45 |                     os.path.splitext(text)[0].split("-")))
46 |                 item.add_value("date", item.find_date(
47 |                     link.xpath("./td[3]/text()").extract()))
48 |                 item.add_value("product", response.meta["product"])
49 |                 item.add_value("vendor", self.name)
50 |                 yield item.load_item()
51 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/tomato.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import os
 8 | import urlparse
 9 | 
10 | class TomatoShibbySpider(Spider):
11 |     name = "tomato-shibby"
12 |     allowed_domains = ["tomato.groov.pl"]
13 |     start_urls = ["http://tomato.groov.pl/download"]
14 | 
15 |     def parse(self, response):
16 |         for link in response.xpath("//table//tr"):
17 |             if not link.xpath("./td[2]/a"):
18 |                 continue
19 | 
20 |             text = link.xpath("./td[2]/a/text()").extract()[0]
21 |             href = link.xpath("./td[2]//@href").extract()[0]
22 | 
23 |             if ".." in href:
24 |                 continue
25 |             elif href.endswith('/'):
26 |                 build = response.meta.get("build", None)
27 |                 product = response.meta.get("product", None)
28 | 
29 |                 if not product:
30 |                     product = text
31 |                 elif not build:
32 |                     build = text.replace("build", "")
33 | 
34 |                 yield Request(
35 |                     url=urlparse.urljoin(response.url, href),
36 |                     headers={"Referer": response.url},
37 |                     meta={"build": build, "product": product},
38 |                     callback=self.parse)
39 |             elif any(href.endswith(x) for x in [".bin", ".elf", ".fdt", ".imx", ".chk", ".trx"]):
40 |                 item = FirmwareLoader(
41 |                     item=FirmwareImage(), response=response, date_fmt=["%Y-%m-%d"])
42 |                 item.add_value("build", response.meta["build"])
43 |                 item.add_value("url", href)
44 |                 item.add_value("version", FirmwareLoader.find_version_period(
45 |                     os.path.splitext(text)[0].split("-")))
46 |                 item.add_value("date", item.find_date(
47 |                     link.xpath("./td[3]/text()").extract()))
48 |                 item.add_value("product", response.meta["product"])
49 |                 item.add_value("vendor", self.name)
50 |                 yield item.load_item()
51 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/tp-link_zh.py:
--------------------------------------------------------------------------------
 1 | # -*- coding: utf-8 -*
 2 | 
 3 | from scrapy import Spider
 4 | from scrapy.http import Request
 5 | 
 6 | from firmware.items import FirmwareImage
 7 | from firmware.loader import FirmwareLoader
 8 | 
 9 | import urlparse
10 | 
11 | class TPLinkZHSpider(Spider):
12 |     name = "tp-link_zh"
13 |     vendor = "tp-link"
14 |     allowed_domains = ["tp-link.com.cn"]
15 |     start_urls = [
16 |         "http://service.tp-link.com.cn/list_download_software_1_0.html"]
17 | 
18 |     def parse(self, response):
19 |         for product in response.xpath(
20 |                 "//table[@id='mainlist']//a/@href").extract():
21 |             yield Request(
22 |                 url=urlparse.urljoin(response.url, product),
23 |                 headers={"Referer": response.url},
24 |                 callback=self.parse_product)
25 | 
26 |         for page in response.xpath("//div[@id='paging']/a/@href").extract():
27 |             yield Request(
28 |                 url=urlparse.urljoin(response.url, page),
29 |                 headers={"Referer": response.url},
30 |                 callback=self.parse)
31 | 
32 |     def parse_product(self, response):
33 |         text = response.xpath("//div[@class='download']/table[1]//tr[1]/td[2]//text()").extract()[
34 |             0].encode("ascii", errors="ignore")
35 |         date = response.xpath(
36 |             "//div[@class='download']/table[1]//tr[4]/td[2]//text()").extract()
37 |         href = response.xpath(
38 |             "//div[@class='download']/table[1]//tr[5]/td[2]/a/@href").extract()[0]
39 |         desc = response.xpath(
40 |             "//div[@class='download']/table[1]//tr[1]/td[2]//text()").extract()[0].encode("utf-8")
41 | 
42 |         build = None
43 |         product = None
44 |         if "_" in text:
45 |             build = text.split("_")[1]
46 |             product = text.split("_")[0]
47 |         elif " " in text:
48 |             product = text.split(" ")[0]
49 | 
50 |         item = FirmwareLoader(item=FirmwareImage(),
51 |                               response=response, date_fmt=["%Y/%m/%d"])
52 |         item.add_value("url", href.encode("utf-8"))
53 |         item.add_value("date", item.find_date(date))
54 |         item.add_value("description", desc)
55 |         item.add_value("build", build)
56 |         item.add_value("product", product)
57 |         item.add_value("vendor", self.vendor)
58 |         yield item.load_item()
59 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/trendnet.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import urlparse
 8 | 
 9 | class TrendnetSpider(Spider):
10 |     name = "trendnet"
11 |     allowed_domains = ["trendnet.com"]
12 |     start_urls = ["http://www.trendnet.com/support/"]
13 | 
14 |     def parse(self, response):
15 |         for entry in response.xpath("//select[@id='SUBTYPE_ID']/option"):
16 |             if entry.xpath(".//text()"):
17 |                 text = entry.xpath(".//text()").extract()[0]
18 |                 href = entry.xpath("./@value").extract()[0]
19 | 
20 |                 yield Request(
21 |                     url=urlparse.urljoin(response.url, href),
22 |                     meta={"product": text},
23 |                     headers={"Referer": response.url},
24 |                     callback=self.parse_product)
25 | 
26 |     def parse_product(self, response):
27 |         for tab in response.xpath("//ul[@class='etabs']//a"):
28 |             text = tab.xpath(".//text()").extract()[0]
29 |             href = tab.xpath("./@href").extract()[0]
30 | 
31 |             if "downloads" in text.lower():
32 |                 yield Request(
33 |                     url=urlparse.urljoin(response.url, href),
34 |                     meta={"product": response.meta["product"]},
35 |                     headers={"Referer": response.url},
36 |                     callback=self.parse_download)
37 | 
38 |     def parse_download(self, response):
39 |         for entry in response.xpath("//div[@class='downloadtable']"):
40 |             text = entry.xpath(".//text()").extract()
41 | 
42 |             if "firmware" in " ".join(text).lower():
43 |                 text = entry.xpath(
44 |                     ".//li[@class='maindescription' and position() = 1]//text()").extract()
45 |                 date = entry.xpath(
46 |                     ".//li[@class='maindescription' and position() = 2]//text()").extract()
47 |                 href = entry.xpath(".//li[@class='maindescription']//a/@onclick").extract()[
48 |                     0].split('\'')[1] + "&button=Continue+with+Download&Continue=yes"
49 | 
50 |                 item = FirmwareLoader(
51 |                     item=FirmwareImage(), response=response, date_fmt=["%m/%d/%Y"])
52 |                 item.add_value("url", href)
53 |                 item.add_value("product", response.meta["product"])
54 |                 item.add_value("date", item.find_date(date))
55 |                 item.add_value("version", FirmwareLoader.find_version(text))
56 |                 item.add_value("vendor", self.name)
57 |                 yield item.load_item()
58 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/ublox.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import urlparse
 8 | 
 9 | class UbloxSpider(Spider):
10 |     name = "ublox"
11 |     allowed_domains = ["u-blox.com"]
12 |     start_urls = [
13 |         "https://www.u-blox.com/en/product-resources?field_product_tech=All&field_product_form=All&edit-submit-product-search=Go&f[0]=field_file_category%3A223"]
14 | 
15 |     def parse(self, response):
16 |         for a in response.xpath("//table//tr//td[2]//a"):
17 |             title = a.xpath('./@title').extract()[0]
18 |             url = a.xpath('./@href').extract()[0]
19 | 
20 |             item = FirmwareLoader(
21 |                         item=FirmwareImage(), response=response)
22 |             item.add_value("url", url)
23 |             item.add_value("product", self.parse_product(title))
24 |             item.add_value("description", title)
25 |             item.add_value("vendor", self.name)
26 |             yield item.load_item()
27 | 
28 | 
29 |     def parse_product(self, title):
30 |         import re
31 |         p = " for ([a-zA-Z0-9\-_]+)$"
32 |         ret = re.findall(p, title)
33 |         if ret:
34 |             product = ret[0]
35 |         else:
36 |             product = title.replace('u-blox', '').strip().split(' ')[0]
37 |         return product


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/firmware/spiders/xerox.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import urlparse
 8 | 
 9 | class XeroxSpider(Spider):
10 |     name = "xerox"
11 |     allowed_domains = ["xerox.com"]
12 |     start_urls = [
13 |         "http://www.support.xerox.com/dnd/productList.jsf?Xlang=en_US"]
14 | 
15 |     def parse(self, response):
16 |         for href in response.xpath(
17 |                 "//div[@class='productResults a2z']//a/@href").extract():
18 |             if "downloads" in href:
19 |                 yield Request(
20 |                     url=urlparse.urljoin(response.url, href),
21 |                     headers={"Referer": response.url},
22 |                     callback=self.parse_download)
23 | 
24 |     def parse_download(self, response):
25 |         for firmware in response.xpath(
26 |                 "//li[@class='categoryBucket categoryBucketId-7']//li[@class='record ']"):
27 |             product = response.xpath(
28 |                 "//div[@class='prodNavHeaderBody']//text()").extract()[0].replace(" Support & Drivers", "")
29 |             date = firmware.xpath(
30 |                 ".//ul[@class='dateVersion']//strong/text()").extract()
31 |             version = firmware.xpath(
32 |                 ".//ul[@class='dateVersion']//strong/text()").extract()
33 |             href = firmware.xpath(
34 |                 ".//a/@href").extract()[0].replace("file-download", "file-redirect")
35 |             text = firmware.xpath(".//a//text()").extract()[0]
36 | 
37 |             item = FirmwareLoader(item=FirmwareImage(),
38 |                                   response=response, date_fmt=["%b %d, %Y"])
39 |             item.add_value("url", href)
40 |             item.add_value("product", product)
41 |             item.add_value("date", item.find_date(date))
42 |             item.add_value("description", text)
43 |             item.add_value("version", item.find_version_period(version))
44 |             item.add_value("vendor", self.name)
45 |             yield item.load_item()
46 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/ftp.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/sh
 2 | 
 3 | wget --mirror -A zip,pkg,rar,bin,img --ignore-case ftp://ftp2.dlink.com/PRODUCTS -P output
 4 | # wget --mirror -A zip,pkg,rar,bin,img ftp://ftp.dlink.eu/Products -P output
 5 | # wget --mirror -A zip,pkg,rar,bin,img ftp://ftp.dlink.ru/pub -P output -P output
 6 | # wget --mirror -A zip,pkg,rar,bin,img ftp://ftp.d-link.co.za -P output
 7 | 
 8 | wget --mirror -A image --ignore-case ftp://ftp.avm.de/fritz.box -P output
 9 | 
10 | wget --mirror -A img,chk,bin,stk,zip,tar,sys,rar,pkg,rmt --ignore-case ftp://downloads.netgear.com -P output
11 | 
12 | wget --mirror -A zip --ignore-case ftp://ftp.zyxel.com -P output
13 | 
14 | wget --mirror -A bin --ignore-case ftp://ftp.dd-wrt.com -P output
15 | 
16 | git clone https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git output/linux-firmware
17 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/.gitignore:
--------------------------------------------------------------------------------
1 | *.pyc
2 | firmware/output
3 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/LICENSE.txt:
--------------------------------------------------------------------------------
 1 | The MIT License (MIT)
 2 | 
 3 | Copyright (c) 2015 - 2016, Daming Dominic Chen
 4 | 
 5 | Permission is hereby granted, free of charge, to any person obtaining a copy
 6 | of this software and associated documentation files (the "Software"), to deal
 7 | in the Software without restriction, including without limitation the rights
 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 9 | copies of the Software, and to permit persons to whom the Software is
10 | furnished to do so, subject to the following conditions:
11 | 
12 | The above copyright notice and this permission notice shall be included in all
13 | copies or substantial portions of the Software.
14 | 
15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21 | SOFTWARE.
22 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/README.md:
--------------------------------------------------------------------------------
 1 | Introduction
 2 | ============
 3 | 
 4 | This is a firmware scraper that aims to download firmware images and associated
 5 | metadata from supported device vendor websites.
 6 | 
 7 | Dependencies
 8 | ============
 9 | * [psycopg2](http://initd.org/psycopg/)
10 | * [scrapy](http://scrapy.org/)
11 | 
12 | Usage
13 | =====
14 | 
15 | 1. Configure the `firmware/settings.py` file. Comment out `SQL_SERVER` if metadata about
16 | downloaded firmware should not be inserted into a SQL server.
17 | 
18 | 2. To run a specific scraper, e.g. `dlink`:
19 | 
20 | `scrapy crawl dlink`
21 | 
22 | To run all scrapers with maximum 4 in parallel, using [GNU Parallel](https://www.gnu.org/software/parallel/):
23 | 
24 | ```parallel -j 4 scrapy crawl ::: `for i in ./firmware/spiders/*.py; do basename ${i%.*}; done` ```
25 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/TODO.txt:
--------------------------------------------------------------------------------
 1 | arris
 2 | canon
 3 | crucial
 4 | digi
 5 | eyefi
 6 | garmin
 7 | hddguru
 8 | intel ssd
 9 | lg
10 | logitech
11 | motorola
12 | phillips
13 | ps3/ps4
14 | rpc1/firmwarehq
15 | samsung
16 | schenider electric
17 | tpm
18 | vizio
19 | westell/kentrox
20 | western digital
21 | zte
22 | zywall
23 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/__init__.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/__init__.py


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/items.py:
--------------------------------------------------------------------------------
 1 | from scrapy.item import Item, Field
 2 | 
 3 | class FirmwareImage(Item):
 4 |     product = Field(default=None)
 5 |     vendor = Field()
 6 | 
 7 |     description = Field(default=None)
 8 |     version = Field(default=None)
 9 |     build = Field(default=None)
10 |     date = Field(default=None)
11 | 
12 |     mib = Field(default=None)
13 |     sdk = Field(default=None)
14 |     url = Field()
15 | 
16 |     # used by FilesPipeline
17 |     files = Field()
18 |     file_urls = Field()
19 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/settings.py:
--------------------------------------------------------------------------------
 1 | BOT_NAME = "firmware"
 2 | 
 3 | SPIDER_MODULES = ["firmware.spiders"]
 4 | NEWSPIDER_MODULE = "scraper.spiders"
 5 | 
 6 | ITEM_PIPELINES = {
 7 |     "firmware.pipelines.FirmwarePipeline" : 1,
 8 | }
 9 | 
10 | FILES_STORE = "./output/"
11 | 
12 | AUTOTHROTTLE_ENABLED = True
13 | AUTOTHROTTLE_START_DELAY = 0
14 | AUTOTHROTTLE_MAX_DELAY = 15
15 | CONCURRENT_REQUESTS = 8
16 | 
17 | DOWNLOAD_TIMEOUT = 1200
18 | DOWNLOAD_MAXSIZE = 0
19 | DOWNLOAD_WARNSIZE = 0
20 | 
21 | ROBOTSTXT_OBEY = False
22 | USER_AGENT = "FirmwareBot/1.0 (+https://github.com/firmadyne/scraper)"
23 | 
24 | #SQL_SERVER = "127.0.0.1"
25 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/360.py:
--------------------------------------------------------------------------------
 1 | #coding:utf-8
 2 | from scrapy import Spider
 3 | from scrapy.http import Request
 4 | 
 5 | from firmware.items import FirmwareImage
 6 | from firmware.loader import FirmwareLoader
 7 | 
 8 | import urlparse
 9 | import json
10 | 
11 | class A360Spider(Spider):
12 |     name = "360"
13 |     #allowed_domains = ["luyou.360.cn"]
14 |     json_url = "http://s7.qhres.com/static/ef5bacdd3d93fa90/common_info.js"
15 |     start_urls = ["http://luyou.360.cn/download_center.html?from=nav"]
16 | 
17 |     def parse(self, response):
18 |         yield Request(
19 |             url=self.json_url,
20 |             headers={"Referer": response.url},
21 |             callback=self.parse_product)
22 | 
23 |     def parse_product(self, response):
24 |         js = response.text
25 |         if js.startswith("var commonInfo"):
26 |             print response.url
27 |             print js
28 | 
29 |             p_product = u"id:\"(?P<product>.*?)\""
30 |             p_description = u"title:\"(?P<description>.*?)\""
31 |             p_version = u"romVersions:\"(?P<version>.*?)\""
32 |             p_url = u"romUrl:\"(?P<url>.*?)\""
33 |             p_date = u"updateDate:\"(?P<date>.*?)\""
34 | 
35 |             import re
36 |             products = re.findall(p_version, js)
37 |             descriptions = re.findall(p_description, js)
38 |             versions = re.findall(p_version, js)
39 |             urls = re.findall(p_url, js)
40 |             dates = re.findall(p_date, js)
41 | 
42 |             for i in xrange(len(products)):
43 |                 product = products[i]
44 |                 url = urls[i]
45 |                 version = versions[i]
46 |                 description = descriptions[i]
47 |                 date = dates[i]
48 | 
49 |                 item = FirmwareLoader(
50 |                             item=FirmwareImage(), response=response)
51 |                 item.add_value("url", url)
52 |                 item.add_value("product", product)
53 |                 item.add_value("description", description)
54 |                 item.add_value("date", date)
55 |                 item.add_value("vendor", self.name)
56 |                 yield item.load_item()


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/__init__.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/__init__.py


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/actiontec.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import re
 8 | import urlparse
 9 | 
10 | 
11 | class ActiontecSpider(Spider):
12 |     name = "actiontec"
13 |     allowed_domains = ["actiontec.com"]
14 |     start_urls = ["http://www.actiontec.com/support/"]
15 | 
16 |     def parse(self, response):
17 |         for link in response.xpath("//div[@class='newboxes2']//a"):
18 |             product = link.xpath(".//text()").extract()[0]
19 |             # some product strings are e.g. "(GT701-WRU) - 54 Mbps Wireless
20 |             # Cable/DSL Router"
21 |             actual = re.match(r"\(([\w ,\\/()-]+?)\)", product)
22 |             if actual:
23 |                 product = actual.group(1).replace("(", "").replace(")", "")
24 | 
25 |             yield Request(
26 |                 url=urlparse.urljoin(
27 |                     response.url, link.xpath(".//@href").extract()[0]),
28 |                 headers={"Referer": response.url},
29 |                 meta={"product": product},
30 |                 callback=self.parse_product)
31 | 
32 |     def parse_product(self, response):
33 |         for image in response.xpath(
34 |                 "//div[@id='accordion-2']//tr[position() > 1]"):
35 |             text = image.xpath("./td[2]//a[1]/text()").extract()
36 |             if "firmware" in "".join(text).lower():
37 |                 item = FirmwareLoader(item=FirmwareImage(), response=response,
38 |                                       selector=image, date_fmt=["%Y-%m-%d"])
39 |                 item.add_xpath("date", "td[1]//text()")
40 |                 item.add_value("description", text)
41 |                 item.add_xpath("url", "td[2]//a[1]/@href")
42 |                 item.add_value("product", response.meta["product"])
43 |                 item.add_value("vendor", self.name)
44 |                 item.add_value(
45 |                     "version", FirmwareLoader.find_version_period(text))
46 |                 yield item.load_item()
47 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/airlink101.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import urlparse
 8 | 
 9 | 
10 | class Airlink101Spider(Spider):
11 |     name = "airlink101"
12 |     allowed_domains = ["airlink101.com"]
13 |     start_urls = ["http://www.airlink101.com/support/index.php?cmd=files"]
14 | 
15 |     def parse(self, response):
16 |         for entry in response.xpath(
17 |                 "//div[@class='menu2']//table//table//table[2]//td[1]//td[2]"):
18 |             desc = entry.xpath(".//text()").extract()
19 | 
20 |             for link in entry.xpath(".//a"):
21 |                 href = link.xpath("./@href").extract()[0]
22 |                 text = link.xpath(".//text()").extract()[0]
23 | 
24 |                 if "_a=download" not in href:
25 |                     yield Request(
26 |                         url=urlparse.urljoin(response.url, href),
27 |                         headers={"Referer": response.url},
28 |                         meta={"product": text.strip().split(' ')},
29 |                         callback=self.parse)
30 |                 elif "firmware" in text.lower() or "f/w" in text.lower():
31 |                     item = FirmwareLoader(item=FirmwareImage(),
32 |                                           response=response,
33 |                                           date_fmt=["%m/%d/%Y", "%m/%d/%y"])
34 |                     item.add_value("version", FirmwareLoader.find_version(desc))
35 |                     item.add_value("date", item.find_date(desc))
36 |                     item.add_value("description", text)
37 |                     item.add_value("url", href)
38 |                     item.add_value("product", response.meta["product"])
39 |                     item.add_value("vendor", self.name)
40 |                     yield item.load_item()
41 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/att.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import urlparse
 8 | 
 9 | 
10 | class ATTSpider(Spider):
11 |     name = "att"
12 |     allowed_domains = ["bellsouth.net"]
13 |     start_urls = ["http://cpems.bellsouth.net/firmware"]
14 | 
15 |     def parse(self, response):
16 |         for href in response.xpath("//a/@href").extract():
17 |             if href == ".." or href == "/":
18 |                 continue
19 |             elif href.endswith(".bin") or href.endswith(".upg"):
20 |                 item = FirmwareLoader(item=FirmwareImage(), response=response)
21 |                 item.add_value("url", href)
22 |                 item.add_value("vendor", self.name)
23 |                 yield item.load_item()
24 |             elif "/" in href:
25 |                 yield Request(
26 |                     url=urlparse.urljoin(response.url, href),
27 |                     headers={"Referer": response.url},
28 |                     callback=self.parse)
29 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/buffalo.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import json
 8 | 
 9 | class BuffaloSpider(Spider):
10 |     name = "buffalo"
11 |     allowed_domains = ["buffalotech.com", "cdn.cloudfiles.mosso.com"]
12 |     start_urls = ["http://www.buffalotech.com/products/category/wireless-networking"]
13 | 
14 |     def parse(self, response):
15 |         for href in response.xpath("//article/div/a/@href").extract():
16 |             yield Request(
17 |                 url=href,
18 |                 headers={"Referer": response.url},
19 |                 callback=self.parse_product)
20 | 
21 | 
22 |     def parse_product(self, response):
23 |         
24 |         #<h3 class="firm">Firmware</h3>
25 |         if response.xpath('//h3[@class="firm"]').extract():
26 |             for tr in response.xpath('//*[@id="tab-downloads"]/table[1]/tbody/tr'):
27 |                 print tr.extract()
28 |                 url = tr.xpath("./td[2]/a/@href").extract()[0]
29 |                 date = tr.xpath("./td[4]/text()").extract()[0]
30 |                 version = tr.xpath("./td[5]/text()").extract()[0]
31 |                 description = tr.xpath("./td[7]/text()").extract()[0]
32 |                 product = url.split('-')[0]
33 | 
34 |                 item = FirmwareLoader(item=FirmwareImage(),
35 |                                       response=response)
36 |                                       
37 |                 item.add_value("version", version)
38 |                 item.add_value("description", description)
39 |                 item.add_value("url", url)
40 |                 item.add_value("product", product)
41 |                 item.add_value("vendor", self.name)
42 |                 yield item.load_item()


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/centurylink.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import urlparse
 8 | 
 9 | # http://home.centurytel.net/ihd/
10 | 
11 | 
12 | class CenturyLinkSpider(Spider):
13 |     name = "centurylink"
14 |     allowed_domains = ["centurylink.com"]
15 |     start_urls = ["http://internethelp.centurylink.com/internethelp/downloads-auto-firmware-q.html"]
16 | 
17 |     def parse(self, response):
18 |         product = None
19 |         for section in response.xpath("//div[@class='product-content']/div[@class='product-box2']/div"):
20 |             text = section.xpath(".//text()").extract()
21 |             if not section.xpath(".//a"):
22 |                 product = text[0].strip()
23 |             else:
24 |                 for link in section.xpath(".//a/@href").extract():
25 |                     if link.endswith(".html"):
26 |                         yield Request(
27 |                             url=urlparse.urljoin(response.url, link),
28 |                             meta={"product": product,
29 |                                   "version": FirmwareLoader.find_version(text)},
30 |                             headers={"Referer": response.url},
31 |                             callback=self.parse_download)
32 | 
33 |     def parse_download(self, response):
34 |         for link in response.xpath("//div[@id='auto']//a"):
35 |             href = link.xpath("./@href").extract()[0]
36 |             text = link.xpath(".//text()").extract()[0]
37 | 
38 |             if ("downloads" in href or "firmware" in href) and \
39 |                 not href.endswith(".html"):
40 |                 item = FirmwareLoader(item=FirmwareImage(), response=response)
41 |                 item.add_value("version", response.meta["version"])
42 |                 item.add_value("url", href)
43 |                 item.add_value("description", text)
44 |                 item.add_value("product", response.meta["product"])
45 |                 item.add_value("vendor", self.name)
46 |                 yield item.load_item()
47 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/foscam.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | class FoscamSpider(Spider):
 8 |     name = "foscam"
 9 |     allowed_domains = ["foscam.com"]
10 |     start_urls = [
11 |         "http://www.foscam.com/download-center/firmware-downloads.html"]
12 | 
13 |     def start_requests(self):
14 |         for url in self.start_urls:
15 |             yield Request(url, cookies={'loginEmail': "@.com"}, dont_filter=True)
16 | 
17 |     def parse(self, response):
18 |         for i in range(0, len(response.xpath("//div[@id='main_right']/span[1]/p")), 7):
19 |             prods = response.xpath("//div[@id='main_right']/span[1]//p[%d]/text()" % (i + 2)).extract()[0].split("\r\n")
20 | 
21 |             for product in [x for x in prods]:
22 |                 item = FirmwareLoader(item=FirmwareImage(), response=response)
23 |                 item.add_xpath("version", "//div[@id='main_right']/span[1]//p[%d]/text()" % (i + 3))
24 |                 item.add_xpath("url", "//div[@id='main_right']/span[1]//p[%d]/a/@href" % (i + 7))
25 |                 item.add_value("product", product)
26 |                 item.add_value("vendor", self.name)
27 |                 yield item.load_item()
28 | 
29 |         for i in range(0, len(response.xpath("//div[@id='main_right']/span[2]/p")), 5):
30 |             prods = response.xpath("//div[@id='main_right']/span[2]//p[%d]/text()" % (i + 2)).extract()[0].split(",")
31 | 
32 |             for product in [x for x in prods]:
33 |                 item = FirmwareLoader(item=FirmwareImage(), response=response)
34 |                 item.add_xpath("version", "//div[@id='main_right']/span[2]//p[%d]/text()" % (i + 3))
35 |                 item.add_xpath("url", "//div[@id='main_right']/span[2]//p[%d]/a/@href" % (i + 5))
36 |                 item.add_value("product", product)
37 |                 item.add_value("vendor", self.name)
38 |                 yield item.load_item()
39 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/huawei_zh.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import datetime
 8 | import json
 9 | import urlparse
10 | 
11 | 
12 | class HuaweiZHSpider(Spider):
13 |     name = "huawei_zh"
14 |     vendor = "huawei"
15 |     region = "cn"
16 |     allowed_domains = ["huawei.com"]
17 |     start_urls = ["http://consumer.huawei.com/en/support/downloads/index.htm"]
18 | 
19 |     def parse(self, response):
20 |         yield Request(
21 |             url=urlparse.urljoin(
22 |                 response.url, "/support/services/service/product/category?siteCode=%s" % (self.region)),
23 |             headers={"Referer": response.url,
24 |                      "X-Requested-With": "XMLHttpRequest"},
25 |             callback=self.parse_category)
26 | 
27 |     def parse_category(self, response):
28 |         json_response = json.loads(response.body_as_unicode())
29 | 
30 |         for category in json_response:
31 |             yield Request(
32 |                 url=urlparse.urljoin(
33 |                     response.url, "/support/services/service/product/list?productID=%s&siteCode=%s" % (category["productId"], self.region)),
34 |                 headers={"Referer": response.url,
35 |                          "X-Requested-With": "XMLHttpRequest"},
36 |                 callback=self.parse_product)
37 | 
38 |     def parse_product(self, response):
39 |         json_response = json.loads(response.body_as_unicode())
40 | 
41 |         for product in json_response:
42 |             yield Request(
43 |                 url=urlparse.urljoin(
44 |                     response.url, "/support/services/service/file/list?productID=%s&siteCode=%s" % (product["productId"], self.region)),
45 |                 meta={"product": product["productCode"]},
46 |                 headers={"Referer": response.url,
47 |                          "X-Requested-With": "XMLHttpRequest"},
48 |                 callback=self.parse_download)
49 | 
50 |     def parse_download(self, response):
51 |         json_response = json.loads(response.body_as_unicode())
52 | 
53 |         for file in json_response:
54 |             if file["subFileType"] == "firmware":
55 |                 item = FirmwareLoader(
56 |                     item=FirmwareImage(), response=response, date_fmt=["%d/%m/%y"])
57 |                 item.add_value("version", file["fileVersion"])
58 |                 item.add_value("date", datetime.datetime.fromtimestamp(
59 |                     int(file["releaseDate"]) / 1000).strftime(item.context.get("date_fmt")[0]))
60 |                 item.add_value("description", file["fileName"])
61 |                 item.add_value("url", file["downloadUrl"])
62 |                 item.add_value("product", response.meta["product"])
63 |                 item.add_value("vendor", self.vendor)
64 |                 yield item.load_item()
65 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/microstrain.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | 
 3 | from firmware.items import FirmwareImage
 4 | from firmware.loader import FirmwareLoader
 5 | 
 6 | 
 7 | class MicrostrainSpider(Spider):
 8 |     name = "microstrain"
 9 |     allowed_domains = ["microstrain.com"]
10 |     start_urls = ["http://www.microstrain.com/support"]
11 | 
12 |     # http://files.microstrain.com/8401-0006-Firmware-Upgrades-for-3DM-GX3.pdf
13 | 
14 |     firmware = ["http://files.microstrain.com/MicroStrain_Wireless_Firmware.zip",
15 |                 "http://download.microstrain.com/3DM-GX3-Upgrades/3DM-GX3-15_25_MIP_firmware_upgrade.zip",
16 |                 "http://download.microstrain.com/3DM-GX3-Upgrades/3DM-GX3-25_Single_Byte_firmware_upgrade.zip",
17 |                 "http://download.microstrain.com/3DM-GX3-Upgrades/3DM-GX3-35_MIP_firmware_upgrade.zip",
18 |                 "http://download.microstrain.com/3DM-GX3-Upgrades/3DM-GX3-45_MIP_firmware_upgrade.zip"]
19 | 
20 |     def parse(self, response):
21 |         for url in self.firmware:
22 |             item = FirmwareLoader(item=FirmwareImage())
23 |             item.add_value("url", url)
24 |             item.add_value("product", url.split("/")[-1].split("_")[0])
25 |             item.add_value("vendor", self.name)
26 |             yield item.load_item()
27 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/mikrotik.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import FormRequest
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import urlparse
 8 | 
 9 | 
10 | class MikrotikSpider(Spider):
11 |     name = "mikrotik"
12 |     allowed_domains = ["mikrotik.com"]
13 |     start_urls = ["https://www.mikrotik.com/download"]
14 | 
15 |     def parse(self, response):
16 | 
17 |         for href in response.xpath("//a/@href").extract():
18 |             if href.endswith(".npk") or href.endswith(".lzb"):
19 |                 if href.startswith("//"):
20 |                     href = "http:" + href
21 |                 text = response.xpath("//text()").extract()
22 |                 items = href.split('/')
23 |                 version = items[-2]
24 |                 basename = items[-1]
25 | 
26 |                 item = FirmwareLoader(
27 |                     item=FirmwareImage(), response=response, date_fmt=["%Y-%b-%d"])
28 |                 item.add_value("date", item.find_date(text))
29 |                 item.add_value("url", href)
30 |                 item.add_value("product", basename[0: basename.rfind("-")])
31 |                 item.add_value("vendor", self.name)
32 |                 item.add_value(
33 |                     "version", version)
34 |                 yield item.load_item()


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/netcore.py:
--------------------------------------------------------------------------------
 1 | #coding:utf-8
 2 | from scrapy import Spider
 3 | from scrapy.http import Request
 4 | 
 5 | from firmware.items import FirmwareImage
 6 | from firmware.loader import FirmwareLoader
 7 | 
 8 | import re
 9 | import urlparse
10 | 
11 | 
12 | class NetcoreSpider(Spider):
13 |     name = "netcore"
14 |     allowed_domains = ["netcoretec.com"]
15 |     start_urls = ["http://www.netcoretec.com/softwarelist/&downloadcategoryid=7&isMode=false&pageNo=1&pageSize=1000.html"]
16 |     product_url = 'http://www.netcoretec.com/software_detail/downloadsId={}.html'
17 |     firmware_url = "http://www.netcoretec.com/"
18 | 
19 |     def parse(self, response):
20 |         th = False
21 |         for tr in response.xpath("//table[1]//tr"):
22 |             if not th:
23 |                 th = True
24 |                 continue
25 | 
26 |             href = tr.xpath("./td[@class='name']/a/@href").extract()[0]
27 |             title = tr.xpath("./td[@class='name']/a/@title").extract()[0]
28 |             date = tr.xpath("./td[@class='time']/text()").extract()[0]
29 |             downloadid = re.search('downloadsId=(\d+)\.html', href).group(1)
30 |             url = self.product_url.format(downloadid)
31 | 
32 |             if not title.count(u"升级固件"):
33 |                 continue
34 |             product = re.search('[a-zA-Z0-9\+\-]+',title).group(0)
35 | 
36 |             # filter firmwares count by limit date(year) >= 2015
37 |             if int(date.split('-')[0]) >= 2015:
38 |                 yield Request(
39 |                     url=url,
40 |                     headers={"Referer": response.url},
41 |                     meta={"date": date,
42 |                           "description": title,
43 |                           "product": product,
44 |                           },
45 |                     callback=self.parse_product)
46 | 
47 |     def parse_product(self, response):
48 |         url =self.firmware_url + response.xpath('//a[@id="downLoadHref"]/@href').extract()[0]
49 | 
50 |         item = FirmwareLoader(item=FirmwareImage(), response=response)
51 |         item.add_xpath("date", response.meta['date'])
52 |         item.add_value("description",  response.meta['description'])
53 |         item.add_value("url",  url)
54 |         item.add_value("product", response.meta["product"])
55 |         item.add_value("vendor", self.name)
56 |         yield item.load_item()
57 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/openwireless.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | 
 3 | from firmware.items import FirmwareImage
 4 | from firmware.loader import FirmwareLoader
 5 | 
 6 | 
 7 | class OpenWirelessSpider(Spider):
 8 |     name = "openwireless"
 9 |     allowed_domains = ["openwireless.org", "eff.org"]
10 |     start_urls = ["https://www.openwireless.org/router/download"]
11 | 
12 |     def parse(self, response):
13 |         for href in response.xpath("//a/@href").extract():
14 |             if href.endswith(".img"):
15 |                 basename = href.split("/")[-1].split("-")
16 | 
17 |                 item = FirmwareLoader(item=FirmwareImage(), response=response)
18 |                 item.add_value("url", href)
19 |                 item.add_value("product", self.name)
20 |                 item.add_value("vendor", self.name)
21 |                 item.add_value(
22 |                     "version", basename[-1][0: basename[-1].rfind(".img")])
23 |                 yield item.load_item()
24 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/openwrt.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import urlparse
 8 | 
 9 | 
10 | class OpenWRTSpider(Spider):
11 |     name = "openwrt"
12 |     allowed_domains = ["downloads.openwrt.org"]
13 |     start_urls = ["http://downloads.openwrt.org/"]
14 | 
15 |     def parse(self, response):
16 |         for link in response.xpath("//a"):
17 |             text = link.xpath("text()").extract()[0]
18 |             href = link.xpath("@href").extract()[0]
19 | 
20 |             yield Request(
21 |                 url=urlparse.urljoin(response.url, href),
22 |                 headers={"Referer": response.url},
23 |                 meta={"version": FirmwareLoader.find_version_period(text)},
24 |                 callback=self.parse_url)
25 | 
26 |     def parse_url(self, response):
27 |         for link in response.xpath("//a"):
28 |             text = link.xpath("text()").extract()[0]
29 |             href = link.xpath("@href").extract()[0]
30 | 
31 |             if ".." in href:
32 |                 continue
33 |             elif href.endswith('/'):
34 |                 if "package/" not in text:
35 |                     product = "%s-%s" % (response.meta["product"], text[0: -1]) if "product" in response.meta else text[0: -1]
36 | 
37 |                     yield Request(
38 |                         url=urlparse.urljoin(response.url, href),
39 |                         headers={"Referer": response.url},
40 |                         meta={"version": response.meta[
41 |                             "version"], "product": product},
42 |                         callback=self.parse_url)
43 |             elif any(href.endswith(x) for x in [".bin", ".elf", ".fdt", ".imx", ".chk", ".trx"]):
44 |                 item = FirmwareLoader(
45 |                     item=FirmwareImage(), response=response, date_fmt=["%d-%b-%Y"])
46 |                 item.add_value("version", response.meta["version"])
47 |                 item.add_value("url", href)
48 |                 item.add_value("date", item.find_date(
49 |                     link.xpath("following::text()").extract()))
50 |                 item.add_value("product", response.meta["product"])
51 |                 item.add_value("vendor", self.name)
52 |                 yield item.load_item()
53 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/pfsense.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import os
 8 | import urlparse
 9 | 
10 | 
11 | class PfSenseSpider(Spider):
12 |     name = "pfsense"
13 |     allowed_domains = ["pfsense.org"]
14 |     start_urls = ["http://files.pfsense.org/mirror/downloads/"]
15 | 
16 |     def parse(self, response):
17 |         for link in response.xpath("//a"):
18 |             text = link.xpath(".//text()").extract()[0]
19 |             href = link.xpath(".//@href").extract()[0]
20 | 
21 |             if ".." in href:
22 |                 continue
23 |             elif href.endswith('/'):
24 |                 yield Request(
25 |                     url=urlparse.urljoin(response.url, href),
26 |                     headers={"Referer": response.url},
27 |                     callback=self.parse)
28 |             elif href.endswith(".gz") and ".iso" not in href:
29 |                 # strip off multiple file extensions
30 |                 basename = os.path.splitext(text)[0]
31 |                 while ".img" in basename or ".iso" in basename:
32 |                     basename = os.path.splitext(basename)[0]
33 | 
34 |                 basename = basename.split("-")
35 |                 version = FirmwareLoader.find_version_period(basename)
36 | 
37 |                 # attempt to parse filename and generate product/version
38 |                 # strings
39 |                 remove = [version] if version else []
40 |                 for i in range(0, len(basename)):
41 |                     if "BETA" in basename[i]:
42 |                         version += "-%s%s" % (basename[i], basename[i + 1])
43 |                         remove.append(basename[i])
44 |                         remove.append(basename[i + 1])
45 |                     elif "RC" in basename[i]:
46 |                         version += "-%s" % (basename[i])
47 |                         remove.append(basename[i])
48 |                     elif "RELEASE" in basename[i]:
49 |                         remove.append(basename[i])
50 | 
51 |                 basename = [x for x in basename if x not in remove]
52 | 
53 |                 item = FirmwareLoader(
54 |                     item=FirmwareImage(), response=response, date_fmt=["%d-%b-%Y"])
55 |                 item.add_value("version", version)
56 |                 item.add_value("url", href)
57 |                 item.add_value("date", item.find_date(
58 |                     link.xpath("following::text()").extract()))
59 |                 item.add_value("product", "-".join(basename))
60 |                 item.add_value("vendor", self.name)
61 |                 yield item.load_item()
62 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/phicomm.py:
--------------------------------------------------------------------------------
 1 | #coding:utf-8
 2 | 
 3 | from scrapy import Spider
 4 | from scrapy.http import Request
 5 | 
 6 | from firmware.items import FirmwareImage
 7 | from firmware.loader import FirmwareLoader
 8 | import urlparse
 9 | 
10 | class PhicommSpider(Spider):
11 |     name = "phicomm"
12 |     vendor = "phicomm"
13 |     allowed_domains = ["phicomm.com"]
14 |     #Routers are K serials
15 |     start_urls = ["http://www.phicomm.com/cn/support.php/Soho/search_support/col/6,/keys/K.html"]
16 |     download_path = "http://www.phicomm.com/"
17 | 
18 |     def parse(self, response):
19 |         head = False
20 |         for tr in response.xpath("//table//tr"):
21 |             if not head:
22 |                 head = True
23 |                 continue
24 | 
25 |             description = tr.xpath("./td[2]/text()").extract()[0]
26 |             product = description.split(u'（')[0]
27 |             version = tr.xpath("./td[4]/text()").extract()[0]
28 |             #2017-03-14
29 |             date = tr.xpath("./td[6]/p/text()").extract()[0]
30 |             downloadid = tr.xpath("./td[7]/a/@downloadid").extract()[0]
31 | 
32 |             #http://www.phicomm.com/cn/support.php/Mobile/Downhit.html?id=437
33 |             firmware_url = "http://www.phicomm.com/cn/support.php/Mobile/Downhit.html?id={}".format(downloadid)
34 |             yield Request(
35 |                 url = firmware_url,
36 |                 headers={"Referer": response.url},
37 |                 meta={
38 |                     "product":product,
39 |                     "version":version,
40 |                     "date":date,
41 |                     'description':description
42 |                 },
43 |                 callback = self.parse_product)
44 | 
45 |     def parse_product(self, response):
46 |         import re
47 |         #/cn/Uploads/files/20161024/K1_V22.4.2.15.bin
48 |         print response.text
49 |         path = re.findall(u"(/cn/Uploads/files/.*?\.bin)", response.text)[0]
50 |         url = "http://www.phicomm.com/{}".format(path)
51 | 
52 |         item = FirmwareLoader(
53 |             item=FirmwareImage())
54 |         item.add_value("url", url),
55 |         item.add_value("product", response.meta['product']),
56 |         item.add_value("date", response.meta['date']),
57 |         item.add_value("version", response.meta['version']),
58 |         item.add_value("vendor", self.vendor),
59 |         item.add_value("description", response.meta['description']),
60 |             
61 |         yield item.load_item()


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/qnap.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import urlparse
 8 | 
 9 | 
10 | class QNAPSpider(Spider):
11 |     name = "qnap"
12 |     allowed_domains = ["qnap.com"]
13 |     start_urls = ["http://www.qnap.com/i/useng/product_x_down"]
14 | 
15 |     def parse(self, response):
16 |         yield Request(
17 |             url=urlparse.urljoin(
18 |                 response.url, "/i/useng/product_x_down/ajax/get_module.php"),
19 |             headers={"Referer": response.url},
20 |             callback=self.parse_products)
21 | 
22 |     def parse_products(self, response):
23 |         for product in response.xpath("//select/option"):
24 |             text = product.xpath(".//text()").extract()
25 |             value = product.xpath("./@value").extract()
26 | 
27 |             if value:
28 |                 yield Request(
29 |                     # firmware = 1, utility = 4, etc
30 |                     url=urlparse.urljoin(
31 |                         response.url, "/i/useng/product_x_down/product_down.php?II=%s&cat_choose=%d" % (value[0], 1)),
32 |                     meta={"product": text[0]},
33 |                     callback=self.parse_product)
34 | 
35 |     def parse_product(self, response):
36 |         for row in response.xpath(
37 |                 "//div[@class='main_data_block']//table/tr[position() > 1]"):
38 |             text = row.xpath("./td[1]//text()").extract()
39 |             edition = row.xpath("./td[2]//text()").extract()
40 |             date = row.xpath("./td[4]//text()").extract()
41 |             hrefs = row.xpath("./td[5]//a/@href").extract()
42 | 
43 |             if hrefs:
44 |                 item = FirmwareLoader(
45 |                     item=FirmwareImage(), response=response, date_fmt=["%Y/%m/%d"])
46 |                 item.add_value(
47 |                     "version", FirmwareLoader.find_version_period(edition))
48 |                 item.add_value("build", FirmwareLoader.find_build(edition))
49 |                 item.add_value("url", hrefs[0])
50 |                 item.add_value("date", item.find_date(date))
51 |                 item.add_value("description", text[2].strip())
52 |                 item.add_value("product", response.meta["product"])
53 |                 item.add_value("vendor", self.name)
54 |                 yield item.load_item()
55 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/seiki.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | 
 3 | from firmware.items import FirmwareImage
 4 | from firmware.loader import FirmwareLoader
 5 | 
 6 | 
 7 | class SeikiSpider(Spider):
 8 |     name = "seiki"
 9 |     allowed_domains = ["seiki.com"]
10 |     start_urls = ["http://www.seiki.com/support/download"]
11 | 
12 |     def parse(self, response):
13 |         for entry in response.xpath(
14 |                 "//div[@class='main-container']//p|//div[@class='main-container']//ul"):
15 |             text = entry.xpath(".//text()").extract()
16 | 
17 |             for href in entry.xpath(".//a/@href").extract():
18 |                 if "Firmware" in href:
19 |                     item = FirmwareLoader(
20 |                         item=FirmwareImage(), response=response)
21 |                     item.add_value("url", href)
22 |                     item.add_value(
23 |                         "product", FirmwareLoader.find_product(text))
24 |                     item.add_value("vendor", self.name)
25 |                     yield item.load_item()
26 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/supermicro.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | 
 3 | from firmware.items import FirmwareImage
 4 | from firmware.loader import FirmwareLoader
 5 | 
 6 | class SupermicroSpider(Spider):
 7 |     name = "supermicro"
 8 |     allowed_domains = ["supermicro.com"]
 9 |     start_urls = ["http://supermicro.com/ResourceApps/BIOS_IPMI.aspx?MoboType=1",
10 |                   "http://supermicro.com/ResourceApps/BIOS_IPMI.aspx?MoboType=2", "http://supermicro.com/support/bios/archive.cfm"]
11 | 
12 |     @staticmethod
13 |     def fix_url(url):
14 |         if "url=" in url:
15 |             return url[url.find('=') + 1:]
16 |         return url
17 | 
18 |     def parse(self, response):
19 |         if response.xpath(
20 |                 "//table[@id='ctl00_ctl00_ContentPlaceHolderMain_ContentPlaceHolderSupportMiddle_Table_REC']"):
21 |             for row in response.xpath(
22 |                     "//table[@id='ctl00_ctl00_ContentPlaceHolderMain_ContentPlaceHolderSupportMiddle_Table_REC']/tr[position() > 1]"):
23 |                 product = row.xpath(".//td[1]//text()").extract()[0]
24 |                 rev = row.xpath(".//td[3]//text()").extract()[0]
25 |                 href = row.xpath(".//td[4]//a/@href").extract()[0]
26 | 
27 |                 item = FirmwareLoader(item=FirmwareImage(), response=response)
28 |                 item.add_value("version", rev)
29 |                 item.add_value("url", SupermicroSpider.fix_url(href))
30 |                 item.add_value("product", product)
31 |                 item.add_value("vendor", self.name)
32 |                 yield item.load_item()
33 |         else:
34 |             for row in response.xpath(
35 |                     "//table//table//table//table//table//tr[position() > 1]"):
36 |                 product = row.xpath(".//td[1]//text()").extract()[0]
37 |                 href = row.xpath(".//td[2]//a/@href").extract()[0]
38 |                 rev = row.xpath(".//td[4]//text()").extract()[0]
39 | 
40 |                 item = FirmwareLoader(item=FirmwareImage(), response=response)
41 |                 item.add_value("version", rev)
42 |                 item.add_value("url", SupermicroSpider.fix_url(href))
43 |                 item.add_value("product", product)
44 |                 item.add_value("vendor", self.name)
45 |                 yield item.load_item()
46 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/tenda_en.py:
--------------------------------------------------------------------------------
 1 | #coding:utf-8
 2 | from scrapy import Spider
 3 | from scrapy.http import Request
 4 | 
 5 | from firmware.items import FirmwareImage
 6 | from firmware.loader import FirmwareLoader
 7 | 
 8 | import json
 9 | import urlparse
10 | 
11 | class TendaENSpider(Spider):
12 |     name = "tenda_en"
13 |     vendor = "tenda"
14 |     allowed_domains = ["tendacn.com"]
15 |     start_urls = ["http://www.tendacn.com/en/service/download-cata-11-1.html"]
16 |     url = "http://www.tendacn.com/en/service/download-cata-11-{}.html"
17 | 
18 |     def parse(self, response):
19 |         for page in response.xpath("//div[@class='next-page']/a/text()").extract():
20 |             yield Request(
21 |                 url=self.url.format(page),
22 |                 headers={"Referer": response.url,
23 |                          "X-Requested-With": "XMLHttpRequest"},
24 |                 callback=self.parse_product)
25 | 
26 |     def parse_product(self, response):
27 |         for a in response.xpath("//div[@id='mainbox']//dd/a"):
28 |             url = a.xpath("./@href").extract()[0]
29 |             title = a.xpath("./text()").extract()[0]
30 |             description = title
31 | 
32 |             items = title.split(' ')
33 |             product = items[0]
34 |             version = items[-1]
35 | 
36 |             #FH456V1.0 Firmware V10.1.1.1_EN
37 |             #E101（V2.0） Firmware V1.10.0.1_EN
38 |             #G3(V2.0） Firmware V2.0.0.1_EN
39 |             #O3 Firmware V1.0.0.3_EN
40 |             #i6 Firmware V1.0.0.9(3857)_EN
41 |             import re
42 |             p = ur'^(?P<product>([a-uw-zA-UW-Z0-9])+)[\(\uff08]?(V\d\.0)?'
43 |             try:
44 |                 ret = re.search(p, items[0].decode('utf-8'))
45 | 
46 |                 if ret:
47 |                     product = ret.group('product')
48 |             except:
49 |                 product = item[0]
50 | 
51 |             item = FirmwareLoader(
52 |                 item=FirmwareImage(), response=response)
53 |             item.add_value(
54 |                 "version", version)
55 |             item.add_value("url", url)
56 |             item.add_value("product", product)
57 |             item.add_value("vendor", self.vendor)
58 |             yield item.load_item()


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/tenda_zh.py:
--------------------------------------------------------------------------------
 1 | #coding:utf-8
 2 | #note: 官网bug，升级软件栏目只能打开一页
 3 | from scrapy import Spider
 4 | from scrapy.http import Request
 5 | 
 6 | from firmware.items import FirmwareImage
 7 | from firmware.loader import FirmwareLoader
 8 | 
 9 | import json
10 | import urlparse
11 | 
12 | class TendaZHSpider(Spider):
13 |     name = "tenda_zh"
14 |     vendor = "tenda"
15 |     allowed_domains = ["tenda.com.cn"]
16 |     start_urls = ["http://www.tenda.com.cn/service/download-cata-11.html"]
17 |     base_url = "http://www.tenda.com.cn/{}"
18 | 
19 |     def parse(self, response):
20 |         for a in response.xpath("//dd/a"):
21 |             url = a.xpath("./@href").extract()[0]
22 |             text = a.xpath("./text()").extract()[0]
23 | 
24 |             items = text.split(u'升级软件')
25 |             version = items[-1].strip()
26 |             product = items[0].strip().split(u'（')[0].split(' ')[0]
27 | 
28 |             yield Request(
29 |                 url=self.base_url.format(url),
30 |                 headers={"Referer": response.url},
31 |                 meta={
32 |                     "product":product,
33 |                     "version":version,
34 |                 },
35 |                 callback=self.parse_product)
36 | 
37 |     def parse_product(self, response):
38 |         url = response.xpath("//div[@class='thumbnail']//a/@href").extract()[0]
39 |             
40 |         item = FirmwareLoader(
41 |             item=FirmwareImage(), response=response)
42 |         item.add_value(
43 |             "version", response.meta['version'])
44 |         item.add_value("url", url)
45 |         item.add_value("product", response.meta['product'])
46 |         item.add_value("vendor", self.vendor)
47 |         yield item.load_item()


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/tomato-shibby.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import os
 8 | import urlparse
 9 | 
10 | class TomatoShibbySpider(Spider):
11 |     name = "tomato-shibby"
12 |     allowed_domains = ["tomato.groov.pl"]
13 |     start_urls = ["http://tomato.groov.pl/download"]
14 | 
15 |     def parse(self, response):
16 |         for link in response.xpath("//table//tr"):
17 |             if not link.xpath("./td[2]/a"):
18 |                 continue
19 | 
20 |             text = link.xpath("./td[2]/a/text()").extract()[0]
21 |             href = link.xpath("./td[2]//@href").extract()[0]
22 | 
23 |             if ".." in href:
24 |                 continue
25 |             elif href.endswith('/'):
26 |                 build = response.meta.get("build", None)
27 |                 product = response.meta.get("product", None)
28 | 
29 |                 if not product:
30 |                     product = text
31 |                 elif not build:
32 |                     build = text.replace("build", "")
33 | 
34 |                 yield Request(
35 |                     url=urlparse.urljoin(response.url, href),
36 |                     headers={"Referer": response.url},
37 |                     meta={"build": build, "product": product},
38 |                     callback=self.parse)
39 |             elif any(href.endswith(x) for x in [".bin", ".elf", ".fdt", ".imx", ".chk", ".trx"]):
40 |                 item = FirmwareLoader(
41 |                     item=FirmwareImage(), response=response, date_fmt=["%Y-%m-%d"])
42 |                 item.add_value("build", response.meta["build"])
43 |                 item.add_value("url", href)
44 |                 item.add_value("version", FirmwareLoader.find_version_period(
45 |                     os.path.splitext(text)[0].split("-")))
46 |                 item.add_value("date", item.find_date(
47 |                     link.xpath("./td[3]/text()").extract()))
48 |                 item.add_value("product", response.meta["product"])
49 |                 item.add_value("vendor", self.name)
50 |                 yield item.load_item()
51 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/tomato.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import os
 8 | import urlparse
 9 | 
10 | class TomatoShibbySpider(Spider):
11 |     name = "tomato-shibby"
12 |     allowed_domains = ["tomato.groov.pl"]
13 |     start_urls = ["http://tomato.groov.pl/download"]
14 | 
15 |     def parse(self, response):
16 |         for link in response.xpath("//table//tr"):
17 |             if not link.xpath("./td[2]/a"):
18 |                 continue
19 | 
20 |             text = link.xpath("./td[2]/a/text()").extract()[0]
21 |             href = link.xpath("./td[2]//@href").extract()[0]
22 | 
23 |             if ".." in href:
24 |                 continue
25 |             elif href.endswith('/'):
26 |                 build = response.meta.get("build", None)
27 |                 product = response.meta.get("product", None)
28 | 
29 |                 if not product:
30 |                     product = text
31 |                 elif not build:
32 |                     build = text.replace("build", "")
33 | 
34 |                 yield Request(
35 |                     url=urlparse.urljoin(response.url, href),
36 |                     headers={"Referer": response.url},
37 |                     meta={"build": build, "product": product},
38 |                     callback=self.parse)
39 |             elif any(href.endswith(x) for x in [".bin", ".elf", ".fdt", ".imx", ".chk", ".trx"]):
40 |                 item = FirmwareLoader(
41 |                     item=FirmwareImage(), response=response, date_fmt=["%Y-%m-%d"])
42 |                 item.add_value("build", response.meta["build"])
43 |                 item.add_value("url", href)
44 |                 item.add_value("version", FirmwareLoader.find_version_period(
45 |                     os.path.splitext(text)[0].split("-")))
46 |                 item.add_value("date", item.find_date(
47 |                     link.xpath("./td[3]/text()").extract()))
48 |                 item.add_value("product", response.meta["product"])
49 |                 item.add_value("vendor", self.name)
50 |                 yield item.load_item()
51 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/tp-link_zh.py:
--------------------------------------------------------------------------------
 1 | # -*- coding: utf-8 -*
 2 | 
 3 | from scrapy import Spider
 4 | from scrapy.http import Request
 5 | 
 6 | from firmware.items import FirmwareImage
 7 | from firmware.loader import FirmwareLoader
 8 | 
 9 | import urlparse
10 | 
11 | class TPLinkZHSpider(Spider):
12 |     name = "tp-link_zh"
13 |     vendor = "tp-link"
14 |     allowed_domains = ["tp-link.com.cn"]
15 |     start_urls = [
16 |         "http://service.tp-link.com.cn/list_download_software_1_0.html"]
17 | 
18 |     def parse(self, response):
19 |         for product in response.xpath(
20 |                 "//table[@id='mainlist']//a/@href").extract():
21 |             yield Request(
22 |                 url=urlparse.urljoin(response.url, product),
23 |                 headers={"Referer": response.url},
24 |                 callback=self.parse_product)
25 | 
26 |         for page in response.xpath("//div[@id='paging']/a/@href").extract():
27 |             yield Request(
28 |                 url=urlparse.urljoin(response.url, page),
29 |                 headers={"Referer": response.url},
30 |                 callback=self.parse)
31 | 
32 |     def parse_product(self, response):
33 |         text = response.xpath("//div[@class='download']/table[1]//tr[1]/td[2]//text()").extract()[
34 |             0].encode("ascii", errors="ignore")
35 |         date = response.xpath(
36 |             "//div[@class='download']/table[1]//tr[4]/td[2]//text()").extract()
37 |         href = response.xpath(
38 |             "//div[@class='download']/table[1]//tr[5]/td[2]/a/@href").extract()[0]
39 |         desc = response.xpath(
40 |             "//div[@class='download']/table[1]//tr[1]/td[2]//text()").extract()[0].encode("utf-8")
41 | 
42 |         build = None
43 |         product = None
44 |         if "_" in text:
45 |             build = text.split("_")[1]
46 |             product = text.split("_")[0]
47 |         elif " " in text:
48 |             product = text.split(" ")[0]
49 | 
50 |         item = FirmwareLoader(item=FirmwareImage(),
51 |                               response=response, date_fmt=["%Y/%m/%d"])
52 |         item.add_value("url", href.encode("utf-8"))
53 |         item.add_value("date", item.find_date(date))
54 |         item.add_value("description", desc)
55 |         item.add_value("build", build)
56 |         item.add_value("product", product)
57 |         item.add_value("vendor", self.vendor)
58 |         yield item.load_item()
59 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/trendnet.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import urlparse
 8 | 
 9 | class TrendnetSpider(Spider):
10 |     name = "trendnet"
11 |     allowed_domains = ["trendnet.com"]
12 |     start_urls = ["http://www.trendnet.com/support/"]
13 | 
14 |     def parse(self, response):
15 |         for entry in response.xpath("//select[@id='SUBTYPE_ID']/option"):
16 |             if entry.xpath(".//text()"):
17 |                 text = entry.xpath(".//text()").extract()[0]
18 |                 href = entry.xpath("./@value").extract()[0]
19 | 
20 |                 yield Request(
21 |                     url=urlparse.urljoin(response.url, href),
22 |                     meta={"product": text},
23 |                     headers={"Referer": response.url},
24 |                     callback=self.parse_product)
25 | 
26 |     def parse_product(self, response):
27 |         for tab in response.xpath("//ul[@class='etabs']//a"):
28 |             text = tab.xpath(".//text()").extract()[0]
29 |             href = tab.xpath("./@href").extract()[0]
30 | 
31 |             if "downloads" in text.lower():
32 |                 yield Request(
33 |                     url=urlparse.urljoin(response.url, href),
34 |                     meta={"product": response.meta["product"]},
35 |                     headers={"Referer": response.url},
36 |                     callback=self.parse_download)
37 | 
38 |     def parse_download(self, response):
39 |         for entry in response.xpath("//div[@class='downloadtable']"):
40 |             text = entry.xpath(".//text()").extract()
41 | 
42 |             if "firmware" in " ".join(text).lower():
43 |                 text = entry.xpath(
44 |                     ".//li[@class='maindescription' and position() = 1]//text()").extract()
45 |                 date = entry.xpath(
46 |                     ".//li[@class='maindescription' and position() = 2]//text()").extract()
47 |                 href = entry.xpath(".//li[@class='maindescription']//a/@onclick").extract()[
48 |                     0].split('\'')[1] + "&button=Continue+with+Download&Continue=yes"
49 | 
50 |                 item = FirmwareLoader(
51 |                     item=FirmwareImage(), response=response, date_fmt=["%m/%d/%Y"])
52 |                 item.add_value("url", href)
53 |                 item.add_value("product", response.meta["product"])
54 |                 item.add_value("date", item.find_date(date))
55 |                 item.add_value("version", FirmwareLoader.find_version(text))
56 |                 item.add_value("vendor", self.name)
57 |                 yield item.load_item()
58 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/ublox.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import urlparse
 8 | 
 9 | class UbloxSpider(Spider):
10 |     name = "ublox"
11 |     allowed_domains = ["u-blox.com"]
12 |     start_urls = [
13 |         "https://www.u-blox.com/en/product-resources?field_product_tech=All&field_product_form=All&edit-submit-product-search=Go&f[0]=field_file_category%3A223"]
14 | 
15 |     def parse(self, response):
16 |         for a in response.xpath("//table//tr//td[2]//a"):
17 |             title = a.xpath('./@title').extract()[0]
18 |             url = a.xpath('./@href').extract()[0]
19 | 
20 |             item = FirmwareLoader(
21 |                         item=FirmwareImage(), response=response)
22 |             item.add_value("url", url)
23 |             item.add_value("product", self.parse_product(title))
24 |             item.add_value("description", title)
25 |             item.add_value("vendor", self.name)
26 |             yield item.load_item()
27 | 
28 | 
29 |     def parse_product(self, title):
30 |         import re
31 |         p = " for ([a-zA-Z0-9\-_]+)$"
32 |         ret = re.findall(p, title)
33 |         if ret:
34 |             product = ret[0]
35 |         else:
36 |             product = title.replace('u-blox', '').strip().split(' ')[0]
37 |         return product


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/firmware/spiders/xerox.py:
--------------------------------------------------------------------------------
 1 | from scrapy import Spider
 2 | from scrapy.http import Request
 3 | 
 4 | from firmware.items import FirmwareImage
 5 | from firmware.loader import FirmwareLoader
 6 | 
 7 | import urlparse
 8 | 
 9 | class XeroxSpider(Spider):
10 |     name = "xerox"
11 |     allowed_domains = ["xerox.com"]
12 |     start_urls = [
13 |         "http://www.support.xerox.com/dnd/productList.jsf?Xlang=en_US"]
14 | 
15 |     def parse(self, response):
16 |         for href in response.xpath(
17 |                 "//div[@class='productResults a2z']//a/@href").extract():
18 |             if "downloads" in href:
19 |                 yield Request(
20 |                     url=urlparse.urljoin(response.url, href),
21 |                     headers={"Referer": response.url},
22 |                     callback=self.parse_download)
23 | 
24 |     def parse_download(self, response):
25 |         for firmware in response.xpath(
26 |                 "//li[@class='categoryBucket categoryBucketId-7']//li[@class='record ']"):
27 |             product = response.xpath(
28 |                 "//div[@class='prodNavHeaderBody']//text()").extract()[0].replace(" Support & Drivers", "")
29 |             date = firmware.xpath(
30 |                 ".//ul[@class='dateVersion']//strong/text()").extract()
31 |             version = firmware.xpath(
32 |                 ".//ul[@class='dateVersion']//strong/text()").extract()
33 |             href = firmware.xpath(
34 |                 ".//a/@href").extract()[0].replace("file-download", "file-redirect")
35 |             text = firmware.xpath(".//a//text()").extract()[0]
36 | 
37 |             item = FirmwareLoader(item=FirmwareImage(),
38 |                                   response=response, date_fmt=["%b %d, %Y"])
39 |             item.add_value("url", href)
40 |             item.add_value("product", product)
41 |             item.add_value("date", item.find_date(date))
42 |             item.add_value("description", text)
43 |             item.add_value("version", item.find_version_period(version))
44 |             item.add_value("vendor", self.name)
45 |             yield item.load_item()
46 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/ftp.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/sh
 2 | 
 3 | wget --mirror -A zip,pkg,rar,bin,img --ignore-case ftp://ftp2.dlink.com/PRODUCTS -P output
 4 | # wget --mirror -A zip,pkg,rar,bin,img ftp://ftp.dlink.eu/Products -P output
 5 | # wget --mirror -A zip,pkg,rar,bin,img ftp://ftp.dlink.ru/pub -P output -P output
 6 | # wget --mirror -A zip,pkg,rar,bin,img ftp://ftp.d-link.co.za -P output
 7 | 
 8 | wget --mirror -A image --ignore-case ftp://ftp.avm.de/fritz.box -P output
 9 | 
10 | wget --mirror -A img,chk,bin,stk,zip,tar,sys,rar,pkg,rmt --ignore-case ftp://downloads.netgear.com -P output
11 | 
12 | wget --mirror -A zip --ignore-case ftp://ftp.zyxel.com -P output
13 | 
14 | wget --mirror -A bin --ignore-case ftp://ftp.dd-wrt.com -P output
15 | 
16 | git clone https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git output/linux-firmware
17 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scraper-64332e251865a419616dd493b9e74c30fad02024/scrapy.cfg:
--------------------------------------------------------------------------------
1 | [settings]
2 | default = firmware.settings
3 | 
4 | [deploy]
5 | #url = http://localhost:6800/
6 | project = scraper
7 | 


--------------------------------------------------------------------------------
/firmadyne/sources/scraper/scrapy.cfg:
--------------------------------------------------------------------------------
1 | [settings]
2 | default = firmware.settings
3 | 
4 | [deploy]
5 | #url = http://localhost:6800/
6 | project = scraper
7 | 


--------------------------------------------------------------------------------
/images/run.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/images/run.png


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/qemu-system-arm:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/qemu-system-arm


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/qemu-system-mips:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/qemu-system-mips


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/qemu-system-mipsel:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/qemu-system-mipsel


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/QEMU,cgthree.bin:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/QEMU,cgthree.bin


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/QEMU,tcx.bin:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/QEMU,tcx.bin


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/acpi-dsdt.aml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/acpi-dsdt.aml


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/bamboo.dtb:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/bamboo.dtb


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/bios-256k.bin:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/bios-256k.bin


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/bios.bin:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/bios.bin


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/efi-e1000.rom:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/efi-e1000.rom


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/efi-eepro100.rom:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/efi-eepro100.rom


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/efi-ne2k_pci.rom:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/efi-ne2k_pci.rom


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/efi-pcnet.rom:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/efi-pcnet.rom


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/efi-rtl8139.rom:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/efi-rtl8139.rom


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/efi-virtio.rom:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/efi-virtio.rom


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/keymaps/ar:
--------------------------------------------------------------------------------
 1 | # generated from XKB map ar
 2 | include common
 3 | map 0x401
 4 | exclam 0x02 shift
 5 | at 0x03 shift
 6 | numbersign 0x04 shift
 7 | dollar 0x05 shift
 8 | percent 0x06 shift
 9 | asciicircum 0x07 shift
10 | ampersand 0x08 shift
11 | asterisk 0x09 shift
12 | parenleft 0x0a shift
13 | parenright 0x0b shift
14 | minus 0x0c
15 | underscore 0x0c shift
16 | equal 0x0d
17 | plus 0x0d shift
18 | Arabic_dad 0x10 altgr
19 | Arabic_fatha 0x10 shift altgr
20 | Arabic_sad 0x11 altgr
21 | Arabic_fathatan 0x11 shift altgr
22 | Arabic_theh 0x12 altgr
23 | Arabic_damma 0x12 shift altgr
24 | Arabic_qaf 0x13 altgr
25 | Arabic_dammatan 0x13 shift altgr
26 | Arabic_feh 0x14 altgr
27 | UFEF9 0x14 shift altgr
28 | Arabic_ghain 0x15 altgr
29 | Arabic_hamzaunderalef 0x15 shift altgr
30 | Arabic_ain 0x16 altgr
31 | grave 0x16 shift altgr
32 | Arabic_ha 0x17 altgr
33 | division 0x17 shift altgr
34 | Arabic_khah 0x18 altgr
35 | multiply 0x18 shift altgr
36 | Arabic_hah 0x19 altgr
37 | Arabic_semicolon 0x19 shift altgr
38 | bracketleft 0x1a
39 | braceleft 0x1a shift
40 | Arabic_jeem 0x1a altgr
41 | bracketright 0x1b
42 | braceright 0x1b shift
43 | Arabic_dal 0x1b altgr
44 | Arabic_sheen 0x1e altgr
45 | backslash 0x1e shift altgr
46 | Arabic_seen 0x1f altgr
47 | Arabic_yeh 0x20 altgr
48 | bracketleft 0x20 shift altgr
49 | Arabic_beh 0x21 altgr
50 | bracketright 0x21 shift altgr
51 | Arabic_lam 0x22 altgr
52 | UFEF7 0x22 shift altgr
53 | Arabic_alef 0x23 altgr
54 | Arabic_hamzaonalef 0x23 shift altgr
55 | Arabic_teh 0x24 altgr
56 | Arabic_tatweel 0x24 shift altgr
57 | Arabic_noon 0x25 altgr
58 | Arabic_comma 0x25 shift altgr
59 | Arabic_meem 0x26 altgr
60 | slash 0x26 shift altgr
61 | semicolon 0x27
62 | colon 0x27 shift
63 | Arabic_kaf 0x27 altgr
64 | apostrophe 0x28
65 | quotedbl 0x28 shift
66 | Arabic_tah 0x28 altgr
67 | grave 0x29
68 | asciitilde 0x29 shift
69 | Arabic_thal 0x29 altgr
70 | Arabic_shadda 0x29 shift altgr
71 | backslash 0x2b
72 | bar 0x2b shift
73 | less 0x2b altgr
74 | greater 0x2b shift altgr
75 | Arabic_hamzaonyeh 0x2c altgr
76 | asciitilde 0x2c shift altgr
77 | Arabic_hamza 0x2d altgr
78 | Arabic_sukun 0x2d shift altgr
79 | Arabic_hamzaonwaw 0x2e altgr
80 | Arabic_kasra 0x2e shift altgr
81 | Arabic_ra 0x2f altgr
82 | Arabic_kasratan 0x2f shift altgr
83 | UFEFB 0x30 altgr
84 | UFEF5 0x30 shift altgr
85 | Arabic_alefmaksura 0x31 altgr
86 | Arabic_maddaonalef 0x31 shift altgr
87 | Arabic_tehmarbuta 0x32 altgr
88 | apostrophe 0x32 shift altgr
89 | comma 0x33
90 | less 0x33 shift
91 | Arabic_waw 0x33 altgr
92 | period 0x34
93 | greater 0x34 shift
94 | Arabic_zain 0x34 altgr
95 | slash 0x35
96 | question 0x35 shift
97 | Arabic_zah 0x35 altgr
98 | Arabic_question_mark 0x35 shift altgr
99 | 


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/keymaps/common:
--------------------------------------------------------------------------------
  1 | include modifiers
  2 | 
  3 | #
  4 | # Top row
  5 | #
  6 | 1 0x2
  7 | 2 0x3
  8 | 3 0x4
  9 | 4 0x5
 10 | 5 0x6
 11 | 6 0x7
 12 | 7 0x8
 13 | 8 0x9
 14 | 9 0xa
 15 | 0 0xb
 16 | BackSpace 0xe
 17 | 
 18 | #
 19 | # QWERTY first row
 20 | #
 21 | Tab 0xf localstate
 22 | ISO_Left_Tab 0xf shift
 23 | q 0x10 addupper
 24 | w 0x11 addupper
 25 | e 0x12 addupper
 26 | r 0x13 addupper
 27 | t 0x14 addupper
 28 | y 0x15 addupper
 29 | u 0x16 addupper
 30 | i 0x17 addupper
 31 | o 0x18 addupper
 32 | p 0x19 addupper
 33 | 
 34 | #
 35 | # QWERTY second row
 36 | #
 37 | a 0x1e addupper
 38 | s 0x1f addupper
 39 | d 0x20 addupper
 40 | f 0x21 addupper
 41 | g 0x22 addupper
 42 | h 0x23 addupper
 43 | j 0x24 addupper
 44 | k 0x25 addupper
 45 | l 0x26 addupper
 46 | Return 0x1c localstate
 47 | 
 48 | #
 49 | # QWERTY third row
 50 | #
 51 | z 0x2c addupper
 52 | x 0x2d addupper
 53 | c 0x2e addupper
 54 | v 0x2f addupper
 55 | b 0x30 addupper
 56 | n 0x31 addupper
 57 | m 0x32 addupper
 58 | 
 59 | space 0x39 localstate
 60 | 
 61 | less 0x56
 62 | greater 0x56 shift
 63 | bar 0x56 altgr
 64 | brokenbar 0x56 shift altgr
 65 | 
 66 | #
 67 | # Esc and Function keys
 68 | #
 69 | Escape 0x1 localstate
 70 | F1 0x3b localstate
 71 | F2 0x3c localstate
 72 | F3 0x3d localstate
 73 | F4 0x3e localstate
 74 | F5 0x3f localstate
 75 | F6 0x40 localstate
 76 | F7 0x41 localstate
 77 | F8 0x42 localstate
 78 | F9 0x43 localstate
 79 | F10 0x44 localstate
 80 | F11 0x57 localstate
 81 | F12 0x58 localstate
 82 | 
 83 | # Printscreen, Scrollock and Pause
 84 | # Printscreen really requires four scancodes (0xe0, 0x2a, 0xe0, 0x37),
 85 | # but (0xe0, 0x37) seems to work.
 86 | Print 0xb7 localstate
 87 | Sys_Req 0xb7 localstate
 88 | Execute 0xb7 localstate
 89 | Scroll_Lock 0x46
 90 | 
 91 | #
 92 | # Insert - PgDown
 93 | #
 94 | Insert 0xd2 localstate
 95 | Delete 0xd3 localstate
 96 | Home 0xc7 localstate
 97 | End 0xcf localstate
 98 | Page_Up 0xc9 localstate
 99 | Page_Down 0xd1 localstate
100 | 
101 | #
102 | # Arrow keys
103 | #
104 | Left 0xcb localstate
105 | Up 0xc8 localstate
106 | Down 0xd0 localstate
107 | Right 0xcd localstate
108 | 
109 | #
110 | # Numpad
111 | #
112 | Num_Lock 0x45
113 | KP_Divide 0xb5
114 | KP_Multiply 0x37
115 | KP_Subtract 0x4a
116 | KP_Add 0x4e
117 | KP_Enter 0x9c
118 | 
119 | KP_Decimal 0x53 numlock
120 | KP_Separator 0x53 numlock
121 | KP_Delete 0x53
122 | 
123 | KP_0 0x52 numlock
124 | KP_Insert 0x52
125 | 
126 | KP_1 0x4f numlock
127 | KP_End 0x4f
128 | 
129 | KP_2 0x50 numlock
130 | KP_Down 0x50
131 | 
132 | KP_3 0x51 numlock
133 | KP_Next 0x51
134 | 
135 | KP_4 0x4b numlock
136 | KP_Left 0x4b
137 | 
138 | KP_5 0x4c numlock
139 | KP_Begin 0x4c
140 | 
141 | KP_6 0x4d numlock
142 | KP_Right 0x4d
143 | 
144 | KP_7 0x47 numlock
145 | KP_Home 0x47
146 | 
147 | KP_8 0x48 numlock
148 | KP_Up 0x48
149 | 
150 | KP_9 0x49 numlock
151 | KP_Prior 0x49
152 | 
153 | Caps_Lock 0x3a
154 | #
155 | # Inhibited keys
156 | #
157 | Multi_key 0x0 inhibit
158 | 


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/keymaps/cz:
--------------------------------------------------------------------------------
 1 | include common
 2 | 
 3 | # Czech qwertz layout
 4 | # comments are czech descriptions of the characters
 5 | 
 6 | # -----------
 7 | #  First row
 8 | # -----------
 9 | 
10 | # strednik, kolecko
11 | semicolon 0x29
12 | dead_abovering 0x29 shift
13 | 
14 | # numbers
15 | plus 0x2
16 | 1 0x2 shift
17 | ecaron 0x3
18 | 2 0x3 shift
19 | scaron 0x4
20 | 3 0x4 shift
21 | ccaron 0x5
22 | 4 0x5 shift
23 | rcaron 0x6
24 | 5 0x6 shift
25 | zcaron 0x7
26 | 6 0x7 shift
27 | yacute 0x8
28 | 7 0x8 shift
29 | aacute 0x9
30 | 8 0x9 shift
31 | iacute 0xa
32 | 9 0xa shift
33 | eacute 0xb
34 | 0 0xb shift
35 | 
36 | # rovnitko
37 | equal 0x0c
38 | percent 0x0c shift
39 | 
40 | # carka, hacek
41 | dead_acute 0x0d
42 | dead_caron 0x0d shift
43 | 
44 | # ------------
45 | #  Second row
46 | # ------------
47 | 
48 | z 0x15 addupper
49 | 
50 | # u s carkou, zpetne lomitko
51 | uacute 0x1a
52 | slash 0x1a shift
53 | 
54 | # prava zavorka, leva zavorka
55 | parenright 0x1b
56 | parenleft 0x1b shift
57 | 
58 | # -----------
59 | #  Third row
60 | # -----------
61 | 
62 | # u s krouzkem, uvozovky
63 | uring 0x27
64 | quotedbl 0x27 shift
65 | 
66 | # paragraf, vykricnik
67 | section 0x28
68 | exclam 0x28 shift
69 | 
70 | # vodorovna dvojtecka, apostrof
71 | dead_diaeresis 0x2b
72 | apostrophe 0x2b shift
73 | 
74 | # ------------
75 | #  Fourth row
76 | # ------------
77 | 
78 | # zpetne lomitko, roura
79 | backslash 0x2b
80 | bar 0x2b shift
81 | 
82 | y 0x2c addupper
83 | 
84 | # carka, otaznik
85 | comma 0x33
86 | question 0x33 shift
87 | 
88 | # tecka, dvojtecka
89 | period 0x34
90 | colon 0x34 shift
91 | 
92 | # minus, podtrzitko
93 | minus 0x35
94 | underscore 0x35 shift
95 | 


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/keymaps/en-us:
--------------------------------------------------------------------------------
 1 | # generated from XKB map us
 2 | include common
 3 | map 0x409
 4 | exclam 0x02 shift
 5 | at 0x03 shift
 6 | numbersign 0x04 shift
 7 | dollar 0x05 shift
 8 | percent 0x06 shift
 9 | asciicircum 0x07 shift
10 | ampersand 0x08 shift
11 | asterisk 0x09 shift
12 | parenleft 0x0a shift
13 | parenright 0x0b shift
14 | minus 0x0c
15 | underscore 0x0c shift
16 | equal 0x0d
17 | plus 0x0d shift
18 | bracketleft 0x1a
19 | braceleft 0x1a shift
20 | bracketright 0x1b
21 | braceright 0x1b shift
22 | semicolon 0x27
23 | colon 0x27 shift
24 | apostrophe 0x28
25 | quotedbl 0x28 shift
26 | grave 0x29
27 | asciitilde 0x29 shift
28 | backslash 0x2b
29 | bar 0x2b shift
30 | comma 0x33
31 | less 0x33 shift
32 | period 0x34
33 | greater 0x34 shift
34 | slash 0x35
35 | question 0x35 shift
36 | 


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/keymaps/es:
--------------------------------------------------------------------------------
  1 | # generated from XKB map es
  2 | include common
  3 | map 0x40a
  4 | exclam 0x02 shift
  5 | bar 0x02 altgr
  6 | quotedbl 0x03 shift
  7 | at 0x03 altgr
  8 | oneeighth 0x03 shift altgr
  9 | periodcentered 0x04 shift
 10 | numbersign 0x04 altgr
 11 | sterling 0x04 shift altgr
 12 | dollar 0x05 shift
 13 | asciitilde 0x05 altgr
 14 | percent 0x06 shift
 15 | onehalf 0x06 altgr
 16 | threeeighths 0x06 shift altgr
 17 | ampersand 0x07 shift
 18 | notsign 0x07 altgr
 19 | fiveeighths 0x07 shift altgr
 20 | slash 0x08 shift
 21 | seveneighths 0x08 shift altgr
 22 | parenleft 0x09 shift
 23 | trademark 0x09 shift altgr
 24 | parenright 0x0a shift
 25 | plusminus 0x0a shift altgr
 26 | equal 0x0b shift
 27 | degree 0x0b shift altgr
 28 | apostrophe 0x0c
 29 | question 0x0c shift
 30 | exclamdown 0x0d
 31 | questiondown 0x0d shift
 32 | Greek_OMEGA 0x10 shift altgr
 33 | lstroke 0x11 altgr
 34 | Lstroke 0x11 shift altgr
 35 | EuroSign 0x12 altgr
 36 | paragraph 0x13 altgr
 37 | registered 0x13 shift altgr
 38 | tslash 0x14 altgr
 39 | Tslash 0x14 shift altgr
 40 | leftarrow 0x15 altgr
 41 | yen 0x15 shift altgr
 42 | downarrow 0x16 altgr
 43 | uparrow 0x16 shift altgr
 44 | rightarrow 0x17 altgr
 45 | idotless 0x17 shift altgr
 46 | oslash 0x18 altgr
 47 | Ooblique 0x18 shift altgr
 48 | thorn 0x19 altgr
 49 | THORN 0x19 shift altgr
 50 | dead_grave 0x1a
 51 | dead_circumflex 0x1a shift
 52 | bracketleft 0x1a altgr
 53 | dead_abovering 0x1a shift altgr
 54 | plus 0x1b
 55 | asterisk 0x1b shift
 56 | bracketright 0x1b altgr
 57 | dead_macron 0x1b shift altgr
 58 | ae 0x1e altgr
 59 | AE 0x1e shift altgr
 60 | ssharp 0x1f altgr
 61 | section 0x1f shift altgr
 62 | eth 0x20 altgr
 63 | ETH 0x20 shift altgr
 64 | dstroke 0x21 altgr
 65 | eng 0x22 altgr
 66 | ENG 0x22 shift altgr
 67 | hstroke 0x23 altgr
 68 | Hstroke 0x23 shift altgr
 69 | kra 0x25 altgr
 70 | lstroke 0x26 altgr
 71 | Lstroke 0x26 shift altgr
 72 | ntilde 0x27
 73 | Ntilde 0x27 shift
 74 | dead_doubleacute 0x27 shift altgr
 75 | dead_acute 0x28
 76 | dead_diaeresis 0x28 shift
 77 | braceleft 0x28 altgr
 78 | masculine 0x29
 79 | ordfeminine 0x29 shift
 80 | backslash 0x29 altgr
 81 | ccedilla 0x2b
 82 | Ccedilla 0x2b shift
 83 | braceright 0x2b altgr
 84 | dead_breve 0x2b shift altgr
 85 | guillemotleft 0x2c altgr
 86 | less 0x56
 87 | greater 0x56 shift
 88 | guillemotright 0x2d altgr
 89 | cent 0x2e altgr
 90 | copyright 0x2e shift altgr
 91 | leftdoublequotemark 0x2f altgr
 92 | grave 0x2f shift altgr
 93 | rightdoublequotemark 0x30 altgr
 94 | mu 0x32 altgr
 95 | comma 0x33
 96 | semicolon 0x33 shift
 97 | horizconnector 0x33 altgr
 98 | multiply 0x33 shift altgr
 99 | period 0x34
100 | colon 0x34 shift
101 | division 0x34 shift altgr
102 | minus 0x35
103 | underscore 0x35 shift
104 | dead_belowdot 0x35 altgr
105 | dead_abovedot 0x35 shift altgr
106 | 


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/keymaps/et:
--------------------------------------------------------------------------------
 1 | map 0x00000425
 2 | include common
 3 | 
 4 | #
 5 | # Top row
 6 | #
 7 | dead_caron 0x29
 8 | dead_tilde 0x29 shift
 9 | 
10 | # 1
11 | exclam 0x2 shift
12 | 
13 | # 2
14 | quotedbl 0x3 shift
15 | at 0x3 altgr
16 | 
17 | # 3
18 | numbersign 0x4 shift
19 | sterling 0x4 altgr
20 | # 4
21 | currency 0x5 shift
22 | dollar 0x5 altgr
23 | # 5
24 | percent 0x6 shift
25 | # 6
26 | ampersand 0x7 shift
27 | # 7
28 | slash 0x8 shift
29 | braceleft 0x8 altgr
30 | # 8
31 | parenleft 0x9 shift
32 | bracketleft 0x9 altgr
33 | # 9
34 | parenright 0xa shift
35 | bracketright 0xa altgr
36 | # 0
37 | equal 0xb shift
38 | braceright 0xb altgr
39 | 
40 | plus 0xc
41 | question 0xc shift
42 | backslash 0xc altgr
43 | 
44 | acute 0xd
45 | dead_acute 0xd
46 | grave 0xd shift
47 | dead_grave 0xd shift
48 | 
49 | #
50 | # QWERTY first row
51 | #
52 | EuroSign 0x12 altgr
53 | udiaeresis 0x1a
54 | Udiaeresis 0x1a shift
55 | otilde 0x1b
56 | Otilde 0x1b shift
57 | section 0x1b altgr
58 | 
59 | #
60 | # QWERTY second row
61 | #
62 | scaron 0x1f altgr
63 | Scaron 0x1f altgr shift
64 | odiaeresis 0x27
65 | Odiaeresis 0x27 shift
66 | adiaeresis 0x28
67 | Adiaeresis 0x28 shift
68 | asciicircum 0x28 altgr
69 | apostrophe 0x2b
70 | asterisk 0x2b shift
71 | onehalf 0x2b altgr
72 | #
73 | # QWERTY third row
74 | #
75 | less 0x56
76 | greater 0x56 shift
77 | bar 0x56 altgr
78 | zcaron 0x2c altgr
79 | Zcaron 0x2c altgr shift
80 | comma 0x33
81 | semicolon 0x33 shift
82 | period 0x34
83 | colon 0x34 shift
84 | minus 0x35
85 | underscore 0x35 shift
86 | 


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/keymaps/fo:
--------------------------------------------------------------------------------
 1 | map 0x438
 2 | include common
 3 | 
 4 | #
 5 | # Top row
 6 | #
 7 | onehalf 0x29
 8 | section 0x29 shift
 9 | 
10 | # 1
11 | exclam 0x2 shift
12 | 
13 | # 2
14 | quotedbl 0x3 shift
15 | at 0x3 altgr
16 | 
17 | # 3
18 | numbersign 0x4 shift
19 | sterling 0x4 altgr
20 | # 4
21 | currency 0x5 shift
22 | dollar 0x5 altgr
23 | # 5
24 | percent 0x6 shift
25 | # 6
26 | ampersand 0x7 shift
27 | # 7
28 | slash 0x8 shift
29 | braceleft 0x8 altgr
30 | # 8
31 | parenleft 0x9 shift
32 | bracketleft 0x9 altgr
33 | # 9
34 | parenright 0xa shift
35 | bracketright 0xa altgr
36 | # 0
37 | equal 0xb shift
38 | braceright 0xb altgr
39 | 
40 | plus 0xc
41 | question 0xc shift
42 | plusminus 0xc altgr
43 | 
44 | bar 0xd altgr
45 | dead_acute 0xd
46 | 
47 | #
48 | # QWERTY first row
49 | #
50 | EuroSign 0x12 altgr
51 | aring 0x1a
52 | Aring 0x1a shift
53 | eth 0x1b addupper
54 | asciitilde 0x1b altgr
55 | 
56 | #
57 | # QWERTY second row
58 | #
59 | ae 0x27 addupper
60 | oslash 0x28
61 | Ooblique 0x28 shift
62 | apostrophe 0x2b
63 | asterisk 0x2b shift
64 | 
65 | #
66 | # QWERTY third row
67 | #
68 | less 0x56
69 | greater 0x56 shift
70 | backslash 0x56 altgr
71 | comma 0x33
72 | semicolon 0x33 shift
73 | period 0x34
74 | colon 0x34 shift
75 | minus 0x35
76 | underscore 0x35 shift
77 | 


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/keymaps/fr-ca:
--------------------------------------------------------------------------------
 1 | # Canadian French
 2 | # By Simon Germain
 3 | include common
 4 | map 0xc0c
 5 | 
 6 | backslash 0x29 altgr
 7 | plusminus 0x2 altgr
 8 | at 0x3 altgr
 9 | sterling 0x4 altgr
10 | cent 0x5 altgr
11 | currency 0x6 altgr
12 | notsign 0x7 altgr
13 | bar 0x29 shift
14 | twosuperior 0x9 altgr
15 | threesuperior 0xa altgr
16 | onequarter 0xb altgr
17 | onehalf 0xc altgr
18 | threequarters 0xd altgr
19 | section 0x18 altgr
20 | paragraph 0x19 altgr
21 | bracketleft 0x1a altgr
22 | bracketright 0x1b altgr
23 | asciitilde 0x27 altgr
24 | braceleft 0x28 altgr
25 | braceright 0x2b altgr
26 | less 0x2b
27 | greater 0x2b shift
28 | guillemotleft 0x56
29 | guillemotright 0x56 shift
30 | degree 0x56 altgr
31 | mu 0x32 altgr
32 | eacute 0x35
33 | dead_acute 0x35 altgr
34 | dead_grave 0x28
35 | dead_circumflex 0x1a
36 | dead_circumflex 0x1a shift
37 | dead_cedilla 0x1b
38 | dead_diaeresis 0x1b shift
39 | exclam 0x2 shift
40 | quotedbl 0x3 shift
41 | slash 0x4 shift
42 | dollar 0x5 shift
43 | percent 0x6 shift
44 | question 0x7 shift
45 | ampersand 0x8 shift
46 | asterisk 0x9 shift
47 | parenleft 0xa shift
48 | parenright 0xb shift
49 | underscore 0xc shift
50 | plus 0xd shift
51 | 


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/keymaps/hu:
--------------------------------------------------------------------------------
  1 | # Hungarian keyboard layout (QWERTZ)
  2 | # Created by: The NeverGone <never@delfin.klte.hu>
  3 | 
  4 | include common
  5 | map 0x40e
  6 | 
  7 | 
  8 | # AltGr keys:
  9 | notsign 0x29 altgr
 10 | asciitilde 0x02 altgr
 11 | caron 0x03 altgr
 12 | asciicircum 0x04 altgr
 13 | breve 0x05 altgr
 14 | degree 0x06 altgr
 15 | ogonek 0x07 altgr
 16 | grave 0x08 altgr
 17 | abovedot 0x09 altgr
 18 | acute 0x0a altgr
 19 | doubleacute 0x0b altgr
 20 | diaeresis 0x0c altgr
 21 | cedilla 0x0d altgr
 22 | backslash 0x10 altgr
 23 | bar 0x11 altgr
 24 | EuroSign 0x12 altgr
 25 | Iacute 0x17 altgr
 26 | division 0x1a altgr
 27 | multiply 0x1b altgr
 28 | dstroke 0x1f altgr
 29 | Dstroke 0x20 altgr
 30 | bracketleft 0x21 altgr
 31 | bracketright 0x22 altgr
 32 | iacute 0x24 altgr
 33 | lstroke 0x25 altgr
 34 | Lstroke 0x26 altgr
 35 | dollar 0x27 altgr
 36 | ssharp 0x28 altgr
 37 | currency 0x2b altgr
 38 | less 0x56 altgr
 39 | greater 0x2c altgr
 40 | numbersign 0x2d altgr
 41 | ampersand 0x2e altgr
 42 | at 0x2f altgr
 43 | braceleft 0x30 altgr
 44 | braceright 0x31 altgr
 45 | semicolon 0x33 altgr
 46 | asterisk 0x35 altgr
 47 | 
 48 | 
 49 | # Shift keys:
 50 | section 0x29 shift
 51 | apostrophe 0x02 shift
 52 | quotedbl 0x03 shift
 53 | plus 0x04 shift
 54 | exclam 0x05 shift
 55 | percent 0x06 shift
 56 | slash 0x07 shift
 57 | equal 0x08 shift
 58 | parenleft 0x09 shift
 59 | parenright 0x0a shift
 60 | Odiaeresis 0x0b shift
 61 | Udiaeresis 0x0c shift
 62 | Oacute 0x0d shift
 63 | Z 0x15 shift
 64 | Odoubleacute 0x1a shift
 65 | Uacute 0x1b shift
 66 | Eacute 0x27 shift
 67 | Aacute 0x28 shift
 68 | Udoubleacute 0x2b shift
 69 | Y 0x2c shift
 70 | question 0x33 shift
 71 | colon 0x34 shift
 72 | underscore 0x35 shift
 73 | F13 0x3b shift
 74 | F14 0x3c shift
 75 | F15 0x3d shift
 76 | F16 0x3e shift
 77 | F17 0x3f shift
 78 | F18 0x40 shift
 79 | F19 0x41 shift
 80 | F20 0x42 shift
 81 | F21 0x43 shift
 82 | F22 0x44 shift
 83 | F23 0x57 shift
 84 | F24 0x58 shift
 85 | 
 86 | 
 87 | # Ctrl keys:
 88 | F25 0x3b ctrl
 89 | F26 0x3c ctrl
 90 | F27 0x3d ctrl
 91 | F28 0x3e ctrl
 92 | F29 0x3f ctrl
 93 | F30 0x40 ctrl
 94 | F31 0x41 ctrl
 95 | F32 0x42 ctrl
 96 | F33 0x43 ctrl
 97 | F34 0x44 ctrl
 98 | F35 0x57 ctrl
 99 | #NoSymbol 0x58 ctrl
100 | 
101 | 
102 | 0 0x29
103 | odiaeresis 0x0b
104 | udiaeresis 0x0c
105 | oacute 0x0d
106 | z 0x15
107 | odoubleacute 0x1a
108 | uacute 0x1b
109 | eacute 0x27
110 | aacute 0x28
111 | udoubleacute 0x2b
112 | y 0x2c
113 | comma 0x33
114 | period 0x34
115 | minus 0x35
116 | 


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/keymaps/ja:
--------------------------------------------------------------------------------
  1 | # generated from XKB map jp106
  2 | include common
  3 | map 0x411
  4 | exclam 0x02 shift
  5 | kana_NU 0x02 altgr
  6 | quotedbl 0x03 shift
  7 | kana_FU 0x03 altgr
  8 | numbersign 0x04 shift
  9 | kana_A 0x04 altgr
 10 | kana_a 0x04 shift altgr
 11 | dollar 0x05 shift
 12 | kana_U 0x05 altgr
 13 | kana_u 0x05 shift altgr
 14 | percent 0x06 shift
 15 | kana_E 0x06 altgr
 16 | kana_e 0x06 shift altgr
 17 | ampersand 0x07 shift
 18 | kana_O 0x07 altgr
 19 | kana_o 0x07 shift altgr
 20 | apostrophe 0x08 shift
 21 | kana_YA 0x08 altgr
 22 | kana_ya 0x08 shift altgr
 23 | parenleft 0x09 shift
 24 | kana_YU 0x09 altgr
 25 | kana_yu 0x09 shift altgr
 26 | parenright 0x0a shift
 27 | kana_YO 0x0a altgr
 28 | kana_yo 0x0a shift altgr
 29 | asciitilde 0x0b shift
 30 | kana_WA 0x0b altgr
 31 | kana_WO 0x0b shift altgr
 32 | minus 0x0c
 33 | equal 0x0c shift
 34 | kana_HO 0x0c altgr
 35 | asciicircum 0x0d
 36 | asciitilde 0x0d shift
 37 | kana_HE 0x0d altgr
 38 | kana_TA 0x10 altgr
 39 | kana_TE 0x11 altgr
 40 | kana_I 0x12 altgr
 41 | kana_i 0x12 shift altgr
 42 | kana_SU 0x13 altgr
 43 | kana_KA 0x14 altgr
 44 | kana_N 0x15 altgr
 45 | kana_NA 0x16 altgr
 46 | kana_NI 0x17 altgr
 47 | kana_RA 0x18 altgr
 48 | kana_SE 0x19 altgr
 49 | at 0x1a
 50 | grave 0x1a shift
 51 | voicedsound 0x1a altgr
 52 | bracketleft 0x1b
 53 | braceleft 0x1b shift
 54 | semivoicedsound 0x1b altgr
 55 | kana_openingbracket 0x1b shift altgr
 56 | kana_CHI 0x1e altgr
 57 | kana_TO 0x1f altgr
 58 | kana_SHI 0x20 altgr
 59 | kana_HA 0x21 altgr
 60 | kana_KI 0x22 altgr
 61 | kana_KU 0x23 altgr
 62 | kana_MA 0x24 altgr
 63 | kana_NO 0x25 altgr
 64 | kana_RI 0x26 altgr
 65 | semicolon 0x27
 66 | plus 0x27 shift
 67 | kana_RE 0x27 altgr
 68 | colon 0x28
 69 | asterisk 0x28 shift
 70 | kana_KE 0x28 altgr
 71 | Zenkaku_Hankaku 0x29
 72 | bracketright 0x2b
 73 | braceright 0x2b shift
 74 | kana_MU 0x2b altgr
 75 | kana_closingbracket 0x2b shift altgr
 76 | kana_TSU 0x2c altgr
 77 | kana_tsu 0x2c shift altgr
 78 | kana_SA 0x2d altgr
 79 | kana_SO 0x2e altgr
 80 | kana_HI 0x2f altgr
 81 | kana_KO 0x30 altgr
 82 | kana_MI 0x31 altgr
 83 | kana_MO 0x32 altgr
 84 | comma 0x33
 85 | less 0x33 shift
 86 | kana_NE 0x33 altgr
 87 | kana_comma 0x33 shift altgr
 88 | period 0x34
 89 | greater 0x34 shift
 90 | kana_RU 0x34 altgr
 91 | kana_fullstop 0x34 shift altgr
 92 | slash 0x35
 93 | question 0x35 shift
 94 | kana_ME 0x35 altgr
 95 | kana_conjunctive 0x35 shift altgr
 96 | Eisu_toggle 0x3a shift
 97 | Execute 0x54 shift
 98 | Kanji 0x70
 99 | backslash 0x73
100 | yen 0x7d
101 | bar 0x7d shift
102 | underscore 0x73 shift
103 | Henkan_Mode 0x79
104 | Katakana_Real 0x70
105 | Katakana 0x70
106 | Muhenkan 0x7b
107 | Henkan_Mode_Real 0x79
108 | Henkan_Mode_Ultra 0x79
109 | backslash_ja 0x73
110 | 


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/keymaps/lt:
--------------------------------------------------------------------------------
 1 | # generated from XKB map lt
 2 | include common
 3 | map 0x427
 4 | exclam 0x02 shift
 5 | aogonek 0x02 altgr
 6 | Aogonek 0x02 shift altgr
 7 | at 0x03 shift
 8 | ccaron 0x03 altgr
 9 | Ccaron 0x03 shift altgr
10 | numbersign 0x04 shift
11 | eogonek 0x04 altgr
12 | Eogonek 0x04 shift altgr
13 | dollar 0x05 shift
14 | eabovedot 0x05 altgr
15 | Eabovedot 0x05 shift altgr
16 | percent 0x06 shift
17 | iogonek 0x06 altgr
18 | Iogonek 0x06 shift altgr
19 | asciicircum 0x07 shift
20 | scaron 0x07 altgr
21 | Scaron 0x07 shift altgr
22 | ampersand 0x08 shift
23 | uogonek 0x08 altgr
24 | Uogonek 0x08 shift altgr
25 | asterisk 0x09 shift
26 | umacron 0x09 altgr
27 | Umacron 0x09 shift altgr
28 | parenleft 0x0a shift
29 | doublelowquotemark 0x0a altgr
30 | parenright 0x0b shift
31 | leftdoublequotemark 0x0b altgr
32 | minus 0x0c
33 | underscore 0x0c shift
34 | equal 0x0d
35 | plus 0x0d shift
36 | zcaron 0x0d altgr
37 | Zcaron 0x0d shift altgr
38 | bracketleft 0x1a
39 | braceleft 0x1a shift
40 | bracketright 0x1b
41 | braceright 0x1b shift
42 | semicolon 0x27
43 | colon 0x27 shift
44 | apostrophe 0x28
45 | quotedbl 0x28 shift
46 | grave 0x29
47 | asciitilde 0x29 shift
48 | backslash 0x2b
49 | bar 0x2b shift
50 | comma 0x33
51 | less 0x33 shift
52 | period 0x34
53 | greater 0x34 shift
54 | slash 0x35
55 | question 0x35 shift
56 | endash 0x56
57 | EuroSign 0x56 shift
58 | 


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/keymaps/mk:
--------------------------------------------------------------------------------
  1 | # generated from XKB map mk
  2 | include common
  3 | map 0x42f
  4 | exclam 0x02 shift
  5 | at 0x03 shift
  6 | doublelowquotemark 0x03 shift altgr
  7 | numbersign 0x04 shift
  8 | leftdoublequotemark 0x04 shift altgr
  9 | dollar 0x05 shift
 10 | percent 0x06 shift
 11 | asciicircum 0x07 shift
 12 | ampersand 0x08 shift
 13 | asterisk 0x09 shift
 14 | parenleft 0x0a shift
 15 | parenright 0x0b shift
 16 | minus 0x0c
 17 | underscore 0x0c shift
 18 | equal 0x0d
 19 | plus 0x0d shift
 20 | Cyrillic_lje 0x10 altgr
 21 | Cyrillic_LJE 0x10 shift altgr
 22 | Cyrillic_nje 0x11 altgr
 23 | Cyrillic_NJE 0x11 shift altgr
 24 | Cyrillic_ie 0x12 altgr
 25 | Cyrillic_IE 0x12 shift altgr
 26 | Cyrillic_er 0x13 altgr
 27 | Cyrillic_ER 0x13 shift altgr
 28 | Cyrillic_te 0x14 altgr
 29 | Cyrillic_TE 0x14 shift altgr
 30 | Macedonia_dse 0x15 altgr
 31 | Macedonia_DSE 0x15 shift altgr
 32 | Cyrillic_u 0x16 altgr
 33 | Cyrillic_U 0x16 shift altgr
 34 | Cyrillic_i 0x17 altgr
 35 | Cyrillic_I 0x17 shift altgr
 36 | Cyrillic_o 0x18 altgr
 37 | Cyrillic_O 0x18 shift altgr
 38 | Cyrillic_pe 0x19 altgr
 39 | Cyrillic_PE 0x19 shift altgr
 40 | bracketleft 0x1a
 41 | braceleft 0x1a shift
 42 | Cyrillic_sha 0x1a altgr
 43 | Cyrillic_SHA 0x1a shift altgr
 44 | bracketright 0x1b
 45 | braceright 0x1b shift
 46 | Macedonia_gje 0x1b altgr
 47 | Macedonia_GJE 0x1b shift altgr
 48 | Cyrillic_a 0x1e altgr
 49 | Cyrillic_A 0x1e shift altgr
 50 | Cyrillic_es 0x1f altgr
 51 | Cyrillic_ES 0x1f shift altgr
 52 | Cyrillic_de 0x20 altgr
 53 | Cyrillic_DE 0x20 shift altgr
 54 | Cyrillic_ef 0x21 altgr
 55 | Cyrillic_EF 0x21 shift altgr
 56 | Cyrillic_ghe 0x22 altgr
 57 | Cyrillic_GHE 0x22 shift altgr
 58 | Cyrillic_ha 0x23 altgr
 59 | Cyrillic_HA 0x23 shift altgr
 60 | Cyrillic_je 0x24 altgr
 61 | Cyrillic_JE 0x24 shift altgr
 62 | Cyrillic_ka 0x25 altgr
 63 | Cyrillic_KA 0x25 shift altgr
 64 | Cyrillic_el 0x26 altgr
 65 | Cyrillic_EL 0x26 shift altgr
 66 | semicolon 0x27
 67 | colon 0x27 shift
 68 | Cyrillic_che 0x27 altgr
 69 | Cyrillic_CHE 0x27 shift altgr
 70 | apostrophe 0x28
 71 | quotedbl 0x28 shift
 72 | Macedonia_kje 0x28 altgr
 73 | Macedonia_KJE 0x28 shift altgr
 74 | grave 0x29
 75 | asciitilde 0x29 shift
 76 | backslash 0x2b
 77 | bar 0x2b shift
 78 | Cyrillic_zhe 0x2b altgr
 79 | Cyrillic_ZHE 0x2b shift altgr
 80 | Cyrillic_ze 0x2c altgr
 81 | Cyrillic_ZE 0x2c shift altgr
 82 | Cyrillic_dzhe 0x2d altgr
 83 | Cyrillic_DZHE 0x2d shift altgr
 84 | Cyrillic_tse 0x2e altgr
 85 | Cyrillic_TSE 0x2e shift altgr
 86 | Cyrillic_ve 0x2f altgr
 87 | Cyrillic_VE 0x2f shift altgr
 88 | Cyrillic_be 0x30 altgr
 89 | Cyrillic_BE 0x30 shift altgr
 90 | Cyrillic_en 0x31 altgr
 91 | Cyrillic_EN 0x31 shift altgr
 92 | Cyrillic_em 0x32 altgr
 93 | Cyrillic_EM 0x32 shift altgr
 94 | comma 0x33
 95 | less 0x33 shift
 96 | semicolon 0x33 shift altgr
 97 | period 0x34
 98 | greater 0x34 shift
 99 | colon 0x34 shift altgr
100 | slash 0x35
101 | question 0x35 shift
102 | 


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/keymaps/modifiers:
--------------------------------------------------------------------------------
 1 | Shift_R 0x36
 2 | Shift_L 0x2a
 3 | 
 4 | Alt_R 0xb8
 5 | Mode_switch 0xb8
 6 | ISO_Level3_Shift 0xb8
 7 | Alt_L 0x38
 8 | 
 9 | Control_R 0x9d
10 | Control_L 0x1d
11 | 
12 | # Translate Super to Windows keys.
13 | # This is hardcoded. See documentation for details.
14 | Super_R 0xdc
15 | Super_L 0xdb
16 | 
17 | # Translate Menu to the Windows Application key.
18 | Menu 0xdd
19 | 


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/keymaps/nl:
--------------------------------------------------------------------------------
 1 | # Dutch (Netherlands)
 2 | include common
 3 | map 0x413
 4 | 
 5 | exclam 0x02 shift
 6 | onesuperior 0x02 altgr
 7 | quotebl 0x03 shift
 8 | twosuperior 0x03 altgr
 9 | numbersign 0x04 shift
10 | threesuperior 0x04 altgr
11 | dollar 0x05 shift
12 | onequarter 0x05 altgr
13 | percent 0x06 shift
14 | onehalf 0x06 altgr
15 | ampersand 0x07 shift
16 | threequarters 0x07 altgr
17 | underscore 0x08 shift
18 | sterling 0x08 altgr
19 | parenleft 0x09 shift
20 | braceleft 0x09 altgr
21 | parenright 0x0a shift
22 | braceright 0x0a altgr
23 | apostrophe 0x0b shift
24 | slash 0x0c
25 | question 0x0c shift
26 | backslash 0x0c altgr
27 | degree 0x0d
28 | dead_tilde 0x0d shift
29 | dead_cedilla 0x0d altgr
30 | EuroSign 0x12 altgr
31 | paragraph 0x13 altgr
32 | dead_diaeresis 0x1a
33 | dead_circumflex 0x1a shift
34 | asterisk 0x1b
35 | bar 0x1b shift
36 | ssharp 0x1f altgr
37 | plus 0x27
38 | plusminus 0x27 shift
39 | dead_acute 0x28
40 | dead_grave 0x28 shift
41 | at 0x29
42 | section 0x29 shift
43 | notsign 0x29 altgr
44 | less 0x2b
45 | greater 0x2b shift
46 | guillemotleft 0x2c altgr
47 | guillemotright 0x2d altgr
48 | copyright 0x2e altgr
49 | mu 0x32 altgr
50 | comma 0x33
51 | semicolon 0x33 shift
52 | period 0x34
53 | colon 0x34 shift
54 | periodcentered 0x34 altgr
55 | hyphen 0x35
56 | equal 0x35 shift
57 | bracketright 0x56
58 | bracketleft 0x56 shift
59 | brokenbar 0x56 altgr
60 | 


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/keymaps/nl-be:
--------------------------------------------------------------------------------
1 | # Dutch (Belgium)
2 | map 0x813
3 | include common
4 | 


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/keymaps/pt-br:
--------------------------------------------------------------------------------
 1 | # generated from XKB map br
 2 | include common
 3 | map 0x416
 4 | exclam 0x02 shift
 5 | onesuperior 0x02 altgr
 6 | exclamdown 0x02 shift altgr
 7 | at 0x03 shift
 8 | twosuperior 0x03 altgr
 9 | onehalf 0x03 shift altgr
10 | numbersign 0x04 shift
11 | threesuperior 0x04 altgr
12 | threequarters 0x04 shift altgr
13 | dollar 0x05 shift
14 | sterling 0x05 altgr
15 | onequarter 0x05 shift altgr
16 | percent 0x06 shift
17 | cent 0x06 altgr
18 | dead_diaeresis 0x07 shift
19 | notsign 0x07 altgr
20 | diaeresis 0x07 shift altgr
21 | ampersand 0x08 shift
22 | braceleft 0x08 altgr
23 | asterisk 0x09 shift
24 | bracketleft 0x09 altgr
25 | parenleft 0x0a shift
26 | bracketright 0x0a altgr
27 | parenright 0x0b shift
28 | braceright 0x0b altgr
29 | minus 0x0c
30 | underscore 0x0c shift
31 | backslash 0x0c altgr
32 | equal 0x0d
33 | plus 0x0d shift
34 | section 0x0d altgr
35 | EuroSign 0x12 altgr
36 | registered 0x13 altgr
37 | dead_acute 0x1a
38 | dead_grave 0x1a shift
39 | acute 0x1a altgr
40 | grave 0x1a shift altgr
41 | bracketleft 0x1b
42 | braceleft 0x1b shift
43 | ordfeminine 0x1b altgr
44 | ccedilla 0x27
45 | Ccedilla 0x27 shift
46 | dead_tilde 0x28
47 | dead_circumflex 0x28 shift
48 | asciitilde 0x28 altgr
49 | asciicircum 0x28 shift altgr
50 | apostrophe 0x29
51 | quotedbl 0x29 shift
52 | bracketright 0x2b
53 | braceright 0x2b shift
54 | masculine 0x2b altgr
55 | copyright 0x2e altgr
56 | mu 0x32 altgr
57 | comma 0x33
58 | less 0x33 shift
59 | period 0x34
60 | greater 0x34 shift
61 | semicolon 0x35
62 | colon 0x35 shift
63 | comma 0x53 numlock
64 | backslash 0x56
65 | bar 0x56 shift
66 | slash 0x73
67 | question 0x73 shift
68 | degree 0x73 altgr
69 | KP_Decimal 0x34
70 | 


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/keymaps/sl:
--------------------------------------------------------------------------------
  1 | # generated from XKB map sl
  2 | include common
  3 | map 0x424
  4 | exclam 0x02 shift
  5 | asciitilde 0x02 altgr
  6 | dead_tilde 0x02 shift altgr
  7 | quotedbl 0x03 shift
  8 | dead_caron 0x03 altgr
  9 | caron 0x03 shift altgr
 10 | numbersign 0x04 shift
 11 | asciicircum 0x04 altgr
 12 | dead_circumflex 0x04 shift altgr
 13 | dollar 0x05 shift
 14 | dead_breve 0x05 altgr
 15 | breve 0x05 shift altgr
 16 | percent 0x06 shift
 17 | degree 0x06 altgr
 18 | dead_abovering 0x06 shift altgr
 19 | ampersand 0x07 shift
 20 | dead_ogonek 0x07 altgr
 21 | ogonek 0x07 shift altgr
 22 | slash 0x08 shift
 23 | grave 0x08 altgr
 24 | dead_grave 0x08 shift altgr
 25 | parenleft 0x09 shift
 26 | dead_abovedot 0x09 altgr
 27 | abovedot 0x09 shift altgr
 28 | parenright 0x0a shift
 29 | dead_acute 0x0a altgr
 30 | equal 0x0b shift
 31 | dead_doubleacute 0x0b altgr
 32 | doubleacute 0x0b shift altgr
 33 | apostrophe 0x0c
 34 | question 0x0c shift
 35 | dead_diaeresis 0x0c altgr
 36 | diaeresis 0x0c shift altgr
 37 | plus 0x0d
 38 | asterisk 0x0d shift
 39 | dead_cedilla 0x0d altgr
 40 | cedilla 0x0d shift altgr
 41 | backslash 0x10 altgr
 42 | Greek_OMEGA 0x10 shift altgr
 43 | bar 0x11 altgr
 44 | Lstroke 0x11 shift altgr
 45 | EuroSign 0x12 altgr
 46 | paragraph 0x13 altgr
 47 | registered 0x13 shift altgr
 48 | tslash 0x14 altgr
 49 | Tslash 0x14 shift altgr
 50 | z 0x15 addupper
 51 | leftarrow 0x15 altgr
 52 | yen 0x15 shift altgr
 53 | downarrow 0x16 altgr
 54 | uparrow 0x16 shift altgr
 55 | rightarrow 0x17 altgr
 56 | idotless 0x17 shift altgr
 57 | oslash 0x18 altgr
 58 | Ooblique 0x18 shift altgr
 59 | thorn 0x19 altgr
 60 | THORN 0x19 shift altgr
 61 | scaron 0x1a
 62 | Scaron 0x1a shift
 63 | division 0x1a altgr
 64 | dstroke 0x1b
 65 | Dstroke 0x1b shift
 66 | multiply 0x1b altgr
 67 | dead_macron 0x1b shift altgr
 68 | ae 0x1e altgr
 69 | AE 0x1e shift altgr
 70 | ssharp 0x1f altgr
 71 | section 0x1f shift altgr
 72 | eth 0x20 altgr
 73 | ETH 0x20 shift altgr
 74 | bracketleft 0x21 altgr
 75 | ordfeminine 0x21 shift altgr
 76 | bracketright 0x22 altgr
 77 | ENG 0x22 shift altgr
 78 | hstroke 0x23 altgr
 79 | Hstroke 0x23 shift altgr
 80 | lstroke 0x25 altgr
 81 | Lstroke 0x26 altgr
 82 | ccaron 0x27
 83 | Ccaron 0x27 shift
 84 | cacute 0x28
 85 | Cacute 0x28 shift
 86 | ssharp 0x28 altgr
 87 | dead_cedilla 0x29
 88 | notsign 0x29 altgr
 89 | zcaron 0x2b
 90 | Zcaron 0x2b shift
 91 | currency 0x2b altgr
 92 | y 0x2c addupper
 93 | guillemotleft 0x2c altgr
 94 | guillemotright 0x2d altgr
 95 | cent 0x2e altgr
 96 | copyright 0x2e shift altgr
 97 | at 0x2f altgr
 98 | braceleft 0x30 altgr
 99 | braceright 0x31 altgr
100 | section 0x32 altgr
101 | masculine 0x32 shift altgr
102 | comma 0x33
103 | semicolon 0x33 shift
104 | horizconnector 0x33 altgr
105 | period 0x34
106 | colon 0x34 shift
107 | periodcentered 0x34 altgr
108 | minus 0x35
109 | underscore 0x35 shift
110 | dead_belowdot 0x35 altgr
111 | 


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/keymaps/sv:
--------------------------------------------------------------------------------
 1 | map 0x0000041d
 2 | include common
 3 | 
 4 | #
 5 | # Top row
 6 | #
 7 | section 0x29
 8 | onehalf 0x29 shift
 9 | 
10 | # 1
11 | exclam 0x2 shift
12 | 
13 | # 2
14 | quotedbl 0x3 shift
15 | at 0x3 altgr
16 | 
17 | # 3
18 | numbersign 0x4 shift
19 | sterling 0x4 altgr
20 | # 4
21 | currency 0x5 shift
22 | dollar 0x5 altgr
23 | # 5
24 | percent 0x6 shift
25 | # 6
26 | ampersand 0x7 shift
27 | # 7
28 | slash 0x8 shift
29 | braceleft 0x8 altgr
30 | # 8
31 | parenleft 0x9 shift
32 | bracketleft 0x9 altgr
33 | # 9
34 | parenright 0xa shift
35 | bracketright 0xa altgr
36 | # 0
37 | equal 0xb shift
38 | braceright 0xb altgr
39 | 
40 | plus 0xc
41 | question 0xc shift
42 | backslash 0xc altgr
43 | 
44 | acute 0xd
45 | dead_acute 0xd
46 | grave 0xd shift
47 | dead_grave 0xd shift
48 | 
49 | #
50 | # QWERTY first row
51 | #
52 | EuroSign 0x12 altgr
53 | aring 0x1a
54 | Aring 0x1a shift
55 | dead_diaeresis 0x1b
56 | dead_circumflex 0x1b shift
57 | dead_tilde 0x1b altgr
58 | 
59 | #
60 | # QWERTY second row
61 | #
62 | odiaeresis 0x27
63 | Odiaeresis 0x27 shift
64 | adiaeresis 0x28
65 | Adiaeresis 0x28 shift
66 | apostrophe 0x2b
67 | asterisk 0x2b shift
68 | 
69 | #
70 | # QWERTY third row
71 | #
72 | less 0x56
73 | greater 0x56 shift
74 | bar 0x56 altgr
75 | mu 0x32 altgr
76 | comma 0x33
77 | semicolon 0x33 shift
78 | period 0x34
79 | colon 0x34 shift
80 | minus 0x35
81 | underscore 0x35 shift
82 | 


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/kvmvapic.bin:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/kvmvapic.bin


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/linuxboot.bin:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/linuxboot.bin


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/multiboot.bin:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/multiboot.bin


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/openbios-ppc:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/openbios-ppc


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/openbios-sparc32:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/openbios-sparc32


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/openbios-sparc64:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/openbios-sparc64


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/palcode-clipper:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/palcode-clipper


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/petalogix-ml605.dtb:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/petalogix-ml605.dtb


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/petalogix-s3adsp1800.dtb:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/petalogix-s3adsp1800.dtb


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/ppc_rom.bin:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/ppc_rom.bin


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/pxe-e1000.rom:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/pxe-e1000.rom


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/pxe-eepro100.rom:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/pxe-eepro100.rom


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/pxe-ne2k_pci.rom:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/pxe-ne2k_pci.rom


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/pxe-pcnet.rom:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/pxe-pcnet.rom


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/pxe-rtl8139.rom:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/pxe-rtl8139.rom


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/pxe-virtio.rom:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/pxe-virtio.rom


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/q35-acpi-dsdt.aml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/q35-acpi-dsdt.aml


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/qemu-icon.bmp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/qemu-icon.bmp


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/s390-ccw.img:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/s390-ccw.img


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/s390-zipl.rom:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/s390-zipl.rom


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/sgabios.bin:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/sgabios.bin


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/slof.bin:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/slof.bin


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/spapr-rtas.bin:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/spapr-rtas.bin


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/u-boot.e500:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/u-boot.e500


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/vgabios-cirrus.bin:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/vgabios-cirrus.bin


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/vgabios-qxl.bin:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/vgabios-qxl.bin


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/vgabios-stdvga.bin:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/vgabios-stdvga.bin


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/vgabios-virtio.bin:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/vgabios-virtio.bin


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/vgabios-vmware.bin:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/vgabios-vmware.bin


--------------------------------------------------------------------------------
/qemu-builds/2.5.0/share/qemu/vgabios.bin:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/qemu-builds/2.5.0/share/qemu/vgabios.bin


--------------------------------------------------------------------------------
/qemu-builds/README.txt:
--------------------------------------------------------------------------------
1 | This directory is intended to contain statically compiled qemu binaries with each version in its own folder.
2 | 


--------------------------------------------------------------------------------
/reset.py:
--------------------------------------------------------------------------------
 1 | #!/usr/bin/env python3
 2 | 
 3 | import pexpect
 4 | import os.path
 5 | from configparser import ConfigParser
 6 | 
 7 | config = ConfigParser()
 8 | config.read("fap.config")
 9 | firmadyne_path = config["DEFAULT"].get("firmadyne_path", "")
10 | sudo_pass = config["DEFAULT"].get("sudo_password", "")
11 | 
12 | print ("[+] Cleaning previous images and created files by firmadyne")
13 | child = pexpect.spawn("/bin/sh" , ["-c", "sudo rm -rf " + os.path.join(firmadyne_path, "images/*.tar.gz")])
14 | child.sendline(sudo_pass)
15 | child.expect_exact(pexpect.EOF)
16 | 
17 | child = pexpect.spawn("/bin/sh", ["-c", "sudo rm -rf " + os.path.join(firmadyne_path, "scratch/*")])
18 | child.sendline(sudo_pass)
19 | child.expect_exact(pexpect.EOF)
20 | print ("[+] All done. Go ahead and run fap.py to continue firmware analysis")
21 | 


--------------------------------------------------------------------------------
/setup.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/sh
 2 | # python3
 3 | 
 4 | RELEASE=`lsb_release -i | sed 's/Distributor ID:\s//g'`
 5 | VERSION=`lsb_release -r | sed 's/Release:\s//g'`
 6 | 
 7 | sudo apt update
 8 | sudo apt install -y python3-pip python3-pexpect unzip busybox-static fakeroot kpartx snmp uml-utilities util-linux vlan qemu-utils binwalk
 9 | sudo pip3 install python-magic -i https://pypi.mirrors.ustc.edu.cn/simple/
10 | 
11 | if [ $RELEASE = "Ubuntu" ] && [ $VERSION = "16.04" ];then
12 |     sudo apt install -y python-pip qemu-system-arm qemu-system-mips
13 |     sudo pip2 install python-magic -i https://pypi.mirrors.ustc.edu.cn/simple/
14 | fi
15 | 
16 | cd firmadyne
17 | 
18 | firmadyne_dir=$(realpath .)
19 | 
20 | # Set FIRMWARE_DIR in firmadyne.config
21 | sed -i "/FIRMWARE_DIR=/c\FIRMWARE_DIR=$firmadyne_dir" firmadyne.config
22 | 
23 | # Comment out psql -d firmware ... in getArch.sh
24 | sed -i 's/psql/#psql/' ./scripts/getArch.sh
25 | 
26 | # Change interpretor in extractor.py to python3
27 | sed -i 's/env python/env python3/' ./sources/extractor/extractor.py
28 | cd ..
29 | 
30 | #echo "Setting up firmware analysis plus"
31 | #chmod +x fap.py
32 | #chmod +x reset.py
33 | 
34 | # Set firmadyne_path in fap.config
35 | sed -i "/firmadyne_path=/c\firmadyne_path=$firmadyne_dir" fap.config
36 | 
37 | echo "====================================================="
38 | echo "Firmware Analysis Plus installed successfully!"
39 | echo "Before running fap.py for the first time,"
40 | echo "please edit fap.config and provide your sudo password"
41 | echo "====================================================="
42 | 


--------------------------------------------------------------------------------
/shutdown.py:
--------------------------------------------------------------------------------
 1 | #!/usr/bin/env python3
 2 | 
 3 | import pexpect
 4 | import os.path
 5 | from configparser import ConfigParser
 6 | import re
 7 | 
 8 | config = ConfigParser()
 9 | config.read("fap.config")
10 | firmadyne_path = config["DEFAULT"].get("firmadyne_path", "")
11 | sudo_pass = config["DEFAULT"].get("sudo_password", "")
12 | 
13 | print ("[+] Shut down the virtual machine")
14 | child = pexpect.spawn("/bin/sh" , ["-c", "sudo ps -ef | grep qemu-system-"], encoding="utf-8")
15 | child.sendline(sudo_pass)
16 | process = child.expect("qemu-system-")
17 | process_info = child.before
18 | process_id = re.findall(r'\d+', process_info)[0]
19 | child.expect_exact(pexpect.EOF)
20 | 
21 | child = pexpect.spawn("/bin/sh" , ["-c", "sudo kill -9 " + process_id])
22 | child.sendline(sudo_pass)
23 | child.expect_exact(pexpect.EOF)
24 | 
25 | print ("[+] All done. Go ahead and run fap.py to continue firmware analysis")
26 | 


--------------------------------------------------------------------------------
/testcases/README.md:
--------------------------------------------------------------------------------
1 | 测试所用的固件
2 | 


--------------------------------------------------------------------------------
/testcases/iot_dir880l_110b01.bin:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/secnotes/firmware-analysis-plus/cc740a76fff25b145b53878e3dad5a06382b453c/testcases/iot_dir880l_110b01.bin


--------------------------------------------------------------------------------