Binary check tool to identify command injection and format string vulnerabilities in blackbox binaries

Last update: Nov 16, 2021

Related tags

Overview

bcheck

Binary check tool to identify command injection and format string vulnerabilities in blackbox binaries. Using xrefs to commonly injected and format string'd files, it will scan binaries faster than Firmware Slap.

Install

sudo apt install rabbitmq
pip install -e .

Usage

bcheck.py -h
usage: bcheck.py [-h] [-p] [-s] file

positional arguments:
  file          Binary file to check

optional arguments:
  -h, --help    show this help message and exit
  -p, --printf  Enable printf checking
  -s, --system  Enable command injection checking

Example

b'/bin/mtd_write -o 0 -l 0 write AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA\x01 Bootloader' ">

$ bcheck.py -s examples/upload.cgi
[~] Checking for command injections
100% |############################################################| Elapsed Time: 0:00:01 Time:  0:00:01
Found 5 test sites in binary
[-] Scanned functions:
[-] : 0x401a28 : getLanIP
[+] : 0x4012b8 : mtd_write_firmware
0x7ffefdf8	->	b'/bin/mtd_write -o 0 -l 0 write AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA\x01 Kernel'
[-] : 0x4009f0 : main
[+] : 0x4010d0 : write_flash_kernel_version
0x7ffefdf8	->	b'nvram_set 2860 old_firmware "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA\x00"'
[+] : 0x401338 : mtd_write_bootloader
0x7ffefdf8	->	b'/bin/mtd_write -o 0 -l 0 write AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA\x01 Bootloader'

Binary check tool to identify command injection and format string vulnerabilities in blackbox binaries

Related tags

Overview

bcheck

Install

Usage

Example

Owner

Christopher Roberts

A BurpSuite extension to parse 5GC NF OpenAPI 3.0 files to assess 5G core networks

Generate obfuscated meterpreter shells

telegram bug that discloses user's hidden phone number (still unpatched) (exploit included)

SecurAID securely connects aid organizations directly with individuals in dangerous situations to allow them to discreetly and effectively get the assistance they need.

This collection of tools that makes it easy to secure and/or obfuscate messages, files, and data.

使用golang重写开源工具wafw00f

Linus-png.github.io - Versionsverwaltung & Open Source Hausaufgabe

Time Discretization-Invariant Safe Action Repetition for Policy Gradient Methods

Cracker - Tools CRACK FACEBOOK DAN INSTAGRAM DENGAN FITUR BANYAK

This repo contain builders of cab file, html file, and docx file for CVE-2021-40444 exploit

Threat Intel Platform for T-POTs

This is a simple Port Flooder written in Python 3.

Advanced subdomain scanner, any domain hidden subdomains

Now patched 0day for force reseting an accounts password

"KeyLogger-WebService" Is a Keylogger Write In python.

This is python script that will extract the functions call in all used DLL in an executable and then provide a mapping of those functions to the attack classes defined and curated malapi.io.

A python package with tools to read and postprocess the output of the channel DNS-solver (davecats/channel), as well as its associated postprocessing tools.

MD5-CRACKER - A gmail brute force app created with python3

LdapRelayScan - Check for LDAP protections regarding the relay of NTLM authentication

👑 Discovery Header DoD Bug-Bounty