pe-parse/python/test.py

#!/usr/bin/env python

import sys
import time
import pepy

p = pepy.parse(sys.argv[1])
ep = p.get_entry_point()
byts = p.get_bytes(ep, 8)
print "Signature: %s" % hex(p.signature)
print "Machine: %s" % hex(p.machine)
print "Number of sections: %s" % p.numberofsections
print "Number of symbols: %s" % p.numberofsymbols
print "Characteristics: %s" % hex(p.characteristics)
print "Timedatestamp: %s" % time.strftime("%Y-%m-%d %H:%M:%S", time.localtime(p.timedatestamp))
print "Bytes at 0x%x: %s" % (ep, byts)
sections = p.get_sections()
print "Sections: (%i)" % len(sections)
for sect in sections:
    print "[+] %s" % sect.name
    print "\tBase: %s" % hex(sect.base)
    print "\tLength: %s" % sect.length
    print "\tVirtual address: %s" % hex(sect.virtaddr)
    print "\tVirtual size: %i" % sect.virtsize
    print "\tNumber of Relocations: %i" % sect.numrelocs
    print "\tNumber of Line Numbers: %i" % sect.numlinenums
    print "\tCharacteristics: %s" % hex(sect.characteristics)
imports = p.get_imports()
print "Imports: (%i)" % len(imports)
for imp in imports:
    print "[+] Symbol: %s (%s %s)" % (imp.sym, imp.name, hex(imp.addr))
exports = p.get_exports()
print "Exports: (%i)" % len(exports)
for exp in exports:
    print "[+] Module: %s (%s %s)" % (exp.mod, exp.func, hex(exp.addr))
Add a test file that uses the bindings. 2013-11-27 15:53:20 -05:00			`#!/usr/bin/env python`

			`import sys`
Implement timedatestamp member. While here, DECREF the string used in init. Also, make a note that I really want to use a bytearray instead of a list for get_bytes(). 2013-11-29 14:11:01 -05:00			`import time`
Add a test file that uses the bindings. 2013-11-27 15:53:20 -05:00			`import pepy`
Implement timedatestamp member. While here, DECREF the string used in init. Also, make a note that I really want to use a bytearray instead of a list for get_bytes(). 2013-11-29 14:11:01 -05:00
Add a test file that uses the bindings. 2013-11-27 15:53:20 -05:00			`p = pepy.parse(sys.argv[1])`
			`ep = p.get_entry_point()`
			`byts = p.get_bytes(ep, 8)`
Don't store parsed values in python objects. Convert the PyObject pointers used inside pepy_parsed into their corresponding native types and use those. Teach the members array to return them accordingly. While here might as well add support for signature and machine values. Also, convert test.py to have shorter output by not using pprint. 2013-11-29 14:28:39 -05:00			`print "Signature: %s" % hex(p.signature)`
			`print "Machine: %s" % hex(p.machine)`
Support section, symbols and characteristics. While here, make it easier to extend by providing macros to eliminate the mundane that goes into writing getset members. 2013-11-29 21:56:12 -05:00			`print "Number of sections: %s" % p.numberofsections`
			`print "Number of symbols: %s" % p.numberofsymbols`
			`print "Characteristics: %s" % hex(p.characteristics)`
Implement timedatestamp member. While here, DECREF the string used in init. Also, make a note that I really want to use a bytearray instead of a list for get_bytes(). 2013-11-29 14:11:01 -05:00			`print "Timedatestamp: %s" % time.strftime("%Y-%m-%d %H:%M:%S", time.localtime(p.timedatestamp))`
Add a test file that uses the bindings. 2013-11-27 15:53:20 -05:00			`print "Bytes at 0x%x: %s" % (ep, byts)`
Implement imports and exports. Might as well do some general cleanup too: Rename the len attribute of a section to length. The section, import and export callbacks return 0 on success and anything else on failure. Whitespace fixes. Fix a bunch of copy/paste mistakes in the test script. 2013-11-30 21:36:05 -05:00			`sections = p.get_sections()`
			`print "Sections: (%i)" % len(sections)`
			`for sect in sections:`
Sections are now their own type. Do not return a list of dictionaries from get_sections(). Now it returns a list of section objects, which expose the information via attributes. 2013-11-29 23:32:32 -05:00			`print "[+] %s" % sect.name`
			`print "\tBase: %s" % hex(sect.base)`
Implement imports and exports. Might as well do some general cleanup too: Rename the len attribute of a section to length. The section, import and export callbacks return 0 on success and anything else on failure. Whitespace fixes. Fix a bunch of copy/paste mistakes in the test script. 2013-11-30 21:36:05 -05:00			`print "\tLength: %s" % sect.length`
			`print "\tVirtual address: %s" % hex(sect.virtaddr)`
			`print "\tVirtual size: %i" % sect.virtsize`
			`print "\tNumber of Relocations: %i" % sect.numrelocs`
			`print "\tNumber of Line Numbers: %i" % sect.numlinenums`
			`print "\tCharacteristics: %s" % hex(sect.characteristics)`
			`imports = p.get_imports()`
			`print "Imports: (%i)" % len(imports)`
			`for imp in imports:`
			`print "[+] Symbol: %s (%s %s)" % (imp.sym, imp.name, hex(imp.addr))`
			`exports = p.get_exports()`
			`print "Exports: (%i)" % len(exports)`
			`for exp in exports:`
			`print "[+] Module: %s (%s %s)" % (exp.mod, exp.func, hex(exp.addr))`