Skip to content

aidenfoxivey/Elf-Stuffer

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

51 Commits

.github/workflows

.github/workflows

 
 

example

example

 
 

tests

tests

 
 

.editorconfig

.editorconfig

 
 

.gitignore

.gitignore

 
 

.pre-commit-config.yaml

.pre-commit-config.yaml

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

elfformat.py

elfformat.py

 
 

main.py

main.py

 
 

poetry.lock

poetry.lock

 
 

pyproject.toml

pyproject.toml

 
 

Repository files navigation

ELF Packer

Copyright 2023 (c) Aiden Fox Ivey aiden@fox-ivey.com, Alisya K.

Methodology

Under the hood we use Construct to parse the ELF files. We've written our code so that there is support for 32 and 64 bit ELF files. As is expected, the parser respects the e_ident[EI_DATA] rather than assuming the provided binary is the host encoding or an arbitrary one.

Thanks must be given to the elf32.py example provided in Construct's deprecated gallery, as it demonstrated a very clean way to construct the code.

A version of our current example has been added to Construct.

Also, we use Capstone Dissassembler for optional dissassembly of code within the files.

Resources

AARCH64 Syscalls available here.

ELF resources provided by tmp.out.

Some inspiration provided from Faster Than Lime.

About

ELF parsing and packing in Python3.

Topics

binaries python3 elf

Resources

Readme

License

BSD-3-Clause license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Contributors 2

  •  
  •  

Languages