Py_learn
時間があればpythonを整理しましょう.
0x1.FileRead2Write
0x2.RandomSequence
0x3 StrSplitEng
0x4.ObfuscateEng
0 x 5呼び出し例
0x1.FileRead2Write
#!/usr/bin/env python3
# -*- coding: utf-8 -*-
__author__ = 'ahoo'
import sys
import io
import os
import codecs
import re
import shutil
import random
import logging
import logging.config
#-------------------- ----------
logfilePath = os.path.join(os.path.dirname(__file__), 'logging.conf')
logging.config.fileConfig('logging.conf')
logging.getLogger()
sys.stdout = io.TextIOWrapper(
sys.stdout.buffer,
encoding='utf-8') #
class FileRead2Write(object):
def __init__(self):
self.AuthorSign = True
def ReadInputFile(
self,
InPath,
ReadTye = 'r'):
logall = []
# . if not os.path.isfile(InPath):
fpR = codecs.open(InPath,ReadTye,'utf-8')
for line in fpR:
if None == line:
pass
else:
logall.append(line)
fpR.close()
return logall
def WriteOutputFile(self,OutPath,OutList= [],WriteTye = 'a+'): #
fpW = codecs.open(OutPath,WriteTye,'utf-8')
if self.AuthorSign == True:
fpW.write('
*****************************************************\r
')
fpW.write('* ahoo EngObfuscate ')
fpW.write('
***************************************************\r
')
self.AuthorSign = False
for i in OutList:
fpW.write(i)
fpW.close()
return True
def WriteOutputFileEx_ListShuffle(self,OutPath,OutList= [],WriteTye = 'a+'): #
fpW = codecs.open(OutPath,WriteTye,'utf-8')
if self.AuthorSign == True:
fpW.write('
*****************************************************\r
')
fpW.write('* ahoo EngObfuscate ')
fpW.write('
***************************************************\r
')
self.AuthorSign = False
if len(OutList) == 0:
fpW.write('
')
return True
random.shuffle(OutList)
for i in OutList:
fpW.write(i)
fpW.close()
return True
def WriteOutputFileEx_LineStr(self,OutPath,LineStr,WriteTye = 'a+'):
fpW = codecs.open(OutPath,WriteTye,'utf-8')
if self.AuthorSign == True:
fpW.write('
***************************************************
')
fpW.write('* ahoo EngObfuscate ')
fpW.write('
***************************************************
')
self.AuthorSign = False
fpW.write('
' + LineStr + '
')
fpW.close()
return True
def OpenOutPath(self,OutPath,program = '"D:\\Program Files (x86)\\Notepad++\
otepad++.exe" '):
return os.system(program + OutPath) # program = 'notepad.exe'
# list .
def WriteList2List(self,list1 = [],list2 = []):
if len(list1) == 0:
pass
else:
for i in list1:
list2.append(i)
return True
''' 1.list
ransomFamilyList = list(set(ransomFamilyList))
2.list
ransomFamilyList[-1] = ransomFamilyList[-1].strip('
')
3. .
ransomFamilyList.append(i.strip(' ') + '
')
4.
for parent,dirnames,filenames in os.walk(InputDir):
for filename in filenames:
fpRan.ReadInputFile(os.path.join(parent, filename))
5.for #a =1
#[i for i in range(0,10,1) a = a+i ]
'''
0x2.RandomSequence
#!/usr/bin/env python3
# -*- coding: utf-8 -*-
__author__ = 'ahoo'
import sys
import io
import os
import codecs
import re
import shutil
import random
import logging
import logging.config
#-------------------- ----------
logfilePath = os.path.join(os.path.dirname(__file__), 'logging.conf')
logging.config.fileConfig('logging.conf')
logging.getLogger()
#sys.stdout = io.TextIOWrapper(
# sys.stdout.buffer,
# encoding='utf-8') #
class RandomSequence(object):
varStrRemoveRepeatL = []
varStrRemoveRepeatL.append('ahoo')
def __init__(self):
self.author = 'ahoo'
pass
# 2-5 ,
def randStr_az(
self,
minNum=2,
maxNum=5): #
randstr = ''
if minNum > maxNum:
minNum = min(minNum,maxNum)
maxNum = max(minNum,maxNum)
strLengt = random.randint(minNum,maxNum)
for i in range(1,strLengt,1):
chrTem = chr(random.randint(97,122))
randstr = randstr + chrTem
return randstr
def randStr_AZUp(self,minNum=2,maxNum=5):
randstr = ''
if minNum > maxNum:
minNum = min(minNum,maxNum)
maxNum = max(minNum,maxNum)
strLengt = random.randint(minNum,maxNum)
for i in range(1,strLengt,1):
chrTem = chr(random.randint(65,92))
randstr = randstr + chrTem
return randstr
# , , .
''' pprint py , .'''
JsCodeList = [
'new Function("a", "b", "return a+b;");',
'var ybdetof5 = new ActiveXObject("Scripting.FileSystemObject");'
]
def randCodeLine(self,CodeList = []):
if len(CodeList) == 0:
CodeList.append('Life is short,U need the Eng')
return random.choice(CodeList)
# :'m'
def randChr(self):
return random.choice('abcdefghijklmnopqrstuvwxyz!@#$%^&*()')
# list:['n','f','y','b']
def randChrEx_List(self):
return random.sample('zyxwvutsrqponmlkjihgfedcba', 5)
# List:['nihao','ahoo','a']
def randStrList(self,minNum=3,maxNum = 5):
if minNum > maxNum:
minNum = min(minNum,maxNum)
maxNum = max(minNum,maxNum)
arrLengt= random.randint(minNum,maxNum)
arrList =[]
for i in range(0,arrLengt,1):
arrList.append(self.randStr_az())
return arrList
# 1:['xu', 'm', 'l', 'ahoo', 'milh'][3]
def randStrArrary(self,itemstr):
arrList = self.randStrList()
index = random.randint(0,len(arrList)-1)
arrList[index] = itemstr
return str(arrList) + '[' + str(index) + ']'
# 2: ('var ab = "ahoo"', "['df', ab, 'puu', 'chx', 'avu'][1]")
def randStrArryEx_var(self,itemstr):
arrList = self.randStrList()
index = random.randint(0,len(arrList)-1)
# varName, .
varName = self.randStr_az(3,7)
while varName in self.varStrRemoveRepeatL:
varName = self.randStr_az(4,8)
varStrItem = 'var '+ varName + ' = "' + itemstr + '"
'
self.varStrRemoveRepeatL.append(varName)
#
arrList[index] = varName
replaceTemp = str(arrList) + '[' + str(index) + ']'
# .
replaceTemp_pattern = re.compile('\''+varName+'\'')
replaceTemp = replaceTemp_pattern.sub(varName,replaceTemp)
return varStrItem , replaceTemp
# 3: ( ) :
#'open#@process' ---> {'var ax = "open"' : '['nihao',ax,'a'][1]',,}
def randSelfTypeStr2ArraryTypeStr(self,SelfTypeStr):
replacestr = ''
varStrList = []
for i_list_split_line in SelfTypeStr.split('#@'):
varStr,arrStr = self.randStrArryEx_var(i_list_split_line)
replacestr = replacestr + arrStr + ' + '
varStrList.append(varStr)
return varStrList,replacestr[:-3]
# function vbs
def randFun_Vb(self):
return 'waitfortest\r
coming~\r
'
pass
def randFunList_Vb(self,MaxLen):
funList=[]
for i in range(0,MaxLen,1):
funList.append(self.randFun_Vb())
return funList0x3 StrSplitEng
#!/usr/bin/env python3
# -*- coding: utf-8 -*-
__author__ = 'ahoo'
import sys
import io
import os
import codecs
import re
import shutil
import random
import logging
import logging.config
#-------------------- ----------
logfilePath = os.path.join(os.path.dirname(__file__), 'logging.conf')
logging.config.fileConfig('logging.conf')
logging.getLogger()
#sys.stdout = io.TextIOWrapper(
# sys.stdout.buffer,
# encoding='utf-8') #
PutPath = '24_analysis.txt' #JsVirus ( 2016.12.16.24).
OutPath = '24_EngRefactorObfuscate.vir' # .
class StrSplitEng(object):
def __init__(self):
self.author = 'ahoo'
pass
# line list:'Scripting.FileSystemObject'-->['Sc', 'ri', 'pt', 'ing', '.Fil', 'eSys', 'temO', 'bj', 'ect']
def StrSplitLine2List(self,strForSplit):
result = []
strleng = len(strForSplit)
if len(strForSplit) == 0:
pass
elif strleng <= 4:
result.append(strForSplit)
else:
randlen = random.randint(2,4)
result.append(strForSplit[:randlen])
tempList = self.StrSplitLine2List(strForSplit[randlen:])
for j in tempList:
result.append(j)
return result
# line '#@' .
# 'Scripting.FileSystemObject'-->Scri#@pti#@ng.F#@ileS#@yst#@em#@Ob#@ject
def StrSplitLine2SelfTypeStr(self,strForSplit1):
resultStr = ''
tempList = self.StrSplitLine2List(strForSplit1)
if len(tempList) == 0:
return resultStr
else:
for i in tempList:
resultStr = resultStr + i + '#@'
return resultStr[:-2]
# list list.
def StrSplit(self,strForSplit = []):
strSplitList = []
result = []
if len(strForSplit) == 0:
#print(strForSplit)
return result
for i in strForSplit:
strleng = len(i)
if strleng <= 4:
result.append(i)
else:
#randlen = random.randint(2,int(strleng/2))
randlen = random.randint(2,4)
#print(randlen)
#print(i[:randlen])
#print(i[randlen:])
strSplitList.append(i[:randlen])
strSplitList.append(i[randlen:])
#print(strSplitList)
tempList = StrSplit(strSplitList)
for j in tempList:
result.append(j)
#print('result
')
#print(result)
return result
0x4.ObfuscateEng
#!/usr/bin/env python3
# -*- coding: utf-8 -*-
'''
v1.0 -- .
'''
__author__ = 'ahoo'
import sys
import io
import os
import codecs
import re
import shutil
import random
import logging
import logging.config
from Obfuscateer.FileRead2Write import FileRead2Write
from Obfuscateer.RandomSequence import RandomSequence
from Obfuscateer.StrSplitEng import StrSplitEng
#-------------------- ----------
logfilePath = os.path.join(os.path.dirname(__file__), 'logging.conf')
logging.config.fileConfig('logging.conf')
logging.getLogger()
#sys.stdout = io.TextIOWrapper(
# sys.stdout.buffer,
# encoding='utf-8') #
class ObfuscateMethod(object):
rdClass = RandomSequence()
spClass = StrSplitEng()
def __init__(self):
self.author = 'ahoo'
#1. "" .
def ObfuscateQuotes(self,InputList=[]):
writeListTemp = []
varStrTemp = []
if len(InputList) == 0:
return varStrTemp,writeListTemp
for lin1 in InputList:
if lin1 == "":
#writeListTemp.append(lin1)
pass
else:
for m in re.findall('"\s*[^"\,\+]+\s*"',lin1):
if len(m) >= 2:
pattern_quotes = re.compile(m[1:-1])
strtemp = self.spClass.StrSplitLine2SelfTypeStr(m[1:-1])
varlsit,replaceTempstr = self.rdClass.randSelfTypeStr2ArraryTypeStr(strtemp)
#print(replaceTempstr1)
lin1 = pattern_quotes.sub(replaceTempstr,lin1,count=1)
#print(lin1)
for varItem in varlsit:
varStrTemp.append(varItem)
else:
lin1 = m
writeListTemp.append(lin1)
pass
return varStrTemp,writeListTemp
#2. [] () .
def OufuscateBracket(self,InputList1=[]):
writeListTemp1 = []
varStrTemp1 = []
if len(InputList1) == 0:
return varStrTemp1,writeListTemp1
for line in InputList1:
if line == "":
#writeListTemp1.append(line)
pass
else:
for i in re.findall('\[(\s*"[^\[\]\(\)]+"\s*)\]',line):
pattern_bracket = re.compile(i)
strtemp = self.spClass.StrSplitLine2SelfTypeStr(i)
varlsit,replaceTempstr = self.rdClass.randSelfTypeStr2ArraryTypeStr(strtemp)
line = pattern_bracket.sub(replaceTempstr,line,count=1)
for varItem in varlsit:
varStrTemp1.append(varItem)
for j in re.findall('\((\s*"[^\[\]\(\)]+"\s*)\)',line):
pattern_bracket = re.compile(j)
strtemp = self.spClass.StrSplitLine2SelfTypeStr(j)
varlsit,replaceTempstr = self.rdClass.randSelfTypeStr2ArraryTypeStr(strtemp)
line = pattern_bracket.sub(replaceTempstr,line,count=1)
for varItem in varlsit:
varStrTemp1.append(varItem)
writeListTemp1.append(line)
pass
return varStrTemp1,writeListTemp1
class EngCla(object):
varStr = []
def __init__(self,PutPath,OutPath):
self.author = 'ahoo'
self.PutPath = PutPath
self.OutPath = OutPath
def Eng(self):
try:
fpClass = FileRead2Write()
obfuCla = ObfuscateMethod()
#1. LineList
myInputList = fpClass.ReadInputFile(self.PutPath)
#2. .
varTem,writeTem = obfuCla.ObfuscateQuotes(myInputList)
#varTem1,__ = obfuCla.OufuscateBracket(myInputList)
fpClass.WriteList2List(varTem,self.varStr)
#fpClass.WriteList2List(varTem1,self.varStr)
#logging.debug(varTem)
#3.
fpClass.WriteOutputFileEx_ListShuffle(self.OutPath,self.varStr)
fpClass.WriteOutputFile(self.OutPath,writeTem)
#fpClass.OpenOutPath(self.OutPath)
logging.info('The Code has been Splited,there is my advice! Thanks!')
print('The Code has been Splited,there is my advice! Thanks!')
except : #except Exception as e: logging.debug(e)
logging.exception('Eng has a exception info.')
return True0 x 5呼び出し例
#!/usr/bin/env python3
# -*- coding: utf-8 -*-
'''
'''
__author__ = 'ahoo'
import os
import logging
import logging.config
from Obfuscateer.ObfuscateEngM import EngCla
#1.NeedReplaceFile--".C:\Users\tech\AppData\Local\Programs\Python\Python35\Lib\site-packages\Obfuscateer-0.1-py3.5.egg\Obfuscateer\ObfuscateEngM.py" --Fix---:from Obfuscateer.FileRead2Write import FileRead2Write
#-------------------- ----------
logfilePath = os.path.join(os.path.dirname(__file__), 'logging.conf')
logging.config.fileConfig('logging.conf')
logging.getLogger()
PutPath = 'Sample\\24_analysis.txt' #JsVirus ( 2016.12.16.24).
OutPath = 'Sample\\24_EngRefactorObfuscate.vir' # .
if __name__ == '__main__':
eng = EngCla(PutPath,OutPath)
eng.Eng()