From owner-svn-ports-all@freebsd.org Tue Mar 3 01:11:52 2020 Return-Path: Delivered-To: svn-ports-all@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 2D70D261892; Tue, 3 Mar 2020 01:11:52 +0000 (UTC) (envelope-from koobs.freebsd@gmail.com) Received: from mail-pf1-x433.google.com (mail-pf1-x433.google.com [IPv6:2607:f8b0:4864:20::433]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 48Wf9f0L4Yz40Yn; Tue, 3 Mar 2020 01:11:49 +0000 (UTC) (envelope-from koobs.freebsd@gmail.com) Received: by mail-pf1-x433.google.com with SMTP id y21so593998pfp.1; Mon, 02 Mar 2020 17:11:49 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=sender:reply-to:subject:to:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-language :content-transfer-encoding; bh=bBqVmpn8ivnuNOHBn/eypGMLN6oqNlkZMhxM5RFqNMo=; b=Z/8U81bvJVYIEXjt8z7IwAHvoos0U6M6rrURUkSU9Ta1CUrYgPiWTFxlKNCTj8PDeC 6n36BBDriAdOAEniwGTAxTBJUStXYZsCH4baWLU78eTmaVSSbaStopAUwVsuhBcTIyd9 WgYzhsY7vJ387OYPfpFe0MfUO06cnL00r26aAYogGDif1VCtNA4M3UxCHkm/D4BacC1C O5MCsRs8nrjEzPC9/Las4O5JqjROp5J9wBeaSvNItXg9/eEw3rDvmyOnz3u+B8JYQgkr bb1EiAGMA6d+zibuNaLo+lJuOKquZnzEGS7/cLld1R6sBLhIjRN00L1/O9/5nCC3WKyI mKPw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:sender:reply-to:subject:to:references:from :message-id:date:user-agent:mime-version:in-reply-to :content-language:content-transfer-encoding; bh=bBqVmpn8ivnuNOHBn/eypGMLN6oqNlkZMhxM5RFqNMo=; b=R/xD5jGYAEWOD8Y30kdkYHli87tD1ZZRUJaKFaOlVPzXvuXD2y/USQ9RFd3QMXKOgI MldbuU0rJYNSLUOAuE9rtUBjZuMf0jHruiIRhvKHAayp+IbuwIRybfPaYsA1BOFBoZT+ cjb/9WOXrvlf5z7jZaLtlnRc7V+pl4uTO/qzbrk5MskAcrFJoeczqwy5aPn11FlF989q gAZtX4oSuZZEmvrDnWZoC0kxJRtoow1PpUs8C1dioqZ27bWFGcjTxXicYIGUTkX26/jS 00uyRHZgBL/Jl9afA9uOnXToQ87xA59++vFooC+mv1Z2F6O+/15vcsqZO5172bpS4zqg N+pw== X-Gm-Message-State: ANhLgQ1ak8+eEjz+PH9uNll8UVE3hGP3L7bnSXMwFnwVj/DiMy229h20 KbI04Ce0OeGeFgDCn1DW8Ftv2Ip5 X-Google-Smtp-Source: ADFU+vuv8fiePAeqyGLMpb19DV9CGcLU/Ynp6Z9MTZ+8EstwxbjzRza3WSf+dDhsc2rp3PXrSn0p9Q== X-Received: by 2002:a63:f925:: with SMTP id h37mr1637355pgi.103.1583197907673; Mon, 02 Mar 2020 17:11:47 -0800 (PST) Received: from ?IPv6:2403:5800:7100:5d01:3526:e4ef:363e:c98b? (2403-5800-7100-5d01-3526-e4ef-363e-c98b.ip6.aussiebb.net. [2403:5800:7100:5d01:3526:e4ef:363e:c98b]) by smtp.gmail.com with ESMTPSA id q9sm22022797pgs.89.2020.03.02.17.11.45 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Mon, 02 Mar 2020 17:11:47 -0800 (PST) Sender: Kubilay Kocak Reply-To: koobs@FreeBSD.org Subject: Re: svn commit: r527637 - in head/security: . py-ropper To: Mateusz Piotrowski <0mp@FreeBSD.org>, ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org References: <202003021437.022Ebdd7054697@repo.freebsd.org> From: Kubilay Kocak Message-ID: <680cb596-9433-2f7f-8dfc-f75b27ed8d2b@FreeBSD.org> Date: Tue, 3 Mar 2020 12:11:43 +1100 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Thunderbird/74.0 MIME-Version: 1.0 In-Reply-To: <202003021437.022Ebdd7054697@repo.freebsd.org> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 48Wf9f0L4Yz40Yn X-Spamd-Bar: ---- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=Z/8U81bv; dmarc=none; spf=pass (mx1.freebsd.org: domain of koobsfreebsd@gmail.com designates 2607:f8b0:4864:20::433 as permitted sender) smtp.mailfrom=koobsfreebsd@gmail.com X-Spamd-Result: default: False [-4.67 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; HAS_REPLYTO(0.00)[koobs@FreeBSD.org]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; REPLYTO_ADDR_EQ_FROM(0.00)[]; RCVD_COUNT_THREE(0.00)[3]; DKIM_TRACE(0.00)[gmail.com:+]; FORGED_SENDER(0.30)[koobs@FreeBSD.org,koobsfreebsd@gmail.com]; IP_SCORE(-2.47)[ip: (-8.80), ipnet: 2607:f8b0::/32(-1.86), asn: 15169(-1.66), country: US(-0.05)]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; FROM_NEQ_ENVFROM(0.00)[koobs@FreeBSD.org,koobsfreebsd@gmail.com]; MID_RHS_MATCH_FROM(0.00)[]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; TAGGED_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[4]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[FreeBSD.org]; RCVD_IN_DNSWL_NONE(0.00)[3.3.4.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.0.0.4.6.8.4.0.b.8.f.7.0.6.2.list.dnswl.org : 127.0.5.0]; RCVD_TLS_ALL(0.00)[] X-BeenThere: svn-ports-all@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: SVN commit messages for the ports tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 03 Mar 2020 01:11:52 -0000 On 3/03/2020 1:37 am, Mateusz Piotrowski wrote: > Author: 0mp > Date: Mon Mar 2 14:37:39 2020 > New Revision: 527637 > URL: https://svnweb.freebsd.org/changeset/ports/527637 > > Log: > New port: security/py-ropper > > You can use ropper to look at information about files in different > file formats and you can find ROP and JOP gadgets to build chains for > different architectures. Ropper supports ELF, MachO and the PE file > format. Other files can be opened in RAW format. The following > architectures are supported: > > - x86 / x86_64 > - Mips / Mips64 > - ARM (also Thumb Mode)/ ARM64 > - PowerPC / PowerPC64 > > Ropper is inspired by ROPgadget, but should be more than a gadgets > finder. So it is possible to show information about a binary like > header, segments, sections etc. Furthermore it is possible to edit the > binaries and edit the header fields, but currently this is not fully > implemented and in a experimental state. For disassembly ropper uses > the awesome Capstone Framework. > > Now you can generate rop chain automatically (auto-roper) for execve > and mprotect syscall. > > WWW: https://scoding.de/ropper/ > > Added: > head/security/py-ropper/ > head/security/py-ropper/Makefile (contents, props changed) > head/security/py-ropper/distinfo (contents, props changed) > head/security/py-ropper/pkg-descr (contents, props changed) > Modified: > head/security/Makefile > > Modified: head/security/Makefile > ============================================================================== > --- head/security/Makefile Mon Mar 2 14:30:42 2020 (r527636) > +++ head/security/Makefile Mon Mar 2 14:37:39 2020 (r527637) > @@ -969,6 +969,7 @@ > SUBDIR += py-rekall_lib > SUBDIR += py-requests-credssp > SUBDIR += py-requests-kerberos > + SUBDIR += py-ropper > SUBDIR += py-rsa > SUBDIR += py-safe > SUBDIR += py-scp > > Added: head/security/py-ropper/Makefile > ============================================================================== > --- /dev/null 00:00:00 1970 (empty, because file is newly added) > +++ head/security/py-ropper/Makefile Mon Mar 2 14:37:39 2020 (r527637) > @@ -0,0 +1,24 @@ > +# $FreeBSD$ > + > +PORTNAME= ropper > +DISTVERSION= 1.13.3 > +CATEGORIES= security python > +MASTER_SITES= CHEESESHOP > +PKGNAMEPREFIX= ${PYTHON_PKGNAMEPREFIX} > + > +MAINTAINER= 0mp@FreeBSD.org > +COMMENT= Find gadgets to build rop chains for different architectures > + > +LICENSE= BSD3CLAUSE > +# LICENSE_FILE is not distributed with the Python package. > + > +RUN_DEPENDS= ${PYTHON_PKGNAMEPREFIX}capstone>=4.0.1:devel/py-capstone@${PY_FLAVOR} \ > + ${PYTHON_PKGNAMEPREFIX}filebytes>=0.10.0:devel/py-filebytes@${PY_FLAVOR} \ > + ${PYTHON_PKGNAMEPREFIX}keystone-engine>=0.9.1.3:devel/py-keystone-engine@${PY_FLAVOR} > + > +USES= python > +USE_PYTHON= autoplist distutils Package provides a console_script, port must be concurrent version installation safe (use USE_PYTHON=concurrent) [1] entry_points={'console_scripts': ['ropper = ropper.__main__:main']}, > + > +NO_ARCH= yes > + > +.include > > Added: head/security/py-ropper/distinfo > ============================================================================== > --- /dev/null 00:00:00 1970 (empty, because file is newly added) > +++ head/security/py-ropper/distinfo Mon Mar 2 14:37:39 2020 (r527637) > @@ -0,0 +1,3 @@ > +TIMESTAMP = 1582056034 > +SHA256 (ropper-1.13.3.tar.gz) = dfc87477c0f53d3d2836a384c106373d761cc435eafc477f299523e5404dda43 > +SIZE (ropper-1.13.3.tar.gz) = 68927 > > Added: head/security/py-ropper/pkg-descr > ============================================================================== > --- /dev/null 00:00:00 1970 (empty, because file is newly added) > +++ head/security/py-ropper/pkg-descr Mon Mar 2 14:37:39 2020 (r527637) > @@ -0,0 +1,22 @@ > +You can use ropper to look at information about files in different > +file formats and you can find ROP and JOP gadgets to build chains for > +different architectures. Ropper supports ELF, MachO and the PE file > +format. Other files can be opened in RAW format. The following > +architectures are supported: > + > +- x86 / x86_64 > +- Mips / Mips64 > +- ARM (also Thumb Mode)/ ARM64 > +- PowerPC / PowerPC64 > + > +Ropper is inspired by ROPgadget, but should be more than a gadgets > +finder. So it is possible to show information about a binary like > +header, segments, sections etc. Furthermore it is possible to edit the > +binaries and edit the header fields, but currently this is not fully > +implemented and in a experimental state. For disassembly ropper uses > +the awesome Capstone Framework. > + > +Now you can generate rop chain automatically (auto-roper) for execve > +and mprotect syscall. > + > +WWW: https://scoding.de/ropper/ >