Skip to content
/ pySRDF Public
forked from AmrThabet/pySRDF

This is the python wrapper for The Security Framework SRDF

Notifications You must be signed in to change notification settings

gh0sh/pySRDF

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

========================================================================
    pySRDF Project Overview
========================================================================

Overview:
---------

This Project is a the python implementation for The Security Research 
and Development Framework

This Project includes:

1. PE Parser
2. Process analyzer, DLL Injector
3. Debugger 
4. x86 Emulator for binary files and shellcodes

That's the strongest reverse engineering and malware analysis tool for
python and the easiest to install and use

The application still in the pre-stage and BETA !! ... and doesn't have all 
SRDF features like in C++


Usage:
-------

To use it ... just ensure that you have the binary files:

1. _pySRDF.pyd
2. pySRDF.py
3. SRDF.dll
4. X86 Emulator.dll
5. sqlite3.dll


the project works only on Python version 2.7 Win32 ... which works on both
win32 and win64

Examples:
---------
>>from pySRDF import *

>>dbg = Dbg("C:\\test.exe")

>>dbg.SetBp(0x401000)
>>dbg.Run()

OR Using the Emulator:

>> emu = Emulator("C:\\test.exe")
>> emu.SetBp("eip == 0x401000")
>> emu.Run()

OR

>> emu.SetBp("__isdirty(eip)") #which set bp on Execute on modified data 
>> emu.Run()									 #used for packed files and encrypted malware

Source Code:
------------

To make the project compiled successfully ... you must clone winSRDF beside it 
and include it in the solution


Contact us on:
--------------
Twitter: https://www.twitter.com/winSRDF
Website: http://www.security-framework.com

About

This is the python wrapper for The Security Framework SRDF

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published