Skip to content

gpotter2/scapy-rpc

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

27 Commits
.github
.github
 
 
midl-to-scapy
midl-to-scapy
 
 
scapy-rpc
scapy-rpc
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
compile.sh
compile.sh
 
 
get-idls.sh
get-idls.sh
 
 
tox.ini
tox.ini
 
 

Repository files navigation

scapy-rpc

Scapy RPC unit tests

More details over in the associated article (english) or the presentation (french).

This repo contains two sub-projects:

midl-to-scapy

A Microsoft Interface Definition Language (MIDL) compiler that generates Scapy code, to interact with MS-RPC (and DCOM) interfaces.

compilation_midl.mp4

  1. get your hands on the IDL file for an interface.

    • grab it from the section "Full IDL" from official documentations
    • use RpcView to extract it from a running RPC server
    • use Get-RpcServer <DLL> | Format-RpcServer from NtObjectManager

  2. run the tool on the IDL file to generate a Scapy interface

scapy-rpc

A pre-compiled version of 110 windows interfaces (available through the Open Specifications).

Compilation steps:

  1. run ./get-idls.sh to download all the IDLs. This will apply some minor patches to some.
  2. run ./compile.sh which calls midl-to-scapy on all the downloaded IDLs.

License

scapy-rpc's code, tests and tools are licensed under GPL v2.

About

A DCE/RPC MIDL compiler for Scapy.

Resources

Readme
Activity

Stars

7 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages