Skip to content

existXFx/TurboRex

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits

examples

examples

 
 

lib

lib

 
 

resources/headers

resources/headers

 
 

test

test

 
 

.document

.document

 
 

.gitignore

.gitignore

 
 

.rakeTasks

.rakeTasks

 
 

Gemfile

Gemfile

 
 

Gemfile.lock

Gemfile.lock

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

README.rdoc

README.rdoc

 
 

Rakefile

Rakefile

 
 

VERSION

VERSION

 
 

turborex.gemspec

turborex.gemspec

 
 

Repository files navigation

TurboRex

TurboRex is a Ruby gem for exploring MSRPC and COM. It is mainly a proof of concept for the topic "Automated Hunting for Cross-Server Xrefs in Microsoft RPC and COM" on Code Blue 2020.

Author

Exist@SycloverSecurity

Features

  • MSRPC server/client routines finder
  • COM interface methods finder
  • COM client finder(Not very useful)
  • ALPC server/client
  • COM client

Installation

To install Turborex, run

gem install turborex

And then install Metasm, please DON'T use the old version of Metasm hosted by Rubygems

Examples

Please take a look at the examples directory.

Troubleshooting

It is too slow, especially when searching for RPC client routines

There are many reasons for this result, such as my poor code quality, and the Ruby interpreter runs slower on Windows than Linux. There is a trick that can greatly increase the speed without changing too much code: running in WSL. But I did not fully test whether it is available in WSL, it may be necessary to modify the core library code.

License

See this license at LICENSE file.

About

No description, website, or topics provided.

Resources

Readme

License

GPL-3.0 license
Activity

Stars

4 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages