get_syscall_asm/get_syscall.py at main · debrunbaix/get_syscall_asm · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
#!/usr/bin/env python3
import argparse
import requests

URL_SYSCALL_API = "https://api.syscall.sh/v1"
SYSCALL_EP = "/syscalls"
CONVENTIONS_EP = "/conventions"

def get_syscall(syscall_name: str) -> [dict]:
    url = f"{URL_SYSCALL_API}{SYSCALL_EP}/{syscall_name}"

    try:
        resp = requests.get(url, timeout=5)
        resp.raise_for_status()
        return resp.json()
    except requests.RequestException as e:
        print(f"Erreur lors de l'appel API : {e}")
        return []

def get_convention(arch_name: str) -> dict:
    url = f"{URL_SYSCALL_API}{CONVENTIONS_EP}/{arch_name}"

    try:
        resp = requests.get(url, timeout=5)
        resp.raise_for_status()
        return resp.json()
    except requests.RequestException as e:
        print(f"Erreur lors de l'appel API : {e}")
        return {}

def print_syscall_for_arch(arch_name: str, syscall_name: str):
    syscall = get_syscall(syscall_name)
    convention = get_convention(arch_name)
    print(syscall_name.upper(), ":")
    for arch in syscall:
        if arch["arch"] == arch_name:
            for key, value in arch.items():
                if key == "return" and value:
                    print(f"    {convention['return']} : {value}\n")
                if key == "arg0" and value:
                    print(f"    {convention['arg0']} : {value}")
                if key == "arg1" and value:
                    print(f"    {convention['arg1']} : {value}")
                if key == "arg2" and value:
                    print(f"    {convention['arg2']} : {value}")
                if key == "arg3" and value:
                    print(f"    {convention['arg3']} : {value}")
                if key == "arg4" and value:
                    print(f"    {convention['arg4']} : {value}")
                if key == "arg5" and value:
                    print(f"    {convention['arg5']} : {value}")

def main():
    print_syscall_for_arch(args.arch, args.syscall)

if __name__ == "__main__":
    parser = argparse.ArgumentParser(
        prog='get_syscall',
        description='This program permit to know the calling convention for a syscall.'
    )
    parser.add_argument('-a', '--arch', help='x86 || x64 || arm || arm64', required=True)
    parser.add_argument('-s', '--syscall', help= 'read, write, etc...', required=True)
    args = parser.parse_args()
    main()