open source

Author: pen4uin

README.md

@@ -1,11 +1,6 @@
-
-
-
-
 # Java Echo Generator
 
-
-## 0x01 Introduce
+## 0x01 简介
 
 **jEG (Java Echo Generator )** 是一款支持高度自定义的 Java 回显载荷生成工具。
 
@@ -16,25 +11,29 @@
 * 支持的输出格式 (BASE64/BCEL/BIGINTEGER/CLASS/JAR/JS)
 
 
-
-
+> [!WARNING]
 > 此工具仅限于安全研究和教学，用户承担因使用此工具而导致的所有法律和相关责任！ 作者不承担任何法律和相关责任！
 
 
+## 0x02 编译
+
+```shell
+mvn package assembly:single
+```
 
-## 0x02 Usage
+## 0x03 使用
 
 **图形化**
 
 1. 下载 jEG-GUI-1.0.0.jar 运行即可
 
-![image-20230928161217950](./img/image-20230928161217950.png)
+![image-20230928161217950](./img/gui.png)
 
 **Woodpecker 插件**
 
 1. 下载 jEG-Woodpecker-1.0.0.jar 到 woodpecker 插件目录下即可
 
-![image-20230928153330494](./img/image-20230928153330494.png)
+![image-20230928153330494](./img/woodpecker-plugin.png)
 
 **第三方库**
 
@@ -74,22 +73,18 @@ System.out.println("请求头: " + config.getReqHeaderName());
 System.out.println(generator.getPayload());
 ```
 
-## 0x03 Reference
+
+---
+
 
 使用手册
 
 - [jEG - 高度自定义的 Java 回显生成工具](https://mp.weixin.qq.com/s/_TmPJnKtstL3KeysoyLcVA)
 
 
+参考项目
 ```
-- https://gv7.me/articles/2020/semi-automatic-mining-request-implements-multiple-middleware-echo/
-- https://gist.github.com/fnmsd/8165cedd9fe735d7ef438b2e977af327
-- https://github.com/feihong-cs/Java-Rce-Echo
-```
-
-
-
-
-
-
-
+https://gv7.me/articles/2020/semi-automatic-mining-request-implements-multiple-middleware-echo/
+https://gist.github.com/fnmsd/8165cedd9fe735d7ef438b2e977af327
+https://github.com/feihong-cs/Java-Rce-Echo
+```

img/image-20230928161217950.png img/gui.png

@@ -0,0 +1,21 @@
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+    <parent>
+        <groupId>jeg</groupId>
+        <artifactId>java-echo-generator</artifactId>
+        <version>${reversion}</version>
+    </parent>
+    <artifactId>jEG-common</artifactId>
+    <build>
+        <finalName>${artifactId}-${reversion}</finalName>
+    </build>
+
+    <dependencies>
+        <dependency>
+            <groupId>me.gv7.woodpecker</groupId>
+            <artifactId>woodpecker-bcel</artifactId>
+            <version>0.1.0</version>
+        </dependency>
+    </dependencies>
+</project>

img/sglab.svg

@@ -0,0 +1,98 @@
+package jeg.common.config;
+
+public class Config {
+    private String serverType;
+    private String formatType;
+    private String gadgetType;
+    private String loaderClassName;
+    private String classNameInFormatter;
+    private byte[] classBytesInFormatter;
+    private String classBase64InFormatter;
+
+    public String getOutputDir() {
+        return outputDir;
+    }
+
+    public void setOutputDir(String outputDir) {
+        this.outputDir = outputDir;
+    }
+
+    private String outputDir;
+    public String getLoaderClassName() {
+        return loaderClassName;
+    }
+
+    public void setLoaderClassName(String loaderClassName) {
+        this.loaderClassName = loaderClassName;
+    }
+
+    public String getClassNameInFormatter() {
+        return classNameInFormatter;
+    }
+
+    public void setClassNameInFormatter(String classNameInFormatter) {
+        this.classNameInFormatter = classNameInFormatter;
+    }
+
+    public byte[] getClassBytesInFormatter() {
+        return classBytesInFormatter;
+    }
+
+    public void setClassBytesInFormatter(byte[] classBytesInFormatter) {
+        this.classBytesInFormatter = classBytesInFormatter;
+    }
+
+    public String getClassBase64InFormatter() {
+        return classBase64InFormatter;
+    }
+
+    public void setClassBase64InFormatter(String classBase64InFormatter) {
+        this.classBase64InFormatter = classBase64InFormatter;
+    }
+
+
+
+    public String getServerType() {
+        return serverType;
+    }
+
+    public void setServerType(String serverType) {
+        this.serverType = serverType;
+    }
+
+    public String getFormatType() {
+        return formatType;
+    }
+
+    public void setFormatType(String formatType) {
+        this.formatType = formatType;
+    }
+
+    public String getGadgetType() {
+        return gadgetType;
+    }
+
+    public void setGadgetType(String gadgetType) {
+        this.gadgetType = gadgetType;
+    }
+
+    public boolean isImplementsASTTransformationType() {
+        return implementsASTTransformationType;
+    }
+
+    public void setImplementsASTTransformationType(boolean implementsASTTransformationType) {
+        this.implementsASTTransformationType = implementsASTTransformationType;
+    }
+
+    public boolean isImplementsScriptEngineFactory() {
+        return implementsScriptEngineFactory;
+    }
+
+    public void setImplementsScriptEngineFactory(boolean implementsScriptEngineFactory) {
+        this.implementsScriptEngineFactory = implementsScriptEngineFactory;
+    }
+
+    private boolean implementsASTTransformationType = false;
+    private boolean implementsScriptEngineFactory = false;
+
+}

img/image-20230928153330494.png img/woodpecker-plugin.png

@@ -0,0 +1,27 @@
+package jeg.common.config;
+
+public interface Constants {
+
+    String FORMAT_CLASS = "CLASS";
+    String FORMAT_BCEL = "BCEL";
+    String FORMAT_JSP = "JSP";
+    String FORMAT_JAR = "JAR";
+    String FORMAT_JS = "JS";
+    String FORMAT_BASE64 = "BASE64";
+    String FORMAT_BIGINTEGER = "BIGINTEGER";
+
+    String GADGET_NONE = "NONE";
+    String GADGET_JDK_TRANSLET = "JDK_AbstractTranslet";
+    String GADGET_XALAN_TRANSLET = "XALAN_AbstractTranslet";
+
+    String SERVER_TOMCAT = "Tomcat";
+    String SERVER_JETTY = "Jetty";
+    String SERVER_RESIN = "Resin";
+    String SERVER_SPRING_MVC = "SpringMVC";
+    String SERVER_STRUTS2 = "Struts2";
+    String SERVER_UNDERTOW = "Undertow";
+    String SERVER_WEBLOGIC = "WebLogic";
+    String SERVER_WEBSPHERE = "WebSphere";
+
+    String SERVER_UNKNOWN = "Unknown";
+}

jeg-common/pom.xml

@@ -0,0 +1,11 @@
+package jeg.common.format;
+
+import jeg.common.config.Config;
+import jeg.common.util.Base64Util;
+
+public class BASE64Formatter implements IFormatter {
+    @Override
+    public byte[] transform(byte[] bytes, Config config) throws Exception {
+        return Base64Util.encodeToBase64(bytes).replace("\n", "").replace("\r", "").getBytes();
+    }
+}