Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update python version to 3.10 in CI #46

Merged
merged 1 commit into from
Nov 20, 2024
Merged

Update python version to 3.10 in CI #46

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
24 changes: 7 additions & 17 deletions .github/workflows/testQuarkScript.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,33 +20,23 @@ jobs:
git clone https://github.com/quark-engine/quark-engine.git


- name: Set up Python 3.9
- name: Set up Python 3.10
uses: actions/setup-python@v4
with:
python-version: 3.9
python-version: "3.10"
cache: pip
cache-dependency-path: quark-engine/setup.py


- name: Install dependencies
run: |
python -m pip install --upgrade pip
python -m pip install pytest rzpipe meson==0.62.0 ninja coverage ciphey frida objection
# Install graphviz & ninja
sudo apt-get -y install graphviz ninja-build
python -m pip install frida objection importlib_resources
# Install graphviz
sudo apt-get -y install graphviz

# Install Rizin

sudo git clone --branch v0.3.4 https://github.com/rizinorg/rizin /opt/rizin/
cd /opt/rizin/
meson build
ninja -C build
sudo ninja -C build install
sudo ldconfig -v
cd -

# Install click >= 8.0.0 for CLI supports
python -m pip install click==8.0.3
# Install click <=8.1.7 for CLI supports
python -m pip install "click<=8.1.7"

- name: Install Quark-Engine
run: |
Expand Down
4 changes: 2 additions & 2 deletions CWE-312/CWE-312.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
from quark.script.frida import runFridaHook
from quark.script.ciphey import checkClearText
from quark.script.ares import checkClearText

APP_PACKAGE_NAME = "oversecured.ovaa"

Expand All @@ -23,4 +23,4 @@
print(
"The CWE-312 vulnerability is found. "
f'The cleartext is "{secondParam}"'
)
)
4 changes: 2 additions & 2 deletions CWE-312/README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -28,12 +28,12 @@ vulnerability.
First, we designed a [Frida](https://frida.re) script `agent.js` to hook
the target method and get the arguments when the target method is
called. Then we hook the method `putString` to catch its arguments.
Finally, we use [Ciphey](https://github.com/Ciphey/Ciphey) to check if
Finally, we use [Ares](https://github.com/bee-san/Ares) to check if
the arguments are encrypted.

``` python
from quark.script.frida import runFridaHook
from quark.script.ciphey import checkClearText
from quark.script.ares import checkClearText

APP_PACKAGE_NAME = "oversecured.ovaa"

Expand Down
Loading