Module refinery.units.formats.bat

Classes

class bat (name=None, *args)

Emulates the execution of a batch file. Each command line that would be executed is emitted as an individual chunk. This can remove simple obfuscation based on expansion of environment variables.

Expand source code Browse git

class bat(Unit):
    """
    Emulates the execution of a batch file. Each command line that would be executed is emitted
    as an individual chunk. This can remove simple obfuscation based on expansion of environment
    variables.
    """
    def __init__(
        self,
        name: Param[buf | None, Arg.Binary(
            help='The emulated file name, a random name is chosen by default.')] = None,
        *args: Param[buf, Arg.Binary(
            help='All remaining arguments are passed to the Batch emulation.')]
    ):
        super().__init__(name=name, args=args)

    def process(self, data):
        if (name := self.args.name):
            name = codecs.decode(name, self.codec)
        else:
            name = F'{uuid.uuid4()!s}.bat'
        cmd = ' '.join(codecs.decode(arg, self.codec) for arg in self.args.args)
        emu = BatchEmulator(data)
        for cmd in emu.emulate(0, name, cmd):
            yield cmd.encode(self.codec)

Ancestors

• Unit
• UnitBase
• Entry

Subclasses

• bat

Inherited members

• Unit:
  • console
  • optional_dependencies
  • required_dependencies
• Unit:
  • FilterEverything
  • Requires
  • act
  • assemble
  • codec
  • finish
  • handles
  • is_quiet
  • is_reversible
  • isatty
  • labelled
  • leniency
  • log_always
  • log_debug
  • log_detach
  • log_fail
  • log_info
  • log_level
  • log_warn
  • logger
  • name
  • nozzle
  • read
  • read1
  • reset
  • reverse
  • run
  • source
  • superinit
• UnitBase:
  • process
• UnitBase:
  • filter