search

OWASP / ZSC

OWASP ZSC - Shellcode/Obfuscate Code Generator https://www.secologist.com/
https://www.secologist.com/
Other
646 stars 217 forks source link

gdb-peda not in sync with any of the OSX or Windows shellcode generators. #104

Closed paraschetal closed 8 years ago

paraschetal commented 8 years ago 
gdb-peda$ shellcode zsc
[+] linux_x86
[+] linux_x64
[+] linux_arm
[+] linux_mips
[+] freebsd_x86
[+] freebsd_x64
[+] windows_x86
[+] windows_x64
[+] osx
[+] solaris_x64
[+] solaris_x86
os:osx
[+] exec('/path/file')
[+] chmod('/path/file','permission number')
[+] write('/path/file','text to write')
[+] file_create('/path/file','text to write')
[+] dir_create('/path/folder')
[+] download('url','filename')
[+] download_execute('url','filename','command to execute')
[+] system('command to execute')
job:system('echo yolo')
[+] none
[+] xor_random
[+] xor_yourvalue
[+] add_random
[+] add_yourvalue
[+] sub_random
[+] sub_yourvalue
[+] inc
[+] inc_timeyouwant
[+] dec
[+] dec_timeyouwant
[+] mix_all
encode:none
Connection to OWASP ZSC API api.z3r0d4y.com

"Note: system('echo yolo') function is not Activated for osx OS Yet, Please wait for update.To see available modules take a look at the features_table.html file in software folder."

gdb-peda$ shellcode zsc
[+] linux_x86
[+] linux_x64
[+] linux_arm
[+] linux_mips
[+] freebsd_x86
[+] freebsd_x64
[+] windows_x86
[+] windows_x64
[+] osx
[+] solaris_x64
[+] solaris_x86
os:osx
[+] exec('/path/file')
[+] chmod('/path/file','permission number')
[+] write('/path/file','text to write')
[+] file_create('/path/file','text to write')
[+] dir_create('/path/folder')
[+] download('url','filename')
[+] download_execute('url','filename','command to execute')
[+] system('command to execute')
job:exec('/bin/sh')
[+] none
[+] xor_random
[+] xor_yourvalue
[+] add_random
[+] add_yourvalue
[+] sub_random
[+] sub_yourvalue
[+] inc
[+] inc_timeyouwant
[+] dec
[+] dec_timeyouwant
[+] mix_all
encode:none
Connection to OWASP ZSC API api.z3r0d4y.com

"Note: exec('/bin/sh') function is not Activated for osx OS Yet, Please wait for update.To see available modules take a look at the features_table.html file in software folder."

gdb-peda$ shellcode zsc
[+] linux_x86
[+] linux_x64
[+] linux_arm
[+] linux_mips
[+] freebsd_x86
[+] freebsd_x64
[+] windows_x86
[+] windows_x64
[+] osx
[+] solaris_x64
[+] solaris_x86
os:windows_x86
[+] exec('/path/file')
[+] chmod('/path/file','permission number')
[+] write('/path/file','text to write')
[+] file_create('/path/file','text to write')
[+] dir_create('/path/folder')
[+] download('url','filename')
[+] download_execute('url','filename','command to execute')
[+] system('command to execute')

Many of the shellcodes which should work are not because maybe the api has not be updated. Also the shellcodes which are available in zsc are not being shown in gdb-peda, while those which are not available are being shown. Where is the code for the api? Should we add it in zscproject and keep updating it regularly ?

Ali-Razmjoo commented 8 years ago

Hello, Yes I was notice that, our API server is not updated, I'll update it soon as possible. none of our users using api is not update!

Ali-Razmjoo commented 8 years ago

api server updated. https://github.com/zscproject/OWASP-ZSC/wiki