This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "OWASP ZSC Tool Project"

From OWASP
Jump to: navigation, search
(What is OWASP ZSC ?)
Line 30: Line 30:
 
====GNU GENERAL PUBLIC LICENSE , Version 3, 29 June 2007====
 
====GNU GENERAL PUBLIC LICENSE , Version 3, 29 June 2007====
  
Copyright (C) 2007 Free Software Foundation, Inc. http://fsf.org/ Everyone is permitted to copy and distribute verbatim copies of this license document, but changing it is not allowed. [https://github.com/Ali-Razmjoo/ZCR-Shellcoder/blob/master/LICENSE.md Click to see the full license]
+
Copyright (C) 2007 Free Software Foundation, Inc. http://fsf.org/ Everyone is permitted to copy and distribute verbatim copies of this license document, but changing it is not allowed. [https://github.com/Ali-Razmjoo/OWASP-ZSC/blob/master/LICENSE.md Click to see the full license]
  
  
Line 67: Line 67:
  
 
== Quick Download ==
 
== Quick Download ==
[https://github.com/Ali-Razmjoo/ZCR-Shellcoder/ Github Page.]
+
[https://github.com/Ali-Razmjoo/OWASP-ZSC/ Github Page.]
 
[http://zsc.z3r0d4y.com/download/ Download Page.]
 
[http://zsc.z3r0d4y.com/download/ Download Page.]
  
Line 73: Line 73:
  
 
However, if you like you may also download the master repository from the following links:
 
However, if you like you may also download the master repository from the following links:
* [https://github.com/Ali-Razmjoo/ZCR-Shellcoder/zipball/master .zip file.]
+
* [https://github.com/Ali-Razmjoo/OWASP-ZSC/zipball/master .zip file.]
* [https://github.com/Ali-Razmjoo/ZCR-Shellcoder/tarball/master .tgz file.]
+
* [https://github.com/Ali-Razmjoo/OWASP-ZSC/tarball/master .tgz file.]
  
 
== News and Events ==
 
== News and Events ==
Line 81: Line 81:
  
 
== In Print ==
 
== In Print ==
  * [https://github.com/Ali-Razmjoo/ZCR-Shellcoder/blob/master/readme.md Last Changes and Examples].
+
  * [https://github.com/Ali-Razmjoo/OWASP-ZSC/blob/master/readme.md Last Changes and Examples].
  * [https://github.com/Ali-Razmjoo/ZCR-Shellcoder/tree/master/doc/English English Doc].
+
  * [https://github.com/Ali-Razmjoo/OWASP-ZSC/tree/master/doc/English English Doc].
  * [https://github.com/Ali-Razmjoo/ZCR-Shellcoder/tree/master/doc/Persian Persian Doc].
+
  * [https://github.com/Ali-Razmjoo/OWASP-ZSC/tree/master/doc/Persian Persian Doc].
  * [https://github.com/Ali-Razmjoo/ZCR-Shellcoder/tree/master/doc/Russian Russian Doc].
+
  * [https://github.com/Ali-Razmjoo/OWASP-ZSC/tree/master/doc/Russian Russian Doc].
 
This project can be purchased as a print on demand book from Lulu.com
 
This project can be purchased as a print on demand book from Lulu.com
  
Line 130: Line 130:
 
Go to download page, and download last version in github. Extract and run installer.py, then you are able to run software with OWASP ZSC command or you can directly execute zsc.py without installing it.or you can follow these commands to install the last version:
 
Go to download page, and download last version in github. Extract and run installer.py, then you are able to run software with OWASP ZSC command or you can directly execute zsc.py without installing it.or you can follow these commands to install the last version:
  
<pre><nowiki>wget https://github.com/Ali-Razmjoo/ZCR-Shellcoder/archive/master.zip -O zcr-shellcoder.zip && unzip zcr-shellcoder.zip &&  
+
<pre><nowiki>wget https://github.com/Ali-Razmjoo/OWASP-ZSC/archive/master.zip -O zcr-shellcoder.zip && unzip zcr-shellcoder.zip &&  
 
rm -rf zcr-shellcoder.zip && mv ZCR-Shellcoder-master ZCR-Shellcoder && cd ZCR-Shellcoder && python installer.py</nowiki></pre>
 
rm -rf zcr-shellcoder.zip && mv ZCR-Shellcoder-master ZCR-Shellcoder && cd ZCR-Shellcoder && python installer.py</nowiki></pre>
  

Revision as of 11:24, 5 August 2015

OWASP Project Header.jpg

OWASP ZSC Tool Project

What is OWASP ZSC ?

OWASP ZSC is an open source software in python language which lets you generate customized shellcodes for listed operation systems. This software could be run on Linux under python 2.7.x.

Snapshot_2015-07-26_191951-half.png

OWASP ZSC Home

Description

Usage of shellcodes

Shellcodesare small codes in assembly which could be use as the payload in software exploiting. Other usages are in malwares, bypassing antiviruses, obfuscated codes and etc.

Why use OWASP ZSC ?

According to other shellcode generators same as metasploit tools and etc, OWASP ZSC using new encodes and methods which antiviruses won't detect. OWASP ZSC encoderes are able to generate shellcodes with random encodes and that's lets you to get thousands new dynamic shellcodes with same job in just a second,that means you will not get a same code if you use random encodes with same commands, And that make OWASP ZSC one of the bests! otherwise it's gonna generate shellcodes for many operation systems in next versions.

Licensing

GNU GENERAL PUBLIC LICENSE , Version 3, 29 June 2007

Copyright (C) 2007 Free Software Foundation, Inc. http://fsf.org/ Everyone is permitted to copy and distribute verbatim copies of this license document, but changing it is not allowed. Click to see the full license


The OWASP Security Principles are free to use. In fact it is encouraged!!! Additionally, I also encourage you to contribute back to the project. I have no monopoly on this knowledge; however, we all have pieces of this knowledge from our experience. Let's begin by putting our individual pieces together to make something great. Great things happen when people work together.

The OWASP Security Principles are licensed under the http://creativecommons.org/licenses/by-sa/3.0/ Creative Commons Attribution-ShareAlike 3.0 license], so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially, but all provided that you attribute the work and if you alter, transform, or build upon this work, you may distribute the resulting work only under the same or similar license to this one.

What is OWASP Security Principles Project?

With using OWASP ZSC you would be able to generate any customized Shellcode in your mind including encodes in some seconds.

The end goal is to identify, cite, and document the fundamental principles of information security. Once this is well organised, I think it would be great to publish this through the OWASP Press. Of course, it will always remain freely available, and any money collected will go directly into the project to absorb costs with any remaining funds going to the OWASP Foundation.

This document should serve as a guide to technical architects and designers outlining the fundamental principles of security.

Project Leader


Related Projects

Openhub

Quick Download

Github Page. Download Page.

The home of the OWASP Security Principles is on GitHub. You are encourged to fork, edit and push your changes back to the project through git or edit the project directly on github.

However, if you like you may also download the master repository from the following links:

News and Events

In Print

* Last Changes and Examples.
* English Doc.
* Persian Doc.
* Russian Doc.

This project can be purchased as a print on demand book from Lulu.com

Classifications

New projects.png Owasp-builders-small.png
Owasp-defenders-small.png
Cc-button-y-sa-small.png
Project Type Files DOC.jpg
Retrieved from "https://wiki.owasp.org/index.php?title=OWASP_ZSC_Tool_Project&oldid=198441"