pwnscript is a scripting language designed specifically for security analysis and capture the flag competitions

pwnscript is a scripting language designed specifically for security analysis and capture the flag competitions

pwnscript is a scripting language designed specifically for security analysis and capture the flag competitions
What’s currently implemented:
+ Tokenizer
+ Basic parser

Goals:
+ Lightweight and embeddable (like Lua)
+ Fast
+ Easy to integrate with C stuff – needed for binary exploit type stuff
+ Out of the box support for analysis (image/video manipulation, etc)
+ Out of the box support for assembly/disassembly
+ Out of the box support for networking stuff
+ Out of the box support for crypto
+ Out of the box support for gdb
+ Basically, steal every feature from pwntools 🙂

main arena pwn

main arena pwn: & Debugging Breaking at ‘0x804abfc’

Design
– Prototypical (screw OOP)
– Syntax is mostly a ripoff of Ruby, Python, Lua and JavaScript. (go ahead and add more examples below)
– Pointers with pointer math (somehow mark as unsafe, but this is definitely needed for security stuff)
– Compiled. Because interpreted languages are too dependent.

(possible) Examples
The following are some examples of what the language could possibly look like. (add more examples if you want some specific feature)

Usage:

Source: https://github.com/teamoops