SL Abuser | Security Research

Abusers For Security Researchers

SkyLine is a programming language that was developed to improve the current state of the cyber security world by replacing most currently used programming languages for security-related operations. This means that security research, experiments, exploits, etc are all thrown into the backend of SkyLine to improve what it was meant for.

As the developers of the language, we highly encourage everyone who has something to contribute, this includes Python scripts, perl scripts, exploits written in SkyLine, frameworks in Go, or programs that can be added to SkyLine as a concept or idea and sent over to the repo or pulled in the discord server.

A good example is if you have a program written in say perl that looks like the one down below which is a program to detect vulnerabilities in binaries.

#!/usr/bin/perl
        # credits to the og author who wrote this, the script was published off github however it seems as if the user that posted it doesnt exist anymore, but it was written in 2010 so i would imagine so
#
#
# for the ones reading this code try to find me the actuall developer of this im quite intriguied i really couldnt find him  

$skip="TTOU TTIN TSTP STOP CONT CHLD STKFLT ALRM PIPE USR2 SEGV USR1 KILL FPE BUS IOT ABRT TRAP ILL QUIT INT HUP _DYNAMIC _GLOBAL_OFFSET_TABLE_ --";
# (2/4): script signals.
$SIG{'INT'}=\&dataexit;
$SIG{'TSTP'}=\&dataexit;
# (3/4): script routines.
sub out{print STDERR"[*] @_";}
sub outr{print STDERR"@_";}
sub outq{print STDERR"[!] @_";exit(-1);}
sub isvalid{$char=substr(shift,0,1);if(ord($char)>64&&ord($char)<91 || ord($char)>47&&ord($char)<58 || ord($char)==45 || ord($char)==95){return(1);}return(0);}

sub readbinary{
 out("$0(3): getenv() BINARY SCANNER \n");
 # color codes dont work with outq
 open(BINARY,shift)||outq("ERR: FATAL: -< could not open binary.\n");out(" Opened binary successfully \n");
 @months = qw( Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec );
 @days = qw(Sun Mon Tue Wed Thu Fri Sat Sun);
 @read=<BINARY>;close(BINARY);$i=0;$tokens=@read;out("Scanning binary($tokens): ");while($read[$i]){

  @tmpread=split(chr(0),$read[$i]);$tokens=@tmpread;$j=-1;while($j<$tokens){

   $j++;$k=0;while(isvalid(substr($tmpread[$j],$k,1))&&length($tmpread[$j])>1){

    if($k+1==length($tmpread[$j])){

     $m=0;@s=split(/ /,$skip);$l=0;while($s[$l]){if($s[$l]eq$tmpread[$j]){$m++;}$l++;}

     @s=split(/,/,$result);$l=0;while($s[$l]){if($s[$l]eq$tmpread[$j]||$s[$l]eq" $tmpread[$j]"){$m++;}$l++;}

     if(!$m&&substr($tmpread[$j],0,3)ne"SIG"&&substr($tmpread[$j],0,2)ne"__"&&substr($tmpread[$j],length($tmpread[$j])-2,2)ne"__"){

      if(!$result){$result=$tmpread[$j];}

      else{$result="$result, $tmpread[$j]";}
     }
    }
    $k++;
   }
  }
  $i++;outr(".");
 }

 ($sec,$min,$hour,$mday,$mon,$year,$wday,$yday,$isdst) = localtime();
 print "$mday $months[$mon] $days[$wday]\n";
 print("[*] Finished scan at -> $hour:$min:$sec\n");
}

sub data{
 if($result){out("typical getenv() possibilities: $result.\n");}
 else{out("no typical getenv() possibilities found.\n");}
}

sub dataexit{outr("cut!\n");data;outq("cut run, finished.\n");}
# (4/4): script init.
if(!$ARGV[0]){outq("syntax: $0 </path/to/binary>\n");}
if(!-f$ARGV[0]){outq("error, binary not found.\n");}
readbinary($ARGV[0]);data;out("clean run, finished.\n");exit(0);

We will then take this code, take an example binary, convert the perl code, and check to see if our results are the same not only converting the code into SL code but also being able to add more features and extensions to it and interaction. Publishing or reporting specific libraries, files, and systems even if they are written in other language massively contribute to the language itself and can allow us to better understand what users want in a programming language for security research.

SL Research | Limits

There are not many limits, this list will show you everything we do and do not accept as a form of contribution.

We Take ...

• Anything from 2000-2023: Programs written in the early 2000's that still work even if its some weird, wacky, broken, vulnerable code we will still take, fix, improve and we will add as a backend functionality to SkyLine.

• Any library: When it comes to programs in SkyLine, we want to also be able to rewrite existing libraries make them better, and include them in SkyLine. This will help us solve the issues of third-party libraries being required.

• Design Suggestions: Suggestions for implementations are also heavily suggested as this allows us to get an idea of what the community wants.

• Web3/CryptoCurrency: While SkyLine aims to be a cyber security rounded, we also want to fit to modern standards and while SkyLine is not a crypto programming language, we seriously would suggest that you give us some ideas of programs to write for SkyLine's backend that can be used for web3 and crypto interactions.

• Databases / API research: When it comes down to modern standards and SkyLine's goal, some of the standard libraries especially under specific device-based libraries rely on API and systematic research. So, if you have any up-to-date security research exploring specific versions of APIs or code that were used even down to API databases, we would love to take advantage of that.

We Do NOT Take...

• Outdated research: Research should be up to date, this is when it comes down to API;s and databases.

• Non-Security related suggestions: We want to make SkyLine rounded for mathematics and cyber security and other various branches underneath each. Research, Tools, Suggestions, etc all must be directly cyber security or mathematics related.