Jump to content
Nytro

Ropper – rop gadget finder and binary information tool

By Nytro, in Reverse engineering & exploit development

Recommended Posts

Nytro Mentor

Nytro

Posted
Posted

[h=1]Ropper – rop gadget finder and binary information tool [/h]

With ropper you can show information about files in different file formats and you can search for gadgets to build rop chains for different architectures. For disassembly ropper uses the awesome Capstone Framework.

Ropper was inspired by ROPgadget, but should be more than a gadgets finder. So it is possible to show information about a binary like header, segments, sections etc. Furthermore it is possible to edit the binaries and edit the header fields. Until now you can set the aslr and nx flags.

usage: ropper.py [-h] [-v] [--console] [-f <file>] [-i] [-e] [--imagebase]
                 [-c] [-s] [-S] [--imports] [--symbols] [--set <option>]
                 [--unset <option>] [-I <imagebase>] [-p] [-j <reg>]
                 [--depth <n bytes>] [--search <regex>] [--filter <regex>]
                 [--opcode <opcode>] [--type <type>]

With ropper you can show information about files in different file formats
and you can search for gadgets to build rop chains for different architectures.

supported filetypes:
  ELF
  PE

supported architectures:
  x86
  x86_64
  MIPS

optional arguments:
  -h, --help            show this help message and exit
  -v, --version         Print version
  --console             Starts interactive commandline
  -f <file>, --file <file>
                        The file to load
  -i, --info            Shows file header [ELF/PE]
  -e                    Shows EntryPoint
  --imagebase           Shows ImageBase [ELF/PE]
  -c, --dllcharacteristics
                        Shows DllCharacteristics [PE]
  -s, --sections        Shows file sections [ELF/PE]
  -S, --segments        Shows file segments [ELF]
  --imports             Shows imports [ELF/PE]
  --symbols             Shows symbols [ELF]
  --set <option>        Sets options. Available options: aslr nx
  --unset <option>      Unsets options. Available options: aslr nx
  -I <imagebase>        Uses this imagebase for gadgets
  -p, --ppr             Searches for 'pop reg; pop reg; ret' instructions
                        [only x86/x86_64]
  -j <reg>, --jmp <reg>
                        Searches for 'jmp reg' instructions (-j reg[,reg...])
                        [only x86/x86_64]
  --depth <n bytes>     Specifies the depth of search (default: 10)
  --search <regex>      Searches for gadgets
  --filter <regex>      Filters gadgets
  --opcode <opcode>     Searches for opcodes
  --type <type>         Sets the type of gadgets [rop, jop, all] (default:
                        all)

example uses:
  [Generic]
  ropper.py
  ropper.py --file /bin/ls --console

  [Informations]
  ropper.py --file /bin/ls --info
  ropper.py --file /bin/ls --imports
  ropper.py --file /bin/ls --sections
  ropper.py --file /bin/ls --segments
  ropper.py --file /bin/ls --set nx
  ropper.py --file /bin/ls --unset nx

  [Gadgets]
  ropper.py --file /bin/ls --depth 5
  ropper.py --file /bin/ls --search "sub eax"
  ropper.py --file /bin/ls --filter "sub eax"
  ropper.py --file /bin/ls --opcode ffe4
  ropper.py --file /bin/ls --type jop
  ropper.py --file /bin/ls --ppr
  ropper.py --file /bin/ls --jmp esp,eax
  ropper.py --file /bin/ls --type jop

[h=2]Download[/h] https://github.com/sashs/Ropper (v1.0.1, 01.09.2014)

Sursa: Ropper - rop gadget finder and binary information tool

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...