Jump to content
Nytro

roputils

By Nytro, in Reverse engineering & exploit development

Recommended Posts

Nytro Mentor

Nytro

Posted
Posted

[h=1]roputils[/h]

A Return-oriented Programming toolkit

[h=2]Usage[/h] examples/ropasaurusrex.py is a write-up of ropasaurusrex in PlaidCTF 2013.

[h=2]Overview[/h] Currently roputils.py has 7 classes: ELF, ROP, ROPBlob, Shellcode, FormatStr, Proc, Pattern.

  • ELF: information about ELF object retrieved by readelf
  • ROP: subclass of ELF, with additional methods for creating ROP sequence
  • ROPBlob: subclass of ROP, for creating ROP sequence from leaked memory
  • Shellcode: x86 and x64 shellcode builder
  • FormatStr: create format string for exploitation
  • Proc: gateway interface of subprocess and socket
  • Pattern: create Metasploit pattern and calculate its offset

roputils.py also can be used as CLI tool, has 7 subcommands: checksec, create, offset, gadget, scan, asm, objdump.

  • checksec: a clone of checksec.sh
  • create: call Pattern.create()
  • offset: call Pattern.offset()
  • gadget: availability check for tiny gadgets
  • scan: search the binary chunk and disassemble from there
  • asm: x86 and x64 assembler/disassembler
  • objdump: disassemble with IDA-like annotations

For more details, just read the codes.

Sursa: https://github.com/inaz2/roputils

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...