3 dépôts
Utilities for identifying and chaining gadgets to bypass memory protections.
Distinct from Protection Bypassers: None of the candidates address ROP chain construction; this is a core binary exploitation capability.
Explore 3 awesome GitHub repositories matching security & cryptography · Return Oriented Programming Tools. Refine with filters or upvote what's useful.
Pwntools is a Python-based framework designed for rapid prototyping and automation in binary exploitation, reverse engineering, and security research. It serves as a comprehensive toolkit for interacting with local and remote processes, providing the primitives necessary to manage complex exploit workflows and streamline security analysis tasks. The framework distinguishes itself through its specialized capabilities for binary manipulation and automated exploit construction. It includes dedicated utilities for parsing executable file formats, assembling and disassembling machine code, and gen
Analyze binary files to identify gadgets and automatically construct functional exploit chains that bypass security protections like non-executable memory.
pwndbg is a GDB plugin and binary analysis framework designed for reverse engineering, exploit development, and low-level program analysis. It extends the core functionality of the debugger to provide advanced memory inspection and automation tools. The project distinguishes itself with specialized capabilities for heap analysis across glibc, jemalloc, and musl, as well as a comprehensive kernel debugging toolkit for inspecting Linux kernel tasks and slab allocators. It includes an integrated ROP gadget searcher for constructing exploit chains and an LLM-powered debugging assistant that provi
Searches binaries for return-oriented programming gadgets to facilitate the construction of exploit chains.
ROPgadget est un outil d'analyse binaire et un désassembleur multi-architecture conçu pour localiser les séquences d'instructions utilisées pour la programmation orientée retour (ROP). Il fonctionne comme un framework de développement d'exploits qui identifie les gadgets au sein des binaires pour faciliter la création d'exploits de corruption de mémoire. L'outil prend en charge l'audit binaire multi-architecture, traitant le code machine x86, ARM, MIPS et RISC-V. Il fournit une interface unifiée pour analyser divers formats de fichiers exécutables, y compris ELF, PE et Mach-O. Ses capacités couvrent l'analyse des vulnérabilités binaires et le développement de charges utiles d'exploitation. Ceci est réalisé par désassemblage linéaire, recherche de gadgets basée sur des motifs et validation de séquences d'instructions pour garantir que les fragments identifiés sont exécutables.
Identifies and extracts instructional sequences in binaries to enable the construction of ROP-based exploits.