pwntools v4.6 releases: CTF framework and exploit development library
pwntools – CTF toolkit
Pwntools is a CTF framework and exploits the development library. Written in Python, it is designed for rapid prototyping and development and intended to make exploit writing as simple as possible.
There are bits of code everyone has written a million times, and everyone has their own way of doing it. Pwntools aims to provide all of these in a semi-standard way, so that you can stop copy-pasting the same struct.unpack(‘>I’, x) code around and instead use more slightly more legible wrappers like pack or p32 or even p64(…, endian=’big’, sign=True).
Aside from convenience wrappers around mundane functionality, it also provides a very rich set of tubes which wrap all of the IO that you’ll ever perform in a single, unifying interface. Switching from a local exploit to a remote exploit, or local exploit over SSH becomes a one-line change.
Last but not least, it also includes a wide array of exploitation assistance tools for intermediate-to-advanced use cases. These include remote symbol resolution given a memory disclosure primitive (MemLeak and DynELF), ELF parsing and patching (ELF), and ROP gadget discovery and call-chain building (ROP).
Changelog
v4.7
- #1733 Update libc headers -> more syscalls available!
- #1876 add
self.messageand changesys.exc_typetosys.exec_info()in PwnlibException - #1877 encoders error message handles when
avoidis bytes in python3 - #1891 Keep ROP gadgets when setting registers via setattr/call
- #1892 Silence SIGPIPE error for “pwn phd”
- #1893 Fix bytes warning in “pwn cyclic”
- #1897 Add basic support for RISC-V
- #1903 Add zsh completion script
- #1904 Add bash completion script
- #1906 Defer import of several modules to save on startup time
- #1921 Add basic support for the bare-metal ARM specific toolchain
- #1995 Add
shellcraft.*.linux.cat2, which uses alloc+read+write instead of sendfile
Install & Use
Copyright (c) 2015 Gallopsled et al.
