auto-ropper

Auto-ropper is a tool that aims to automate the exploitation of ROP. Its goal is to become a tool that no longer requires user interaction.

Installation

You need :

• Python 3
• pwntools

With pip

Just do:

$ pip install pwn

Usage

Since this is not the v1, you will have to do some stuff manually.
Before starting the program, you'll have to do the following:

sudo sysctl -w kernel.core_pattern=core

This will allow the core file to be generated as core (this won't survive a restart).

Then, you have to edit the binary location and name.

elf = ELF("./tests/ret") # edit the PATH to your binary location.

Then, you can run it.

Once at least two functions have been leaked, you can manually check on blukat, download the right libc and then edit.

LIBC = "./libc/libc6_2.31-0ubuntu9.2_amd64.so" # edit the PATH to your libc location.

Once it's done, restart the program and you should have a shell. Happy hacking! :-)

Contributing

Thanks to for helping me in this project:
@Red-Amber @Tim-ats-d