OneGadget Logo

OneGadget

0
Free
Visit Website

When playing CTF pwn challenges, the OneGadget tool helps find RCE (remote code execution) gadgets that lead to calling execve('/bin/sh', NULL, NULL). It uses symbolic execution to find the constraints of gadgets to be successful. Installation is available on RubyGems.org, and it supports architectures like i386, amd64, and aarch64. The tool can be used via the command line interface with options to specify the build ID, force file search, output level, and order gadgets by their distance to specific functions or files.

FEATURES

ALTERNATIVES

A tool for recursively querying webservers

Exploiting WordPress With Metasploit, containing 45 modules for exploits and auxiliaries.

A customized Kali Linux distribution for ICS/SCADA pentesting professionals

A tool that scans for accessibility tools backdoors via RDP

Comprehensive tutorial on modern exploitation techniques with a focus on understanding exploitation from scratch.

A blog post about abusing exported functions and exposed DCOM interfaces for pass-thru command execution and lateral movement

Emulate operating systems behind SSH servers for testing automation.

Back-end component for red team operations with crucial design considerations.

PINNED