OneGadget Logo

OneGadget

0
Free
Visit Website

When playing CTF pwn challenges, the OneGadget tool helps find RCE (remote code execution) gadgets that lead to calling execve('/bin/sh', NULL, NULL). It uses symbolic execution to find the constraints of gadgets to be successful. Installation is available on RubyGems.org, and it supports architectures like i386, amd64, and aarch64. The tool can be used via the command line interface with options to specify the build ID, force file search, output level, and order gadgets by their distance to specific functions or files.

FEATURES

ALTERNATIVES

A modular, menu-driven tool for building repeatable, time-delayed, distributed security events.

Customize Empire's GET request URIs, user agent, and headers for evading detection and masquerading as other applications.

Sublist3r is a python tool for enumerating subdomains using OSINT and various search engines.

Setup script for Regon-ng

A guide to bypassing RFID card reader security mechanisms using specialized hardware

Python-based toolkit for network hacking with various implemented techniques and supported by Securetia SRL.

Caldera is a cybersecurity framework by MITRE for automated security assessments and adversary emulation.

A tool for iOS pentesting and research with a GUI version available.