The ROP Wargame Repository is a collection of Return-Oriented Programming (ROP) challenges designed for practicing binary exploitation techniques. The repository serves as a centralized storage location for various ROP-based security challenges that allow users to develop and test their skills in exploiting binary programs. ROP is an advanced exploitation technique that chains together existing code snippets (called "gadgets") from a program's memory to execute arbitrary operations, typically used to bypass modern security protections like Data Execution Prevention (DEP). The platform provides easy download options for accessing the challenges, making it accessible for security researchers, penetration testers, and students learning about binary exploitation. Each challenge in the repository focuses on different aspects of ROP exploitation, allowing users to progressively build their understanding of this complex attack vector. The repository functions as an educational resource for those studying advanced exploitation techniques and serves as a practice environment for developing skills needed in offensive security assessments and vulnerability research.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
SauronEye helps in identifying files containing sensitive data such as passwords through targeted directory searches.
An Azure Function that validates and relays Cobalt Strike beacon traffic based on Malleable C2 profile authentication.
SharpPrinter enables efficient discovery of network printers for security and management purposes.
PyBOF is a Python library that enables in-memory loading and execution of Beacon Object Files (BOFs) with support for argument passing and function targeting.
BeEF is a specialized penetration testing tool for exploiting web browser vulnerabilities to assess security.
SharpEDRChecker scans system components to detect security products and tools.
A command that builds and executes command lines from standard input, allowing for the execution of commands with multiple arguments.
Advanced command and control tool for red teaming and adversary simulation with extensive features and evasion capabilities.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.