ROPgadget Tool Logo

ROPgadget Tool

0
Free
Visit Website

This tool lets you search your gadgets on your binaries to facilitate your ROP exploitation. ROPgadget supports ELF/PE/Mach-O/Raw formats on x86, x64, ARM, ARM64, PowerPC, SPARC, MIPS, RISC-V 64, and RISC-V Compressed architectures. The easiest way to install ROPgadget is from PyPi by running: $ sudo apt install python3-pip $ sudo -H python3 -m pip install ROPgadget $ ROPgadget --help Alternatively, you can install ROPgadget from source. You have to install Capstone first. For Capstone's installation on a nix machine: $ sudo apt install python3-pip $ sudo -H python3 -m pip install capstone Capstone supports multi-platforms (windows, ios, android, cygwin...). For cross-compilation, please refer to the https://github.com/capstone-engine/capstone/blob/master/COMPILE.TXT file. After Capstone is installed, ROPgadget can be used as a standalone tool: $ python3 ROPgadget.py --help Or installed into the Python site-packages library, and executed from $PATH. $ sudo -H python3 setup.py install $ ROPgadget --help Usage: usage: ROPgadget.py [-h] [-v] [-c] [--binary <binary>] [--opcode <opcodes>] [--string <string>] [--memstr <string>] [--depth <nbyte>] [--only <key>] [--filter

FEATURES

ALTERNATIVES

A blog post discussing INF-SCT fetch and execute techniques for bypass, evasion, and persistence

YARA module for supporting DCSO format bloom filters with hashlookup capabilities.

Interactive .NET SQL console client with enhanced SQL Server discovery, access, and data exfiltration features

VxSig is a tool to automatically generate AV byte signatures from similar binaries.

A serverless, real-time, and retroactive malware detection tool that scans files with YARA rules and alerts incident response teams.

A tool that reveals invisible links within JavaScript files

A software reverse engineering framework with full-featured analysis tools and support for multiple platforms, instruction sets, and executable formats.

KLara is a distributed system written in Python that helps Threat Intelligence researchers hunt for new malware using Yara.