pwntools – CTF Framework & Exploit Development Library

Keep on Guard!

pwntools is a CTF framework and exploit development library. Written in Python, it is designed for rapid prototyping and development, and intended to make exploit writing as simple as possible.

pwntools - CTF Framework & Exploit Development Library

Command-line frontends for some of the functionality are available:

  • asm/disasm: Small wrapper for various assemblers.
  • constgrep: Tool for finding constants defined in header files.
  • cyclic: De Bruijn sequence generator and lookup tool.
  • hex/unhex: Command line tools for doing common hexing/unhexing operations.
  • shellcraft: Frontend to our shellcode.
  • phd: Replacement for hexdump with colors.



pwntools is best supported on Ubuntu 12.04 and 14.04, but most functionality should work on any Posix-like distribution (Debian, Arch, FreeBSD, OSX, etc.).

Most of the functionality of pwntools is self-contained and Python-only. You should be able to get running quickly with:

However, some of the features (ROP generation and assembling/disassembling foreign architectures) require non-Python dependencies. For more information, see the complete installation instructions here.

You can download pwntools here:

Or read more here.

Posted in: Exploits/Vulnerabilities

, , , , , , ,

Recent in Exploits/Vulnerabilities:
- CrackMapExec – Active Directory Post-Exploitation Tool
- EvilAbigail – Automated Evil Maid Attack For Linux
- All You Need To Know About Cross-Site Request Forgery (CSRF)

Related Posts:

Most Read in Exploits/Vulnerabilities:
- Learn to use Metasploit – Tutorials, Docs & Videos - 238,730 views
- AJAX: Is your application secure enough? - 120,798 views
- eEye Launches 0-Day Exploit Tracker - 86,349 views

Comments are closed.