pwntools – CTF Framework & Exploit Development Library

Keep on Guard!

pwntools is a CTF framework and exploit development library. Written in Python, it is designed for rapid prototyping and development, and intended to make exploit writing as simple as possible.

pwntools - CTF Framework & Exploit Development Library

Command-line frontends for some of the functionality are available:

  • asm/disasm: Small wrapper for various assemblers.
  • constgrep: Tool for finding constants defined in header files.
  • cyclic: De Bruijn sequence generator and lookup tool.
  • hex/unhex: Command line tools for doing common hexing/unhexing operations.
  • shellcraft: Frontend to our shellcode.
  • phd: Replacement for hexdump with colors.



pwntools is best supported on Ubuntu 12.04 and 14.04, but most functionality should work on any Posix-like distribution (Debian, Arch, FreeBSD, OSX, etc.).

Most of the functionality of pwntools is self-contained and Python-only. You should be able to get running quickly with:

However, some of the features (ROP generation and assembling/disassembling foreign architectures) require non-Python dependencies. For more information, see the complete installation instructions here.

You can download pwntools here:

Or read more here.

Posted in: Exploits/Vulnerabilities

, , , , , , ,

Recent in Exploits/Vulnerabilities:
- TheFatRat – Massive Exploitation Tool
- South Korean Webhost Nayana Pays USD1 Million Ransom
- pyrasite – Inject Code Into Running Python Processes

Related Posts:

Most Read in Exploits/Vulnerabilities:
- Learn to use Metasploit – Tutorials, Docs & Videos - 238,304 views
- AJAX: Is your application secure enough? - 120,689 views
- eEye Launches 0-Day Exploit Tracker - 86,267 views

Comments are closed.