{"id":3854,"date":"2015-01-13T16:48:05","date_gmt":"2015-01-13T08:48:05","guid":{"rendered":"https:\/\/www.darknet.org.uk\/?p=3854"},"modified":"2015-01-13T16:49:01","modified_gmt":"2015-01-13T08:49:01","slug":"pwntools-ctf-framework-exploit-development-library","status":"publish","type":"post","link":"https:\/\/www.darknet.org.uk\/2015\/01\/pwntools-ctf-framework-exploit-development-library\/","title":{"rendered":"pwntools &#8211; CTF Framework &#038; Exploit Development Library"},"content":{"rendered":"<p>pwntools is a CTF framework and exploit development library. Written in Python, it is designed for rapid prototyping and development, and intended to make exploit writing as simple as possible.<\/p>\n<p align=\"center\"><img decoding=\"async\" src=\"https:\/\/farm9.staticflickr.com\/8624\/16084210707_eac51b38e2.jpg\" alt=\"pwntools - CTF Framework &#038; Exploit Development Library\" \/><\/p>\n<p>Command-line frontends for some of the functionality are available:<\/p>\n<ul>\n<li><em>asm\/disasm:<\/em> Small wrapper for various assemblers.<\/li>\n<li><em>constgrep:<\/em> Tool for finding constants defined in header files.<\/li>\n<li><em>cyclic:<\/em> De Bruijn sequence generator and lookup tool.<\/li>\n<li><em>hex\/unhex:<\/em> Command line tools for doing common hexing\/unhexing operations.<\/li>\n<li><em>shellcraft:<\/em> Frontend to our shellcode.<\/li>\n<li><em>phd:<\/em> Replacement for hexdump with colors.<\/li>\n<\/ul>\n<p><strong>Usage<\/strong><\/p>\n<pre>from pwn import *\r\ncontext(arch = 'i386', os = 'linux')\r\n\r\nr = remote('exploitme.example.com', 31337)\r\n# EXPLOIT CODE GOES HERE\r\nr.send(asm(shellcraft.sh()))\r\nr.interactive()<\/pre>\n<p><strong>Requirements<\/strong><\/p>\n<p>pwntools is best supported on Ubuntu 12.04 and 14.04, but most functionality should work on any Posix-like distribution (Debian, Arch, FreeBSD, OSX, etc.).<\/p>\n<p>Most of the functionality of pwntools is self-contained and Python-only. You should be able to get running quickly with:<\/p>\n<pre>pip install pwntools<\/pre>\n<p>However, some of the features (ROP generation and assembling\/disassembling foreign architectures) require non-Python dependencies. For more information, see the complete installation instructions <a href=\"https:\/\/pwntools.readthedocs.org\/en\/latest\/install.html\">here<\/a>.<\/p>\n<p>You can download pwntools here:<\/p>\n<p><a href=\"https:\/\/github.com\/Gallopsled\/pwntools\/archive\/2.2.0.zip\">2.2.0.zip<\/a><\/p>\n<p>Or read more <a href=\"https:\/\/github.com\/Gallopsled\/pwntools\">here<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>pwntools is a CTF framework and exploit development library. Written in Python, it is designed for rapid prototyping and development, and intended to make exploit writing as simple as possible. Command-line frontends for some of the functionality are available: asm\/disasm: Small wrapper for various assemblers. constgrep: Tool for finding constants defined in header files. cyclic: [&hellip;]<\/p>\n","protected":false},"author":25,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_seopress_robots_primary_cat":"","_seopress_titles_title":"","_seopress_titles_desc":"pwntools is a CTF framework and exploit development library. Written in Python, it is designed for rapid prototyping and development,.","_seopress_robots_index":"","_genesis_hide_title":false,"_genesis_hide_breadcrumbs":false,"_genesis_hide_singular_image":false,"_genesis_hide_footer_widgets":false,"_genesis_custom_body_class":"","_genesis_custom_post_class":"","_genesis_layout":"","footnotes":""},"categories":[10],"tags":[2273,284],"featured_image_src":null,"featured_image_src_square":null,"author_info":{"display_name":"Darknet","author_link":"https:\/\/www.darknet.org.uk\/author\/darknet\/"},"_links":{"self":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/3854"}],"collection":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/users\/25"}],"replies":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/comments?post=3854"}],"version-history":[{"count":0,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/3854\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/media?parent=3854"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/categories?post=3854"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/tags?post=3854"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}