pwn
automated exploit generation, payload crafting, vulnerability patterns.
Load with: use pwn
Quick example
use pwn
result = pwnau("value", "value")
prn(result)Functions
Automatic exploit generation
pwnau(bp, vt)
Performs the operation. Takes bp, vt.
Vulnerability checks
pwnvu(bp)
Performs the operation. Takes bp.
pwnhc(bp)
Performs the operation. Takes bp.
pwnha(bp)
Performs the operation. Takes bp.
pwnhn(bp)
Performs the operation. Takes bp.
pwnhp(bp)
Performs the operation. Takes bp.
pwnhr(bp)
Performs the operation. Takes bp.
Ret2libc
pwnrl(lp, fn)
Performs the operation. Takes lp, fn.
pwnrs(lp, bsa)
Resets. Takes lp, bsa.
ROP chain builders
pwnro(gadgets, args)
Performs the operation. Takes gadgets, args.
One-gadget finder
pwnon(lp)
Performs the operation. Takes lp.
Shellcode staging
pwnst(s1, s2, ta)
Sets a value or starts a process. Takes s1, s2, ta.
Format string exploit
pwnfl(off, addr)
Performs the operation. Takes off, addr.
pwnfw(off, addr, val)
Performs the operation. Takes off, addr, val.
Heap exploit patterns
pwnus(sz, tfn)
Performs the operation. Takes sz, tfn.
pwnhe(csz, ovf)
Performs the operation. Takes csz, ovf.
pwnfa(sz, ta)
Performs the operation. Takes sz, ta.
pwnho()
Performs the operation.
Stack canary bypass
pwnle(bp)
Performs the operation. Takes bp.
pwnbr(so, kp)
Performs the operation. Takes so, kp.
ASLR bypass techniques
pwnas(method)
Performs the operation. Takes method.
One-shot exploit templates
pwnex(bp, vuln)
Executes. Takes bp, vuln.
Exploit validation
pwnva(payload, constraints)
Performs the operation. Takes payload, constraints.
Final exploit builder
pwnbu(bp, vt, opts)
Performs the operation. Takes bp, vt, opts.
Notes
- Binary exploitation helpers. Use only on systems you own.