Friday, August 13, 2010

ROPEME – ROP Exploit Made Easy

ROPEME – ROP Exploit Made Easy – is a PoC tool for ROP exploit automation on Linux x86. It contains a set of simple Python scripts to generate and search for ROP gadgets from binaries and libraries (e.g libc). A sample payload class is also included to help generate multistage ROP payload with the technique described in the Black Hat USA 2010 talk: “Payload already inside: data re-use for ROP exploits“.

Video demo and POC code:

1 comment:

Anonymous said...

having problems with ROPEME
i get the following errors...

mybox@ubuntu:~/Desktop/ropeme-bhus10/ropeme$ ./
Traceback (most recent call last):
File "./", line 24, in
import gadgets
File "/home/mybox/Desktop/ropeme-bhus10/ropeme/", line 21, in
import diStorm
ImportError: No module named diStorm