This is the accompanying code to the blog post talking about automated rop chain generation.
Build the test file with:
make
Install the dependencies:
pip3 install pwntools angr
Run the rop chain generator:
./auto_rop_chain.py ./buffer_overflow_64bit
Verify it works:
# You will need to hit enter twice, since angr didn't add
# a new line to the pwn input.
$ cat ./pwn_input - | ./buffer_overflow_64bit
pwn_me:
Your buffer is at 0x7fffffffd910
ls
Makefile auto_rop_chain.py buffer_overflow.c buffer_overflow_64bit pwn_input readme.md
43 Jan 04, 2023
2 Apr 29, 2022
60 Dec 15, 2022
17 Dec 05, 2022
6 Aug 22, 2021
3 Dec 10, 2022
165 Dec 16, 2022
1 Jan 09, 2022
211 Dec 08, 2022
1 Feb 02, 2022
5 Nov 27, 2022
121 Nov 15, 2022
18 Jul 31, 2022
7 Aug 20, 2022
162 Dec 07, 2022
1 Jan 21, 2022
15 Nov 30, 2022
3 Nov 27, 2022
5 Sep 02, 2022
2 May 01, 2022