Skip to content

rgwohlbold/rop-simulator

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
Makefile
Makefile
 
 
README.md
README.md
 
 
asm.s
asm.s
 
 
sim
sim
 
 
sim.c
sim.c
 
 

Repository files navigation

ROP Simulator

The purpose of this program is to teach about Return-Oriented Programming.

Compiling

You have two options:

  • Build the program using make. You may need to install the package libreadline-dev so you can link against readline.
  • Use the pre-built binary compiled for Kali Linux.

Usage

Run the program using ./sim. The program overrides its own stack using the information provided, starting at the return address of main.

There are three types of tokens you can enter:

  1. Gadgets like 2. This will place the 8-byte address of the gadget on the stack.
  2. Unsigned constants like $0xdeadbeef with (hexadecimal). This will place the 8-byte constant on the stack.
  3. Strings like "hello, world". This will put a copy of the string on the heap and place a pointer on the stack.

Tasks

These tasks should be increasing in difficulty.

  1. Print the help text
  2. Open a shell using system()
  3. Open a shell and exit with exit code 0
  4. Open a shell using execve and exit with exit code 0
  5. Open a shell without using any of the provided addresses

Credits

I based this off the idea by 0x4d5a in the challenge intro-pwn-3 of CSCG 2022.

About

Simulation program to teach about Return-Oriented Programming (ROP)

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages