Skip to content

open-crs/zeratool_lib

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

71 Commits

tests

tests

 
 

zeratool_lib

zeratool_lib

 
 

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

pyproject.toml

pyproject.toml

 
 

Repository files navigation

zeratool_lib 🗡️

Description

zeratool_lib is a fork of Zeratool. Its purpose is to port the CLI tool into a Python 3 library for exploiting executables on the local machine.

Notice: zeratool_lib is not a rewrite of Zeratool. It still uses the exploitation logic implemented by Zeratool's developers, but it has the modifications stated in the next section.

Differences Compared to the Parent Repository

  • The CLI was replaces with a unique function that can be called by programs which imports the library. All relevant parameters are exposed as parameters of this function.
  • All remote exploitation logic was removed.
  • The exploit is returned by the main function.
  • libpwnable is no more an input stream. The only ones supported now are stdin and arguments.

Setup

Install the required Python 3 packages via poetry install --no-dev.

Usage

from zeratool_lib import exploit, ZeratoolInputStreams

payload, outcome = exploit(
    "key-manager.elf",
    input_stream=ZeratoolInputStreams.STDIN,
    overflow_only=True,
    win_functions=["get_private_key"],
    leak_format="(.*)BEGIN PRIVATE KEY(.*)"
)

About

Python 3 library for automatic exploit generation, based on Zeratool 🗡️

Topics

binary-exploitation aeg zeratool

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

6 stars

Watchers

0 watching

Forks

1 fork
Report repository

Languages

  • Python 97.4%
  • C 1.8%
  • Makefile 0.8%