Fork of Corelan’s mona.py for x64dbg. mona is a Windows exploit development swiss army knife. It supports ROP techniques, SEH, cyclic patterns, etc.
To see all commands and usage details, run mona with the
mona.py into the
plugins/x64dbgpy folder. You will also need the
x64dbgpylib.py files from https://github.com/x64dbg/x64dbgpylib. Finally, put the
clean_mona.py script in
Now, run mona commands at the x64dbg Python command line with
Simply drop mona.py into the 'PyCommands' folder (inside the Immunity Debugger application folder).
Some Supported Commands
modules— Show all loaded modules and their properties (ASLR, Rebase, DEP, etc.)
heap— Show heap related information
seh— Find pointers to assist with SEH overwrite exploits
jmp— Find pointers that will allow you to jump to a register
rop— Finds gadgets that can be used in a ROP exploit and do ROP magic with them
jop— Finds gadgets that can be used in a JOP exploit
pattern_offset— Find location of 4 bytes in a cyclic pattern