GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → ChrisTheCoolHut → Rocket Shot

ChrisTheCoolHut / Rocket Shot

Backwards program slice stitching for automatic CTF problem solving.

Programming Languages

python
139335 projects - #7 most used programming language

Labels

ctf

Projects that are alternatives of or similar to Rocket Shot

Ctftraining
CTF Training 经典赛题复现环境
Stars: ✭ 729 (+1595.35%)
Mutual labels:  ctf
Ctf writeups
Stars: ✭ 24 (-44.19%)
Mutual labels:  ctf
Tiny Xss Payloads
A collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me
Stars: ✭ 975 (+2167.44%)
Mutual labels:  ctf
Fbctf
Platform to host Capture the Flag competitions
Stars: ✭ 6,407 (+14800%)
Mutual labels:  ctf
Riceteacatpanda
repo with challenge material for riceteacatpanda (2020)
Stars: ✭ 18 (-58.14%)
Mutual labels:  ctf
Snoop
Snoop — инструмент разведки на основе открытых данных (OSINT world)
Stars: ✭ 886 (+1960.47%)
Mutual labels:  ctf
Exploit me
Very vulnerable ARM/AARCH64 application (CTF style exploitation tutorial with 14 vulnerability techniques)
Stars: ✭ 665 (+1446.51%)
Mutual labels:  ctf
Pwntools
CTF framework and exploit development library
Stars: ✭ 8,585 (+19865.12%)
Mutual labels:  ctf
Flagchecker
For effective cheating detection in competitions. Utilizes Linux Kernel Module (LKM) for generating flags.
Stars: ✭ 24 (-44.19%)
Mutual labels:  ctf
Ctf Learn Writeup
Writeup of security — CTFLearn Challenges.
Stars: ✭ 31 (-27.91%)
Mutual labels:  ctf
Code Audit Challenges
Code-Audit-Challenges
Stars: ✭ 779 (+1711.63%)
Mutual labels:  ctf
Ciphey
⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡
Stars: ✭ 9,116 (+21100%)
Mutual labels:  ctf
Ctf
(mostly web related) web challenge writeups between 2011 and 2015
Stars: ✭ 20 (-53.49%)
Mutual labels:  ctf
Spoilerwall
Spoilerwall introduces a brand new concept in the field of network hardening. Avoid being scanned by spoiling movies on all your ports!
Stars: ✭ 754 (+1653.49%)
Mutual labels:  ctf
Offport killer
This tool aims at automating the identification of potential service running behind ports identified manually either through manual scan or services running locally. The tool is useful when nmap or any scanning tool is not available and in the situation during which you did a manual port scanning and then want to identify the services running behind the identified ports.
Stars: ✭ 40 (-6.98%)
Mutual labels:  ctf
Memlabs
Educational, CTF-styled labs for individuals interested in Memory Forensics
Stars: ✭ 696 (+1518.6%)
Mutual labels:  ctf
Defcon 2018
DEFCON 2018 Qualification writeups
Stars: ✭ 12 (-72.09%)
Mutual labels:  ctf
Ctfcli
ctfcli is a tool to manage Capture The Flag events and challenges
Stars: ✭ 43 (+0%)
Mutual labels:  ctf
Crypton
Library consisting of explanation and implementation of all the existing attacks on various Encryption Systems, Digital Signatures, Key Exchange, Authentication methods along with example challenges from CTFs
Stars: ✭ 995 (+2213.95%)
Mutual labels:  ctf
Docker War
Docker based Wargame Platform - To practice your CTF skills
Stars: ✭ 30 (-30.23%)
Mutual labels:  ctf
View All Similar Projects ➔

Rocket Shot

Backwards program slice stitching for automatic CTF problem solving.

Rocket Shot uses angr to concolically analyze basic blocks in a given program, running from the start of the block to the end, looking for interactions with a file descriptor. When reaching that condition, the basic block's control flow graph predessor's are "stitched" into the exploration path and then n-predessor plus original basic block based paths are explored attempting to reveal more modified file descriptor contents. This process continually iterates until terminated with Ctrl+C.

This technique is inspired in part by angr's Backward Slice analyzer.

Slides for the BSidesDC presentation of this tool can be found here

asciicast

Installing

Rocket Shot has been tested on Ubuntu 16.04 and the install script is setup for Ubuntu 12.04 to Ubuntu 18.04

./install.sh
#Ubuntu
sudo apt install rabbitmq
#OSX
brew install rabbitmq

Usage

Rocket Shot is a python script which accepts a binary as an argument with optional basic block timeout settings, and an optional required string match input.

(rocket_shot) [email protected]:~/Tools/auto-re$ python rocket_shot.py -h
usage: rocket_shot.py [-h] [--timeout TIMEOUT] [--string STRING] FILE

positional arguments:
  FILE

optional arguments:
  -h, --help            show this help message and exit
  --string STRING, -s STRING

Celery worker

In one terminal run the celery worker and it will be ready tp accept commands

celery -A lib.run_pass worker --loglevel=info

Examples

Checkout the samples.sh file. The file contains a small handful of challenges.

Or any of the reverseing based angr example problems at here or here

#!/bin/bash
#PicoCTF 2014 Reverseing
python rocket_shot.py challenges/bitpuzzle -s flag
#UMDCTF 2017 Reverseing
python rocket_shot.py challenges/lockpicksim -s Flag
Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].