Implement automatic exploit generationΒ #16
Description
Background
- Using angrop, one can automatically generate ROP chains to exploit buffer overruns (such as in the case of Implement CWE787 (out-of-bounds write) moduleΒ #15 π)
- Alternatively, any input that causes a crash may suffice as an exploit for buffer-related vulnerabilities
Deliverables
- Implement a utility that, given a known vulnerable code section, generates an exploit for said code
- Note: This will depend heavily on the type of CWE, and may have to be implemented on a module-by-module basis
- Note: This may require the use of symbolic variables to synthesize program arguments -> this itself may have to be a separate task