angr/angrop issues and pull requests

#128 - WIP for supporting ret2csu style gadget

Pull Request - State: open - Opened by Kyle-Kyle 15 days ago

#127 - Adding support for call from memory gadgets ( for ret2csu )

Pull Request - State: open - Opened by tomgond 15 days ago - 3 comments

#126 - Added addr_offset field for memory read and write gadgets

Pull Request - State: closed - Opened by chanijindal1 20 days ago

#125 - Feat/aarch64

Pull Request - State: closed - Opened by Kyle-Kyle 27 days ago

#124 - Implement ARM64 support and RiscyROP chaining algorithm

Pull Request - State: closed - Opened by bkrl about 2 months ago - 10 comments

#123 - Added support for passing addr_list for analyzing

Pull Request - State: closed - Opened by chanijindal1 2 months ago

#122 - Fix typo in args passed to add_constraints

Pull Request - State: closed - Opened by twizmwazin 5 months ago

#121 - Error running simple gadgetfinder

Issue - State: closed - Opened by Hooshiman 5 months ago - 7 comments
Labels: bug

#120 - Remove check for claripy.fp.FPV type

Pull Request - State: closed - Opened by twizmwazin 5 months ago

#119 - Remove deprecated claripy methods

Pull Request - State: closed - Opened by twizmwazin 6 months ago

#118 - AttributeError: 'SimSolver' object has no attribute 'BVV'

Issue - State: closed - Opened by gr0grig 6 months ago - 3 comments
Labels: question

#117 - Remove broad excepts in gadget analyzer

Pull Request - State: open - Opened by twizmwazin 6 months ago - 1 comment

#116 - Use BVV from claripy

Pull Request - State: closed - Opened by twizmwazin 6 months ago

#115 - `test_chainbuilder.test_arm_func_call` failing intermittently in CI

Issue - State: closed - Opened by twizmwazin 7 months ago - 1 comment
Labels: bug

#114 - func_call gadget in mips

Issue - State: open - Opened by yamazaki15 8 months ago - 1 comment
Labels: enhancement

#113 - Improve initial state.

Pull Request - State: closed - Opened by salls 9 months ago - 4 comments

#112 - avoid a couple unnecessary eval_upto which are slow

Pull Request - State: closed - Opened by chanijindal1 9 months ago

#111 - split read of segments into 0x100 byte chunks to speed it up

Pull Request - State: closed - Opened by chanijindal1 9 months ago - 1 comment

#110 - Limit gadgets to .text address range for kernel mode

Pull Request - State: closed - Opened by chanijindal1 9 months ago - 3 comments

#109 - Fix/timeout

Pull Request - State: open - Opened by Kyle-Kyle 10 months ago - 2 comments

#108 - make chains with retn 0x10 portable

Pull Request - State: closed - Opened by astewart-bah 10 months ago - 1 comment

#107 - updated timeout to run in thread to fix unsafe exception handling

Pull Request - State: open - Opened by astewart-bah 10 months ago - 2 comments

#106 - remove the hardcoded MAX_PIVOT_BYTES

Pull Request - State: closed - Opened by Kyle-Kyle 10 months ago

#105 - Fix/ret n

Pull Request - State: closed - Opened by Kyle-Kyle 10 months ago

#104 - x86 syscall instructions mis-identified

Issue - State: closed - Opened by astewart-bah 10 months ago - 3 comments
Labels: bug

#103 - x86_64 `ret 0x10` instructions not handled properly

Issue - State: closed - Opened by astewart-bah 10 months ago - 2 comments
Labels: bug

#102 - keep gadgets with large stack shifts

Issue - State: closed - Opened by astewart-bah 10 months ago - 2 comments
Labels: bug

#101 - Fix/blob tls

Pull Request - State: closed - Opened by Kyle-Kyle 10 months ago

#100 - Regression: does not find syscall gadget with blob backend

Issue - State: closed - Opened by Ordoviz 10 months ago - 2 comments
Labels: bug

#99 - do not allow gadgets to change segment register states

Pull Request - State: closed - Opened by Kyle-Kyle 10 months ago

#98 - pop ds; ret gadgets are not properly handled.

Issue - State: closed - Opened by astewart-bah 10 months ago - 3 comments
Labels: bug

#97 - Allow setting max stacksize

Pull Request - State: closed - Opened by Ninja3047 10 months ago - 1 comment

#96 - find_reg_setting_gadgets allow preserve_regs

Pull Request - State: closed - Opened by ekilmer 10 months ago - 1 comment

#95 - Update README API usage `rop_gadgets`

Pull Request - State: closed - Opened by ekilmer 10 months ago - 1 comment

#94 - use translate_register_name to translate offset to register names

Pull Request - State: closed - Opened by Kyle-Kyle 11 months ago - 1 comment

#93 - Fix logic error in _write_to_mem_with_gadget()

Pull Request - State: closed - Opened by astewart-bah 11 months ago - 1 comment

#92 - gets stuck while generating memory write chain

Issue - State: closed - Opened by rhelmot 11 months ago - 1 comment
Labels: bug

#91 - Fix wrapping for RopValue pointers

Pull Request - State: closed - Opened by rhelmot 11 months ago - 2 comments

#90 - utilize all the concrete values in syscall preamble

Pull Request - State: closed - Opened by Kyle-Kyle 11 months ago

#89 - Adds support for utilizing gadgets with syscall preamble

Pull Request - State: closed - Opened by Jusb3 11 months ago - 4 comments

#88 - allow setting timeout for ROP chain generation

Pull Request - State: closed - Opened by Kyle-Kyle 12 months ago

#87 - Long Chains Timeout when calling chain.payload_str()

Issue - State: closed - Opened by astewart-bah 12 months ago - 2 comments
Labels: bug

#86 - rop.func_call() bug in ARM

Issue - State: closed - Opened by astewart-bah 12 months ago - 2 comments
Labels: bug

#85 - filter out 'repz ret' because angr does not handle it properly atm

Pull Request - State: closed - Opened by Kyle-Kyle about 1 year ago

#84 - Update mem_changer.py to address logic bug in add_to_mem.

Pull Request - State: closed - Opened by astewart-bah about 1 year ago - 1 comment

#83 - fix the endianness issue in mem_changer

Pull Request - State: closed - Opened by Kyle-Kyle about 1 year ago

#82 - Fix/arm lr

Pull Request - State: closed - Opened by Kyle-Kyle about 1 year ago

#81 - Fixed logic bug in add_to_mem

Pull Request - State: closed - Opened by astewart-bah about 1 year ago - 4 comments

#80 - Feat/pivot

Pull Request - State: closed - Opened by Kyle-Kyle about 1 year ago

#79 - LR Register Not Handled Well in Arm

Issue - State: closed - Opened by astewart-bah about 1 year ago - 4 comments
Labels: bug

#78 - Fix/add to mem

Pull Request - State: closed - Opened by Kyle-Kyle about 1 year ago

#77 - stack pivot using rsp

Issue - State: closed - Opened by CinnaTech about 1 year ago - 12 comments
Labels: enhancement

#76 - add_to_mem causes angrop.errors.RopException: Does not get to a single unconstrained successor

Issue - State: closed - Opened by astewart-bah about 1 year ago - 3 comments
Labels: bug

#75 - Fix/add to mem

Pull Request - State: closed - Opened by Kyle-Kyle about 1 year ago

#74 - add_to_mem fails in arm.

Issue - State: closed - Opened by astewart-bah about 1 year ago - 2 comments
Labels: bug

#73 - add_to_mem fails in main due to RopValue Type Error

Issue - State: closed - Opened by astewart-bah about 1 year ago - 2 comments
Labels: bug

#72 - House cleaning

Pull Request - State: closed - Opened by Kyle-Kyle about 1 year ago

#71 - Feat/reg mover

Pull Request - State: closed - Opened by Kyle-Kyle about 1 year ago

#70 - Wip/ropvalue

Pull Request - State: closed - Opened by Kyle-Kyle about 1 year ago

#69 - TODO Features

Issue - State: open - Opened by Kyle-Kyle about 1 year ago
Labels: enhancement

#68 - write_to_mem Broken for 32 bit Binaries

Issue - State: closed - Opened by astewart-bah about 1 year ago - 6 comments
Labels: bug

#67 - Bad Assumption About Rebasing Data Bytes in Chains against Binaries With PIE

Issue - State: closed - Opened by astewart-bah about 1 year ago - 2 comments
Labels: bug

#66 - mark multiprocess_find_gadgets local only

Pull Request - State: closed - Opened by Kyle-Kyle about 1 year ago

#65 - Wip/chainbuilder refactor

Pull Request - State: closed - Opened by Kyle-Kyle about 1 year ago

#64 - filter out privileged instructions

Issue - State: closed - Opened by Kyle-Kyle about 1 year ago - 5 comments
Labels: bug

#63 - Wip/chainbuilder refactor

Pull Request - State: closed - Opened by Kyle-Kyle about 1 year ago

#62 - Multiple Register Pops Not Working in ARM.

Issue - State: closed - Opened by astewart-bah about 1 year ago - 3 comments
Labels: bug

#61 - Get CC in a plaform-aware manner.

Pull Request - State: closed - Opened by ltfish over 1 year ago
Labels: enhancement

#60 - support conditional execution in arm

Issue - State: open - Opened by Kyle-Kyle over 1 year ago - 1 comment
Labels: enhancement

#59 - fix set_int_max_str_digits error in newer python

Pull Request - State: closed - Opened by Kyle-Kyle over 1 year ago

#58 - Moving register values

Issue - State: closed - Opened by truekonrads over 1 year ago - 6 comments
Labels: enhancement

#57 - add ignore_registers support for func_call()

Issue - State: closed - Opened by astewart-bah almost 2 years ago - 2 comments
Labels: enhancement

#56 - bump minor version

Pull Request - State: closed - Opened by mahaloz almost 2 years ago

#55 - Auto release and pypi on tag push

Pull Request - State: closed - Opened by mahaloz almost 2 years ago - 1 comment

#54 - angr-bot dead on this repo

Issue - State: closed - Opened by mahaloz almost 2 years ago - 4 comments
Labels: bug

#53 - Fix/haccs final

Pull Request - State: closed - Opened by Kyle-Kyle over 2 years ago

#52 - Reference to missing angr.option

Issue - State: closed - Opened by Tim-Nosco over 2 years ago - 2 comments
Labels: bug

#51 - Do not use old handler

Pull Request - State: closed - Opened by zwimer over 2 years ago - 1 comment

#50 - Fix/verifier

Pull Request - State: closed - Opened by Kyle-Kyle over 2 years ago - 1 comment

#49 - enable ADD_AUTO_REFS in angrop

Pull Request - State: closed - Opened by rhelmot over 2 years ago - 1 comment

#48 - Fix/badbytes

Pull Request - State: closed - Opened by Kyle-Kyle over 2 years ago - 2 comments

#47 - Unconstain angr dependency

Pull Request - State: closed - Opened by twizmwazin over 2 years ago - 1 comment

#46 - Switch to Github Actions CI

Pull Request - State: closed - Opened by twizmwazin almost 3 years ago

#45 - make stack_length configurable so it can analyze gadgets with more st…

Pull Request - State: closed - Opened by Kyle-Kyle almost 3 years ago

#44 - Removed nose imports in test_rop.py

Pull Request - State: closed - Opened by mohitrpatil almost 3 years ago

#43 - Use setup.cfg

Pull Request - State: closed - Opened by twizmwazin almost 3 years ago

#42 - Add pyproject.toml

Pull Request - State: closed - Opened by twizmwazin almost 3 years ago

#41 - Remove progressbar2 dependency

Pull Request - State: closed - Opened by twizmwazin almost 3 years ago

#40 - Fix/catch error

Pull Request - State: closed - Opened by Kyle-Kyle almost 3 years ago - 1 comment

#39 - Disabled auto_load_libs

Pull Request - State: closed - Opened by mohitrpatil over 3 years ago

#38 - `test_rop_i386_cgc` timeout in CI

Issue - State: closed - Opened by mborgerson over 3 years ago - 4 comments
Labels: pinned

#37 - Helping with the project [Passing strings to function calls]

Issue - State: closed - Opened by reteps over 3 years ago

#36 - Fix packages in setup.py

Pull Request - State: closed - Opened by twizmwazin almost 4 years ago
Labels: bug

#35 - Import error

Issue - State: closed - Opened by fabaff almost 4 years ago - 3 comments

#34 - we may generate engine errors during chain generation

Pull Request - State: closed - Opened by Kyle-Kyle almost 4 years ago

#33 - Wip/dumb tracer

Pull Request - State: closed - Opened by Kyle-Kyle almost 4 years ago - 6 comments

#32 - Disable showing progress output in tests

Pull Request - State: closed - Opened by twizmwazin almost 4 years ago

#31 - Avoid creating of several long lists in ROP.init

Pull Request - State: closed - Opened by nirizr over 4 years ago - 3 comments

#30 - Try using partial controllers for execve if syscall fails

Pull Request - State: closed - Opened by SweetVishnya about 5 years ago - 1 comment

#29 - Values passed on stack ignoring badbytes

Issue - State: closed - Opened by redfast00 over 5 years ago - 9 comments

GitHub / angr/angrop issues and pull requests