PwnMaster: Automatic Buffer Overflow and Format String Vulnerability Detection and Exploitation

Automated detection tools play a crucial role in assisting researchers to identify and rectify existing software flaws. The severity of a vulnerability can be assessed by an automatic exploit generation tool, based on how easy and fast it is to construct an exploit for it. Such a functionality is delivered by PwnMaster tool that we propose for identifying and exploiting vulnerabilities in ELF executable files. It leverages symbolic execution for detection and pwntools utility as aid for exploitation generation, using attacks techniques like ret2libc and "GOT Overwrite".