Release 4.0.0

• Python 3 support! <3
• #1402 Fix serialtube in python 3
• #1391 Fix process.libs
• #1317 Tubes with context.encoding
• #1216 Improve format string generator
• #1285 Add freebsd generic syscall templates
• 76413f Add pwnlib.adb.bootimg for 'ANDROID!' format boot.img images
• #1202 Docker: Kill 14 layers in pwntools base images
• #1182 shellcraft.dupio() for mips

Release 4.0.0beta0

• Python 3 support! <3
• #1317 Tubes with context.encoding
• #1216 Improve format string generator
• #1285 Add freebsd generic syscall templates
• 76413f Add pwnlib.adb.bootimg for 'ANDROID!' format boot.img images
• #1202 Docker: Kill 14 layers in pwntools base images
• #1182 shellcraft.dupio() for mips

Release 3.13.0

• #1204 Reduce ROP cache filename length
• #1175 Fix nested SSH connectors
• #1355 Fix 'break' syscall
• #1277 Fix timeout parameter passing in sendlineafter and other similar functions
• #1292 Provide correct arch name to gdb for sparc64

3.12.1

• #1198 More compatibility fixes for pyelftools==0.25, and pin Sphinx<1.8.0 since it causes testing errors
• #1191 Fix compatibility with pyelftools==0.25
• #1159 Fix check for /proc/.../status
• #1162 Fix broken package versions
• #1150 Fix exception raised when a cache file is missing
• #1156 Fix ROP gadget selection logic involving int and syscall instructions
• #1152 Fix QEMU LD_PREFIX calculation (wrong parameter passed)
• #1155 Use Ubuntu Trusty for all CI builds
• #1131 Add "libc-" to libc prefixes in process tubes
• #1125 Fix a typo
• #1121 Fix tests which were broken by an upstream Sphinx change

3.12.0

3.12.0

• #1083 Better error messages for gdb when LD_PRELOAD is incorrect
• #1085 Add support for extracting Android BOOTLDR! images
• #1075 Add support for detecting GNU Screen for run_in_new_terminal
• #1074 Add support for running pwntools-gdb wrapper script instead of gdb
• #1067 Add pwnlib.tubes.server module, which adds a reusable server listener
• #1063 Add support for labels in fit(), allowing dynamic contents to be injected. (This feature is really cool, check out the pull request!)

3.11.0

3.11.0

• #1044 Enhancements to ROP
  • Much better support for 64-bit Intel (amd64) ROP
  • ROP gadget selection is optimized to favor multi-pops instead of multiple single-pop gadgets
  • Added support for blacklisting byte values in ROP gadget addresses
• #1049 Enhancements to cyclic
  • context now has two additional attributes, cyclic_alphabet and cyclic_length, which correspond to the arguments alphabet and n to cyclic() and cyclic_find() and related routines.
  • The motivation for this change is to allow setting the alphabet globally, so that any padding / patterns generated internally to pwntools can be controlled. The specific motivation is blacklisting values in ROP padding.
• #1052 Enhancements for detecting QEMU_LD_PREFIX used by QEMU user-mode emulation for sysroots
• #1035 Minor documentation changes
• #1032 Enhancements to pwn template
• #1031 More accurate Coredump.fault_addr on amd64
• #1084 Fix broken tests due to ftp.debian.org going down

3.10.0

3.10.0

• #1007 Add support for setting a gdbinit file in the context
• #1055 Fixes for Corefile stack parsing, speed up ELF.string()
• #1057 Fix a variable name typo in DynELF logging which results in an exception being thrown
• #1058 Fix an edge case in ssh_process.exe

3.9.2

3.9.2

• #1043 Do not attempt to populate the libraries used by statically-linked binaries

3.9.1

3.9.1

• #1038 Fix an issue with process() where glibc would buffer data internally, causing a hang on select()
• #1036 Fix Travis CI logging verbosity
• #1029 Fix some unicode issues when using the readline command history in tube.interactive()

3.9.0

3.9.0

• #1003 Make concat_all faster while also simplifying it's logic
• #1014 Fix for overwritten env when parsing core file
• #1023 Fixes to Travis CI