In this post, I will introduce the mechanism of House of Mind and House of Orange. I will use similar code in [1] to demonstrate the memory layout in House of Orange. For House of Mind, I will give an explanation on it works based on the source code of libc.
Read More »
In this post, I will give a detailed introduction of File Stream Oriented Programming, including the internal implementation on file structure, related file operation and corresponding exploitation techniques in CTF. This post is based on the source code of glibc-2.26. Since this post is for newbies interested in CTF challenges, I will add many implementation details based on source code. I write this post following the lecture notes given by [1].
Read More »
In this post, I will introduce the exploitation techniques on unsorted bin attack and overlapping chunk. I will use sample codes, which are similar to the sample code given in [1] to demonstrate unsorted bin attack. Furthermore, I will use the sample given in [2] to demonstrate how to create overlapping chunk via shrinking chunk size.
Read More »
In this post, I will introduce the exploitation techniques on unlink and fastbin corruption attack. I will use sample codes, which are similar to the sample code given in [1] to demonstrate how memory layout are manipulated in different techniques.
Read More »
In this post, I will introduce the exploitation techniques on House of Spirit and House of Force. I will use sample codes, which are similar to the sample code given in [1] to demonstrate how memory layout are manipulated in different techniques.
Read More »
氷 菓 