Introduction
This post will include the write-up of BabyPwn, EasyNote, QuietMoon and SkippingRope. I will explain them one by one.
Continue reading “CrossCTF 2018 Qual PWN Write-up Collection”
Advertisements
Category pwn
PlaidCTF 2015 PWN PlaidDB Write-up
Introduction
It is just a practice of heap challenge. At time of 2015, the challenge seems difficult and there is no knowledge of one gadget to get shell. How fast the technique evolves!!
Continue reading “PlaidCTF 2015 PWN PlaidDB Write-up”
34C3 CTF PWN LFA Write-up
Introduction
I did not take this challenge during the contest. But after reading the write-up of [1][2][3], I think it’s a good chance to learn about ruby and sandbox escape. According to my test on the local machine, it seems that using one_gadget to get shell is also feasible. In this post, I will talk about how to trigger the vulnerability and hijack control flow to get shell in the end.
Since this is my first time to write ruby script also my first time to write ruby escape, please forgive my ugly code XOrz.
Continue reading “34C3 CTF PWN LFA Write-up”
ASIS CTF 2018 Cat Write-up
Introduction
This is the only challenge I solve during the competition. It only involves some exploitation technique on Fastbin.
Continue reading “ASIS CTF 2018 Cat Write-up”
XCTF HITB AMS 2018 PWN Mutepig Write-up
Introduction
This challenge seems to be the first seen House of Rabbit in CTF competition. This challenge follows the sample code given in [1]. More details on House of Rabbit are given in my previous post House-of-Rabbit.
Continue reading “XCTF HITB AMS 2018 PWN Mutepig Write-up”
TokyoWestern MMA 2016 PWN Diary Write-up
Introduction
This post is partially based on [1] and [2]. In this challenge, it involves a customized memory management and seccomp escape.
Continue reading “TokyoWestern MMA 2016 PWN Diary Write-up”
0CTF 2018 PWN Heapstorm2 Write-up
Introduction
A nice challenge to lead me revisiting the source of libc malloc. Please read my post on A Revisit to Large Bin first before reading this post.
Continue reading “0CTF 2018 PWN Heapstorm2 Write-up”
