Binary Exploitation Series (7): Full RelRO Bypass
Hello everyone! Today we are going to bypass Full RelRO by using a relative write out-of-bounds vulnerability. Like last time, we have access to the binary (...
Recent Posts
Facebook CTF 2019: overfloat
overfloat was an entry challenge of the pwnable category of the Facebook CTF 2019. A binary and a libc were provided (Original tar). You can find the full ex...
Binary Exploitation Series (6): Defeating Stack Cookies
Today we are going to defeat stack cookies in two different ways. We have access to the binary and we need to leak some information about its environment to ...
Binary Exploitation Series (5): How to leak data?
I often read the question “How to leak data?” and I will try to give you some basic ideas on how to get some information about a target (binary, memory layou...
Binary Exploitation Series (4): Return to Libc
This time we will activate non-executable stack and we’re going to build our first mini ROP-Chain to leak memory addresses! Basic ASLR is of course still ena...