Outer Web | Explore

Explore >> Select a destination

You are here		tcode2k16.github.io HSCTF 2019 Writeup: Binary Exploitation · Alan's Blog
\|	\|	wachter-space.de BH-MEA Profile GOT overwrite · Wachter Space ??	14.8 parsecs away Travel
\|	\|	This is a writeup of an easy/medium pwn challenge called "Profile" featuring a type confusion, some GOT overwriting, and a funny but unnecessary one gadget exploit for the fun of it. We are given the following files: main.c profile (binary) Dockerfile docker-compose.yml Let's look at main.c and see if we can spot a vulnerability from the provided source code. #include #include #include #include struct person_t { int id; int age; char name; }; void get_value(const char msg, void *pval) { printf("%s", ms...	14.8 parsecs away Travel
\|	\|	blog.bricked.tech RaRCTF 2021 - Return of EmojiDB \| bricked.tech	13.6 parsecs away Travel
\|	\|	A nice intro to heap challenges, featuring tchache and the unsortedbin.	13.6 parsecs away Travel
\|	\|	pwning.net Accounting Accidents - Plaid Parliament of Pwning	14.7 parsecs away Travel
\|	\|	CTF Team @ Carnegie Mellon University	14.7 parsecs away Travel
\|	\|	www.sonarsource.com MyBB Remote Code Execution Chain \| Sonar	110.2 parsecs away Travel
\|		Today SonarSource is pleased to share a guest contribution to our Code Security blog series about learnings from a chain of serious vulnerabilities in MyBB.	110.2 parsecs away Travel