/explore

Click through on any links that interest you or select the planets on the right to continue exploring the Outer Web.
You are here

blog.pspaul.de
| | mdanilor.github.io
6.3 parsecs away

Travel
| | What features are in place to protect your system from memory corruption? And how to bypass them?
| | wachter-space.de
6.2 parsecs away

Travel
| | This is a writeup of an easy/medium pwn challenge called "Profile" featuring a type confusion, some GOT overwriting, and a funny but unnecessary one gadget exploit for the fun of it. We are given the following files: main.c profile (binary) Dockerfile docker-compose.yml Let's look at main.c and see if we can spot a vulnerability from the provided source code. #include #include #include #include struct person_t { int id; int age; char *name; }; void get_value(const char *msg, void *pval) { printf("%s", ms...
| | pwning.net
6.0 parsecs away

Travel
| | CTF Team @ Carnegie Mellon University
| | artsploit.blogspot.com
21.2 parsecs away

Travel
| When I first encountered Kafka UI, I was thrilled that such a dangerous functionality is exposed without authentication. After some time I d...