FrizN
Pwnable stories
Posts
>
Most recently published
Most recently published
2021
(1)
February
(1)
(Linux kernel) The curious case of CVE-2020-14381
: kernel use-after-free exploitation and patching in the various distributions
2018
(1)
February
(1)
(glibc) From Heap to RIP
: From glibc heap control to generic code execution
2016
(1)
March
(1)
(BKP CTF 2016) qwn2own - generic browser exploits
: Vector corruption for browser exploitation
2015
(1)
April
(1)
(Plaid CTF 2015) PlaidDB - pwn 550
: NUL off-by-one in the heap
2014
(2)
March
(2)
(BKP CTF 2014) Zen garden - pwn 300
: Heap corruption
(BKP CTF 2014) Risc_emu - pwn 100
: Function pointer overwrite
2013
(11)
December
(1)
(iCTF 2013) Poipoi service
: Stack overflow
October
(1)
(Hack.lu 2013) ELF - RE 400
: Crackme Linux feat. ptrace, PLT and GOT
June
(1)
(Defcon 21 Quals) Annyong - pwn 4
: x64 remote stack overflow
April
(3)
(PlaidCTF 2013) Servr - pwn 400
: x64 kernel SLUB overflow
(PlaidCTF 2013) Pork - pwn 250
: stack overflow + ROP
(PlaidCTF 2013) Ropasaurusrex - pwn 200
: ROP basique sur un stack overflow
March
(5)
(iCTF 2012) Pewpew service
: Stack overflow + off-by-one
(iCTF 2012) Nuclearboom service
: Format string et stack overflow basiques
(Codegate YUT 2013 Preliminary) Vulnerable 400
: int overflow, uninitialized function pointer
(Codegate YUT 2013 Preliminary) Vulnerable 200
: Stack overflow exploité dans le BSS
(Codegate YUT 2013 Preliminary) Vulnerable 100
: Stack overflow exploité sur la pile
2012
(17)
September
(3)
(CSAW 2012 Quals) Exploitation 500
: Stack overflow exploité par return into libc
(CSAW 2012 Quals) Exploitation 400
: Stack overflow exploité sur la pile
(CSAW 2012 Quals) Exploitation 300
: Stack overflow exploité dans le BSS
June
(1)
(Defcon 20 Quals) pwn 100
: Stack overflow
April
(2)
(PlaidCTF 2012) Secure FS - pwn 600
: C++ virtual table corruption
(PlaidCTF 2012) Bunyan - pwn 200
: Stack overflow exécutable Go
January
(11)
(iCTF 2011) Smsgateway service
: Heap overflow, 4-bytes write anywhere
(iCTF 2011) Mailgateway service
: Heap overflow, function pointer overwrite
(iCTF 2011) Msgdispatcher service
: Python local module import
(iCTF 2011) Convicts service
: Restricted bash
(iCTF 2011) Challenge 29 - Reverse 800
: Crackme Windows
(iCTF 2011) Challenge 30 - Reverse 500
(iCTF 2011) Challenge 32 - Reverse 250
(iCTF 2011) Challenge 25 - Reverse 150
: Patch d'exécutable basique
(iCTF 2011) Challenge 31 - Reverse 150
(iCTF 2011) Challenge 17 - ASM 133786
: Un ASM personnalisé
(iCTF 2011) Challenge 33 - Forensics 100
: File carving de base
2011
(6)
December
(6)
(Nuit du Hack Public Wargame 2011) Crackme 4 - Reverseme1
: Crackme Windows
(Nuit du Hack Public Wargame 2011) Crackme 1 - Safecrypt
: Crackme Windows
: Crackme Android
: Crackme Windows
(iCTF 2008) Bomb Server
: Reverse et patching d'ELF
(iCTF 2008) Development Server
: Format string basique