· Manuel López Pérez · tutoriales
PWN - ROP: bypass NX, ASLR, PIE and Canary
Practical write-up of a 64-bit ELF with format string and buffer overflow to leak libc/PIE/canary and build a ROP that bypasses NX, ASLR, PIE, and stack canary.
Tag: pwn
· Manuel López Pérez · writeupsSolving CTF Challenges - Part 1
Write-up of simple CTF challenges (web and stego/crypto): type juggling in PHP, impossible conditions with is_numeric, hidden parameters in source, and stego with Stegsolve/hex.
· Manuel López Pérez · tutorialesOSCP Preparation: Windows Buffer Overflow - Writeup by Brainpain (Vulnhub)
Video write-up by Brainpan (Vulnhub) focused on practising buffer overflow in Windows for OSCP using Mona.
· Manuel López Pérez · tutorialesIntroduction to Exploitation, Part 4: ret2libc, Stack 6 (Protostar)
Protostar Stack6: when you can't jump to the stack, it's time for ret2libc. Offset calculation and use of system(), exit() and '/bin/sh' from libc to execute a shell.
- · Manuel López Pérez · tutoriales
Introduction to Exploiting Part 3 – My First Buffer Overflow – Stack 5 (Protostar)
Protostar Stack5: first "classic" buffer overflow with shellcode injection, offset calculation, EIP control, and use of NOP sled to stabilise addresses.
- · Manuel López Pérez · tutoriales
Introduction to Exploiting Part 1 - Stack 0-2 (Protostar)
Practical introduction to stack buffer overflow with Protostar's Stack 0–2 challenges: offsets, little-endian, and using arguments/environment variables to modify memory.