newbie dive into binary



【pwn 58.0】kone_gadget - SECCON CTF 2021 観戦記 (kernel exploit)

1: イントロ 2: static lysithea patch 3: 考えたこと(FAIL) 4: 想定解 5: 非想定解 6: exploit 7: アウトロ 8: 参考 1: イントロ SECCON CTF 2021 がいつだったか開催されたみたいです。本エントリではkernel問題のkone_gadgetを復習していきます。開催期間…

【pwn 50.0】DayOne - AIS3 EOF CTF 2020 Finals (kernel exploit)

keywords eBPF / verifier bug / kernel exploit / commit_creds(&init_cred) / without bpf_map.btf 1: イントロ 2: static basic patch 3: vuln ZDI-20-1440 patchの意味 最新のkernelでは というか、pointer leakが任意に可能じゃん... 4: leak kernbase …

【pwn 42.0】eebpf - Tokyowesterns CTF 2020 (kernel exploit)

keywords kernel exploit / eBPF / task traversal / TWCTF 1: イントロ 2: 問題概要 eBPFについて 配布物 patchについて 3: Vuln 4: OOB 原理 kernbase leak 何故これだけでAAR/Wにならないのか 5: AAR 6: task traversal 7: AAW 制約 8: UID overwrite 9: …

You can cite code or comments in my blog as you like basically.
There are some exceptions.
1. When the code belongs to some other license. In that case, follow it.
2. You can't use them for evil purpose.
I don't take any responsibility for using my code or comment.
If you find my blog useful, I'll appreciate if you leave comments.

This website uses Google Analytics.It uses cookies to help the website analyze how you use the site. You can manage the functionality by disabling cookies.