![](https://img-blog.csdnimg.cn/20201014180756918.png?x-oss-process=image/resize,m_fixed,h_64,w_64)
pwn题
文章平均质量分 67
Morphy_Amo
工作了几年,还是个小白
展开
-
ZJCTF_login
zjctf_login原创 2022-07-18 23:45:14 · 484 阅读 · 0 评论 -
2016_0CTF_warmup
考点:stackoverflow,orw,alarm1.安全策略[*] '/root/ctf/buuctf/pwn/warmup' Arch: i386-32-little RELRO: No RELRO Stack: No canary found NX: NX enabled PIE: No PIE (0x8048000)开启了NX,不能写入shellcode。2. 分析本题的题目反编译后发现其中调用的方法都是原创 2022-03-22 15:18:24 · 540 阅读 · 0 评论 -
hitcontraining_playfmt 解题思路
格式化字符串原创 2022-03-19 11:22:08 · 666 阅读 · 0 评论 -
cmcc Simplerop
rop原创 2022-03-17 22:48:05 · 3927 阅读 · 0 评论 -
pwnable_orw
seccomp沙盒原创 2022-03-14 21:57:10 · 224 阅读 · 0 评论 -
csicn_2019_s_3
万能gadget、SROP原创 2022-03-06 21:25:29 · 319 阅读 · 0 评论 -
BUUCTF-pwn刷题记录(22-7-30更新)
BUUCTF刷题记录原创 2022-03-04 12:22:30 · 4289 阅读 · 0 评论 -
babyheap_0ctf_2017
BUUCTF 靶场CTF wiki安全策略[*] '/root/ctf/buuctf/pwn/babyheap_0ctf_2017' Arch: amd64-64-little RELRO: Full RELRO Stack: Canary found NX: NX enabled PIE: PIE enabled这题防护全开,尤其注意开启了Full RELRO,这样没办法通过劫持GOT表来getshell,可以原创 2022-03-02 23:42:05 · 283 阅读 · 2 评论 -
ciscn_2019_ne_5
ciscn_2019_ne_5 exp原创 2022-02-24 11:25:33 · 662 阅读 · 0 评论 -
Asis CTF 2016 b00ks
例题 Asis CTF 2016 b00ks`题目链接1. 安全策略[*] '/root/ctf/Other/pwn/heap/b00ks' Arch: amd64-64-little RELRO: Full RELRO Stack: No canary found NX: NX enabled PIE: PIE enabled开启了full RELRO,因此无法直接进行GOT表劫持。开启了PIE,也导致不能直接用原创 2022-02-22 14:42:41 · 3383 阅读 · 0 评论 -
2017 insomni‘hack wheelofrobots Writeup
涉及unlink、fastbin的堆溢出攻击原创 2022-01-29 13:40:17 · 1976 阅读 · 0 评论 -
2016 ZCTF note2
堆溢出中unlink的应用原创 2022-01-27 11:25:07 · 2599 阅读 · 0 评论 -
2014 HITCON stkof writeup
文章目录writeup题目链接1、查看安全策略root@kali:~/ctf/Other/pwn/heap# checksec stkof[*] '/root/ctf/Other/pwn/heap/stkof' Arch: amd64-64-little RELRO: Partial RELRO Stack: Canary found NX: NX enabled PIE: No PIE (0x400000)可以看原创 2022-01-24 15:56:22 · 2052 阅读 · 0 评论 -
ret2shellcode writeup
查看安全策略root@kali:~/ctf/Other/pwn# checksec ret2shellcode [*] '/root/ctf/Other/pwn/ret2shellcode' Arch: i386-32-little RELRO: Partial RELRO Stack: No canary found NX: NX disabled PIE: No PIE (0x8048000) RWX: .原创 2021-12-22 09:25:54 · 314 阅读 · 0 评论 -
ret2Syscall writeup
例题: ret2Syscall查看安全策略[*] '/root/ctf/Other/pwn/ret2syscall' Arch: i386-32-little RELRO: Partial RELRO Stack: No canary found NX: NX enabled PIE: No PIE (0x8048000)开启了NX enabled查看字符串和方法未发现可以利用直接或间接调用的system函原创 2021-12-14 21:24:30 · 1338 阅读 · 0 评论 -
XCTF-pwn-pwn100 writeup
XCTF-pwn-pwn100原创 2021-12-13 21:40:37 · 1507 阅读 · 0 评论 -
XCTF-简单题-pwn-003
XCTF-pwn-新手区-003原创 2021-12-10 17:03:41 · 547 阅读 · 0 评论 -
XCTF-简单题-pwn-009-level3 writeup
XCTF-新手区-pwn-009-level3原创 2021-12-10 16:58:51 · 430 阅读 · 0 评论 -
XCTF-简单题-pwn-004
CTF-pwn-新手区-004原创 2021-12-09 23:06:33 · 624 阅读 · 0 评论 -
XCTF-简单题-pwn-008-cgpwnj解题记录
XCTF-新手区-pwn-008-cgpwn查看安全策略root@kali:~/ctf/xctf/pwn/easy# checksec easy_008_cgpwn2 [*] '/root/ctf/xctf/pwn/easy/easy_008_cgpwn2' Arch: i386-32-little RELRO: Partial RELRO Stack: No canary found NX: NX enabled PIE:原创 2021-12-07 22:15:30 · 465 阅读 · 0 评论