App - System

Diese Übungen setzen sich mit Schwachstellen in Programmen auseinander.

Bei jeder Übung werden Login-Daten für den Server zur Verfügung gestellt. Ziel ist es auf dem Server eine Schwachstelle in dem zur Verfügung gestellten Programm auszunutzen um zusätzliche Rechte zu erhalten. Mit diesen Rechten kann man dann das Passwort auslesen, mit dem die Übung auf der Plattform gelöst werden kann.

In dieser Rubrik veröffentlichte Übungen 64 Übungen

Ergebnis Name der Übung Validierung Anzahl der Punkte  Erklärung der Punktevergabe Schwierigkeitsgrad  Schwierigkeitsgrad Autor Bewertung  Bewertung Musterlösung
pas_valide ELF x86 - Stack buffer overflow basic 1 9% 9259 5 Lyes 2
pas_valide ELF x86 - Stack buffer overflow basic 2 7% 7054 10 Lyes 1
pas_valide ELF x86 - Format string bug basic 1 5% 4725 15 Lu33Y 0
pas_valide ELF x64 - Stack buffer overflow - basic 4% 3367 20 Arod 0
pas_valide ELF x86 - Format string bug basic 2 3% 2282 20 Lyes 0
pas_valide ELF x86 - Race condition 4% 3259 20 Lu33Y 0
pas_valide ELF ARM - Stack buffer overflow - basic 1% 419 25 pickle 1
pas_valide ELF MIPS - Stack buffer overflow - No NX 1% 47 25 franb 0
pas_valide ELF x86 - Stack buffer overflow basic 3 3% 2254 25 Lyes 0
pas_valide ELF ARM - Stack Spraying 1% 101 30 pickle 0
pas_valide ELF x86 - BSS buffer overflow 3% 2645 30 Lu33Y 1
pas_valide ELF x86 - Stack buffer overflow basic 4 2% 1725 30 Lu33Y 0
pas_valide ELF x86 - Stack buffer overflow basic 6 2% 1255 30 TiWim 1
pas_valide ELF x86 - Format String Bug Basic 3 1% 616 35 Lyes 0
pas_valide ELF ARM - Basic ROP 1% 177 40 pickle 0
pas_valide ELF MIPS - Basic ROP 1% 26 40 dagger 0
pas_valide ELF x86 - Stack buffer overflow - C++ vtables 1% 436 40 sebbb 0
pas_valide ELF x64 - Logic bug 1% 74 50 sbrk 0
pas_valide ELF x86 - Bug Hunting - Several issues 1% 35 50 sbrk 0
pas_valide ELF x86 - Stack buffer and integer overflow 2% 1306 50 Lu33Y 0
pas_valide ELF x86 - Stack buffer overflow basic 5 2% 1213 50 Lu33Y 0
pas_valide ELF x64 - Stack buffer overflow - advanced 1% 586 55 Arod 0
pas_valide ELF MIPS - Format String Glitch 1% 14 60 pickle, martin 0
pas_valide ELF x86 - Information leakage with Stack Smashing Protector 1% 480 60 Arod 0
pas_valide ELF ARM - Race condition 1% 62 70 pickle 0
pas_valide ELF x64 - Browser exploit - Intro 1% 15 70 pickle 0
pas_valide ELF x86 - Out of bounds attack - French Paradox 1% 51 70 sbrk 0
pas_valide ELF x86 - Remote BSS buffer overflow 1% 586 75 Tosh 0
pas_valide ELF x86 - Remote Format String bug 1% 713 75 Tosh 0
pas_valide ELF x64 - Remote heap buffer overflow - fastbin 1% 135 80 franb 0
pas_valide ELF x86 - Blind remote format string bug 1% 177 80 Lyes 0
pas_valide LinKern ARM - vulnerable syscall 1% 52 85 pickle 0
pas_valide LinKern x86 - Buffer overflow basic 1 1% 226 85 franb 0
pas_valide LinKern x86 - Null pointer dereference 1% 232 90 franb 0
pas_valide LinKern x64 - Race condition 1% 157 95 franb 0
pas_valide ELF ARM - Alphanumeric shellcode 1% 20 100 pickle 0
pas_valide ELF MIPS - URLEncoded Format String bug 1% 6 100 pickle 0
pas_valide ELF x86 - Hardened binary 1 1% 446 100 sm0k 0
pas_valide ELF x86 - Hardened binary 2 1% 353 100 sm0k 0
pas_valide ELF x86 - Hardened binary 3 1% 226 100 sm0k 0
pas_valide ELF x86 - Hardened binary 4 1% 250 100 sm0k 0
pas_valide LinKern MIPSel - Vulnerable ioctl 1% 9 100 pickle 0
pas_valide LinKern x64 - reentrant code 1% 83 100 franb 0
pas_valide ELF ARM - Heap format string bug 1% 35 105 franb 0
pas_valide ELF x64 - Sigreturn Oriented Programming 1% 151 105 Arod 0
pas_valide LinKern x86 - basic ROP 1% 120 110 franb 0
pas_valide ELF ARM - Format String bug 1% 41 110 pickle 0
pas_valide ELF ARM - Use After Free 1% 38 110 pickle 0
pas_valide ELF x64 - Heap feng-shui 1% 31 110 laxa 0
pas_valide ELF x64 - Off-by-one bug 1% 77 110 NeedToLearn 0
pas_valide ELF x86 - Hardened binary 5 1% 179 110 sm0k 0
pas_valide LinKern ARM - Stack Overflow 1% 20 110 pickle 0
pas_valide ELF ARM - Heap Off-by-One 1% 28 115 pickle 0
pas_valide ELF x64 - Remote Heap buffer overflow 1 1% 86 115 Tosh 0
pas_valide ELF x86 - Hardened binary 6 1% 169 115 sm0k 0
pas_valide ELF x86 - Hardened binary 7 1% 141 115 Tosh 0
pas_valide ELF x86 - Remote stack buffer overflow - Hardened 1% 71 115 franb 0
pas_valide ELF ARM - Heap buffer overflow - Wilderness 1% 18 120 pickle 0
pas_valide ELF ARM - Heap Overflow 1% 21 120 pickle 0
pas_valide ELF x64 - Seccomp Whitelist 1% 27 120 pickle 0
pas_valide ELF x86 - Blind ROP 1% 43 120 franb 0
pas_valide Linkern x64 - Memory exploration 1% 51 120 franb 0
pas_valide ELF x64 - Remote Heap buffer overflow 2 1% 65 130 Tosh, Fritz 0
pas_valide ELF x64 - Blind ROP 1% 24 135 franb 0

Ergebnisse der Übungen Ergebnisse der Übungen

Nickname Übungen Sprache date
Entropy   ELF x86 - BSS buffer overflow en 13. Dezember 2018 zu  00:49
Jrmbt   ELF x64 - Blind ROP fr 12. Dezember 2018 zu  23:29
Marcozucche99   ELF x86 - Stack buffer overflow basic 1 en 12. Dezember 2018 zu  23:07
Z3r0153   ELF x86 - Stack buffer overflow basic 1 fr 12. Dezember 2018 zu  22:59
Nyarlatothep   ELF x86 - Hardened binary 4 en 12. Dezember 2018 zu  22:55
Valentin   ELF x86 - Stack buffer overflow basic 1 fr 12. Dezember 2018 zu  21:46
tefenet   ELF x64 - Stack buffer overflow - basic es 12. Dezember 2018 zu  21:41
7zhui   ELF x86 - Format String Bug Basic 3 en 12. Dezember 2018 zu  21:08
$in   ELF x86 - Stack buffer overflow basic 3 fr 12. Dezember 2018 zu  19:13
./ Pr29x0   ELF x86 - Stack buffer overflow basic 2 fr 12. Dezember 2018 zu  19:11