ELF ARM - Heap Overflow

120 Punkte  0x0

Can you pwn the heap without convenient pointers to overwrite?

Autor

pickle,  

Stufe  Schwierigkeitsgrad

Validierung

33 Herausforderer 1%

Bewertung  Bewertung

1
2
3
4
5
14 votes

Bitte loggen Sie sich ein um auf diese Seite zugreifen zu können

  Musterlösung

Eine Musterlösung vorschlagen

Ergebnisse der Übungen Ergebnisse der Übungen

Nickname Übungen Sprache date
SIGABRT   ELF ARM - Heap Overflow 19. Oktober 2020 zu  15:39
notreality   ELF ARM - Heap Overflow 12. Oktober 2020 zu  22:46
hexabeast   ELF ARM - Heap Overflow 10. Oktober 2020 zu  01:00
BZHugs   ELF ARM - Heap Overflow 10. Oktober 2020 zu  00:59
voydstack   ELF ARM - Heap Overflow 1. Oktober 2020 zu  23:12
gwel   ELF ARM - Heap Overflow 14. September 2020 zu  12:54
st4rPwn3d   ELF ARM - Heap Overflow 8. September 2020 zu  20:43
awe   ELF ARM - Heap Overflow 27. Juli 2020 zu  23:09
nobodyisnobody   ELF ARM - Heap Overflow 10. März 2020 zu  19:36
macz   ELF ARM - Heap Overflow 23. Dezember 2019 zu  21:45

 75 Übungen

Ergebnis Name Validierung Anzahl der Punkte  Erklärung der Punktevergabe Schwierigkeitsgrad  Schwierigkeitsgrad Autor Bewertung  Bewertung Musterlösung
pas_valide ELF x86 - Stack buffer overflow basic 1 8% 14928 5 Lyes 3
pas_valide ELF x86 - Stack buffer overflow basic 2 6% 10677 10 Lyes 1
pas_valide PE32 - Stack buffer overflow basic 1% 632 10 Ech0 0
pas_valide ELF x86 - Format string bug basic 1 4% 6946 15 Lu33Y 0
pas_valide ELF x64 - Stack buffer overflow - basic 3% 5278 20 Arod 0
pas_valide ELF x86 - Format string bug basic 2 2% 3469 20 Lyes 0
pas_valide ELF x86 - Race condition 3% 4754 20 Lu33Y 0
pas_valide ELF ARM - Stack buffer overflow - basic 1% 965 25 pickle 1
pas_valide ELF MIPS - Stack buffer overflow - No NX 1% 304 25 franb 0
pas_valide ELF x86 - Stack buffer overflow basic 3 2% 3470 25 Lyes 0
pas_valide ELF x86 - Use After Free - basic 1% 908 25 Esad 0
pas_valide ELF ARM - Stack Spraying 1% 169 30 pickle 0
pas_valide ELF x86 - BSS buffer overflow 2% 3348 30 Lu33Y 1
pas_valide ELF x86 - Stack buffer overflow basic 4 2% 2207 30 Lu33Y 0
pas_valide ELF x86 - Stack buffer overflow basic 6 2% 2028 30 TiWim 1
pas_valide ELF x86 - Format String Bug Basic 3 1% 908 35 Lyes 0
pas_valide PE32 - Advanced stack buffer overflow 1% 107 35 Ech0 0
pas_valide ELF ARM - Basic ROP 1% 488 40 pickle 0
pas_valide ELF MIPS - Basic ROP 1% 91 40 dagger 0
pas_valide ELF x86 - Stack buffer overflow - C++ vtables 1% 652 40 sebbb 0
pas_valide PE32+ Format string bug 1% 50 45 Ech0 0
pas_valide ELF x64 - Logic bug 1% 143 50 sbrk 1
pas_valide ELF x86 - Bug Hunting - Several issues 1% 73 50 sbrk 0
pas_valide ELF x86 - Stack buffer and integer overflow 1% 1586 50 Lu33Y 0
pas_valide ELF x86 - Stack buffer overflow - ret2dl_resolve 1% 145 50 kikko 0
pas_valide ELF x86 - Stack buffer overflow basic 5 1% 1454 50 Lu33Y 0
pas_valide ELF x64 - Stack buffer overflow - advanced 1% 951 55 Arod 0
pas_valide ELF MIPS - Format String Glitch 1% 40 60 pickle, martin 0
pas_valide ELF x86 - Information leakage with Stack Smashing Protector 1% 688 60 Arod 0
pas_valide ELF ARM - Race condition 1% 100 70 pickle 0
pas_valide ELF x64 - Browser exploit - Intro 1% 57 70 pickle 0
pas_valide ELF x86 - Out of bounds attack - French Paradox 1% 84 70 sbrk 0
pas_valide ELF x86 - Remote BSS buffer overflow 1% 671 75 Tosh 0
pas_valide ELF x86 - Remote Format String bug 1% 835 75 Tosh 0
pas_valide PE32+ Basic ROP 1% 23 75 Ech0 0
pas_valide ELF x64 - Remote heap buffer overflow - fastbin 1% 215 80 franb 0
pas_valide ELF x86 - Blind remote format string bug 1% 242 80 Lyes 0
pas_valide LinKern ARM - vulnerable syscall 1% 101 85 pickle 0
pas_valide LinKern x86 - Buffer overflow basic 1 1% 355 85 franb 0
pas_valide LinKern x86 - Null pointer dereference 1% 354 90 franb 0
pas_valide LinKern x64 - Race condition 1% 220 95 franb 0
pas_valide ELF ARM - Alphanumeric shellcode 1% 34 100 pickle 0
pas_valide ELF MIPS - URLEncoded Format String bug 1% 19 100 pickle 0
pas_valide ELF x86 - Hardened binary 1 1% 591 100 sm0k 0
pas_valide ELF x86 - Hardened binary 2 1% 472 100 sm0k 0
pas_valide ELF x86 - Hardened binary 3 1% 291 100 sm0k 0
pas_valide ELF x86 - Hardened binary 4 1% 323 100 sm0k 0
pas_valide LinKern MIPSel - Vulnerable ioctl 1% 33 100 pickle 0
pas_valide LinKern x64 - reentrant code 1% 116 100 franb 0
pas_valide ELF ARM - Heap format string bug 1% 61 105 franb 0
pas_valide ELF x64 - Sigreturn Oriented Programming 1% 196 105 Arod 0
pas_valide ELF ARM - Format String bug 1% 72 110 pickle 0
pas_valide ELF ARM - Use After Free 1% 72 110 pickle 0
pas_valide ELF x64 - Heap feng-shui 1% 54 110 laxa 0
pas_valide ELF x64 - Off-by-one bug 1% 104 110 NeedToLearn 0
pas_valide ELF x86 - Hardened binary 5 1% 250 110 sm0k 0
pas_valide LinKern ARM - Stack Overflow 1% 40 110 pickle 0
pas_valide LinKern x86 - basic ROP 1% 176 110 franb 0
pas_valide ELF ARM - Heap Off-by-One 1% 43 115 pickle 0
pas_valide ELF x64 - Remote Heap buffer overflow 1 1% 134 115 Tosh 0
pas_valide ELF x86 - Hardened binary 6 1% 233 115 sm0k 0
pas_valide ELF x86 - Hardened binary 7 1% 198 115 Tosh 0
pas_valide ELF x86 - Remote stack buffer overflow - Hardened 1% 119 115 franb 0
pas_valide LinKern x64 - RowHammer 1% 49 115 pickle 0
pas_valide LinKern x64 - SLUB off-by-one 1% 31 115 Tosh 0
pas_valide ELF ARM - Heap buffer overflow - Wilderness 1% 25 120 pickle 0
pas_valide ELF ARM - Heap Overflow 1% 33 120 pickle 0
pas_valide ELF x64 - Seccomp Whitelist 1% 39 120 pickle 0
pas_valide ELF x86 - Blind ROP 1% 96 120 franb 0
pas_valide Linkern x64 - Memory exploration 1% 78 120 franb 0
pas_valide WinKern x64 - Advanced stack buffer overflow - ROP 1% 11 120 __syscall, Synacktiv 0
pas_valide WinKern x64 - Use After Free 1% 8 120 __syscall, Synacktiv 0
pas_valide ELF x64 - Remote Heap buffer overflow 2 1% 101 130 Tosh, Fritz 0
pas_valide ELF x64 - Blind ROP 1% 66 135 franb 0
pas_valide ELF x64 - Browser exploit - BitString 1% 24 135 pickle 0