App - System App - System

These challenges will help you understand applicative vulnerabilities.

Login credentials are provided for different challenge, the goal is to obtain additional rights by exploiting program’s weaknesses and get a password to validate challs on the portal.

Prerequisite:
 GDB.
 Knowledges in ASM.
 Knowledges in C language.

challenges 84 Challenges

Results Name Validations Number of points  Explanation for the scores Difficulty  Difficulty Author Note  Notation Solution Date
pas_valide ELF x86 - Stack buffer overflow basic 1 8% 19014 5 Lyes 11 25 March 2015
pas_valide ELF x86 - Stack buffer overflow basic 2 6% 13614 10 Lyes 10 10 April 2015
pas_valide PE32 - Stack buffer overflow basic 1% 1598 10 Ech0 8 3 December 2019
pas_valide ELF x86 - Format string bug basic 1 4% 8580 15 Lu33Y 6 8 February 2012
pas_valide ELF x64 - Stack buffer overflow - basic 3% 6613 20 Arod 7 31 May 2015
pas_valide ELF x86 - Format string bug basic 2 2% 4353 20 Lyes 5 8 April 2015
pas_valide ELF x86 - Race condition 3% 5631 20 Lu33Y 10 8 February 2012
pas_valide ELF ARM - Stack buffer overflow - basic 1% 1220 25 pickle 7 9 March 2017
pas_valide ELF MIPS - Stack buffer overflow - No NX 1% 439 25 franb 2 28 September 2018
pas_valide ELF x64 - Double free 1% 486 25 Esad 1 23 March 2021
pas_valide ELF x86 - Stack buffer overflow basic 3 2% 4341 25 Lyes 4 10 April 2015
pas_valide ELF x86 - Use After Free - basic 1% 1405 25 Esad 3 26 May 2019
pas_valide ELF ARM - Stack Spraying 1% 227 30 pickle 4 2 April 2017
pas_valide ELF x64 - Stack buffer overflow - PIE 1% 588 30 HomardBoy 2 26 March 2021
pas_valide ELF x86 - BSS buffer overflow 2% 3805 30 Lu33Y 7 8 February 2012
pas_valide ELF x86 - Stack buffer overflow basic 4 1% 2619 30 Lu33Y 5 8 February 2012
pas_valide ELF x86 - Stack buffer overflow basic 6 1% 2589 30 TiWim 5 10 March 2016
pas_valide ELF x86 - Format String Bug Basic 3 1% 1140 35 Lyes 2 27 May 2015
pas_valide PE32 - Advanced stack buffer overflow 1% 193 35 Ech0 4 3 December 2019
pas_valide ELF ARM - Basic ROP 1% 660 40 pickle 5 11 March 2017
pas_valide ELF MIPS - Basic ROP 1% 131 40 dagger 1 7 October 2018
pas_valide ELF x86 - Stack buffer overflow - C++ vtables 1% 805 40 sebbb 2 20 July 2015
pas_valide PE32+ Format string bug 1% 84 45 Ech0 1 3 December 2019
pas_valide ELF x64 - Logic bug 1% 180 50 sbrk 3 8 July 2017
pas_valide ELF x86 - Bug Hunting - Several issues 1% 101 50 sbrk 2 19 January 2018
pas_valide ELF x86 - Stack buffer and integer overflow 1% 1797 50 Lu33Y 4 8 February 2012
pas_valide ELF x86 - Stack buffer overflow - ret2dl_resolve 1% 271 50 kikko 3 28 February 2019
pas_valide ELF x86 - Stack buffer overflow basic 5 1% 1670 50 Lu33Y 1 8 February 2012
pas_valide ELF x64 - Stack buffer overflow - advanced 1% 1215 55 Arod 4 5 June 2015
pas_valide ELF MIPS - Format String Glitch 1% 59 60 pickle 1 21 October 2018
pas_valide ELF x64 - Heap Filling 1% 44 60 voydstack 0 27 May 2021
pas_valide ELF x86 - Information leakage with Stack Smashing Protector 1% 816 60 Arod 2 20 May 2015
pas_valide ELF x64 - File Structure Hacking 1% 51 65 nobodyisnobody 0 27 May 2021
pas_valide ELF ARM - Race condition 1% 127 70 pickle 1 3 June 2017
pas_valide ELF x64 - Browser exploit - Intro 1% 73 70 pickle 1 2 November 2018
pas_valide ELF x64 - Buggy VM 1% 32 70 NonStandardModel 0 10 June 2022
pas_valide ELF x64 - Heap Safe-Linking Bypass 1% 32 70 nobodyisnobody 0 22 October 2021
pas_valide ELF x64 - ret2dl_init 1% 27 70 kikko 0 27 May 2021
pas_valide ELF x86 - Out of bounds attack - French Paradox 1% 103 70 sbrk 3 17 September 2017
pas_valide ELF x86 - Remote BSS buffer overflow 1% 731 75 Tosh 1 6 February 2012
pas_valide ELF x86 - Remote Format String bug 1% 926 75 Tosh 2 6 February 2012
pas_valide PE32+ Basic ROP 1% 50 75 Ech0 0 6 December 2019
pas_valide ELF x64 - Remote heap buffer overflow - fastbin 1% 267 80 franb 1 5 February 2017
pas_valide ELF x86 - Blind remote format string bug 1% 296 80 Lyes 2 8 June 2015
pas_valide LinKern ARM - vulnerable syscall 1% 142 85 pickle 0 22 March 2017
pas_valide LinKern x86 - Buffer overflow basic 1 1% 464 85 franb 3 16 February 2016
pas_valide LinKern x86 - Null pointer dereference 1% 447 90 franb 1 16 February 2016
pas_valide LinKern x64 - Race condition 1% 297 95 franb 3 16 February 2016
pas_valide ELF ARM - Alphanumeric shellcode 1% 40 100 pickle 2 16 March 2017
pas_valide ELF MIPS - URLEncoded Format String bug 1% 28 100 pickle 0 7 October 2018
pas_valide ELF x86 - Hardened binary 1 1% 707 100 sm0k 3 11 February 2012
pas_valide ELF x86 - Hardened binary 2 1% 557 100 sm0k 3 11 February 2012
pas_valide ELF x86 - Hardened binary 3 1% 341 100 sm0k 1 11 February 2012
pas_valide ELF x86 - Hardened binary 4 1% 391 100 sm0k 2 11 February 2012
pas_valide LinKern MIPSel - Vulnerable ioctl 1% 52 100 pickle 0 23 October 2018
pas_valide LinKern x64 - reentrant code 1% 165 100 franb 2 1 March 2016
pas_valide ELF ARM - Heap format string bug 1% 75 105 franb 1 3 June 2017
pas_valide ELF x64 - Sigreturn Oriented Programming 1% 247 105 Arod 4 25 June 2015
pas_valide ELF ARM - Format String bug 1% 84 110 pickle 2 14 March 2017
pas_valide ELF ARM - Use After Free 1% 89 110 pickle 0 22 March 2017
pas_valide ELF x64 - FILE structure hijacking 1% 32 110 voydstack 3 27 May 2021
pas_valide ELF x64 - Heap feng-shui 1% 69 110 laxa 2 4 August 2017
pas_valide ELF x64 - Off-by-one bug 1% 131 110 NeedToLearn 2 19 May 2016
pas_valide ELF x86 - Hardened binary 5 1% 299 110 sm0k 1 11 February 2012
pas_valide LinKern ARM - Stack Overflow 1% 57 110 pickle 0 24 July 2017
pas_valide LinKern x86 - basic ROP 1% 244 110 franb 3 6 May 2016
pas_valide ELF ARM - Heap Off-by-One 1% 54 115 pickle 1 11 March 2017
pas_valide ELF x64 - Remote Heap buffer overflow 1 1% 162 115 Tosh 3 26 June 2015
pas_valide ELF x86 - Hardened binary 6 1% 281 115 sm0k 3 11 February 2012
pas_valide ELF x86 - Hardened binary 7 1% 232 115 Tosh 3 21 January 2013
pas_valide ELF x86 - Remote stack buffer overflow - Hardened 1% 156 115 franb 1 17 August 2016
pas_valide LinKern x64 - RowHammer 1% 75 115 pickle 1 17 March 2019
pas_valide LinKern x64 - SLUB off-by-one 1% 61 115 Tosh 2 9 May 2019
pas_valide ELF ARM - Heap buffer overflow - Wilderness 1% 33 120 pickle 1 25 March 2017
pas_valide ELF ARM - Heap Overflow 1% 41 120 pickle 1 2 April 2017
pas_valide ELF x64 - Seccomp Whitelist 1% 59 120 pickle 0 3 June 2017
pas_valide ELF x86 - Blind ROP 1% 129 120 franb 0 9 October 2016
pas_valide LinKern x64 - Memory exploration 1% 114 120 franb 1 27 July 2016
pas_valide WinKern x64 - Advanced stack buffer overflow - ROP 1% 26 120 __syscall 1 27 January 2020
pas_valide WinKern x64 - Use After Free 1% 18 120 __syscall 0 27 January 2020
pas_valide ELF x64 - Remote Heap buffer overflow 2 1% 122 130 Tosh 1 1 July 2015
pas_valide ELF x64 - Advanced Heap Exploitation - Heap Leakless & Fortified 1% 21 135 nobodyisnobody 1 27 May 2021
pas_valide ELF x64 - Blind ROP 1% 97 135 franb 1 10 March 2018
pas_valide ELF x64 - Browser exploit - BitString 1% 31 135 pickle 0 15 December 2018

Challenge Results Challenge Results

Pseudo Challenge Lang Date
HexPandaa App - Système  ELF x86 - Race condition fr 29 September 2022 at 10:55
segfault App - Système  ELF x86 - Race condition fr 29 September 2022 at 08:17
Demat App - Système  ELF x86 - BSS buffer overflow fr 29 September 2022 at 00:38
RRRectioniz App - System  ELF x86 - Stack buffer overflow basic 2 en 29 September 2022 at 00:00
Camille App - Système  ELF x86 - Stack buffer overflow basic 2 fr 28 September 2022 at 23:27
Dorian App - Système  ELF x86 - BSS buffer overflow fr 28 September 2022 at 23:26
AlphaTartine App - System  ELF ARM - Race condition en 28 September 2022 at 23:23
RRRectioniz App - System  ELF x86 - Stack buffer overflow basic 1 en 28 September 2022 at 23:22
MisTraleuh App - Système  ELF x86 - Stack buffer overflow basic 1 fr 28 September 2022 at 21:57
jeremy57 App - Système  ELF x64 - Stack buffer overflow - basic fr 28 September 2022 at 21:53