App - System App - System

These challenges will help you understand applicative vulnerabilities.

Login credentials are provided for different challenge, the goal is to obtain additional rights by exploiting program’s weaknesses and get a password to validate challs on the portal.

Prerequisite:
 GDB.
 Knowledges in ASM.
 Knowledges in C language.

challenges 89 Challenges

Results Name Validations Number of points  Explanation for the scores Difficulty  Difficulty Author Note  Notation Solution Date
pas_valide ELF ARM64 - Multithreading 1% 14 140 franb 0 13 February 2023
pas_valide LinKern ARM - Stack Overflow 1% 67 110 pickle 0 24 July 2017
pas_valide ELF x64 - Heap Filling 1% 102 60 voydstack 0 27 May 2021
pas_valide ELF x64 - Buggy VM 1% 67 70 NonStandardModel 0 10 June 2022
pas_valide ELF x64 - ret2dl_init 1% 45 70 kikko 0 27 May 2021
pas_valide PE32+ Basic ROP 1% 71 75 Ech0 0 6 December 2019
pas_valide LinKern ARM - vulnerable syscall 1% 164 85 pickle 0 22 March 2017
pas_valide ELF MIPS - URLEncoded Format String bug 1% 37 100 pickle 0 7 October 2018
pas_valide ELF x64 - Blind SROP 1% 7 100 s1m 0 28 December 2023
pas_valide LinKern MIPSel - Vulnerable ioctl 1% 67 100 pickle 0 23 October 2018
pas_valide ELF x64 - File Structure Hacking 1% 98 65 nobodyisnobody 0 27 May 2021
pas_valide ELF ARM - Use After Free 1% 105 110 pickle 0 22 March 2017
pas_valide WinKern x64 - Use After Free 1% 29 120 __syscall , Synacktiv 0 27 January 2020
pas_valide ELF x64 - Browser exploit - BitString 1% 38 135 pickle 0 15 December 2018
pas_valide ELF ARM64 - Heap Underflow 1% 19 120 nobodyisnobody 0 13 February 2023
pas_valide ELF x64 - Seccomp Whitelist 1% 81 120 pickle 0 3 June 2017
pas_valide ELF x86 - Blind ROP 1% 153 120 franb 0 9 October 2016
pas_valide ELF ARM - Heap buffer overflow - Wilderness 1% 42 120 pickle 1 25 March 2017
pas_valide ELF x64 - Browser exploit - Intro 1% 101 70 pickle 1 2 November 2018
pas_valide ELF x64 - Blind ROP 1% 114 135 franb 1 10 March 2018
pas_valide ELF x64 - Heap Safe-Linking Bypass 1% 80 70 nobodyisnobody 1 22 October 2021
pas_valide ELF x64 - Advanced Heap Exploitation - Heap Leakless & Fortified 1% 46 135 nobodyisnobody 1 27 May 2021
pas_valide ELF x86 - Remote BSS buffer overflow 1% 761 75 Tosh 1 6 February 2012
pas_valide ELF x64 - Remote Heap buffer overflow 2 1% 145 130 Tosh , Fritz 1 1 July 2015
pas_valide LinKern x86 - Null pointer dereference 1% 512 90