ELF x64 - Browser exploit - BitString

135 Points  

A bit of browser fun!

Author

pickle,  

Level  Difficulty

Validations

16 Challengers 1%

Note  Notation

1
2
3
4
5
23 Votes
To reach this part of the site please login

Solution  Solution

Submit a solution

Challenge Results Challenge Results

Pseudo Challenge Lang date
Tomtombinary   ELF x64 - Browser exploit - BitString fr 7 October 2019 at 20:17
XeR   ELF x64 - Browser exploit - BitString fr 4 June 2019 at 20:20
Redouane   ELF x64 - Browser exploit - BitString fr 25 May 2019 at 01:33
john.doe   ELF x64 - Browser exploit - BitString en 23 May 2019 at 19:52
Geluchat   ELF x64 - Browser exploit - BitString fr 15 May 2019 at 19:42
fanch   ELF x64 - Browser exploit - BitString fr 12 May 2019 at 17:08
Alkanor   ELF x64 - Browser exploit - BitString fr 28 April 2019 at 14:55
__syscall   ELF x64 - Browser exploit - BitString fr 1 March 2019 at 22:36
abu_youssef   ELF x64 - Browser exploit - BitString fr 1 March 2019 at 13:25
christrc   ELF x64 - Browser exploit - BitString fr 11 January 2019 at 21:27

Challenges associated with this section 69 Challenges

Results Challenge's Name Validations Number of points  Explanation for the scores Difficulty  Difficulty Author Note  Notation Solution
pas_valide ELF x86 - Stack buffer overflow basic 1 8% 11832 5 Lyes 11
pas_valide ELF x86 - Stack buffer overflow basic 2 6% 8737 10 Lyes 10
pas_valide ELF x86 - Format string bug basic 1 4% 5798 15 Lu33Y 5
pas_valide ELF x64 - Stack buffer overflow - basic 3% 4288 20 Arod 5
pas_valide ELF x86 - Format string bug basic 2 2% 2858 20 Lyes 5
pas_valide ELF x86 - Race condition 3% 3885 20 Lu33Y 8
pas_valide ELF ARM - Stack buffer overflow - basic 1% 719 25 pickle 7
pas_valide ELF MIPS - Stack buffer overflow - No NX 1% 186 25 franb 2
pas_valide ELF x86 - Stack buffer overflow basic 3 2% 2827 25 Lyes 2
pas_valide ELF x86 - Use After Free - basic 1% 374 25 Esad 2
pas_valide ELF ARM - Stack Spraying 1% 136 30 pickle 4
pas_valide ELF x86 - BSS buffer overflow 2% 2993 30 Lu33Y 6
pas_valide ELF x86 - Stack buffer overflow basic 4 2% 1997 30 Lu33Y 5
pas_valide ELF x86 - Stack buffer overflow basic 6 2% 1636 30 TiWim 4
pas_valide ELF x86 - Format String Bug Basic 3 1% 772 35 Lyes 2
pas_valide ELF ARM - Basic ROP 1% 349 40 pickle 5
pas_valide ELF MIPS - Basic ROP 1% 62 40 dagger 1
pas_valide ELF x86 - Stack buffer overflow - C++ vtables 1% 554 40 sebbb 2
pas_valide ELF x64 - Logic bug 1% 112 50 sbrk 3
pas_valide ELF x86 - Bug Hunting - Several issues 1% 59 50 sbrk 0
pas_valide ELF x86 - Stack buffer and integer overflow 1% 1468 50 Lu33Y 3
pas_valide ELF x86 - Stack buffer overflow - ret2dl_resolve 1% 87 50 kikko 0
pas_valide ELF x86 - Stack buffer overflow basic 5 1% 1343 50 Lu33Y 1
pas_valide ELF x64 - Stack buffer overflow - advanced 1% 776 55 Arod 4
pas_valide ELF MIPS - Format String Glitch 1% 27 60 pickle, martin 0
pas_valide ELF x86 - Information leakage with Stack Smashing Protector 1% 583 60 Arod 2
pas_valide ELF ARM - Race condition 1% 79 70 pickle 1
pas_valide ELF x64 - Browser exploit - Intro 1% 39 70 pickle 1
pas_valide ELF x86 - Out of bounds attack - French Paradox 1% 68 70 sbrk 3
pas_valide ELF x86 - Remote BSS buffer overflow 1% 632 75 Tosh 1
pas_valide ELF x86 - Remote Format String bug 1% 782 75 Tosh 2
pas_valide ELF x64 - Remote heap buffer overflow - fastbin 1% 177 80 franb 1
pas_valide ELF x86 - Blind remote format string bug 1% 215 80 Lyes 1
pas_valide LinKern ARM - vulnerable syscall 1% 75 85 pickle 0
pas_valide LinKern x86 - Buffer overflow basic 1 1% 282 85 franb 2
pas_valide LinKern x86 - Null pointer dereference 1% 302 90 franb 0
pas_valide LinKern x64 - Race condition 1% 186 95 franb 0
pas_valide ELF ARM - Alphanumeric shellcode 1% 23 100 pickle 2
pas_valide ELF MIPS - URLEncoded Format String bug 1% 13 100 pickle 0
pas_valide ELF x86 - Hardened binary 1 1% 521 100 sm0k 3
pas_valide ELF x86 - Hardened binary 2 1% 409 100 sm0k 3
pas_valide ELF x86 - Hardened binary 3 1% 260 100 sm0k 1
pas_valide ELF x86 - Hardened binary 4 1% 291 100 sm0k 2
pas_valide LinKern MIPSel - Vulnerable ioctl 1% 23 100 pickle 0
pas_valide LinKern x64 - reentrant code 1% 96 100 franb 1
pas_valide ELF ARM - Heap format string bug 1% 45 105 franb 0
pas_valide ELF x64 - Sigreturn Oriented Programming 1% 171 105 Arod 3
pas_valide ELF ARM - Format String bug 1% 54 110 pickle 0
pas_valide ELF ARM - Use After Free 1% 51 110 pickle 0
pas_valide ELF x64 - Heap feng-shui 1% 37 110 laxa 2
pas_valide ELF x64 - Off-by-one bug 1% 86 110 NeedToLearn 2
pas_valide ELF x86 - Hardened binary 5 1% 217 110 sm0k 1
pas_valide LinKern ARM - Stack Overflow 1% 30 110 pickle 0
pas_valide LinKern x86 - basic ROP 1% 144 110 franb 1
pas_valide ELF ARM - Heap Off-by-One 1% 31 115 pickle 1
pas_valide ELF x64 - Remote Heap buffer overflow 1 1% 102 115 Tosh 3
pas_valide ELF x86 - Hardened binary 6 1% 202 115 sm0k 3
pas_valide ELF x86 - Hardened binary 7 1% 167 115 Tosh 3
pas_valide ELF x86 - Remote stack buffer overflow - Hardened 1% 96 115 franb 1
pas_valide LinKern x64 - RowHammer 1% 25 115 pickle 0
pas_valide LinKern x64 - SLUB off-by-one 1% 17 115 Tosh 1
pas_valide ELF ARM - Heap buffer overflow - Wilderness 1% 20 120 pickle 1
pas_valide ELF ARM - Heap Overflow 1% 23 120 pickle 0
pas_valide ELF x64 - Seccomp Whitelist 1% 34 120 pickle 0
pas_valide ELF x86 - Blind ROP 1% 66 120 franb 0
pas_valide Linkern x64 - Memory exploration 1% 63 120 franb 1
pas_valide ELF x64 - Remote Heap buffer overflow 2 1% 74 130 Tosh, Fritz 1
pas_valide ELF x64 - Blind ROP 1% 42 135 franb 1
pas_valide ELF x64 - Browser exploit - BitString 1% 16 135 pickle 0