Published onJuly 28, 2024DeadSec-CTF - Pwn - User Managementpwnoob-writeprintffsbreturn-address-overwritefsb-to-ropUtilizing Out-of-bounds write to overwrite an adjacent memory chunk to bypass login and using Format String Vulnerability to overwrite a check and overwrite return address on the stack to perform ROP.
Published onMarch 6, 2024A Definitive Guide to Format String Bugctf-techsfsbformat-stringprintfpwnguidesA detailed guide on how printf's can be used for arbitrary read and arbitrary write.
Published onOctober 9, 2023Blackhat MEA '23 Quals - Pwn - Profilectfpwnblackhatblackhatmeablackhatmea23interger-overflowfsbformat-stringleakaslr-bypassExploiting an integer overflow with FSB to leak the libc address and then overwriting the GOT entry of `free` with `system` to get a shell.