ar33zy

pwn skiddie of hackstreetboys
—
pwning 4 food

encryptCTF2019 Pwn Write-ups

April 04, 2019 less than 1 minute read

Our team (hackstreetboys) decided to participate @ encryptCTF 2019 hosted by Abs0lut3Pwn4g3. Luckily, we finished 52nd place out of 696 participants.

For this multi-part write-up, I will discuss how I finished all challenges in pwn category.


First pwn board wipe of the year. hsb represent! :)

Pwn0 (Basic buffer overflow exploit)
Pwn1 (Basic buffer overflow exploit)
Pwn2 (gets()+ system() ROP chain)
Pwn3 ( Libc leak + ROP chain)
Pwn4 ( Format string exploit )

-

— ar33zy

hackstreetboys aka [hsb] is a CTF team from the Philippines.

Please do like our Facebook Page and Follow us on Twitter, Medium, and GitHub.

You May Also Enjoy

Exploiting vulnserver.exe — Intro to Windows Exploitation

July 05, 2020 1 minute read

In this multipart write-up, I will feature vulnserver.exe— a binary that is designed to be exploited. I used this binary to have a quick introduction on Wind...

pwn windows-exploitation mona immunity-debugger

Exploiting vulnserver.exe — LTER command with restricted characters

July 05, 2020 3 minute read

In this write-up, I will discuss about attacking KSTET command of vulnserver.exe by only using a limited set of characters.

pwn windows-exploitation badchars

Exploiting vulnserver.exe — HTER command using hex characters

July 05, 2020 3 minute read

In this write-up, I will discuss about attacking HTER command of vulnserver.exe with the use of hex characters.

pwn windows-exploitation jmp-esp

Exploiting vulnserver.exe — GTER command using egghunter

July 05, 2020 9 minute read

In this write-up, I will discuss about attacking GTER command of vulnserver.exe with egghunter.

pwn windows-exploitation jmp-esp egghunter