Name: Leaking Secret Data with a Heap Overflow - "Leek" Pwn Challenge [Angstrom CTF 2023]
Uploaded: 2023-04-27T14:01:25+00:00
Duration: 26 min 17 s
Description: Video walkthrough for the binary exploitation (pwn) challenge, "Leek" from the Angstrom capture the flag (CTF) competition 2023. The challenge involves performing a heap overflow to overwrite all null

2 years ago

Video walkthrough for the binary exploitation (pwn) challenge, "Leek" from the Angstrom capture the flag (CTF) competition 2023. The challenge involves performing a heap overflow to overwrite all null bytes between our user input chunk and secret data chunk so that when puts() is called, it prints both chunks (there's no null terminator separating them). After this, we need to repair the header of the chunk we modified so that the program can continue execution. We repeat this process of leaking and submitting the random (secret) bytes 100 times, at which point we receive the flag! Write-ups/tutorials aimed at beginners - Hope you enjoy 🙂 #Angstrom #AngstromCTF #CTF #Pentesting #OffSec #Pwn #BinaryExploitation #Reversing #ReverseEngineering

↢Social Media↣
Twitter: https://twitter.com/_CryptoCat
GitHub: https://github.com/Crypto-Cat/CTF
HackTheBox: https://app.hackthebox.eu/profile/11897
LinkedIn: https://www.linkedin.com/in/cryptocat
Reddit: https://www.reddit.com/user/_CryptoCat23
YouTube: https://www.youtube.com/CryptoCat23
Twitch: https://www.twitch.tv/cryptocat23

↢AngstromCTF↣
https://ctftime.org/event/1859
https://2023.angstromctf.com/challenges
https://discord.gg/Dduuscw
https://twitter.com/angstromctf

↢Resources↣
Ghidra: https://ghidra-sre.org/CheatSheet.html
Volatility: https://github.com/volatilityfoundation/volatility/wiki/Linux
PwnTools: https://github.com/Gallopsled/pwntools-tutorial
CyberChef: https://gchq.github.io/CyberChef
DCode: https://www.dcode.fr/en
HackTricks: https://book.hacktricks.xyz/pentesting-methodology
CTF Tools: https://github.com/apsdehal/awesome-ctf
Forensics: https://cugu.github.io/awesome-forensics
Decompile Code: https://www.decompiler.com
Run Code: https://tio.run

↢Chapters↣
Start: 0:00
Patch lib-c (pwninit): 0:20
Test the program functionality: 1:05
Check the binary protections (checksec): 1:37
Analyse decompiled code (ghidra): 3:53
Recap of analysis: 6:51
PwnTools script: 8:40
Setup breakpoints: 14:38
Debug with GDB (pwndbg): 15:33
Heap recap (chunk structure): 16:20
Reviewing vulnerability / exploit: 18:01
Finish PwnTools script: 20:40
Test against remote server: 24:13
Final recap: 25:07
End: 25:56

Loading comments...

Premium Only Content

Leaking Secret Data with a Heap Overflow - "Leek" Pwn Challenge [Angstrom CTF 2023]

Comments

Premium Only Content

Leaking Secret Data with a Heap Overflow - "Leek" Pwn Challenge [Angstrom CTF 2023]

GritsGG

Solo Dubulars! Most Winning Warzone Player Dominates Lobby!

The Pascal Show

TYLER'S ARREST FOOTAGE MISSING?! Local Police Claim Tyler Robinson Arrest Footage Has BEEN DELETED?!

Lofi Girl

Synthwave Radio 🌌 - beats to chill/game to

omarelattar

Ex-Mafia Boss: I Made $8 Million Every Week Until The FBI Destroyed My Life! What I Learned...

TruthStream with Joe and Scott

She's of Love podcast and Joe co-Hosted interview, Mother Claudia and Daughter Juliette: Traveling, Home School, Staying Grounded, Recreating oneself, SolarPunk #514

CAMELOT331

CAMELCAST 107 | CECIL SAYS | My Last Stream? Being Kicked Off Youtube

Man in America

The Study They Tried to BURY: Covid Shots Cause MASSIVE Spike in Cancer w/ Dr. Makis

Inverted World Live

NASA Finds Strange Rock on Mars w/ Cody Dennison | Ep. 145

TimcastIRL

Trump Calls For DEATH Of Democrats For Sedition, White House WALKS IT BACK | Timcast IRL

Jasmin Laine

Poilievre Can’t Stop LAUGHING—Liberals IMPLODE After U.S. Ambassador Calls Them Out

Comments