I usually play solo under the team CreateRemoteThread.
Ret2dlresolve ROP, BOF, no win function
Link
Ret2win, BOF, ROP, ROPGadget
Ret2system, fmtstr to leak canary, BOF to system('/bin/sh')
strncmp vuln, 1/256 null byte brute-force
strncmp
Fmtstr, puts GOT override with win function
puts
BOF, no win function, no leaks, no gadgets, system() available
Last updated 1 year ago