Hacker News new | past | comments | ask | show | jobs | submit
stackghost | on: GTFOBins
These come up in CTFs all the time. One trick I don't see here is you can use `dd` to write into the `/proc` hierarchy to achieve all sorts of fuckery including patching shellcode into a running process.
mpeg | parent | next
You learn the most random ways to abuse program features, one I still remember because of how long it took to figure it out was an htb box that (after a long exploitation path) used NTFS ADS to hide the flag within the alternate stream in a decoy file; and of course the normal way to extract the stream was disabled so had to do some black magic with other binaries to get it
saagarjha | parent | next
I don't think I've used any of these in a CTF tbh
stackghost | root | parent
I've definitely used one or two in the last 6 months
saagarjha | root | parent
For what kind of challenge? Most of these are not even available in CTF environments
mna_ | root | parent | next
I've used them for pwncollege CTFs but pwncollege is way below your level (I've seen some of your write ups before).
loading story #47931767
dominicq | parent
Huh? How does that work exactly? I've heard of /proc fuckery before but didn't know you could disable aslr with it.
loading story #47931656
loading story #47931435