CVE Blog Projects Awards About

ctf

This is a tag used to showcase my ctf writeups.

Published at

Dec 17, 2024

NiteCTF 2024 - QEMU Guest to Host VM Escape

linux ctf
Published at

Mar 21, 2024

Wolv CTF 2024 pwn writeup

linux ctf rop format-string

Pwn challenges writeup from Wolv CTF 2024. The Pwn challenges were beginner friendly with an interesting challenge CString.
Published at

Oct 2, 2022

Sekai CTF 2022 gets writeup

linux ctf rop

Challenge writeup for the gets challenge from Sekai CTF 2022 created by me. I found a way to gain Remote-Code-Execution bypassing the hardening of latest gcc compilers which doesn't provide any useful ROP gadgets. The exploit technique in this challenge details on using just a pop rdi gadget combining with gets() to craft powerful assembly instructions and achieve Remote-Code-Execution.
Published at

Jul 25, 2022

Imaginary CTF 2022

linux ctf format-string use-after-free heap

I played this CTF with Project Sekai and we came 3rd in this CTF. I solved Format String Fun, minecraft, zookeeper with my team. Recommended read minecraft which uses House of Husk a fancy heap exploitation technique
Published at

May 10, 2022

San Diego CTF 2022

linux ctf rop heap format-string

I played this CTF with Project Sekai and it was really great. We came 5th in the CTF. Learn the power of add [rbp-0x3d], ebx; nop [rax+rax]; rep ret; (3d gadget) and forget about ASLR.