ROP with a very small stack - 32C3CTF teufel (pwnable 200)

2016-01-04

[public] 22.1K views, 349 likes, 6.00 dislikes audio only

Solving 'teufel' - pwnable 200 from the 32c3ctf. I didn't solve it during the CTF but worked through several writeups and doing some more research. Now that I understood it I recorded solving the challenge and recorded commentary for it.

Join the discussion: https://www.reddit.com/r/LiveOverflow/comments/3ze92e/32c3ctf_teufel_pwnable_200_video_writeup/

Credits: https://github.com/ctfs/write-ups-2015/tree/master/32c3-ctf-2015/pwn/teufel-200

Vagrant: https://www.vagrantup.com/

CTF VM: https://github.com/thebarbershopper/ctf-vagrant-64

Hopper: http://www.hopperapp.com/

ROPGadget: https://github.com/JonathanSalwan/ROPgadget

-=[ 🔴 Stuff I use ]=-

→ Microphone:* https://geni.us/ntg3b

→ Graphics tablet:* https://geni.us/wacom-intuos

→ Camera#1 for streaming:* https://geni.us/sony-camera

→ Lens for streaming:* https://geni.us/sony-lense

→ Connect Camera#1 to PC:* https://geni.us/cam-link

→ Keyboard:* https://geni.us/mech-keyboard

→ Old Microphone:* https://geni.us/mic-at2020usb

US Store Front:* https://www.amazon.com/shop/liveoverflow

-=[ ❤️ Support ]=-

→ per Video: https://www.patreon.com/join/liveoverflow

→ per Month: https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w/join

-=[ 🐕 Social ]=-

→ Twitter: https://twitter.com/LiveOverflow/

→ Website: https://liveoverflow.com/

→ Subreddit: https://www.reddit.com/r/LiveOverflow/

→ Facebook: https://www.facebook.com/LiveOverflow/

-=[ 📄 P.S. ]=-

All links with "*" are affiliate links.

LiveOverflow / Security Flag GmbH is part of the Amazon Affiliate Partner Programm.

#CTF #BinaryExploitation #ROP #BufferOverflow