PicoCTF
pwn - ropfu
What's ROP?
Vulnerability: stack buffer overflow - improper length check in get()
pwn - buffer overflow 23
Control the return address and arguments | Do you think you can bypass the protection and get the flag?
Vulnerability: stack buffer overflow
pwn - babygame02
Break the game and get the flag.
Vulnerability: stack buffer overflow
pwn - Horsetrack
I'm starting to write a game about horse racing, would you mind testing it out? Maybe you can find some...
Vulnerability: use after free - dangling pointer
pwn - tic-tac
Someone created a program to read text files; we think the program reads files with root privileges but apparently it...
Vulnerability: toc-tou race condition
pwn - high frequency troubles
Vulnerability: house of orange + heap buffer overflow - improper length check in gets()
pwn - babygame03
Break the game and get the flag.Welcome to BabyGame 03! Navigate around the map and see what you can find!...
pwn - format string 0123
Can you use your knowledge of format strings to make the customers happy? | Patrick and Sponge Bob were really...
pwn - heap 0123
Are overflows just a stack concern? | Can you control your overflow? | Can you handle function pointers? | This...
pwn - Echo Valley
The echo valley is a simple function that echoes back whatever you say to it.But how do you make it...
pwn - Handoff
Vulnerability: stack buffer overflow
pwn - hash only 12
Here is a binary that has enough privilege to read the content of the flag file but will only let...
pwn - PIE TIME 12
Can you try to get the flag? Beware we have PIE! | Can you try to get the flag? I'm...
Vulnerability: format string bug