pwn-learning

bjrjk/pwn-learning

Fork 0

c26d1b3bf2 Updated Level3 of KernelExploitation main Jack Ren 2025-11-15 11:42:06 +08:00
f736fa4168 Updated exploit.cpp of Level2 in KernelExploitation Jack Ren 2025-11-08 23:23:13 +08:00
712ab90546 Updated Level2 of KernelExploitation Jack Ren 2025-10-28 19:03:13 +08:00
a5eeaba86a Updated Level1 of KernelExploitation Jack Ren 2025-10-16 23:24:06 +08:00
d5bfc6ce0a Added Level 1 of KernelExploitation in PwnCollege Jack Ren 2025-10-15 21:26:48 +08:00
57c2848513 Updated typos in FastBin/CaNaKMgF_remastered Jack Ren 2024-10-25 21:16:23 +08:00
9e61260765 Finished FastBin/CaNaKMgF_remastered bjrjk 2024-10-24 20:56:26 +08:00
5537ec2174 Added Level 12.0 ~ 12.1 of KernelSecurity in PwnCollege Jack Ren 2024-10-03 18:54:15 +08:00
f507def800 Added Level 11.0 ~ 11.1 of KernelSecurity in PwnCollege Jack Ren 2024-10-03 14:08:03 +08:00
141e4a8030 Added Level 9.0 ~ 10.1 of KernelSecurity in PwnCollege Jack Ren 2024-09-30 12:39:02 +08:00
d615165639 Added Level 3.0 ~ 8.1 of KernelSecurity in PwnCollege Jack Ren 2024-09-27 16:13:01 +08:00
41c959a465 Moved JavaScript/PwnCollegeV8Exploitation/ to PwnCollege/V8Exploitation/ Jack Ren 2024-09-27 10:32:08 +08:00
ed5918f284 Added no KPTI-bypass exploit for KROP_LPE Jack Ren 2024-09-21 15:55:25 +08:00
befe99ac87 Added exploit for KROP_LPE Jack Ren 2024-09-19 20:30:20 +08:00
791b1e0c44 Level 9 of PwnCollegeV8Exploitation Jack Ren 2024-09-17 16:27:52 +08:00
e585401435 Modifed README.md for Level 8 of PwnCollegeV8Exploitation Jack Ren 2024-09-17 10:47:23 +08:00
cce85999cb Level 8 of PwnCollegeV8Exploitation Jack Ren 2024-09-17 10:31:33 +08:00
ef1d3be1ca Level 7 of PwnCollegeV8Exploitation Jack Ren 2024-09-16 19:18:58 +08:00
05e60b9cef Modified README.md for Level 6 of PwnCollegeV8Exploitation Jack Ren 2024-09-16 18:58:33 +08:00
b871bb78c7 Added REVISION, args.gn and patch for existing PwnCollegeV8Exploitation Levels Jack Ren 2024-09-16 17:05:38 +08:00
72f089aba9 Level 6 of PwnCollegeV8Exploitation Jack Ren 2024-09-16 09:16:29 +08:00
90245c7091 Minor Changes to Level 3 & 4 of PwnCollegeV8Exploitation 1. The threshold to trigger MAGLEV compilation is different when gdb is attached to d8 or not. - When gdb attached to d8, the training loop count to trigger MAGLEV is 100,000. - But when the standalone d8 running, the training loop count to trigger MAGLEV is only 10,000. If you still use 100,000, it will trigger TURBOFAN then code data structure will change and shellcode execution fails. 2. Fixed other miscellaneous minor mistakes. Jack Ren 2024-09-15 08:57:29 +08:00
cf1552b522 Level 5 of PwnCollegeV8Exploitation Jack Ren 2024-09-14 21:20:16 +08:00
870420ef83 Level 4 of PwnCollegeV8Exploitation Jack Ren 2024-09-11 14:25:17 +08:00
a7324fc9d3 Level 3 of PwnCollegeV8Exploitation Jack Ren 2024-09-08 13:03:33 +08:00
baa506d4de Level 2 of PwnCollegeV8Exploitation Jack Ren 2024-09-07 13:41:22 +08:00
4565c32498 Renamed JavaScript/PwnCollegeV8Exploitation/ShellCode/catflag.py -> JavaScript/PwnCollegeV8Exploitation/ShellCode/Level1_catflag.py Jack Ren 2024-09-07 12:09:11 +08:00
409a2d60cd Level 1 of PwnCollegeV8Exploitation Jack Ren 2024-09-07 10:12:57 +08:00
d368897714 Initial Commit for PwnCollegeV8Exploitation Jack Ren 2024-09-07 09:21:25 +08:00
46f0e9626e KROP_LPE bjrjk 2024-03-28 20:51:12 +08:00
701f75c100 Prepare for Software Security Class Groupwork bjrjk 2022-10-04 10:32:47 +08:00
d792c35726 Update OtherBin/playthenew bjrjk 2022-10-04 10:08:54 +08:00
030d12f6bb ROP/very_old_school published in CISCN2022-NC-Regional Jack Ren 2022-06-25 22:12:16 +08:00
bca57f1c6b Removed .so in .gitignore Jack Ren 2022-05-11 18:09:51 +08:00
39718ef2c1 Added 5 problems and solutions Jack Ren 2022-05-11 18:07:40 +08:00
272640d3c6 Update OtherBin/playthenew and README Jack Ren 2022-04-04 14:38:35 +08:00
60da235775 Added IDB for UAF/ShellBank bjrjk 2022-04-04 13:30:17 +08:00
a922995ff3 Finished UAF/ShellBank bjrjk 2022-04-04 13:29:45 +08:00
5fe71da5c6 Finished OtherBin/playthenew Jack Ren 2022-04-03 15:55:31 +08:00
f7073f5e7a Update README.md bjrjk 2022-03-20 13:42:46 +08:00
469afcd508 Finished TCache/tcache231 bjrjk 2022-03-20 13:16:09 +08:00
69b9ac9231 Finished IO_FILE/io_leak Jack Ren 2022-03-12 22:11:43 +08:00
07817c40c5 Modified README.md Jack Ren 2022-03-06 20:46:50 +08:00
3df738d5bc Correction on Comment of TCache/tcache Jack Ren 2022-03-06 20:44:59 +08:00
84e9ec0136 Correction on description of TCache/tcache Jack Ren 2022-03-06 20:00:21 +08:00
eae66b03d6 Added TCache/tcache Jack Ren 2022-03-04 19:02:30 +08:00
3bf3e05d73 Finished OtherBin/bookwriter bjrjk 2022-02-25 22:37:15 +08:00
ca78323796 Update README bjrjk 2022-02-17 15:48:47 +08:00
6f47f1afc2 Update OtherBin/unsorted_bin bjrjk 2022-02-17 15:47:26 +08:00
f25ec1b572 Update OtherBin/unsorted_bin bjrjk 2022-02-16 14:09:21 +08:00
467ce42779 Finished OtherBin/unsorted_bin bjrjk 2022-02-16 13:59:22 +08:00
35796be4f9 Added IDA Database for FastBin/fastbin bjrjk 2022-02-10 19:36:25 +08:00
e7e340ef47 Finished OtherBin/offbyone bjrjk 2022-02-10 12:55:51 +08:00
aa0a5e8fc8 Added Unlink/offbyone_unlink/offbyone_unlink.i64, Added heap & unlink Tutorial bjrjk 2022-02-04 14:19:35 +08:00
bc86cde959 Finished Unlink/offbyone_unlink bjrjk 2022-02-04 14:06:05 +08:00
95d5ef6cc7 Almost Finished FastBin/fastbin (Little flaw) bjrjk 2022-01-29 23:53:14 +08:00
33465c85e0 Added FastBin/fastbin bjrjk 2022-01-29 14:39:11 +08:00
c585349719 Add IDA DB for VSyscall/vul64 Jack Ren 2022-01-28 12:34:07 +08:00
f559294426 Update README Jack Ren 2022-01-28 12:28:06 +08:00
3ae93c035e Updated VSyscall/vul64 Jack Ren 2022-01-28 12:25:41 +08:00
1d1b1ffec2 Updated UAF/hacknote bjrjk 2022-01-27 15:53:37 +08:00
4b6d47ef10 Finished UAF/hacknote bjrjk 2022-01-25 23:43:36 +08:00
c412f629c9 Fixed Typo in ROP/SROP/360chunqiu2017_smallest bjrjk 2022-01-20 17:33:27 +08:00
0c02788672 Finished ROP/SROP/360chunqiu2017_smallest bjrjk 2022-01-19 23:36:01 +08:00
766d017e6e Renamed bjrjk 2022-01-19 20:45:17 +08:00
3a0e685f4d canary/djCTF-1 bjrjk 2021-12-11 12:02:32 +08:00
36877e5aa8 vsyscall/vul64 bjrjk 2021-11-10 23:00:26 +08:00
ade8e95086 Update README bjrjk 2021-09-20 16:22:32 +08:00
660ff017e0 Fixed arbitrary-write/onepunch bjrjk 2021-09-20 16:11:12 +08:00
ce5f6b7f4f Finished arbitrary-write/onepunch bjrjk 2021-09-20 15:54:58 +08:00
b2a3744a9f Finished UAF/raas bjrjk 2021-09-20 11:37:12 +08:00
04b5754972 Update README bjrjk 2021-09-19 20:58:00 +08:00
e91e55c79f Commit left format-string/notepad/notepad.idb bjrjk 2021-09-19 17:35:28 +08:00
0deb3b5025 Finished format-string/notepad bjrjk 2021-09-19 17:33:26 +08:00
05b21f5302 Update README bjrjk 2021-09-17 16:55:23 +08:00
24dada49ca Finished format-string/pwn200 bjrjk 2021-09-17 16:36:32 +08:00
49213f9143 Update README bjrjk 2021-09-17 14:56:22 +08:00
83d01532b8 Fixed full-protection/stack bjrjk 2021-09-17 14:50:20 +08:00
34783fa88d Finished full-protection/stack bjrjk 2021-09-17 12:05:51 +08:00
0b406f4eaf Update README bjrjk 2021-09-14 21:21:07 +08:00
e06705161d Finished PIE/echo2 bjrjk 2021-09-14 16:11:29 +08:00
4748b44b62 Update README bjrjk 2021-09-14 13:48:54 +08:00
23eca8a37f Finished format-string/echo bjrjk 2021-09-14 12:31:15 +08:00
15ab81a884 Finished canary/pwn100 bjrjk 2021-09-10 13:39:08 +08:00
7d83072e76 Update README bjrjk 2021-09-08 12:07:19 +08:00
b513584f36 Finished canary/smash-the-stack bjrjk 2021-09-08 11:40:48 +08:00
c3fc15b0f0 Update README bjrjk 2021-09-05 23:26:03 +08:00
8ac728ce3a Finished nx/rop, nx/rop2 bjrjk 2021-09-05 21:05:12 +08:00
f41c482911 Finished stackoverflow/ASLR bjrjk 2021-09-04 00:05:53 +08:00
0ca5b28f22 Update README bjrjk 2021-08-31 13:32:56 +08:00
6bec98d2e1 Finished stackoverflow/no-protection bjrjk 2021-08-30 22:56:18 +08:00
6f60eb8de9 Update README bjrjk 2021-08-30 20:15:04 +08:00
257d1f5662 Update README bjrjk 2021-08-30 17:05:49 +08:00
0dde46705c Update README bjrjk 2021-08-30 17:05:07 +08:00
7dc8dfede4 Initial commit bjrjk 2021-08-30 11:48:32 +08:00

Commit Graph Select branches Hide Pull Requests main Mono Color

Commit Graph

Select branches

Hide Pull Requests

main