bjrjk/pwn-learning
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
74 Commits 1 Branch 0 Tags
90245c7091bbadddd34ad72643bad98acf0e729a
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Jack Ren 90245c7091 Minor Changes to Level 3 & 4 of PwnCollegeV8Exploitation 
1. The threshold to trigger MAGLEV compilation is different when gdb is attached to d8 or not.
    - When gdb attached to d8, the training loop count to trigger MAGLEV is 100,000.
    - But when the standalone d8 running, the training loop count to trigger MAGLEV is only 10,000. If you still use 100,000, it will trigger TURBOFAN then code data structure will change and shellcode execution fails.
2. Fixed other miscellaneous minor mistakes.
2024-09-15 08:57:29 +08:00
ArbitraryWrite/onepunch
Renamed
2022-01-19 20:45:17 +08:00
Canary
Renamed
2022-01-19 20:45:17 +08:00
FastBin/fastbin
Added IDA Database for FastBin/fastbin
2022-02-10 19:36:25 +08:00
FormatString
Removed .so in .gitignore
2022-05-11 18:09:51 +08:00
FullProtection
Added 5 problems and solutions
2022-05-11 18:07:40 +08:00
IO_FILE/io_leak
Finished IO_FILE/io_leak
2022-03-12 22:11:43 +08:00
JavaScript/PwnCollegeV8Exploitation
Minor Changes to Level 3 & 4 of PwnCollegeV8Exploitation
2024-09-15 08:57:29 +08:00
NX
Renamed
2022-01-19 20:45:17 +08:00
OtherBin
Prepare for Software Security Class Groupwork
2022-10-04 10:32:47 +08:00
PIE/echo2
Finished PIE/echo2
2021-09-14 16:11:29 +08:00
ROP
KROP_LPE
2024-03-28 20:51:12 +08:00
StackOverflow
Renamed
2022-01-19 20:45:17 +08:00
TCache
Removed .so in .gitignore
2022-05-11 18:09:51 +08:00
UAF
Added IDB for UAF/ShellBank
2022-04-04 13:30:17 +08:00
Unlink
Added Unlink/offbyone_unlink/offbyone_unlink.i64, Added heap & unlink Tutorial
2022-02-04 14:19:35 +08:00
VSyscall/vul64
Prepare for Software Security Class Groupwork
2022-10-04 10:32:47 +08:00
.gitignore
KROP_LPE
2024-03-28 20:51:12 +08:00
heap.png
Added Unlink/offbyone_unlink/offbyone_unlink.i64, Added heap & unlink Tutorial
2022-02-04 14:19:35 +08:00
LICENSE
Initial commit
2021-08-30 11:48:32 +08:00
README.md
Update OtherBin/playthenew and README
2022-04-04 14:38:35 +08:00

README.md

pwn-learning

A pwn learning repo containing multiple pwn program codes.

Tutorials

Pwn学习总结1工具篇

Pwn学习总结2ELF保护知识篇

Pwn学习总结3gdb调试命令篇

Pwn学习总结4无保护的栈溢出

Pwn学习总结5No-PIE-eXecutableASLR-Library

Pwn学习总结6NX与ROP

Pwn学习总结7Canary 利用CVE-2010-3192实现任意地址读

Pwn学习总结8Canary泄露

Pwn学习总结9格式化字符串漏洞 echo

Pwn学习总结10PIE echo2

Pwn学习总结11Full-Protection

Pwn学习总结12格式化字符串漏洞 pwn200

Pwn学习总结13格式化字符串-综合 notepad

Pwn学习总结14UAF

Pwn学习总结15任意位置写-onepunch

Pwn学习总结16SROP-360chunqiu2017_smallest

Pwn学习总结17UAF-hacknote

Pwn学习总结18VSyscall-vul64

Pwn学习总结19Heap-FastBin/fastbin

Pwn学习总结20Heap-Unlink/offbyone_unlink

Pwn学习总结21Heap-OtherBin/offbyone

Pwn学习总结22Heap-OtherBin/unsorted_bin

Pwn学习总结23Heap House of Orange bookwriter

Pwn学习总结24Heap TCache tcache

Pwn学习总结25_IO_FILE io_leak

Pwn学习总结26TCache tcache231

Pwn学习总结27SmallBin playthenew

Description
No description provided
Readme GPL-3.0 12 MiB
Languages
Python 56.7%
JavaScript 22.4%
C 11.8%
C++ 8.9%
Makefile 0.1%