LINE CTF 2022 - call-of-fake

Function call chaining via objectManager destructor

Mar 27, 2022 CTF

zer0pts CTF 2022 - accountant

Integer overflow creating massive oob

Mar 20, 2022 CTF

zer0pts CTF 2022 - kvstore

UAF on FILE pointer

Mar 20, 2022 CTF

zer0pts CTF 2022 - MemSafeD

vtable hijack

Mar 20, 2022 CTF

VULNCON CTF 2021 - IPS

Getting around randomized freelist and freelist pointer hardening

Dec 8, 2021 CTF

hitcon CTF 2021 - metatalk

CVE-2021-31439

Dec 6, 2021 CTF

Dragon CTF 2021 - nim

Reverse PRNG and hijack abs.got to pivot into ropchain

Nov 28, 2021 CTF

Dragon CTF 2021 - noflippidy

Hijacking DL_CALL_DT_FINI macro to call one_gadget

Nov 28, 2021 CTF

Dragon CTF 2021 - Dragonbox

Hijacking socket to overtake permission daemon

Nov 28, 2021 CTF

N1CTF 2021 - baby_guess

OOB access and race condition in kernel module

Nov 21, 2021 CTF