Heap Exploit (ret2win) - "Hellbound" Pwn Challenge [HackTheBox Cyber Apocalypse CTF 2022]
Video walkthrough for Hellbound, a Binary Exploitation (Pwn) challenge from @HackTheBox Cyber Apocalypse 2022: Intergalactic Chase CTF. In this challenge we'll use a basic heap exploit to ret2win and compile a PwnTools script to automate the exploitation process. Write-ups/tutorials aimed at beginners - Hope you enjoy 🙂 #HackTheBox #HTB #CyberApocalypse22 #CyberApocalypse #CTF #Pentesting #OffSec #Pwn #BinaryExploitation
Sign up for HackTheBox: https://hacktheboxltd.sjv.io/xk75Yk
↢Social Media↣
Twitter: https://twitter.com/_CryptoCat
GitHub: https://github.com/Crypto-Cat/CTF
HackTheBox: https://app.hackthebox.eu/profile/11897
LinkedIn: https://www.linkedin.com/in/cryptocat
Reddit: https://www.reddit.com/user/_CryptoCat23
YouTube: https://www.youtube.com/CryptoCat23
Twitch: https://www.twitch.tv/cryptocat23
↢HTB CyberApocalypse 2022↣
https://ctftime.org/event/1639
https://ctf.hackthebox.com/ctf/371
https://www.hackthebox.com/events/cyber-apocalypse-2022
https://discord.gg/hackthebox
https://twitter.com/hackthebox_eu
↢More HTB CyberApocalypse Write-ups↣
https://roderickchan.github.io/2022/05/19/Cyber-Apocalypse-CTF-2022-all-pwn-wp
https://github.com/Hilb3r7/CyberApocalypse2022
https://gore-ez-knee.github.io/posts/htb-ca-2022-writeup-table/
↢Resources↣
Ghidra: https://ghidra-sre.org/CheatSheet.html
Volatility: https://github.com/volatilityfoundation/volatility/wiki/Linux
PwnTools: https://github.com/Gallopsled/pwntools-tutorial
CyberChef: https://gchq.github.io/CyberChef
DCode: https://www.dcode.fr/en
HackTricks: https://book.hacktricks.xyz/pentesting-methodology
CTF Tools: https://github.com/apsdehal/awesome-ctf
Forensics: https://cugu.github.io/awesome-forensics
Decompile Code: https://www.decompiler.com
Run Code: https://tio.run
↢Chapters↣
Start: 0:00
Basic File Checks: 1:09
Binary Protections (checksec): 1:55
Explore Functionality: 3:05
Disassemble/Decompile with ghidra: 4:03
PwnTools script: 11:12
End: 16:43
Видео Heap Exploit (ret2win) - "Hellbound" Pwn Challenge [HackTheBox Cyber Apocalypse CTF 2022] канала CryptoCat
Sign up for HackTheBox: https://hacktheboxltd.sjv.io/xk75Yk
↢Social Media↣
Twitter: https://twitter.com/_CryptoCat
GitHub: https://github.com/Crypto-Cat/CTF
HackTheBox: https://app.hackthebox.eu/profile/11897
LinkedIn: https://www.linkedin.com/in/cryptocat
Reddit: https://www.reddit.com/user/_CryptoCat23
YouTube: https://www.youtube.com/CryptoCat23
Twitch: https://www.twitch.tv/cryptocat23
↢HTB CyberApocalypse 2022↣
https://ctftime.org/event/1639
https://ctf.hackthebox.com/ctf/371
https://www.hackthebox.com/events/cyber-apocalypse-2022
https://discord.gg/hackthebox
https://twitter.com/hackthebox_eu
↢More HTB CyberApocalypse Write-ups↣
https://roderickchan.github.io/2022/05/19/Cyber-Apocalypse-CTF-2022-all-pwn-wp
https://github.com/Hilb3r7/CyberApocalypse2022
https://gore-ez-knee.github.io/posts/htb-ca-2022-writeup-table/
↢Resources↣
Ghidra: https://ghidra-sre.org/CheatSheet.html
Volatility: https://github.com/volatilityfoundation/volatility/wiki/Linux
PwnTools: https://github.com/Gallopsled/pwntools-tutorial
CyberChef: https://gchq.github.io/CyberChef
DCode: https://www.dcode.fr/en
HackTricks: https://book.hacktricks.xyz/pentesting-methodology
CTF Tools: https://github.com/apsdehal/awesome-ctf
Forensics: https://cugu.github.io/awesome-forensics
Decompile Code: https://www.decompiler.com
Run Code: https://tio.run
↢Chapters↣
Start: 0:00
Basic File Checks: 1:09
Binary Protections (checksec): 1:55
Explore Functionality: 3:05
Disassemble/Decompile with ghidra: 4:03
PwnTools script: 11:12
End: 16:43
Видео Heap Exploit (ret2win) - "Hellbound" Pwn Challenge [HackTheBox Cyber Apocalypse CTF 2022] канала CryptoCat
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
![Decoding, Brute-Forcing and Crafting Flask Session Cookies - "web-intro" [DefCamp CTF 2022]](https://i.ytimg.com/vi/dA28abgc57o/default.jpg)
Decoding, Brute-Forcing and Crafting Flask Session Cookies - "web-intro" [DefCamp CTF 2022]![Bat Computer [easy]: HackTheBox Pwn Challenge (shellcode injection)](https://i.ytimg.com/vi/NZfqLFuffYY/default.jpg)
Bat Computer [easy]: HackTheBox Pwn Challenge (shellcode injection)
Day 4 - HTB Cyber Santa CTF: HackTheBox Capture The Flag 2021![Emdee Five for Life [easy]: HackTheBox Misc Challenge (BeautifulSoup / Burp Intruder)](https://i.ytimg.com/vi/n0Dg-19DB9Y/default.jpg)
Emdee Five for Life [easy]: HackTheBox Misc Challenge (BeautifulSoup / Burp Intruder)![Buffer Overflow (ret2win) with 5 char* Arguments - "Vader" Pwn Challenge [Space Heroes CTF 2022]](https://i.ytimg.com/vi/DRgpQvraTUo/default.jpg)
Buffer Overflow (ret2win) with 5 char* Arguments - "Vader" Pwn Challenge [Space Heroes CTF 2022]![fs0ciety [easy]: HackTheBox Misc Challenge (ZIP cracking)](https://i.ytimg.com/vi/-cc1k6AwsLE/default.jpg)
fs0ciety [easy]: HackTheBox Misc Challenge (ZIP cracking)![BitsNBytes [hard]: HackTheBox Stego Challenge (Stego Helper Identification Tool)](https://i.ytimg.com/vi/sI7dQaEp-mE/default.jpg)
BitsNBytes [hard]: HackTheBox Stego Challenge (Stego Helper Identification Tool)![Eat the Cake! [medium]: HackTheBox Reversing Challenge (UPX packing)](https://i.ytimg.com/vi/-x4MZXtnUt4/default.jpg)
Eat the Cake! [medium]: HackTheBox Reversing Challenge (UPX packing)
Forensics Challenges - HTB x Synack RedTeamFive Capture The Flag (CTF) 2021![Marshal In The Middle [medium]: HackTheBox Forensics Challenge (decrypt TLS traffic in wireshark)](https://i.ytimg.com/vi/6WYN66mygaA/default.jpg)
Marshal In The Middle [medium]: HackTheBox Forensics Challenge (decrypt TLS traffic in wireshark)![Blue Shadow [medium]: HackTheBox Forensics Challenge (tweetlord)](https://i.ytimg.com/vi/8CawjASJi0Q/default.jpg)
Blue Shadow [medium]: HackTheBox Forensics Challenge (tweetlord)
Pwn: clutter-overflow - picoMini CTF 2021 Challenge
NahamCon CTF 2022: Web Challenge Walkthroughs![Leet Test [easy]: HackTheBox Pwn Challenge (format string write exploit with pwntools)](https://i.ytimg.com/vi/NOY_dc2fRbU/default.jpg)
Leet Test [easy]: HackTheBox Pwn Challenge (format string write exploit with pwntools)![Pusheen Loves Graphs [easy]: HackTheBox Misc Challenge (IDA Pro)](https://i.ytimg.com/vi/z6kvBBxlSgc/default.jpg)
Pusheen Loves Graphs [easy]: HackTheBox Misc Challenge (IDA Pro)![Forget Me Not [medium]: HackTheBox Forensics Challenge (volatiliy .dwarf files)](https://i.ytimg.com/vi/GJSALoiVHko/default.jpg)
Forget Me Not [medium]: HackTheBox Forensics Challenge (volatiliy .dwarf files)![JWT Key Confusion & Nunjucks SSTI - "Naughty or Nice" [Day 5: HackTheBox Cyber Santa CTF]](https://i.ytimg.com/vi/tV7C6HSrtm4/default.jpg)
JWT Key Confusion & Nunjucks SSTI - "Naughty or Nice" [Day 5: HackTheBox Cyber Santa CTF]![Manager [easy]: HackTheBox Mobile Challenge (APK Reversing / Traffic Analysis)](https://i.ytimg.com/vi/h6Lirx6mvUA/default.jpg)
Manager [easy]: HackTheBox Mobile Challenge (APK Reversing / Traffic Analysis)![Overwriting RBP with an Off-by-One Buffer Overflow - Cake - [Intigriti 1337UP LIVE CTF 2022]](https://i.ytimg.com/vi/jU7yB-elFV8/default.jpg)
Overwriting RBP with an Off-by-One Buffer Overflow - Cake - [Intigriti 1337UP LIVE CTF 2022]
0 - ROP Emporium Series - Intro/Setup
JSON Web Token Flaws - Python AppSec (by Duo Sec) - Veracode Security Labs Community Edition (free)