Toggle navigation
l0tus's blog
HOME
TAGS
ARCHIVES
ABOUT
CATEGORIES
SEARCH
English
English
简体中文
l0tus's blog
切开血管,落日殷红
XCTF-stack2-WP
初遇canary
下载附件拖进ida之后观察main函数: 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475int __cdecl main(int argc, const c......
Posted by l0tus on 2022-09-28
pwn笔记
write up
XCTF-实时数据检测-WP
比较经典的一道格式化字符串漏洞的题目,难度不大,l0tus在这里提供两种做法
经典做法 下载附件拖进ida之后看到明显的逻辑,不过这题是32位的 1234567891011int locker(){ char s[520]; // [esp+0h] [ebp-208h] BYREF fgets(s, 512, stdin); imagemagic(s); if ( key == 35795746 ) return system("/b......
Posted by l0tus on 2022-09-12
pwn笔记
write up
← Older Posts
VISITORS
Viewed
Times
Visitors In Total
FEATURED TAGS
年终总结
静态分析
抽象语法树
pwn笔记
write up
IoT
CVE复现
FSOP
论文阅读笔记
LLM
JS
转载
heap
PoC
iot
singapore
travel
杂谈
SROP
fuzz
虚拟机逃逸
kernel
write_up
networking
dn11
Fuzz
Paper Reading
vpn安全
qemu逃逸
stackmove
ChatGPT
Bot
漏洞复现
操作系统
读书笔记
源码阅读
学期总结
ABOUT ME
Vidar-Team | Binary security learner
RECENT POSTS
逆波兰表示法与抽象语法树
论文阅读:"The Instruction Hierarchy:Training LLMs to Prioritize Privileged Instructions"
在星洲拥抱夜港
关于雨的故事
论文阅读:"SyzBridge:Bridging the Gap in Exploitability Assessment of Linux Kernel Bugs in the Linux Ecosystem"
FRIENDS
Vidar-Team
woshiluo
h4kuy4
chuj
nameless
Balvan4
cameudis
esonhugh
JBNRZ
Doddy
A1rcher
korey0sh1
archives
May 2024
1
April 2024
4
March 2024
1
November 2023
3
October 2023
1
September 2023
1
August 2023
2
July 2023
2
May 2023
4
April 2023
3
March 2023
5
February 2023
6
January 2023
1
December 2022
6
September 2022
2
categories
2022年终总结
静态分析
2023西湖论剑
IoT
pwn笔记
论文阅读笔记
JS的一些特性:原型链,作用域,闭包
PoC double_free
travel
CVE复现
fuzz
FSOP
XCTF
静态分析
2023XCTF-final
LLM
write up
阿里云ctf2024
write_up
networking
iot
tcache_poisoning
HEAP
杂谈
Paper Reading
vpn安全
漏洞复现
pwnable.tw
虚拟机逃逸
SROP
2023浙江省赛
Stackmove
论文阅读笔记
ChatGPT接入Telegram Bot教程
漏洞复现
操作系统
源码阅读
kernel
XCTF-实时数据检测-WP
学期总结
ciscn2023
dn11
漏洞复现
虚拟机逃逸
读书笔记
2022浙江省赛
杂谈
ESC