Welcome to Cyberchunk 2077 !
Here is a record of my learning of various heap exploitation techniques and keep updating.
If there is a trick that no longer works, I will remove it.
| File | Technique | Applicable CTF Challenges |
|---|---|---|
| fastbin_dup | ||
| fastbin_dup_consolidate | ||
| fastbin_dup_into_stack | ||
| overlapping_chunks | babyheap_0ctf_2017 | |
| overlapping_chunks_2 | ||
| poison_null_byte | ||
| unsorted_bin_attack | ||
| unsorted_bin_into_stack | ||
| unsafe_unlink | ||
| mmap_overlapping_chunks | ||
| large_bin_attack | ||
| house_of_spirit | babyheap_0ctf_2017 | |
| house_of_lore | ||
| house_of_force | ||
| house_of_einherjar | ||
| house_of_orange | ||
| house_of_roman |
| File | Techinque | Applicable CTF Challenges |
|---|---|---|
| fastbin_dup | ||
| fastbin_reverse_into_tcache | ||
| house_of_lore | ||
| house_of_force | ||
| large_bin_attack | ||
| overlapping_chunks | ||
| mmap_overlapping_chunks | ||
| poison_null_byte | ||
| house_of_einherjar | ||
| unsafe_unlink | ||
| unsorted_bin_attack | ||
| house_of_botcake | ||
| tcache_house_of_spirit | ||
| tcache_poisoning | ||
| tcache_stashing_unlink_attack |
| File | Techinque | Applicable CTF Challenges |
|---|---|---|
| fastbin_dup | ||
| fastbin_reverse_into_tcache | ||
| large_bin_attack | ||
| overlapping_chunks | ||
| mmap_overlapping_chunks | ||
| house_of_einherjar | ||
| unsafe_unlink | ||
| house_of_botcake | ||
| tcache_house_of_spirit | ||
| tcache_poisoning | ||
| tcache_stashing_unlink_attack |