Going to HITB CtF Hacking game …

Posted in /home/research on August 22nd, 2007 by Rick Zhong

I am preparing for this year’s HITB (KL, Malaysia) CtF game these few weeks. My previous participation was in year 2004 and we managed to get 2nd place, but the 2004 game was boring and everything was patched up and we were definitely not up to the skill level of finding 0days and writing the exploits within 2 days.

Now is the time to revise all the exploits writing skills : (not much time left so I hope to at least cover the following topics)

    • Standard Buffer Overflow in Linux

      - executable stack with no randomized address
      - return-to-lib
      - payload in env

        • Format String Vulnerability in Linux
        • Buffer overflow in Windows
        • Heap overflow in Windows
        • Advanced Linux Buffer overflow techniqus such as RET2RET (if time allows)

          Leave A Comment »