Research [CVE-2021-3156] Exploiting Sudo heap overflow on Debian 10 Recently the Qualys Research Team did an amazing job discovering a Heap overflow vulnerability in Sudo. In the next sections, we will analyze the bug and we will write an exploit to gain
Ctf Research [CUCTF 2020] Kernel Exploitation: Hotrod Hotrod is a kernel exploitation challenge created by my friend FizzBuzz101 for CUCTF 2020. I tested the challenge before release and since the exploitation process was really interesting, I decided to write this
Research Ret2dl_resolve x64 In this article, we will start analyzing the lazy binding process, we will proceed dissecting dl-runtime, understanding when is possible to use this technique without a leak, and finally we will build our
