https://github.com/str8outtaheap/heapwn

Linux Heap Exploitation Practice
https://github.com/str8outtaheap/heapwn

ctf exploitation heap linux pwning

Last synced: 9 months ago
JSON representation

Linux Heap Exploitation Practice

• Host: GitHub
• URL: https://github.com/str8outtaheap/heapwn
• Owner: str8outtaheap
• Created: 2017-09-05T10:14:35.000Z (over 8 years ago)
• Default Branch: master
• Last Pushed: 2018-12-01T10:28:29.000Z (about 7 years ago)
• Last Synced: 2024-11-03T04:32:17.327Z (about 1 year ago)
• Topics: ctf, exploitation, heap, linux, pwning
• Language: C
• Homepage:
• Size: 2 MB
• Stars: 377
• Watchers: 18
• Forks: 78
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
# heapwn

Heap exploitation is a dark art to me. This repo is an attempt to document my findings/notes on the heap pwnables I deal with while learning glibc malloc's internals. 

### Resources

* [Glibc Malloc For Exploiters](https://github.com/yannayl/glibc_malloc_for_exploiters)

* [how2heap](https://github.com/shellphish/how2heap)

* [ptmalloc fanzine](http://tukan.farm/2016/07/26/ptmalloc-fanzine/)

* [Understanding glibc malloc](https://sploitfun.wordpress.com/2015/02/10/understanding-glibc-malloc/)

* [Heap Exploitation](https://heap-exploitation.dhavalkapil.com/)

* [Play with FILE Structure - Yet Another Binary Exploit Technique](http://4ngelboy.blogspot.gr/2017/11/play-with-file-structure-yet-another.html)

* [Libio VTable Mitigation Bypass](http://blog.rh0gue.com/2017-12-31-34c3ctf-300/)