| 일 | 월 | 화 | 수 | 목 | 금 | 토 |
|---|---|---|---|---|---|---|
| 1 | 2 | 3 | 4 | |||
| 5 | 6 | 7 | 8 | 9 | 10 | 11 |
| 12 | 13 | 14 | 15 | 16 | 17 | 18 |
| 19 | 20 | 21 | 22 | 23 | 24 | 25 |
| 26 | 27 | 28 | 29 | 30 |
- f is for flag
- reversing
- javascript engine exploit
- lee seunghyun
- ELF
- pwn
- ptr-yudai
- Exploit
- V8
- CTF
- javascript engine
- System Hacking
- author is chatgpt
- quickjs
- deayzl
- hitcon
- asis ctf
- hacking
- Vulnerability
- writeup
- asis ctf finals
- infobahn
- Wargame
- std::variant
- xion
- gdb
- pwnable
- Analysis
- ctf player
- typhoonpwn2025
- Today
- Total
목록전체 글 (12)
deayzl's blog
이 땅엔 드문 날개가 있다.밤의 결을 읽고보이지 않는 틈의 숨을 듣는 날개.그래서 명단은 늘 얇고도장은 늘 커다랗다. 담장 곁 같은 색 천 아래서사람들은 말한다.“바람이 드는 자리로 두겠다.”드문 날개들은자기 깃털을 접어 들고번호가 되는 길을 따라 들어간다. 처음엔 표지판이 반짝이고지도 위엔 동그라미가 선명하다.그러나 어느 날길은 아무 말 없이 꺾인다.바람을 지키라 부른 날개가먼지를 나르는 손이 된다. 그때, 높은 곳의 손들은책상 위에 선만 긋는다.바람의 방향은 읽지 못한 채굵은 선으로만 세상을 긋고는“공정”이라 부른다.“형평”이라 부른다.“현장이 그랬다”라고 말한다.“어쩔 수 없다”라고 말한다. 더 낮은 곳에서도같은 말이 메아리친다.같은 줄에 선 어깨들,옆자리의 마른 숨들이서로의 주머니를 먼저 재며 말..
[ASIS CTF Finals 2025/PWN/V8] Singleton (feat. TyphoonPWN 2025)
This challenge is one of pwn challenges from ASIS CTF Finals 2025 and I don't know why but it is the least solved one in pwn.This one is interesting because it is related to real world vulnerability that leads to rce reported by xion, Seunghyun Lee (@0x10n) but it is only that it's just modified and the root cause is changed a bit.So i put some effort to solve it and here's how i could solve it...
[Infobahn CTF 2025/PWN/V8] The Butterfly effect
this is v8 exploit challenge from Infobahn CTF 2025.here are given files.Dockerfile: ASCII textPATCH.diff: unified diff output text, 1st line "diff --git a/src/builtins/builtins-array.cc b/src/builtins/builtins-array.cc", 2nd line "index 22707f30836..5ff4d7bd270 100644", 3rd line "--- a/src/builtins/builtins-array.cc", ASCII textREVISION: ASCII textargs.gn: A..
[ASIS CTF 2025 Quals/PWN/QuickJS] RandomJS
I had only few hours to solve this and I could almost completed my exploit about 99% 1 min before ctf ends but lacked details to make it work on remote so i couldn't solve it.When I realized the problem of my exploit, I really cried hell :( 0001-Add-randompick-feat.patch:From 7fc990dae3fdac27cbff14912341116a7de5f894 Mon Sep 17 00:00:00 2001From: Pwn3r Date: Wed, 3 Sep 2025 18:21:32Subject: [PAT..
[SECCON CTF 13 Quals/REV/C++] F is for Flag
This challenge is easy but there were some mistakes so I couldn't solve it quickly.I think I need to practice taking care of details of my solve script fast.Recently, I'm even thinking of solving leetcode thanks to my poor script writing skills :( This challenge is in c++ and uses std::variant, std::_Function_base::_Base_manager, blahblahblah.The tricky point of this challenge is that it impleme..
[Linux kernel] CVE-2022-2590, 공유 메모리에 한정된 Dirty COW
English version of this document is in https://github.com/hyeonjun17/CVE-2022-2590-analysis GitHub - hyeonjun17/CVE-2022-2590-analysis: Dirty COW restricted to shmem in linux kernelDirty COW restricted to shmem in linux kernel. Contribute to hyeonjun17/CVE-2022-2590-analysis development by creating an account on GitHub.github.com 분석 및 테스트 버전: Linux/x86 6.0.0-rc1 (commit 37887783b3fef877bf34b899..