Daniele Scanu

About Daniele Scanu

This author has not yet filled in any details.
So far Daniele Scanu has created 33 blog entries.

Simple yet elegent pwn

2018-08-17T21:49:18+02:00

Hey guys, it’s just finished the HackCon18 ctf, let’s see the writeup of Simple Yet Elegent pwn. This pwn is based on format string vulnerability and buffer overflow, then our target is leak an address of libc with the format string (because we suppose that ASLR is enabled), and then calculate remote system for spawn a shell.

Simple yet elegent pwn2018-08-17T21:49:18+02:00

My first Arm pwn

2018-08-17T21:48:52+02:00

Recently I have tried for the first time an Arm pwn, a simple program vulnerable to buffer overflow. The only difference between an Arm pwn and a “normal” binary is the assembly code, but look this for see how exploit it.

My first Arm pwn2018-08-17T21:48:52+02:00