Letssplitturtles.part02.rar -

The core of this stage involved crafting a precision payload that aligned with the program's expectations of the turtle structure while redirecting the instruction pointer.

: The payload specifically targeted RDX and RAX to set up the final call. LetsSplitTurtles.part02.rar

: The first 16 bytes of the payload were used to point the RDI register toward a "slack" space in memory. The core of this stage involved crafting a

This write-up covers the second part of the challenge from CSAW CTF, focusing on the exploitation of a recursive data structure to achieve code execution. Challenge Overview This write-up covers the second part of the

The exploit was verified using to step through the turtle traversal logic. A critical finding during this phase was that the RBP (Base Pointer) register did not land at the expected offset, requiring a slight adjustment to the slack space to ensure the magic gadget was reached successfully.

5 Comments

hadil says:

November 21, 2019 at 7:11 am

thank you very nice website article

Reply
Jack says:

April 6, 2021 at 12:05 am

Hi,
Great post and very helpful.

Reply
Simone says:

December 2, 2021 at 6:02 pm

Hi, i have just taken a look at the HR management plugins, we are also needing a facial recognition clock in system, do any of these have this?

Reply
- Rahul Sahu says:
  
  December 3, 2021 at 12:52 am
  
  Hay Simone,
  Please check your inbox or spam box I have forwarded some data.
  
  Reply

Letssplitturtles.part02.rar -

5 Comments

Leave a Reply Cancel reply