Exploiting a Use-After-Free (UAF) Vulnerability - "Unsubscriptions Are Free" Pwn Challenge [PicoGym] | allinfosecnews.com

June 27, 2022, 11:01 a.m. | CryptoCat

CryptoCat www.youtube.com

"Unsubscriptions Are Free" (Pwn) challenge from PicoGym (picoCTF) - "Check out my new video-game and spaghetti-eating streaming channel on Twixer!". In this challenge we'll use Ghidra, GDB-PwnDbg and PwnTools to exploit a Use After Free (UAF) vulnerability and read the flag. Write-ups/tutorials aimed at beginners - Hope you enjoy 🙂 #Pwn #BinaryExploitation #BinExp #CTF #CaptureTheFlag #Pico #PicoCTF

↢Social Media↣
Twitter: https://twitter.com/_CryptoCat
GitHub: https://github.com/Crypto-Cat/CTF
HackTheBox: https://app.hackthebox.eu/profile/11897
LinkedIn: https://www.linkedin.com/in/cryptocat
Reddit: https://www.reddit.com/user/_CryptoCat23
YouTube: https://www.youtube.com/CryptoCat23
Twitch: https://www.twitch.tv/cryptocat23

↢PicoCTF↣
https://play.picoctf.org/practice/challenge/187
https://picoctf.org/discord
https://twitter.com/picoctf

↢Resources↣
Ghidra: https://ghidra-sre.org/CheatSheet.html …

challenge exploiting free uaf use-after-free vulnerability

More from www.youtube.com / CryptoCat

Burp Suite Certified Professional (BSCP) Review + Tips/Tricks [Portswigger] 1 month, 1 week ago | www.youtube.com

appsec bounty bug bug bounty +25

1: SQL Injection (Union + Blind) - Gin and Juice Shop (Portswigger) 2 months ago | www.youtube.com

application burp burp suite exploit +18

HackTheBox Cyber Apocalypse 2024: Web Challenge Walkthroughs 2 months, 2 weeks ago | www.youtube.com

403 bypass api api testing apocalypse +32

0: Getting Started with Burp Suite - Gin and Juice Shop (Portswigger) 3 months ago | www.youtube.com

application burp burp suite course +17

LA CTF 2024: Web Challenge Walkthroughs (1-4) 3 months, 1 week ago | www.youtube.com

beginners challenge challenges conditions +26

How to Approach an OSINT Challenge - "Photographs" [INTIGRITI 1337UP LIVE CTF 2023] 6 months, 1 week ago | www.youtube.com

accounts back challenge ctf +19

Format String Vulnerability - "Floor Mat Store" [INTIGRITI 1337UP LIVE CTF 2023] 6 months, 1 week ago | www.youtube.com

binary binary exploitation challenge computer +12

Websocket SQLi and Weak JWT Signing Key - "Bug Report Repo" [INTIGRITI 1337UP LIVE CTF … 6 months, 1 week ago | www.youtube.com

bug challenge ctf exploit +21

Unity Game Hacking Challenge - "Azusawa’s Gacha World" [SekaiCTF] 9 months ago | www.youtube.com

analysis beginners challenge cheat +26

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote

View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC

View on infosec-jobs.com