Exploiting a Use-After-Free (UAF) Vulnerability - "Unsubscriptions Are Free" Pwn Challenge [PicoGym] | allinfosecnews.com

June 27, 2022, 11:01 a.m. | CryptoCat

CryptoCat www.youtube.com

"Unsubscriptions Are Free" (Pwn) challenge from PicoGym (picoCTF) - "Check out my new video-game and spaghetti-eating streaming channel on Twixer!". In this challenge we'll use Ghidra, GDB-PwnDbg and PwnTools to exploit a Use After Free (UAF) vulnerability and read the flag. Write-ups/tutorials aimed at beginners - Hope you enjoy 🙂 #Pwn #BinaryExploitation #BinExp #CTF #CaptureTheFlag #Pico #PicoCTF

↢Social Media↣
Twitter: https://twitter.com/_CryptoCat
GitHub: https://github.com/Crypto-Cat/CTF
HackTheBox: https://app.hackthebox.eu/profile/11897
LinkedIn: https://www.linkedin.com/in/cryptocat
Reddit: https://www.reddit.com/user/_CryptoCat23
YouTube: https://www.youtube.com/CryptoCat23
Twitch: https://www.twitch.tv/cryptocat23

↢PicoCTF↣
https://play.picoctf.org/practice/challenge/187
https://picoctf.org/discord
https://twitter.com/picoctf

↢Resources↣
Ghidra: https://ghidra-sre.org/CheatSheet.html …

challenge exploiting free uaf use-after-free vulnerability

More from www.youtube.com / CryptoCat

Burp Suite Certified Professional (BSCP) Review + Tips/Tricks [Portswigger] 2 weeks, 3 days ago | www.youtube.com

appsec bounty bug bug bounty +25

1: SQL Injection (Union + Blind) - Gin and Juice Shop (Portswigger) 1 month, 1 week ago | www.youtube.com

application burp burp suite exploit +18

HackTheBox Cyber Apocalypse 2024: Web Challenge Walkthroughs 1 month, 3 weeks ago | www.youtube.com

403 bypass api api testing apocalypse +32

0: Getting Started with Burp Suite - Gin and Juice Shop (Portswigger) 2 months ago | www.youtube.com

application burp burp suite course +17

LA CTF 2024: Web Challenge Walkthroughs (1-4) 2 months, 2 weeks ago | www.youtube.com

beginners challenge challenges conditions +26

How to Approach an OSINT Challenge - "Photographs" [INTIGRITI 1337UP LIVE CTF 2023] 5 months, 1 week ago | www.youtube.com

accounts back challenge ctf +19

Format String Vulnerability - "Floor Mat Store" [INTIGRITI 1337UP LIVE CTF 2023] 5 months, 2 weeks ago | www.youtube.com

binary binary exploitation challenge computer +12

Websocket SQLi and Weak JWT Signing Key - "Bug Report Repo" [INTIGRITI 1337UP LIVE CTF … 5 months, 2 weeks ago | www.youtube.com

bug challenge ctf exploit +21

Unity Game Hacking Challenge - "Azusawa’s Gacha World" [SekaiCTF] 8 months, 1 week ago | www.youtube.com

analysis beginners challenge cheat +26

Consultant infrastructure sécurité H/F

@ Hifield | Sèvres, France

View on infosec-jobs.com

SOC Analyst

@ Wix | Tel Aviv, Israel

View on infosec-jobs.com

Information Security Operations Officer

@ International Labour Organization | Geneva, CH, 1200

View on infosec-jobs.com

PMO Cybersécurité H/F

@ Hifield | Sèvres, France

View on infosec-jobs.com

Third Party Risk Management - Consultant

@ KPMG India | Bengaluru, Karnataka, India

View on infosec-jobs.com

Consultant Cyber Sécurité H/F - Strasbourg

@ Hifield | Strasbourg, France

View on infosec-jobs.com