├── .eslintrc.js ├── .github └── workflows │ └── build.yml ├── .gitignore ├── README.md ├── dist ├── Vagrantfile └── files │ ├── crypto │ ├── chap15_hash │ │ ├── hmac_sha1.py │ │ ├── lea_md5.py │ │ └── lea_service.py │ ├── chap16_symmetric_key_crypto │ │ ├── bitflip.py │ │ ├── ecb_service.py │ │ ├── padoracle.py │ │ ├── padoracle_decrypt.py │ │ └── padoracle_encrypt.py │ ├── chap17_number_theory │ │ ├── crt.py │ │ └── exgcd.py │ ├── chap18_rsa │ │ ├── coppersmith_m.sage │ │ ├── coppersmith_p.sage │ │ ├── coppersmith_shortpad.sage │ │ └── p-1.py │ ├── chap19_elgamal │ │ ├── elgamal_forging.sage │ │ └── elgamal_pohlig.sage │ ├── chap21_random_number │ │ ├── mt_recovery.py │ │ └── xorshift128.py │ └── chap22_practice │ │ └── proof_of_work.py │ ├── preliminaries │ ├── compose │ │ ├── Dockerfile │ │ └── docker-compose.yml │ └── docker │ │ ├── Dockerfile │ │ └── sample.txt │ ├── pwnable │ ├── 02_shellcode │ │ ├── loop.bin │ │ ├── loop.elf │ │ ├── loop.s │ │ ├── loop_wo_nllf.bin │ │ ├── loop_wo_nllf.s │ │ ├── mmap.c │ │ ├── mmap_w_nx │ │ ├── mmap_wo_nx │ │ ├── readfile.bin │ │ ├── readfile.elf │ │ ├── readfile.s │ │ ├── run_shellcode.c │ │ ├── run_shellcode_w_nx │ │ ├── run_shellcode_wo_nx │ │ ├── seccomp_bypass_alter │ │ ├── seccomp_bypass_alter.c │ │ ├── seccomp_bypass_x32 │ │ ├── seccomp_bypass_x32.c │ │ ├── seccomp_bypass_x86 │ │ ├── seccomp_bypass_x86.s │ │ ├── seccomp_filter │ │ ├── seccomp_filter.c │ │ ├── seccomp_filter_write.c │ │ ├── seccomp_strict │ │ └── seccomp_strict.c │ ├── 03_stack │ │ ├── exploit_sbof_leak_canary.py │ │ ├── exploit_sbof_pivot.py │ │ ├── exploit_sbof_pivot_draft.py │ │ ├── local_vars │ │ ├── local_vars.c │ │ ├── local_vars_w_ssp │ │ ├── sbof_leak.c │ │ ├── sbof_leak_w_ssp │ │ ├── sbof_leak_w_ssp_pie │ │ ├── sbof_lv │ │ ├── sbof_lv.c │ │ ├── sbof_pivot │ │ ├── sbof_pivot.c │ │ ├── sbof_ret │ │ ├── sbof_ret.c │ │ ├── sbof_ret_w_ssp │ │ ├── trace │ │ └── trace.c │ ├── 04_resolve │ │ ├── aarw │ │ ├── aarw.c │ │ ├── dl_hash.py │ │ ├── exploit_aarw.py │ │ ├── hello │ │ ├── hello.c │ │ ├── hello_norelro_lazy │ │ ├── hello_norelro_now │ │ ├── hello_relro_lazy │ │ ├── hello_relro_now │ │ └── hello_w_cf │ ├── 05_heap │ │ ├── attack_fastbin_dup │ │ ├── attack_fastbin_dup.c │ │ ├── attack_fastbin_poisoning │ │ ├── attack_fastbin_poisoning.c │ │ ├── attack_fastbin_poisoning_via_tcache │ │ ├── attack_fastbin_poisoning_via_tcache.c │ │ ├── attack_hook │ │ ├── attack_hook.c │ │ ├── attack_largebin_link │ │ ├── attack_largebin_link.c │ │ ├── attack_leak │ │ ├── attack_leak.c │ │ ├── attack_set_ismmapped │ │ ├── attack_set_ismmapped.c │ │ ├── attack_size_expand │ │ ├── attack_size_expand.c │ │ ├── attack_size_shrink │ │ ├── attack_size_shrink.c │ │ ├── attack_size_shrink_top │ │ ├── attack_size_shrink_top.c │ │ ├── attack_smallbin_poisoning.c │ │ ├── attack_smallbin_tcache │ │ ├── attack_smallbin_unlink │ │ ├── attack_tamper_max_fast │ │ ├── attack_tamper_max_fast.c │ │ ├── attack_tamper_tcache_bins │ │ ├── attack_tamper_tcache_bins.c │ │ ├── attack_tcache_dup │ │ ├── attack_tcache_dup.c │ │ ├── attack_tcache_poisoning │ │ ├── attack_tcache_poisoning.c │ │ ├── attack_unset_previnuse │ │ ├── attack_unset_previnuse.c │ │ ├── fast2tcache │ │ ├── fast2tcache.c │ │ ├── huge │ │ ├── huge.c │ │ ├── malloc_struct.h │ │ ├── small2tcache │ │ ├── small2tcache.c │ │ ├── unsorted2tcache │ │ └── unsorted2tcache.c │ ├── 06_vulnfunc │ │ ├── fortify_printf_idx │ │ ├── fortify_printf_idx.c │ │ ├── fortify_printf_write │ │ ├── fortify_printf_write.c │ │ ├── fortify_strcpy │ │ ├── fortify_strcpy.c │ │ ├── fsb_aarw │ │ ├── fsb_aarw.c │ │ ├── fsb_leak │ │ ├── fsb_leak.c │ │ ├── fsb_random │ │ ├── fsb_random.c │ │ ├── fsb_twice │ │ └── fsb_twice.c │ └── 99_challs │ │ ├── heap │ │ ├── chall_heap │ │ ├── chall_heap.c │ │ └── exploit_heap.py │ │ ├── resolve │ │ ├── chall_resolve │ │ ├── chall_resolve.c │ │ └── exploit_resolve.py │ │ ├── shellcode │ │ ├── chall_shellcode │ │ ├── chall_shellcode.c │ │ ├── shellcode.bin │ │ └── shellcode.s │ │ ├── stack │ │ ├── chall_stack │ │ ├── chall_stack.c │ │ └── exploit_stack.py │ │ └── vulnfunc │ │ ├── chall_vulnfunc │ │ ├── chall_vulnfunc.c │ │ └── exploit_vulnfunc.py │ ├── rev │ ├── 01_introduction │ │ └── program │ ├── 04_static │ │ ├── Makefile │ │ ├── optimized-program │ │ ├── program │ │ └── source.c │ ├── 05_dynamic │ │ ├── Makefile │ │ ├── calc_password.py │ │ ├── program │ │ ├── program.dif │ │ └── source.c │ └── 06_advanced │ │ ├── angr │ │ └── angrsolve.py │ │ ├── detection │ │ ├── ptrace.c │ │ └── tracer_pid.c │ │ ├── obfuscation │ │ ├── Makefile │ │ ├── sample │ │ └── sample.S │ │ ├── patch │ │ └── patch.py │ │ └── z3 │ │ ├── z3_find_all.py │ │ ├── z3sample.c │ │ └── z3solve.py │ └── web │ ├── 02_basics │ ├── MySQL │ │ ├── db │ │ │ └── init │ │ │ │ └── init.sql │ │ └── docker-compose.yml │ ├── browsersec │ │ └── fetch-weather.html │ ├── burp │ │ ├── app-for-decoder.py │ │ ├── app-for-intruder.py │ │ └── app-for-proxy-and-repeater.py │ ├── client │ │ ├── fetch-header.js │ │ ├── fetch-post.js │ │ ├── fetch.js │ │ ├── requests-get1.py │ │ ├── requests-get2.py │ │ ├── requests-get3.py │ │ ├── requests-session.py │ │ └── xmlhttprequest.js │ ├── content │ │ ├── SQL │ │ │ └── MySQL │ │ │ │ ├── db │ │ │ │ └── init │ │ │ │ │ └── init.sql │ │ │ │ └── docker-compose.yml │ │ ├── html │ │ │ ├── index-with-style.html │ │ │ └── index.html │ │ └── js │ │ │ ├── array-object.js │ │ │ ├── dom.html │ │ │ ├── function.js │ │ │ ├── json.js │ │ │ └── variable.js │ ├── request-inspect-app.py │ └── svapp │ │ ├── app.py │ │ ├── nginx.conf │ │ ├── requirements.txt │ │ └── templates │ │ └── index.html │ ├── 03_DirTrav │ └── dirtrav-app │ │ ├── app │ │ ├── Dockerfile │ │ └── app │ │ │ ├── app.py │ │ │ ├── requirements.txt │ │ │ └── templates │ │ │ ├── add.html │ │ │ ├── index.html │ │ │ └── memo.html │ │ └── docker-compose.yml │ ├── 04_XSS │ ├── column-vue.html │ ├── csp-baseuri │ │ ├── app │ │ │ ├── app.py │ │ │ └── static │ │ │ │ └── index.js │ │ └── attacker │ │ │ └── static │ │ │ └── index.js │ ├── csp-strict-dynamic │ │ ├── app.py │ │ └── poc.html │ ├── patterns.py │ ├── xss-dombased.html │ └── xss-example.py │ ├── 05_SQLi │ ├── SQLi-app │ │ ├── db │ │ │ └── init │ │ │ │ └── init.sql │ │ ├── docker-compose.yml │ │ ├── web1 │ │ │ ├── Dockerfile │ │ │ └── app │ │ │ │ ├── app.py │ │ │ │ ├── requirements.txt │ │ │ │ └── templates │ │ │ │ ├── add.html │ │ │ │ └── index.html │ │ ├── web2 │ │ │ ├── Dockerfile │ │ │ └── app │ │ │ │ ├── app.py │ │ │ │ ├── requirements.txt │ │ │ │ └── templates │ │ │ │ ├── add.html │ │ │ │ └── index.html │ │ ├── web3 │ │ │ ├── Dockerfile │ │ │ └── app │ │ │ │ ├── app.py │ │ │ │ ├── requirements.txt │ │ │ │ └── templates │ │ │ │ ├── add.html │ │ │ │ └── index.html │ │ ├── web4 │ │ │ ├── Dockerfile │ │ │ └── app │ │ │ │ ├── app.py │ │ │ │ ├── requirements.txt │ │ │ │ └── templates │ │ │ │ ├── add.html │ │ │ │ └── index.html │ │ └── web5 │ │ │ ├── Dockerfile │ │ │ └── app │ │ │ ├── app.py │ │ │ ├── requirements.txt │ │ │ └── templates │ │ │ ├── add.html │ │ │ ├── index.html │ │ │ └── modify.html │ └── scripts │ │ ├── sqli-boolean-exploit.py │ │ └── sqli-time-exploit.py │ ├── 06_SSTI │ ├── SSTI-app │ │ ├── app │ │ │ ├── Dockerfile │ │ │ └── app │ │ │ │ ├── app.py │ │ │ │ ├── requirements.txt │ │ │ │ └── templates │ │ │ │ ├── add.html │ │ │ │ └── index.html │ │ ├── db │ │ │ └── init │ │ │ │ └── init.sql │ │ └── docker-compose.yml │ └── scripts │ │ ├── builtins-example.py │ │ ├── class-example.py │ │ ├── globals-example.py │ │ ├── mro-example.py │ │ ├── str-to-object.py │ │ └── subclass-example.py │ ├── 07_SSRF │ └── SSRF-app │ │ ├── app │ │ ├── Dockerfile │ │ └── app │ │ │ ├── app.py │ │ │ ├── requirements.txt │ │ │ └── templates │ │ │ └── index.html │ │ └── docker-compose.yml │ └── 08_XXE │ ├── XXE-app │ ├── docker-compose.yml │ ├── web1 │ │ ├── Dockerfile │ │ └── app │ │ │ ├── app.py │ │ │ ├── config.xml │ │ │ ├── requirements.txt │ │ │ └── templates │ │ │ └── index.html │ ├── web2 │ │ ├── Dockerfile │ │ └── app │ │ │ ├── app.py │ │ │ ├── config.xml │ │ │ ├── requirements.txt │ │ │ └── templates │ │ │ └── index.html │ └── web3 │ │ ├── Dockerfile │ │ └── app │ │ ├── app.py │ │ ├── config.xml │ │ ├── requirements.txt │ │ └── templates │ │ └── index.html │ ├── payload │ ├── blind_errorinfo.dtd │ ├── send_file_to_server.dtd │ └── wrapper.dtd │ └── script │ └── oob_test.py ├── gatsby-config.js ├── package.json ├── src ├── @rocketseat │ └── gatsby-theme-docs │ │ ├── components │ │ └── Logo.tsx │ │ └── text │ │ └── index.mdx ├── @types │ └── .gitignore ├── assets │ └── logo.png ├── config │ └── sidebar.yml ├── docs │ ├── about-dist.mdx │ ├── about.mdx │ └── faq.mdx └── pages │ └── 404.js ├── static ├── banner.png ├── cover.png └── favicon.png ├── tsconfig.json └── yarn.lock /.eslintrc.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/.eslintrc.js -------------------------------------------------------------------------------- /.github/workflows/build.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/.github/workflows/build.yml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/.gitignore -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/README.md -------------------------------------------------------------------------------- /dist/Vagrantfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/Vagrantfile -------------------------------------------------------------------------------- /dist/files/crypto/chap15_hash/hmac_sha1.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/crypto/chap15_hash/hmac_sha1.py -------------------------------------------------------------------------------- /dist/files/crypto/chap15_hash/lea_md5.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/crypto/chap15_hash/lea_md5.py -------------------------------------------------------------------------------- /dist/files/crypto/chap15_hash/lea_service.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/crypto/chap15_hash/lea_service.py -------------------------------------------------------------------------------- /dist/files/crypto/chap16_symmetric_key_crypto/bitflip.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/crypto/chap16_symmetric_key_crypto/bitflip.py -------------------------------------------------------------------------------- /dist/files/crypto/chap16_symmetric_key_crypto/ecb_service.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/crypto/chap16_symmetric_key_crypto/ecb_service.py -------------------------------------------------------------------------------- /dist/files/crypto/chap16_symmetric_key_crypto/padoracle.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/crypto/chap16_symmetric_key_crypto/padoracle.py -------------------------------------------------------------------------------- /dist/files/crypto/chap16_symmetric_key_crypto/padoracle_decrypt.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/crypto/chap16_symmetric_key_crypto/padoracle_decrypt.py -------------------------------------------------------------------------------- /dist/files/crypto/chap16_symmetric_key_crypto/padoracle_encrypt.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/crypto/chap16_symmetric_key_crypto/padoracle_encrypt.py -------------------------------------------------------------------------------- /dist/files/crypto/chap17_number_theory/crt.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/crypto/chap17_number_theory/crt.py -------------------------------------------------------------------------------- /dist/files/crypto/chap17_number_theory/exgcd.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/crypto/chap17_number_theory/exgcd.py -------------------------------------------------------------------------------- /dist/files/crypto/chap18_rsa/coppersmith_m.sage: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/crypto/chap18_rsa/coppersmith_m.sage -------------------------------------------------------------------------------- /dist/files/crypto/chap18_rsa/coppersmith_p.sage: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/crypto/chap18_rsa/coppersmith_p.sage -------------------------------------------------------------------------------- /dist/files/crypto/chap18_rsa/coppersmith_shortpad.sage: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/crypto/chap18_rsa/coppersmith_shortpad.sage -------------------------------------------------------------------------------- /dist/files/crypto/chap18_rsa/p-1.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/crypto/chap18_rsa/p-1.py -------------------------------------------------------------------------------- /dist/files/crypto/chap19_elgamal/elgamal_forging.sage: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/crypto/chap19_elgamal/elgamal_forging.sage -------------------------------------------------------------------------------- /dist/files/crypto/chap19_elgamal/elgamal_pohlig.sage: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/crypto/chap19_elgamal/elgamal_pohlig.sage -------------------------------------------------------------------------------- /dist/files/crypto/chap21_random_number/mt_recovery.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/crypto/chap21_random_number/mt_recovery.py -------------------------------------------------------------------------------- /dist/files/crypto/chap21_random_number/xorshift128.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/crypto/chap21_random_number/xorshift128.py -------------------------------------------------------------------------------- /dist/files/crypto/chap22_practice/proof_of_work.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/crypto/chap22_practice/proof_of_work.py -------------------------------------------------------------------------------- /dist/files/preliminaries/compose/Dockerfile: -------------------------------------------------------------------------------- 1 | FROM alpine:latest 2 | RUN apk add --no-cache curl -------------------------------------------------------------------------------- /dist/files/preliminaries/compose/docker-compose.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/preliminaries/compose/docker-compose.yml -------------------------------------------------------------------------------- /dist/files/preliminaries/docker/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/preliminaries/docker/Dockerfile -------------------------------------------------------------------------------- /dist/files/preliminaries/docker/sample.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/preliminaries/docker/sample.txt -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/loop.bin: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/loop.bin -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/loop.elf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/loop.elf -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/loop.s: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/loop.s -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/loop_wo_nllf.bin: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/loop_wo_nllf.bin -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/loop_wo_nllf.s: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/loop_wo_nllf.s -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/mmap.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/mmap.c -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/mmap_w_nx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/mmap_w_nx -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/mmap_wo_nx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/mmap_wo_nx -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/readfile.bin: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/readfile.bin -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/readfile.elf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/readfile.elf -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/readfile.s: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/readfile.s -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/run_shellcode.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/run_shellcode.c -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/run_shellcode_w_nx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/run_shellcode_w_nx -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/run_shellcode_wo_nx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/run_shellcode_wo_nx -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/seccomp_bypass_alter: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/seccomp_bypass_alter -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/seccomp_bypass_alter.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/seccomp_bypass_alter.c -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/seccomp_bypass_x32: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/seccomp_bypass_x32 -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/seccomp_bypass_x32.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/seccomp_bypass_x32.c -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/seccomp_bypass_x86: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/seccomp_bypass_x86 -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/seccomp_bypass_x86.s: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/seccomp_bypass_x86.s -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/seccomp_filter: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/seccomp_filter -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/seccomp_filter.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/seccomp_filter.c -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/seccomp_filter_write.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/seccomp_filter_write.c -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/seccomp_strict: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/seccomp_strict -------------------------------------------------------------------------------- /dist/files/pwnable/02_shellcode/seccomp_strict.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/02_shellcode/seccomp_strict.c -------------------------------------------------------------------------------- /dist/files/pwnable/03_stack/exploit_sbof_leak_canary.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/03_stack/exploit_sbof_leak_canary.py -------------------------------------------------------------------------------- /dist/files/pwnable/03_stack/exploit_sbof_pivot.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/03_stack/exploit_sbof_pivot.py -------------------------------------------------------------------------------- /dist/files/pwnable/03_stack/exploit_sbof_pivot_draft.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/03_stack/exploit_sbof_pivot_draft.py -------------------------------------------------------------------------------- /dist/files/pwnable/03_stack/local_vars: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/03_stack/local_vars -------------------------------------------------------------------------------- /dist/files/pwnable/03_stack/local_vars.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/03_stack/local_vars.c -------------------------------------------------------------------------------- /dist/files/pwnable/03_stack/local_vars_w_ssp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/03_stack/local_vars_w_ssp -------------------------------------------------------------------------------- /dist/files/pwnable/03_stack/sbof_leak.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/03_stack/sbof_leak.c -------------------------------------------------------------------------------- /dist/files/pwnable/03_stack/sbof_leak_w_ssp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/03_stack/sbof_leak_w_ssp -------------------------------------------------------------------------------- /dist/files/pwnable/03_stack/sbof_leak_w_ssp_pie: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/03_stack/sbof_leak_w_ssp_pie -------------------------------------------------------------------------------- /dist/files/pwnable/03_stack/sbof_lv: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/03_stack/sbof_lv -------------------------------------------------------------------------------- /dist/files/pwnable/03_stack/sbof_lv.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/03_stack/sbof_lv.c -------------------------------------------------------------------------------- /dist/files/pwnable/03_stack/sbof_pivot: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/03_stack/sbof_pivot -------------------------------------------------------------------------------- /dist/files/pwnable/03_stack/sbof_pivot.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/03_stack/sbof_pivot.c -------------------------------------------------------------------------------- /dist/files/pwnable/03_stack/sbof_ret: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/03_stack/sbof_ret -------------------------------------------------------------------------------- /dist/files/pwnable/03_stack/sbof_ret.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/03_stack/sbof_ret.c -------------------------------------------------------------------------------- /dist/files/pwnable/03_stack/sbof_ret_w_ssp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/03_stack/sbof_ret_w_ssp -------------------------------------------------------------------------------- /dist/files/pwnable/03_stack/trace: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/03_stack/trace -------------------------------------------------------------------------------- /dist/files/pwnable/03_stack/trace.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/03_stack/trace.c -------------------------------------------------------------------------------- /dist/files/pwnable/04_resolve/aarw: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/04_resolve/aarw -------------------------------------------------------------------------------- /dist/files/pwnable/04_resolve/aarw.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/04_resolve/aarw.c -------------------------------------------------------------------------------- /dist/files/pwnable/04_resolve/dl_hash.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/04_resolve/dl_hash.py -------------------------------------------------------------------------------- /dist/files/pwnable/04_resolve/exploit_aarw.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/04_resolve/exploit_aarw.py -------------------------------------------------------------------------------- /dist/files/pwnable/04_resolve/hello: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/04_resolve/hello -------------------------------------------------------------------------------- /dist/files/pwnable/04_resolve/hello.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/04_resolve/hello.c -------------------------------------------------------------------------------- /dist/files/pwnable/04_resolve/hello_norelro_lazy: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/04_resolve/hello_norelro_lazy -------------------------------------------------------------------------------- /dist/files/pwnable/04_resolve/hello_norelro_now: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/04_resolve/hello_norelro_now -------------------------------------------------------------------------------- /dist/files/pwnable/04_resolve/hello_relro_lazy: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/04_resolve/hello_relro_lazy -------------------------------------------------------------------------------- /dist/files/pwnable/04_resolve/hello_relro_now: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/04_resolve/hello_relro_now -------------------------------------------------------------------------------- /dist/files/pwnable/04_resolve/hello_w_cf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/04_resolve/hello_w_cf -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_fastbin_dup: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_fastbin_dup -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_fastbin_dup.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_fastbin_dup.c -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_fastbin_poisoning: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_fastbin_poisoning -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_fastbin_poisoning.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_fastbin_poisoning.c -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_fastbin_poisoning_via_tcache: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_fastbin_poisoning_via_tcache -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_fastbin_poisoning_via_tcache.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_fastbin_poisoning_via_tcache.c -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_hook: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_hook -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_hook.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_hook.c -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_largebin_link: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_largebin_link -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_largebin_link.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_largebin_link.c -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_leak: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_leak -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_leak.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_leak.c -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_set_ismmapped: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_set_ismmapped -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_set_ismmapped.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_set_ismmapped.c -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_size_expand: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_size_expand -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_size_expand.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_size_expand.c -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_size_shrink: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_size_shrink -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_size_shrink.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_size_shrink.c -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_size_shrink_top: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_size_shrink_top -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_size_shrink_top.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_size_shrink_top.c -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_smallbin_poisoning.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_smallbin_poisoning.c -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_smallbin_tcache: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_smallbin_tcache -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_smallbin_unlink: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_smallbin_unlink -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_tamper_max_fast: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_tamper_max_fast -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_tamper_max_fast.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_tamper_max_fast.c -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_tamper_tcache_bins: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_tamper_tcache_bins -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_tamper_tcache_bins.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_tamper_tcache_bins.c -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_tcache_dup: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_tcache_dup -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_tcache_dup.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_tcache_dup.c -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_tcache_poisoning: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_tcache_poisoning -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_tcache_poisoning.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_tcache_poisoning.c -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_unset_previnuse: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_unset_previnuse -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/attack_unset_previnuse.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/attack_unset_previnuse.c -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/fast2tcache: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/fast2tcache -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/fast2tcache.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/fast2tcache.c -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/huge: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/huge -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/huge.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/huge.c -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/malloc_struct.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/malloc_struct.h -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/small2tcache: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/small2tcache -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/small2tcache.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/small2tcache.c -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/unsorted2tcache: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/unsorted2tcache -------------------------------------------------------------------------------- /dist/files/pwnable/05_heap/unsorted2tcache.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/05_heap/unsorted2tcache.c -------------------------------------------------------------------------------- /dist/files/pwnable/06_vulnfunc/fortify_printf_idx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/06_vulnfunc/fortify_printf_idx -------------------------------------------------------------------------------- /dist/files/pwnable/06_vulnfunc/fortify_printf_idx.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/06_vulnfunc/fortify_printf_idx.c -------------------------------------------------------------------------------- /dist/files/pwnable/06_vulnfunc/fortify_printf_write: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/06_vulnfunc/fortify_printf_write -------------------------------------------------------------------------------- /dist/files/pwnable/06_vulnfunc/fortify_printf_write.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/06_vulnfunc/fortify_printf_write.c -------------------------------------------------------------------------------- /dist/files/pwnable/06_vulnfunc/fortify_strcpy: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/06_vulnfunc/fortify_strcpy -------------------------------------------------------------------------------- /dist/files/pwnable/06_vulnfunc/fortify_strcpy.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/06_vulnfunc/fortify_strcpy.c -------------------------------------------------------------------------------- /dist/files/pwnable/06_vulnfunc/fsb_aarw: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/06_vulnfunc/fsb_aarw -------------------------------------------------------------------------------- /dist/files/pwnable/06_vulnfunc/fsb_aarw.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/06_vulnfunc/fsb_aarw.c -------------------------------------------------------------------------------- /dist/files/pwnable/06_vulnfunc/fsb_leak: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/06_vulnfunc/fsb_leak -------------------------------------------------------------------------------- /dist/files/pwnable/06_vulnfunc/fsb_leak.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/06_vulnfunc/fsb_leak.c -------------------------------------------------------------------------------- /dist/files/pwnable/06_vulnfunc/fsb_random: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/06_vulnfunc/fsb_random -------------------------------------------------------------------------------- /dist/files/pwnable/06_vulnfunc/fsb_random.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/06_vulnfunc/fsb_random.c -------------------------------------------------------------------------------- /dist/files/pwnable/06_vulnfunc/fsb_twice: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/06_vulnfunc/fsb_twice -------------------------------------------------------------------------------- /dist/files/pwnable/06_vulnfunc/fsb_twice.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/06_vulnfunc/fsb_twice.c -------------------------------------------------------------------------------- /dist/files/pwnable/99_challs/heap/chall_heap: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/99_challs/heap/chall_heap -------------------------------------------------------------------------------- /dist/files/pwnable/99_challs/heap/chall_heap.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/99_challs/heap/chall_heap.c -------------------------------------------------------------------------------- /dist/files/pwnable/99_challs/heap/exploit_heap.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/99_challs/heap/exploit_heap.py -------------------------------------------------------------------------------- /dist/files/pwnable/99_challs/resolve/chall_resolve: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/99_challs/resolve/chall_resolve -------------------------------------------------------------------------------- /dist/files/pwnable/99_challs/resolve/chall_resolve.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/99_challs/resolve/chall_resolve.c -------------------------------------------------------------------------------- /dist/files/pwnable/99_challs/resolve/exploit_resolve.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/99_challs/resolve/exploit_resolve.py -------------------------------------------------------------------------------- /dist/files/pwnable/99_challs/shellcode/chall_shellcode: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/99_challs/shellcode/chall_shellcode -------------------------------------------------------------------------------- /dist/files/pwnable/99_challs/shellcode/chall_shellcode.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/99_challs/shellcode/chall_shellcode.c -------------------------------------------------------------------------------- /dist/files/pwnable/99_challs/shellcode/shellcode.bin: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/99_challs/shellcode/shellcode.bin -------------------------------------------------------------------------------- /dist/files/pwnable/99_challs/shellcode/shellcode.s: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/99_challs/shellcode/shellcode.s -------------------------------------------------------------------------------- /dist/files/pwnable/99_challs/stack/chall_stack: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/99_challs/stack/chall_stack -------------------------------------------------------------------------------- /dist/files/pwnable/99_challs/stack/chall_stack.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/99_challs/stack/chall_stack.c -------------------------------------------------------------------------------- /dist/files/pwnable/99_challs/stack/exploit_stack.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/99_challs/stack/exploit_stack.py -------------------------------------------------------------------------------- /dist/files/pwnable/99_challs/vulnfunc/chall_vulnfunc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/99_challs/vulnfunc/chall_vulnfunc -------------------------------------------------------------------------------- /dist/files/pwnable/99_challs/vulnfunc/chall_vulnfunc.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/99_challs/vulnfunc/chall_vulnfunc.c -------------------------------------------------------------------------------- /dist/files/pwnable/99_challs/vulnfunc/exploit_vulnfunc.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/pwnable/99_challs/vulnfunc/exploit_vulnfunc.py -------------------------------------------------------------------------------- /dist/files/rev/01_introduction/program: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/rev/01_introduction/program -------------------------------------------------------------------------------- /dist/files/rev/04_static/Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/rev/04_static/Makefile -------------------------------------------------------------------------------- /dist/files/rev/04_static/optimized-program: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/rev/04_static/optimized-program -------------------------------------------------------------------------------- /dist/files/rev/04_static/program: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/rev/04_static/program -------------------------------------------------------------------------------- /dist/files/rev/04_static/source.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/rev/04_static/source.c -------------------------------------------------------------------------------- /dist/files/rev/05_dynamic/Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/rev/05_dynamic/Makefile -------------------------------------------------------------------------------- /dist/files/rev/05_dynamic/calc_password.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/rev/05_dynamic/calc_password.py -------------------------------------------------------------------------------- /dist/files/rev/05_dynamic/program: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/rev/05_dynamic/program -------------------------------------------------------------------------------- /dist/files/rev/05_dynamic/program.dif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/rev/05_dynamic/program.dif -------------------------------------------------------------------------------- /dist/files/rev/05_dynamic/source.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/rev/05_dynamic/source.c -------------------------------------------------------------------------------- /dist/files/rev/06_advanced/angr/angrsolve.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/rev/06_advanced/angr/angrsolve.py -------------------------------------------------------------------------------- /dist/files/rev/06_advanced/detection/ptrace.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/rev/06_advanced/detection/ptrace.c -------------------------------------------------------------------------------- /dist/files/rev/06_advanced/detection/tracer_pid.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/rev/06_advanced/detection/tracer_pid.c -------------------------------------------------------------------------------- /dist/files/rev/06_advanced/obfuscation/Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/rev/06_advanced/obfuscation/Makefile -------------------------------------------------------------------------------- /dist/files/rev/06_advanced/obfuscation/sample: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/rev/06_advanced/obfuscation/sample -------------------------------------------------------------------------------- /dist/files/rev/06_advanced/obfuscation/sample.S: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/rev/06_advanced/obfuscation/sample.S -------------------------------------------------------------------------------- /dist/files/rev/06_advanced/patch/patch.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/rev/06_advanced/patch/patch.py -------------------------------------------------------------------------------- /dist/files/rev/06_advanced/z3/z3_find_all.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/rev/06_advanced/z3/z3_find_all.py -------------------------------------------------------------------------------- /dist/files/rev/06_advanced/z3/z3sample.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/rev/06_advanced/z3/z3sample.c -------------------------------------------------------------------------------- /dist/files/rev/06_advanced/z3/z3solve.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/rev/06_advanced/z3/z3solve.py -------------------------------------------------------------------------------- /dist/files/web/02_basics/MySQL/db/init/init.sql: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/MySQL/db/init/init.sql -------------------------------------------------------------------------------- /dist/files/web/02_basics/MySQL/docker-compose.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/MySQL/docker-compose.yml -------------------------------------------------------------------------------- /dist/files/web/02_basics/browsersec/fetch-weather.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/browsersec/fetch-weather.html -------------------------------------------------------------------------------- /dist/files/web/02_basics/burp/app-for-decoder.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/burp/app-for-decoder.py -------------------------------------------------------------------------------- /dist/files/web/02_basics/burp/app-for-intruder.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/burp/app-for-intruder.py -------------------------------------------------------------------------------- /dist/files/web/02_basics/burp/app-for-proxy-and-repeater.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/burp/app-for-proxy-and-repeater.py -------------------------------------------------------------------------------- /dist/files/web/02_basics/client/fetch-header.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/client/fetch-header.js -------------------------------------------------------------------------------- /dist/files/web/02_basics/client/fetch-post.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/client/fetch-post.js -------------------------------------------------------------------------------- /dist/files/web/02_basics/client/fetch.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/client/fetch.js -------------------------------------------------------------------------------- /dist/files/web/02_basics/client/requests-get1.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/client/requests-get1.py -------------------------------------------------------------------------------- /dist/files/web/02_basics/client/requests-get2.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/client/requests-get2.py -------------------------------------------------------------------------------- /dist/files/web/02_basics/client/requests-get3.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/client/requests-get3.py -------------------------------------------------------------------------------- /dist/files/web/02_basics/client/requests-session.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/client/requests-session.py -------------------------------------------------------------------------------- /dist/files/web/02_basics/client/xmlhttprequest.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/client/xmlhttprequest.js -------------------------------------------------------------------------------- /dist/files/web/02_basics/content/SQL/MySQL/db/init/init.sql: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/content/SQL/MySQL/db/init/init.sql -------------------------------------------------------------------------------- /dist/files/web/02_basics/content/SQL/MySQL/docker-compose.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/content/SQL/MySQL/docker-compose.yml -------------------------------------------------------------------------------- /dist/files/web/02_basics/content/html/index-with-style.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/content/html/index-with-style.html -------------------------------------------------------------------------------- /dist/files/web/02_basics/content/html/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/content/html/index.html -------------------------------------------------------------------------------- /dist/files/web/02_basics/content/js/array-object.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/content/js/array-object.js -------------------------------------------------------------------------------- /dist/files/web/02_basics/content/js/dom.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/content/js/dom.html -------------------------------------------------------------------------------- /dist/files/web/02_basics/content/js/function.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/content/js/function.js -------------------------------------------------------------------------------- /dist/files/web/02_basics/content/js/json.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/content/js/json.js -------------------------------------------------------------------------------- /dist/files/web/02_basics/content/js/variable.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/content/js/variable.js -------------------------------------------------------------------------------- /dist/files/web/02_basics/request-inspect-app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/request-inspect-app.py -------------------------------------------------------------------------------- /dist/files/web/02_basics/svapp/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/svapp/app.py -------------------------------------------------------------------------------- /dist/files/web/02_basics/svapp/nginx.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/02_basics/svapp/nginx.conf -------------------------------------------------------------------------------- /dist/files/web/02_basics/svapp/requirements.txt: -------------------------------------------------------------------------------- 1 | Flask==1.1.2 2 | PyMySQL==0.10.1 -------------------------------------------------------------------------------- /dist/files/web/02_basics/svapp/templates/index.html: -------------------------------------------------------------------------------- 1 |

Hello, {{ name }}

-------------------------------------------------------------------------------- /dist/files/web/03_DirTrav/dirtrav-app/app/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/03_DirTrav/dirtrav-app/app/Dockerfile -------------------------------------------------------------------------------- /dist/files/web/03_DirTrav/dirtrav-app/app/app/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/03_DirTrav/dirtrav-app/app/app/app.py -------------------------------------------------------------------------------- /dist/files/web/03_DirTrav/dirtrav-app/app/app/requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/03_DirTrav/dirtrav-app/app/app/requirements.txt -------------------------------------------------------------------------------- /dist/files/web/03_DirTrav/dirtrav-app/app/app/templates/add.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/03_DirTrav/dirtrav-app/app/app/templates/add.html -------------------------------------------------------------------------------- /dist/files/web/03_DirTrav/dirtrav-app/app/app/templates/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/03_DirTrav/dirtrav-app/app/app/templates/index.html -------------------------------------------------------------------------------- /dist/files/web/03_DirTrav/dirtrav-app/app/app/templates/memo.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/03_DirTrav/dirtrav-app/app/app/templates/memo.html -------------------------------------------------------------------------------- /dist/files/web/03_DirTrav/dirtrav-app/docker-compose.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/03_DirTrav/dirtrav-app/docker-compose.yml -------------------------------------------------------------------------------- /dist/files/web/04_XSS/column-vue.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/04_XSS/column-vue.html -------------------------------------------------------------------------------- /dist/files/web/04_XSS/csp-baseuri/app/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/04_XSS/csp-baseuri/app/app.py -------------------------------------------------------------------------------- /dist/files/web/04_XSS/csp-baseuri/app/static/index.js: -------------------------------------------------------------------------------- 1 | console.log('Hello, JavaScript!') -------------------------------------------------------------------------------- /dist/files/web/04_XSS/csp-baseuri/attacker/static/index.js: -------------------------------------------------------------------------------- 1 | alert(1) -------------------------------------------------------------------------------- /dist/files/web/04_XSS/csp-strict-dynamic/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/04_XSS/csp-strict-dynamic/app.py -------------------------------------------------------------------------------- /dist/files/web/04_XSS/csp-strict-dynamic/poc.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/04_XSS/csp-strict-dynamic/poc.html -------------------------------------------------------------------------------- /dist/files/web/04_XSS/patterns.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/04_XSS/patterns.py -------------------------------------------------------------------------------- /dist/files/web/04_XSS/xss-dombased.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/04_XSS/xss-dombased.html -------------------------------------------------------------------------------- /dist/files/web/04_XSS/xss-example.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/04_XSS/xss-example.py -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/db/init/init.sql: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/db/init/init.sql -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/docker-compose.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/docker-compose.yml -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web1/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web1/Dockerfile -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web1/app/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web1/app/app.py -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web1/app/requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web1/app/requirements.txt -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web1/app/templates/add.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web1/app/templates/add.html -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web1/app/templates/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web1/app/templates/index.html -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web2/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web2/Dockerfile -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web2/app/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web2/app/app.py -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web2/app/requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web2/app/requirements.txt -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web2/app/templates/add.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web2/app/templates/add.html -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web2/app/templates/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web2/app/templates/index.html -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web3/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web3/Dockerfile -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web3/app/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web3/app/app.py -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web3/app/requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web3/app/requirements.txt -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web3/app/templates/add.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web3/app/templates/add.html -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web3/app/templates/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web3/app/templates/index.html -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web4/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web4/Dockerfile -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web4/app/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web4/app/app.py -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web4/app/requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web4/app/requirements.txt -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web4/app/templates/add.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web4/app/templates/add.html -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web4/app/templates/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web4/app/templates/index.html -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web5/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web5/Dockerfile -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web5/app/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web5/app/app.py -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web5/app/requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web5/app/requirements.txt -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web5/app/templates/add.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web5/app/templates/add.html -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web5/app/templates/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web5/app/templates/index.html -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/SQLi-app/web5/app/templates/modify.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/SQLi-app/web5/app/templates/modify.html -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/scripts/sqli-boolean-exploit.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/scripts/sqli-boolean-exploit.py -------------------------------------------------------------------------------- /dist/files/web/05_SQLi/scripts/sqli-time-exploit.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/05_SQLi/scripts/sqli-time-exploit.py -------------------------------------------------------------------------------- /dist/files/web/06_SSTI/SSTI-app/app/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/06_SSTI/SSTI-app/app/Dockerfile -------------------------------------------------------------------------------- /dist/files/web/06_SSTI/SSTI-app/app/app/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/06_SSTI/SSTI-app/app/app/app.py -------------------------------------------------------------------------------- /dist/files/web/06_SSTI/SSTI-app/app/app/requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/06_SSTI/SSTI-app/app/app/requirements.txt -------------------------------------------------------------------------------- /dist/files/web/06_SSTI/SSTI-app/app/app/templates/add.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/06_SSTI/SSTI-app/app/app/templates/add.html -------------------------------------------------------------------------------- /dist/files/web/06_SSTI/SSTI-app/app/app/templates/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/06_SSTI/SSTI-app/app/app/templates/index.html -------------------------------------------------------------------------------- /dist/files/web/06_SSTI/SSTI-app/db/init/init.sql: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/06_SSTI/SSTI-app/db/init/init.sql -------------------------------------------------------------------------------- /dist/files/web/06_SSTI/SSTI-app/docker-compose.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/06_SSTI/SSTI-app/docker-compose.yml -------------------------------------------------------------------------------- /dist/files/web/06_SSTI/scripts/builtins-example.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/06_SSTI/scripts/builtins-example.py -------------------------------------------------------------------------------- /dist/files/web/06_SSTI/scripts/class-example.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/06_SSTI/scripts/class-example.py -------------------------------------------------------------------------------- /dist/files/web/06_SSTI/scripts/globals-example.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/06_SSTI/scripts/globals-example.py -------------------------------------------------------------------------------- /dist/files/web/06_SSTI/scripts/mro-example.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/06_SSTI/scripts/mro-example.py -------------------------------------------------------------------------------- /dist/files/web/06_SSTI/scripts/str-to-object.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/06_SSTI/scripts/str-to-object.py -------------------------------------------------------------------------------- /dist/files/web/06_SSTI/scripts/subclass-example.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/06_SSTI/scripts/subclass-example.py -------------------------------------------------------------------------------- /dist/files/web/07_SSRF/SSRF-app/app/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/07_SSRF/SSRF-app/app/Dockerfile -------------------------------------------------------------------------------- /dist/files/web/07_SSRF/SSRF-app/app/app/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/07_SSRF/SSRF-app/app/app/app.py -------------------------------------------------------------------------------- /dist/files/web/07_SSRF/SSRF-app/app/app/requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/07_SSRF/SSRF-app/app/app/requirements.txt -------------------------------------------------------------------------------- /dist/files/web/07_SSRF/SSRF-app/app/app/templates/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/07_SSRF/SSRF-app/app/app/templates/index.html -------------------------------------------------------------------------------- /dist/files/web/07_SSRF/SSRF-app/docker-compose.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/07_SSRF/SSRF-app/docker-compose.yml -------------------------------------------------------------------------------- /dist/files/web/08_XXE/XXE-app/docker-compose.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/08_XXE/XXE-app/docker-compose.yml -------------------------------------------------------------------------------- /dist/files/web/08_XXE/XXE-app/web1/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/08_XXE/XXE-app/web1/Dockerfile -------------------------------------------------------------------------------- /dist/files/web/08_XXE/XXE-app/web1/app/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/08_XXE/XXE-app/web1/app/app.py -------------------------------------------------------------------------------- /dist/files/web/08_XXE/XXE-app/web1/app/config.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/08_XXE/XXE-app/web1/app/config.xml -------------------------------------------------------------------------------- /dist/files/web/08_XXE/XXE-app/web1/app/requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/08_XXE/XXE-app/web1/app/requirements.txt -------------------------------------------------------------------------------- /dist/files/web/08_XXE/XXE-app/web1/app/templates/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/08_XXE/XXE-app/web1/app/templates/index.html -------------------------------------------------------------------------------- /dist/files/web/08_XXE/XXE-app/web2/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/08_XXE/XXE-app/web2/Dockerfile -------------------------------------------------------------------------------- /dist/files/web/08_XXE/XXE-app/web2/app/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/08_XXE/XXE-app/web2/app/app.py -------------------------------------------------------------------------------- /dist/files/web/08_XXE/XXE-app/web2/app/config.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/08_XXE/XXE-app/web2/app/config.xml -------------------------------------------------------------------------------- /dist/files/web/08_XXE/XXE-app/web2/app/requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/08_XXE/XXE-app/web2/app/requirements.txt -------------------------------------------------------------------------------- /dist/files/web/08_XXE/XXE-app/web2/app/templates/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/08_XXE/XXE-app/web2/app/templates/index.html -------------------------------------------------------------------------------- /dist/files/web/08_XXE/XXE-app/web3/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/08_XXE/XXE-app/web3/Dockerfile -------------------------------------------------------------------------------- /dist/files/web/08_XXE/XXE-app/web3/app/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/08_XXE/XXE-app/web3/app/app.py -------------------------------------------------------------------------------- /dist/files/web/08_XXE/XXE-app/web3/app/config.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/08_XXE/XXE-app/web3/app/config.xml -------------------------------------------------------------------------------- /dist/files/web/08_XXE/XXE-app/web3/app/requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/08_XXE/XXE-app/web3/app/requirements.txt -------------------------------------------------------------------------------- /dist/files/web/08_XXE/XXE-app/web3/app/templates/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/08_XXE/XXE-app/web3/app/templates/index.html -------------------------------------------------------------------------------- /dist/files/web/08_XXE/payload/blind_errorinfo.dtd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/08_XXE/payload/blind_errorinfo.dtd -------------------------------------------------------------------------------- /dist/files/web/08_XXE/payload/send_file_to_server.dtd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/08_XXE/payload/send_file_to_server.dtd -------------------------------------------------------------------------------- /dist/files/web/08_XXE/payload/wrapper.dtd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/08_XXE/payload/wrapper.dtd -------------------------------------------------------------------------------- /dist/files/web/08_XXE/script/oob_test.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/dist/files/web/08_XXE/script/oob_test.py -------------------------------------------------------------------------------- /gatsby-config.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/gatsby-config.js -------------------------------------------------------------------------------- /package.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/package.json -------------------------------------------------------------------------------- /src/@rocketseat/gatsby-theme-docs/components/Logo.tsx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/src/@rocketseat/gatsby-theme-docs/components/Logo.tsx -------------------------------------------------------------------------------- /src/@rocketseat/gatsby-theme-docs/text/index.mdx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/src/@rocketseat/gatsby-theme-docs/text/index.mdx -------------------------------------------------------------------------------- /src/@types/.gitignore: -------------------------------------------------------------------------------- 1 | gatsby-types.d.ts -------------------------------------------------------------------------------- /src/assets/logo.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/src/assets/logo.png -------------------------------------------------------------------------------- /src/config/sidebar.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/src/config/sidebar.yml -------------------------------------------------------------------------------- /src/docs/about-dist.mdx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/src/docs/about-dist.mdx -------------------------------------------------------------------------------- /src/docs/about.mdx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/src/docs/about.mdx -------------------------------------------------------------------------------- /src/docs/faq.mdx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/src/docs/faq.mdx -------------------------------------------------------------------------------- /src/pages/404.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/src/pages/404.js -------------------------------------------------------------------------------- /static/banner.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/static/banner.png -------------------------------------------------------------------------------- /static/cover.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/static/cover.png -------------------------------------------------------------------------------- /static/favicon.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/static/favicon.png -------------------------------------------------------------------------------- /tsconfig.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/tsconfig.json -------------------------------------------------------------------------------- /yarn.lock: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctfbook/2nd/HEAD/yarn.lock --------------------------------------------------------------------------------