pwn.college

Module: Shellcode Injection

Shellcoding is the art of injecting code into a program, usually during exploitation, to get it to carry out actions desired by the attacker [1].

Slides

The slides for this module are:

Practice

You will practice on a set of generated challenges. There is a /flag file, and you get to choose one binary on which the SUID flag will be set.

Each program takes your shellcode as input over stdin and will filter and execute your shellcode. If your shellcode passes the filters and successfully runs, you can use it to read the /flag file.

If you are ready to tackle the challenges, go to https://ctf.pwn.college!

Resources

Useful resources: