The blog of the Spanish security group "int3pids". Our team participates in a large number of international CTF games and competitions (Defcon, Codegate, ...).
gdb-peda$ checksec CANARY : disabled FORTIFY : disabled NX : ENABLED PIE : ENABLED RELRO : FULL gdb-peda$ So we not only have to deal with ASAN, but we have a binary with full ASLR, NX and RELRO. This is gonna be fun :) Let's move on with the analysis. The main binary listens on a given port (passed as a parameter on the command line) and forks for each client. This means that ASLR is not such a big deal, since the addresses will remain constant for each client and we can reuse leaks from ASAN's error repor
Avih "is a roguelike game whose source code fits in exactly 1024 bytes". So as you can imagine, the C code itself looks awful... everything in one line, abusing macro's, etc.