README

Pwn for Fun and Profit is a progressive tutorial series that aims to be noob-friendly enough for anyone to dive in, and equip them with the skills to come out with substantial knowledge on The Art of Pwn.

I wrote this tutorial to provide people with the things I hope I knew / was told when I first started off on my pwn journey.

I hope that you enjoy this tutorial as much as I enjoyed writing it, and that it was useful to you.

• Prologue

  1. What is Pwn?

• The ELF Executable

  1. The C Program
  2. Assembly and the Stack
  3. The Tables of the Binary
  4. Binary Decompilation
  5. The x86 Memory

• Securities of a Binary

  1. no eXecute (NX)
  2. Stack Canary
  3. Binary Randomization (ASLR/PIE)
  4. Relocation Read-Only (RELRO)

• Breaking The Stack

  1. Buffer Overflow
     • WhiteHacks 2021 - Puddi Puddi
     • dCTF 2021 - Pinch_Me (dynamic analysis, little-endian)
  2. Return 2 Win

• Return Oriented Programming

  1. What is Return Oriented Programming?
  2. ROP Gadgets
  3. Return 2 Libc: The Concept
  4. Return 2 Libc: Execution

Additional Resources

• Good Reads

  • Hacking: The Art of Exploitation 2
  • Practical Binary Analysis
  • The Shellcoders Handbook 2nd Edition
  • Practical Reverse Engineering

• WarGames/CTFs

  • PicoCTF
  • Narnia OverTheWire
  • Pwnable KR
  • Pwnable TW

• Learning Resources

  • CTF101
  • Nightmare
  • Live OverFlow
  • Pwn College (lecture+practices)
  • RPISEC (lecture+practice)
  • Principles of Pwning (PoP)