shellphish/how2heap issues and pull requests

#93 - add double free version of tcache poisoning

Pull Request - State: closed - Opened by Kyle-Kyle almost 6 years ago - 10 comments

#92 - A tool for heap learning - HeapInspect

Issue - State: closed - Opened by matrix1001 about 6 years ago

#91 - Typo on house of spirit... I think

Issue - State: closed - Opened by pentallelogram about 6 years ago - 2 comments

#90 - Fix printing new line in first_fit.c

Pull Request - State: closed - Opened by xairy about 6 years ago

#89 - Added large_bin_attack which has the same affect as unsorted_bin_attack

Pull Request - State: closed - Opened by sajjadium about 6 years ago - 4 comments

#88 - A better way to handle different glibc

Issue - State: closed - Opened by matrix1001 about 6 years ago - 2 comments

#87 - glibc 2.25 poison_null_byte

Issue - State: closed - Opened by beswing about 6 years ago - 1 comment

#86 - refer to remotes and small typo fix

Pull Request - State: closed - Opened by glslang about 6 years ago

#85 - house_of_orange.c: note glibc pointer protection

Pull Request - State: closed - Opened by bennofs over 6 years ago - 3 comments

#84 - house of spirit for tcache

Pull Request - State: closed - Opened by Eterna1 over 6 years ago - 7 comments

#83 - print pid in malloc_playground for gdb attaching

Pull Request - State: closed - Opened by Kyle-Kyle over 6 years ago

#82 - Add House of fun

Issue - State: open - Opened by m1ghtym0 over 6 years ago

#81 - WIP: Introduce structure to account for new consistency checks

Pull Request - State: closed - Opened by m1ghtym0 over 6 years ago - 2 comments

#80 - fix an offset message mistake and some typos

Pull Request - State: closed - Opened by Kyle-Kyle over 6 years ago - 3 comments

#79 - Add tcache attacks

Pull Request - State: closed - Opened by danigargu over 6 years ago - 6 comments

#78 - Added exploitation tool for IDA Pro

Pull Request - State: closed - Opened by danigargu over 6 years ago

#77 - Add unsorted_bin_into_stack

Pull Request - State: closed - Opened by insuyun over 6 years ago - 8 comments

#76 - Add House of Roman

Issue - State: closed - Opened by infernalheaven over 6 years ago - 2 comments

#75 - Update house_of_force.c

Pull Request - State: closed - Opened by junmoxiao over 6 years ago - 2 comments

#74 - Update house_of_force.c

Pull Request - State: closed - Opened by junmoxiao over 6 years ago

#73 - Poison null byte - the example might be confusing

Issue - State: closed - Opened by j0nathanj over 6 years ago - 1 comment

#72 - Add fastbin_dup_consolidate

Pull Request - State: closed - Opened by insuyun over 6 years ago - 1 comment

#71 - Want to ask question about fake chunk in fastbins

Issue - State: closed - Opened by d4em0n over 6 years ago - 2 comments

#70 - tcache stuff

Issue - State: closed - Opened by m1ghtym0 almost 7 years ago - 2 comments

#69 - house_of_orange broken

Issue - State: closed - Opened by m1ghtym0 almost 7 years ago

#68 - unsafe_unlink doesn't work with glibc 2.26

Issue - State: closed - Opened by firmianay almost 7 years ago - 3 comments

#67 - blind chunk unmaping

Issue - State: closed - Opened by Eterna1 almost 7 years ago - 1 comment

#66 - REFACTOR: Exchange printf for fprintf - prevents heap usage from vfprintf family.

Pull Request - State: closed - Opened by n30m1nd about 7 years ago - 1 comment

#65 - Cleanup and correct unsafe_unlink

Pull Request - State: closed - Opened by m1ghtym0 about 7 years ago - 1 comment

#64 - house_of_orange: Simplify _IO_flush_all_lockp checks

Pull Request - State: closed - Opened by m1ghtym0 about 7 years ago - 1 comment

#63 - house_of_orange...

Issue - State: closed - Opened by vngkv123 about 7 years ago - 3 comments

#62 - Fix, elaborate, clarify, give proper credit in house_of_orange

Pull Request - State: closed - Opened by m1ghtym0 about 7 years ago - 1 comment

#61 - house_of_rabbit

Issue - State: open - Opened by m1ghtym0 about 7 years ago - 4 comments

#60 - [Refactor] Refrain using printf/puts unless necessary

Issue - State: closed - Opened by n30m1nd about 7 years ago - 12 comments

#59 - Detailing House of Orange

Pull Request - State: closed - Opened by jkrshnmenon about 7 years ago - 3 comments

#58 - unsafe_unlink have typo

Issue - State: closed - Opened by hyrathon about 7 years ago - 4 comments

#57 - House of Orange PoC

Pull Request - State: closed - Opened by jkrshnmenon about 7 years ago - 3 comments

#56 - chunk0_ptr

Pull Request - State: closed - Opened by r3n4ive about 7 years ago - 2 comments

#55 - Added a better description for house of einherjar changes

Pull Request - State: closed - Opened by Kingloko about 7 years ago - 3 comments

#54 - Need the binary file for Insomni'hack 2017-Wheel of Robots

Issue - State: closed - Opened by sivaramaaa over 7 years ago - 4 comments

#53 - Fixed House of Einherjar

Pull Request - State: closed - Opened by Kingloko over 7 years ago - 4 comments

#52 - added Nonadjacent Free Chunk Consolidation Attack

Pull Request - State: closed - Opened by degrigis over 7 years ago - 1 comment

#51 - night-deamonic-heap should belong to overlapping_chunks

Pull Request - State: closed - Opened by lonnywong over 7 years ago - 1 comment

#50 - "Applicable CTF Challenges" provide binary file would be more helpful.

Issue - State: closed - Opened by lonnywong over 7 years ago - 3 comments

#49 - How to get code-exec + bypass stack-smashing

Pull Request - State: closed - Opened by n30m1nd over 7 years ago - 2 comments

#48 - Add link to Intro to ptmalloc2

Pull Request - State: closed - Opened by n30m1nd over 7 years ago - 1 comment

#47 - Fixed warning in unsafe unlink

Pull Request - State: closed - Opened by CodeMaxx over 7 years ago

#46 - better explanation on how to defeat the new glibc patch

Pull Request - State: closed - Opened by antoniobianchi333 over 7 years ago

#45 - fix for the new check 'chunksize(P) != prev_size (next_chunk(P))' in poison_null_byte

Pull Request - State: closed - Opened by salls over 7 years ago

#44 - Adjust unsafe_unlink to new mitigation techniques.

Pull Request - State: closed - Opened by m1ghtym0 over 7 years ago - 1 comment

#43 - Fix documentation mistakes in unsafe_unlink.c

Pull Request - State: closed - Opened by m1ghtym0 over 7 years ago

#42 - House of Spirit: purely cosmetic changes to make the example more intuitive

Pull Request - State: closed - Opened by fiksn over 7 years ago - 1 comment

#41 - Typo fix in fastbin_dup_into_stack.c

Pull Request - State: closed - Opened by acskurucz over 7 years ago - 1 comment

#40 - Adding DEFCON 2017 Unsafe Unlink example

Pull Request - State: open - Opened by bannsec over 7 years ago - 4 comments

#39 - add argp's shadow

Pull Request - State: closed - Opened by manizzle over 7 years ago - 1 comment

#38 - Figure out a good balance for "Applicable CTF Challenges"

Issue - State: open - Opened by zardus over 7 years ago - 3 comments

#37 - Add Wheel of Robots

Pull Request - State: closed - Opened by cloudburst over 7 years ago - 1 comment

#36 - add 0ctf quals babyheap

Pull Request - State: closed - Opened by cloudburst over 7 years ago - 2 comments

#35 - Adding GEF Heap Stuff

Pull Request - State: closed - Opened by bannsec over 7 years ago - 1 comment

#34 - house_of_einherjar example size check

Issue - State: closed - Opened by bannsec over 7 years ago - 5 comments
Labels: help wanted

#33 - add Nuit du Hack night-deamonic-heap

Pull Request - State: closed - Opened by cloudburst over 7 years ago - 1 comment

#32 - should be 'before' than 'after', I think

Pull Request - State: closed - Opened by Eterna1 over 7 years ago - 1 comment

#31 - Linux Kernel (SLUB/SLAB)

Issue - State: open - Opened by zachriggle almost 8 years ago - 2 comments

#30 - House of Einherjar: Fix formatting and grammar

Pull Request - State: closed - Opened by Grazfather almost 8 years ago - 4 comments

#29 - Fix lines which causes compile error

Pull Request - State: closed - Opened by otms61 almost 8 years ago - 1 comment

#28 - Split some long sentences to make this more readable

Pull Request - State: closed - Opened by Escapingbug almost 8 years ago - 1 comment

#27 - Split some of long lines to make it easier to read

Pull Request - State: closed - Opened by Escapingbug almost 8 years ago - 3 comments

#26 - Add -g cflag to include debugging info

Pull Request - State: closed - Opened by Grazfather almost 8 years ago - 2 comments

#25 - Fix warning, mixed tabs/spaces and trailing ws

Pull Request - State: closed - Opened by Grazfather almost 8 years ago - 2 comments

#24 - Adding house of force example

Pull Request - State: closed - Opened by bannsec about 8 years ago - 1 comment

#23 - Unsafe unlinking cleanup

Pull Request - State: closed - Opened by andigena about 8 years ago - 1 comment

#22 - Make the House of Spirit description more precise

Pull Request - State: closed - Opened by andigena about 8 years ago - 1 comment

#21 - look into house of orange (HITCON 2016)

Issue - State: closed - Opened by zardus about 8 years ago - 1 comment

#20 - look into HITCON 2016 examples

Issue - State: closed - Opened by zardus about 8 years ago - 3 comments

#19 - Add unsorted bin attack

Pull Request - State: closed - Opened by a7vinx about 8 years ago - 1 comment

#18 - remove excess step and explain better in house_of_lore

Pull Request - State: closed - Opened by a7vinx about 8 years ago - 1 comment

#17 - Explain fast bin better in fastbin_dup_into_stack

Pull Request - State: closed - Opened by Grazfather about 8 years ago - 2 comments

#16 - fix typo

Pull Request - State: closed - Opened by conand over 8 years ago - 1 comment

#15 - Update house_of_lore.c

Pull Request - State: closed - Opened by ghost over 8 years ago - 1 comment

#14 - add house of force example

Pull Request - State: closed - Opened by crowell over 8 years ago

#13 - Add overlapping chunks ctf challenge

Pull Request - State: closed - Opened by andigena over 8 years ago - 1 comment

#12 - added the house of force

Pull Request - State: closed - Opened by degrigis over 8 years ago - 1 comment

#11 - added the overlapping chunks technique

Pull Request - State: closed - Opened by degrigis over 8 years ago - 1 comment

#10 - added the house of lore

Pull Request - State: closed - Opened by degrigis over 8 years ago - 4 comments

#9 - Added resources to readme.md

Pull Request - State: closed - Opened by frite over 8 years ago - 1 comment

#8 - Readme resource

Pull Request - State: closed - Opened by frite over 8 years ago

#7 - Added Phrack Heap Collection

Pull Request - State: closed - Opened by frite over 8 years ago - 2 comments

#6 - remove gets which gave compiler warning

Pull Request - State: closed - Opened by crowell almost 9 years ago - 1 comment

#5 - Compilation issues

Issue - State: closed - Opened by jarun almost 9 years ago - 2 comments

#4 - A bit more info on glibc, and allow playing with it

Pull Request - State: closed - Opened by Jacopo almost 9 years ago - 1 comment

#3 - Add malloc playground

Pull Request - State: closed - Opened by rhelmot almost 9 years ago

#2 - Mention the easy libc hardening, because real CTFs are attack-defense! :D ;D

Pull Request - State: closed - Opened by Jacopo almost 9 years ago

#1 - get the malloc playground in here

Issue - State: closed - Opened by zardus almost 9 years ago - 2 comments

GitHub / shellphish/how2heap issues and pull requests