DANGEROUS C Functions gets & strcpy (PicoCTF 2022 #04 buffer-overflow0)

Рет қаралды 34,761

2 жыл бұрын

Help the channel grow with a Like, Comment, & Subscribe!
❤️ Support ➡ j-h.io/patreon ↔ j-h.io/paypal ↔ j-h.io/buymeacoffee
Check out the affiliates below for more free or discounted learning!
🖥️ Zero-Point Security ➡ Certified Red Team Operator j-h.io/crto
💻Zero-Point Security ➡ C2 Development with C# j-h.io/c2dev
👨🏻‍💻7aSecurity ➡ Hacking Courses & Pentesting j-h.io/7asecurity
📗Humble Bundle ➡ j-h.io/humblebundle
🌎Follow me! ➡ j-h.io/discord ↔ j-h.io/twitter ↔ j-h.io/linkedin ↔ j-h.io/instagram ↔ j-h.io/tiktok
📧Contact me! (I may be very slow to respond or completely unable to)
🤝Sponsorship Inquiries ➡ j-h.io/sponsorship
🚩 CTF Hosting Requests ➡ j-h.io/ctf
🎤 Speaking Requests ➡ j-h.io/speaking
💥 Malware Submission ➡ j-h.io/malware
❓ Everything Else ➡ j-h.io/etc

Пікірлер: 47

@jpierce2l33t 2 жыл бұрын

Dude, following along right with you, even going ahead now until I get stuck! Please keep going, this is great and I appreciate you so much!

@jlm1144 2 жыл бұрын

I was at that part in my Security+ chapter about buffer-overflow and I was looking for an example of what it really did in C. Thanks man !! :)

@VA3KAMA3 2 жыл бұрын

Super cool series, always a pleasure to watch them! Keep it up!

@greyether777 2 жыл бұрын

Thanks John. We appreciate how you thoroughly explain everything and keep it simple at the same time. You're a rockstar!!

@mrnord1989 2 жыл бұрын

Thank you John, every time I watch one of your videos I always learn something new :)

@wilcosec 2 жыл бұрын

Great series! Keep it coming!

@Talyzeni 2 жыл бұрын

These videos are so awesome. Thanks so much John

@JB4lly 2 жыл бұрын

Maybe putting -fstack-protector when compiling would have worked? Not sure

@windows74001 2 жыл бұрын

Haha I'm a noob at these CTF challenges and had troubles solving this one for some reason. Looking through it with your guidance I'm like "Wow I'm an idiot, it was so simple" lol

@LDowning0190 2 жыл бұрын

Enjoyed the video. Keep them coming.

@logiciananimal 2 жыл бұрын

3 ways to fail the computer systems course I did ~20 years ago: 1) cheat 2) do way too little adequate work 3) use gets()

@KGAD0831 2 жыл бұрын

Loving this series, John. Please finish it!

@zer001 2 жыл бұрын

This was fun! Please more John. :)

@tuxmaster2715 Жыл бұрын

You the best John, thanks a lot for these material and your explanations,

@wChris_ 2 жыл бұрын

it seems to be a kali linux thing having no stack-protector when building with gcc, as it works on my machine (ubuntu)

@richardStretcher 2 жыл бұрын

I wanted to subscribe, but I've completely forgotten that I already was. Anyway, thanks for another informative video!

@masudrahman253 Жыл бұрын

Done Watching Cool Thanks John

@kaleabalemayehu 2 жыл бұрын

you already know it but let me tell you one more time YOU ARE AWESOME.

@drioko Күн бұрын

Awesome

@anmoldeepsingh9281

i think the stack smashing wasnt detected probably the way gcc was compiled, its default could have been -fno-stack-protector, so default build task will never include a canary