HITCON 2017 : Ghost in The Heap Writeup
This is quite interesting challenge in this CTF, I had spent nearly 20 hours to solve this challenges.
The vulnerability is in alloc_heap function. The scanf function read string into 168 bytes heap but scanf will automaticaly added…