-
Exploiting the Starcraft 1 EUD Bug
Starcraft, released in 1998, is still one of the best strategy games ever made. Over 20 years later it still has a strong community and a remastered version was released in 2017 with updated graphics and sound. However, like most software, it has had it fair share of bugs. One of these bugs was an arbitrary read/write vulnerability in the parser for the scripts embedded in the maps of the game. As long as I've known about the bug I had assumed it could be used for exploitation but I had never seen a public example of this. Last weekend, I sat down and wrote an exploit myself and also turned this into a challenge for the Midnight Sun CTF 2020 qualifiers. In this first blog post I will go through some background, explain the bug and the exploit I wrote for it. In part two I will explain how I turned this into a CTF challenge and some of the solutions the teams came up with.
-
SecurityFest 2019 - Software Obfuscation with LLVM
At the end of May, I gave a presentation at SecurityFest 2019. I talked about the code obfuscation and how to use the LLVM compiler framework to obfuscate code. The recorded talk is available at the SecurityFest YouTube channel and you can download the slides here.
-
0xFF - Talk and workshop about CTF
Back in April, I gave a presentation and hosted a workshop on CTF at the 0xFF meetup. I talked about what CTFs are, why you should play them and how to get started. At the workshop, the participants got to try some basic CTF challenges from various categories. The recorded talk is available at the 0xFF YouTube channel and you can download the slides (from both the talk and the workshop) here.
-
KonsulaTED - Basics of binary exploitation
Back in February, I gave a presentation at a private meet-up that I run together with some friends where we talk about various technical topics roughly once per month. I talked about the basics of binary exploitation. This lecture was heavily based on the presentation I gave at KTH last year but presented in Swedish this time. The recorded talk (in Swedish) is available my YouTube channel and you can download the slides here.
-
SecuriTea - Lecture on basics of binary exploitation
Back in February this year, I gave a lecture at the SecuriTea meetup hosted by Foo Café in Malmö. I talked about the basics of binary exploitation. This lecture was heavily based on the presentation I gave at KTH a few months ago but a bit shortened and adapted to be slightly more beginner friendly. The talk was not recorded but you can download the slides here.
subscribe via RSS