Files

assets
challenges
- Binary_Search
- Blame_Game
- Blast_from_the_past
- Bookmarklet
- C3
- CanYouSee
- Classic_Crackme_0x100
- Collaborative_Development
- Commitment_Issues
- Custom_encryption
- Dear_Diary
- FactCheck
- IntroToBurp
- Mob_psycho
- No_Sql_Injection
- SansAlpha
- Scan_Surprise
- Secret_of_the_Polyglot
- Super_SSH
- Time_Machine
- Trickster
- Unminify
- Verify
- WebDecode
- WinAntiDbg0x100
- WinAntiDbg0x200
- WinAntiDbg0x300
- babygame03
- binhexa
- dont-you-love-banners
- elements
- endianness-v2
- endianness
- flag_printer
- format_string_0
- format_string_1
- format_string_2
- format_string_3
- heap_0
  - original_files
  - README.md
- heap_1
- heap_2
- heap_3
- high_frequency_troubles
- interencdec
- packer
- rsa_oracle
- weirdSnake
.envrc
.gitignore
README.md
ctf.yaml

heap_0

[AUTO] $ mctf sync

Mar 10, 2025

b7aa234 · Mar 10, 2025

Name		Name	Last commit message	Last commit date
parent directory ..
original_files		original_files	[AUTO] $ mctf sync	Mar 10, 2025
README.md		README.md	[AUTO] $ mctf sync	Mar 10, 2025

README.md

heap_0

Are overflows just a stack concern?

Solution

Uugh, binary... I hate this... Let's learn some basic binary exploitation I guess...
So, I connect to a server that has a few options to interact with it. I can view the heap, get the flag (which won't work if a certain value on the heap is set) and I can write to "my own personal space" on the heap. I can be a naughty boy and write a huge string to the heap, which will overwrite this "secret value" that needs to be set to a particular value. Doing this will let me use the "get flag" functionality to get the flag.

Flag

Flag: picoCTF{my_first_heap_overflow_76775c7c}