It’s been a while where I’ve been too busy even for any good reading, but we’re back to the reading lists!

Return-Oriented Programming (ROP)

Code Arcana has an excellent introduction to ROP exploitation techniques. In addition to providing an introduction to the concept, it takes it through detailed implementation and debugging. I look forward to getting an opportunity to try it during the next CTF with a ROP challenge. (I’m guess PlaidCTF will offer such a chance.)

Ropasaurus Rex

Speaking of ROP and PlaidCTF, here’s a great write-up for last year’s Ropasaurus Rex challenge during PlaidCTF from the ISIS Lab blog at NYU Poly. If your prefer video, Skullspace Labs provides with a tutorial. The next PlaidCTF is just around the corner!