PwnLand

Overview

PwnLand is an open-source repository maintained by PwnFuzz, an R&D lab specializing in fuzzing, reverse engineering, vulnerability research, and exploit development. This repository serves as a comprehensive resource for security researchers, CTF players, and anyone interested in binary exploitation.

PwnLand contains practical examples, tutorials, CTF writeups, and research materials covering various aspects of binary exploitation, including:

Buffer Overflows and ROP Chains
Format String Vulnerabilities
Heap Exploitation Techniques
Kernel Exploitation
Assembly Language Fundamentals
Binary Debugging Strategies

Whether you’re a beginner or an experienced security researcher, PwnLand provides hands-on materials to enhance your understanding of exploitation techniques across different environments and security mechanisms.

Directory Structure
Exploitation Techniques
CTF Writeups
Research Materials
Assembly Resources
Debugging Guides
Challenges
Getting Started
Contributing
License

Directory Structure

.
├── Assembly/              # Assembly language fundamentals
├── Attachments/           # Supporting images and resources
├── binaries/              # Example binaries for practice
├── BufferOverflows/       # Buffer overflow techniques and examples
├── Challenges/            # Practice challenges
├── CTFs/                  # Writeups and solutions for CTF challenges
├── Debugging/             # Debugging techniques and guides
├── Format String/         # Format string vulnerability tutorials
├── Heap/                  # Heap exploitation techniques
├── Kernel/                # Kernel exploitation examples
└── Research/              # Deep dives into exploitation concepts

Exploitation Techniques

Buffer Overflows

Navigate to BufferOverflows/ to explore:

Basic Overflow Techniques
Return-to-libc Attacks
- 32-bit Return-to-libc without ASLR
- 32-bit Return-to-libc with ASLR
Return-Oriented Programming (ROP)
- 32-bit Basic ROP
- 64-bit Basic ROP
Additional Resources
- Resources and References

Format String

Navigate to Format String/ to learn about:

Heap Exploitation

Navigate to Heap/ for techniques organized by GLIBC version:

GLIBC 2.23
GLIBC 2.27

Kernel Exploitation

Navigate to Kernel/ to explore:

Kernel Exploitation Primer Series

This section was contributed by Nikhil. The following blog posts are beginner-friendly and offer in-depth guidance for those starting out with Windows kernel exploitation on modern systems.

CTF Writeups

Explore solutions from various CTF competitions:

Research Materials

Navigate to Research/ for deep dives into:

Assembly Resources

Navigate to Assembly/ for:

Chapter 1: Assembly Fundamentals

Debugging Guides

Navigate to Debugging/ for:

Chapter 1: Debugging Fundamentals

Challenges

Navigate to Challenges/ to test your skills:

Bit Flip Challenge

Getting Started

To get started with PwnLand:

Clone this repository:

git clone https://github.com/PwnFuzz/PwnLand.git

Browse to a topic of interest in the repository.
Follow the tutorials and examples to enhance your skills.
For binary examples, navigate to the binaries/ directory.

Contributing

Contributions to PwnLand are welcome! Whether you want to fix a typo, add a tutorial, or contribute a CTF writeup, please follow these steps:

Fork the repository
Create a new branch (git checkout -b feature/your-feature)
Commit your changes (git commit -am 'Add new tutorial on XYZ')
Push to the branch (git push origin feature/your-feature)
Create a new Pull Request

Please ensure your contributions follow the existing structure and include appropriate documentation.

License

This project is licensed under the MIT License - see the LICENSE file for details.

This site is open source. Improve this page.