For this pwnable we've got a zip with AppJailLauncher.exe
and thing2.exe
. This
means we get to experience the wonders of ASLR+DEP+Win8.1 🔥 tl;dr ruby solution
- C++ Object Memory Layout (Virtual Function Tables)
- Windows 64bit ABI / Calling Convention
- ASLR, DEP/NX
- ROP