Exploiting Return Oriented Programming (ROP) tutorial - Binary Exploitation PWN101

Some quick notes after uploading the video:
- A ROP gadget is any instruction sequence that ends with an instruction that modifies the RIP register, typically a RET (but it could be any other instruction, like JMP). In the video, in order to keep things simple, I mentioned only the RET case.
- Yes, around 14:45 I mispronounce the word "contriving" :(

RazviOverflow

This is by far the clearest explanation of ROP ive ever seen and you are the only channel ive seen to break it down into the very basics, and make it super clear to understand. Glad to be one of your first 500 subs, but you deserve more than the big CTF youtubers out there and I can see your channel blowing up. Thanks a lot!

antisec

This is seriously the best explanation i've found on ROP. The explanation is so clear and detailed. So helpful 😄 Loved it!

thecamera-gw

Wow. I cant wait for your channel to explode! You have a deep understanding of what you're doing and present the material in a clear and approachable way. I really enjoyed this, thank you!

MysteryMooCows

Every single one of your videos has taught me 10 x anything I have ever learned from any other instructor. Your approach with explaining each subject and all of the complex details is just phenomenal. So grateful to have stumbled across you. Working my way through your content and loving every minute.

mattanderson

Thank you so much, this is by far the clearest rop tutorial ive ever seen. keep up the good work

migwe

Wow - this is by far the best explanation if seen on the topic so far. Thank you very much!

pgteugj

Your content is super clear and well explained. Thanks for explaining the rop concept in the best possible way.

harjotsaraon

Truely said, you deserve subs more than top CTF YouTubers out there, absolutely clear content, loved it!

atharavhedage

Woah! loved the explanation, you surely deserve more number.

kushagrasingh

Excellent content, this actually helped me a lot. Please keep posting!

regas

Can you make a Cutter setup video. My cutter shows addresses relative to stack. Which is pretty confusing... I was wondering why isn't my exploit working...
It shows var void *buf @ stack - 0x28 whereas on yours it shows var void *buf @ rbp - 0x20 @14:53

zeshanahmednabin

Nice one once again. Looking forwards to more content.

danielcmihai

Extremely clear explanations thank you for this video

Obeeron

Can somebody advice the debugger for NASM?

Ouroboros

Possibly already pointed out - at around 8:30 the picture of the stack being overflowed is backwards. The stack grows from high memory addresses to low. Everything that was drawn into the stack should be flipped upside down. Nonetheless, still a great video and explanation.

nathandaugherty

hello, thanks for all but where is the file i didn't find . Can u share please ?

cgrbro

Hello! One of the best videos about ROPs. One thing I would like o mention:
After:
payload = b"A" * 0x28
I also need an address of just 'ret' got with ROPgadget so:
payload += return_address.
Moreover I need to push it further to "usefulFunction" address. So:
payload += usefullFunction_address
So now I can add the other 3 addresses that you have in your video. I don't know why it is not working with what you just present there...

AdiSings

Hola Razvi! Volverás a meterle caña al otro canal o ya lo has abandonado del todo? Se te echa de menos!

polmarin

i dont understand a shit from all of this, i don't know what is the flow or next instruction when you talk about things, i don't see the context

ragnarlothbrok