Tags: heap rop stack_pivot pwn seccomp 

Rating: 5.0

Disclaimer: I did not solve this during the CTF.

This is a very detailed analysis of Balsn's exploit script for this challenge.

I have removed some parts of the exploit that were redundant, and changed some parts of the exploit script to fix what I removed.

The stack pivoting technique that is used by Balsn in this exploit script is something I've never seen before, and it is absolutely amazing.

Hopefully the writeup is useful.

Original writeup (https://faraz.faith/2019-10-24-hitconctf-lazyhouse-balsn-exploit-analysis/).