Binary Exploitation (Pwn) Notes

A collection of notes, techniques, and research gathered during my journey into the world of Binary Exploitation. This repository serves as a personal mirror of my Obsidian vault.

Important

Disclaimer: These notes are provided "as-is." This is a living document of my learning process, not a definitive or "first-class" educational resource. Techniques change, my understanding evolves, and nothing here is guaranteed to be 100% accurate or follow best practices. Use this as a reference, but always verify with official documentation or source code.

---

📝 About

Some sections might feel incomplete or "missing." This is because I mastered certain concepts before I started consistent note-taking. I may go back and backfill those sections in the future, but for now, this repo focuses on what I explored after developing the note-taking habit.

📂 Knowledge Base Structure

%% Begin Waypoint %%

• FSOP
  • Arbitrary Read
  • Arbitrary Write (Reading into memory)
  • References and Sources
  • Shell
  • Structs
• Kernel
  • PE-Techniques
    • commit_creds(prepare_kernel_cred(NULL))
    • run_cmd(CMD)
  • Techniques
    • Bruteforcing-KASLR
    • Escaping-Seccomp
    • Ret2Usr
    • Shellcode
  • Environment
  • Mitigations
  • Notes-Updates
  • pwntools-Alternatives
  • Resources
  • Template
• Sandboxing
  • chroot
  • seccomp
  • Write-ups
• Shellcoding
  • CALL Instruction Behavior
  • LJUMP - Escaping from x86 to x86_64
  • Python Capstone Sandbox Bypass
• README

%% End Waypoint %%

---

🛠️ Environment & Tools

Most of these notes are tested on Linux environments using:

• pwntools
• GDB + GEF / pwndbg
• Custom Kernel exploit templates

---

Happy Pwn-ing!