# Lab06: rop Return-oriented programming (ROP). It is, in essence, same as ret-to-lib(c) that we've learned last week, but remember all binaries are somewhat complicated. Have fun! * Problems + [level 00] tut-rop [20 points] + [level 01] rop-basic [20 points] + [level 02] rop-64 [20 points] + [level 03] pop [20 points] + [level 04] puzzle [20 points] + [level 05] upto-retaddr [20 points] + [level 06] find-gadget [20 points] + [level 07] sprintf [20 points] + [level 08] rop-sorting [20 points] + [level 09] inc1 [20 points] + [level 10] fmtstr-relro [20 points] You need 110 points to get the full grade. * Refs - https://www.blackhat.com/presentations/bh-usa-08/Shacham/BH_US_08_Shacham_Return_Oriented_Programming.pdf - http://blog.exploitlab.net/2013/06/dive-into-rop-blackhat-usa-2013.html - https://cseweb.ucsd.edu/~hovav/dist/rop.pdf