# Lab06: rop Return-oriented programming (ROP). It is, in essence, same as ret-to-lib(c) that we've learned last week, but remember all binaries are somewhat complicated. Have fun! * Problems + [level 00] tut06-rop [20 points] + [level 01] tut06-advrop [20 points] + [level 02] rop-basic [20 points] + [level 03] rop-64 [20 points] + [level 04] pop [20 points] + [level 05] puzzle [20 points] + [level 06] upto-retaddr [20 points] + [level 07] find-gadget [20 points] + [level 08] sprintf [20 points] + [level 09] rop-sorting [20 points] + [level 10] inc1 [20 points] + [level 11] fmtstr-relro [20 points] * Refs - https://www.blackhat.com/presentations/bh-usa-08/Shacham/BH_US_08_Shacham_Return_Oriented_Programming.pdf - http://blog.exploitlab.net/2013/06/dive-into-rop-blackhat-usa-2013.html - https://cseweb.ucsd.edu/~hovav/dist/rop.pdf