"Don't forget guys, don't blindly trust any old code on the internet. That being said, I'm going to blindly trust this code on the internet." I had a real good laugh at this, thank you for your great humor John!

You're really good at explaining how this works ! Thank you John for sharing your knowledge !

I have watched all your earlier binary exploitation videos and this video definitely adds a bit more context and knowledge that I was missing when it comes to x64 and the IP differences. The canonical address stuff makes sense now. Thank you :) I also love that you effed up with the print statement, I do similar stupid stuff all the time 🤦🏻‍♂️😆

Very nice. Made me understand 64 bit a lot better

Thanks for these videos! My GDB crashed on printf, and googling the error revealed that the issue was that the flag string was not 16 byte aligned. Skipping the opcode "0x40123a push rbp" happens to keep the stack pointer aligned and that's why it worked 🤓

This is brilliant and very clear explanation...thanks for sharing

I love yours vídeos. Made me understand 64 bit still more.

This is pure gold... thx so much!

Thank you John!!

Jeff is the real MVP

Very great information!!!

"A gimmick is a novel device or idea designed primarily to attract attention or increase appeal, often with little intrinsic value."

I'd have liked to see you use r2 for this ctf.

Very cool! I was struggling with this one and the video was very clearly explained. Quick question: what do you use to run Kali in a VM? My VirtualBox instance is very slow and I have a super beefy computer (32GB RAM, i7 CPU, RTX3080 graphics). I enabled 3D acceleration and put half of the resources available for the box (16GB memory, 8 cpus, max video memory) but it's super slow. Virtualization is enabled in bios. PS: I prefer to use `echo -e "AAAA...\x3b\x12\x40"` for piping input into the binary, I think the python makes it confusing.

Hey man!!

Awesome!!!

I saw that the buffer overflow 3 has less than 500 solves, I hope we can get a video about it

32:05 ColdFusion's post says "Examining RSP... so RIP is at offset 120" and John does the same. Why does matching the pattern at RSP give us the offset for RIP? Is it because RSP comes immediately after RIP in memory, and because its a non-canonical address RIP "gets skipped"? If so, is RSP always immediately after RIP in memory? Thanks

We need a "gimmick" counter 😂

Gdb ? Pro? Structured data in structured data

Hello, I did exactly the same as it was done in this video, but my attack failed and I don't know why. The only difference between my attack and Hammond's was the flag function's address. In this video it was 0x0000000000401236. Mine was 0x0000000000001191. When I enter an overflow string into my program, it gets a segmentation fault, but the flag function is not called. When I check the changed RIP, it is something different than I have actually inputted, it is something like 0x555555bf-something, but I didn't put these numbers anywhere. Am I missing something?

R15?

Can someone please explain me what is

How long are you in this business ....6 years or more?

Given GEF is written in Python, why isn't it just pip installable?

This one is the longest one

What this metta spa

Rax,rcx, explain

Yt algo things 👍

😂 am done with binary exploration 😅

It's GIF not GIF...