Recovering plaintext from affine noisy linear encoding using exact rational inversion.

Forging authenticated cookies via SHA-512 length-extension to flip isLoggedIn=True.

Exploiting shared-prime leakage across two RSA moduli via gcd algebra.

Recovering a repeating 4-byte XOR key from known flag prefix.

Breaking repeated RSA plaintext encryption with Håstad broadcast attack (e=5).

Reverse-engineering the hidden Rust auth flow, then hijacking the dropped C2 binary via UAF to execute getSecret and recover the flag.

UAF + safe-linking heap recovery + canary leak + staged RWX heap shellcode for reliable remote command execution.

Wide-char truncation overflow to controlled RIP, then Unicode-safe shellcode execution from a fixed executable mmap region.