SKILL: Format String Exploitation — Expert Attack Playbook

AI LOAD INSTRUCTION: Expert format string techniques. Covers stack reading, arbitrary write via %n, GOT overwrite, __malloc_hook overwrite, pointer chain exploitation, blind format string, FORTIFY_SOURCE bypass, 64-bit null byte handling, and pwntools automation. Distilled from ctf-wiki fmtstr, CTF patterns, and real-world scenarios. Base models often miscalculate positional parameter offsets or forget 64-bit address placement after format string.

0. RELATED ROUTING

• stack-overflow-and-rop — combine format string leak with stack overflow for full exploit
• binary-protection-bypass — format string is the primary canary/PIE/ASLR leak method
• arbitrary-write-to-rce — convert format string write primitive to code execution targets
• heap-exploitation — heap address leak via format string for heap exploitation

1. VULNERABILITY IDENTIFICATION

Vulnerable Pattern