Pwnctf binary Writeup
binary
這題有三個階段,分別輸入特定的值就可以開 shell,首先 stage1:
注意前面兩個是 je,最後一個是 jne,所以這邊要送 0x100001,再來 stage2:
這次要送三個值分別是:0x64,0x100,0xfaceb00c,接著就到 stage3:
這次他要問的是 im_a_global_variable
的位址,那就是 0x60107c,以上資訊整理成 exploit.py,順便把 BytesWarning 關掉:
1 | from pwn import * |
result:
1 | └─$ python exploit.py |
Pwned !!!
- Title: Pwnctf binary Writeup
- Author: kazma
- Created at : 2023-12-21 14:43:42
- Updated at : 2023-12-21 15:04:48
- Link: https://kazma.tw/2023/12/21/Pwnctf-binary-Writeup/
- License: This work is licensed under CC BY-NC-SA 4.0.
Comments