Pwnctf secret Writeup
secret
我們先來看一下有哪些變數:
關鍵在他會比較 var_4h 是不是 0xab37:
我們要從 var_20h overflow 到 var_4h,然後送一個大寫 Y,就可以拿到 flag 了。
exploit.py
1 | from pwn import * |
Pwned !!!
- Title: Pwnctf secret Writeup
- Author: kazma
- Created at : 2024-01-09 19:49:31
- Updated at : 2024-01-09 20:10:25
- Link: https://kazma.tw/2024/01/09/Pwnctf-secret-Writeup/
- License: This work is licensed under CC BY-NC-SA 4.0.
Comments