pwnProeasy

BOF: Обратная сторона Луны (Moon)

hackerlab

Task: ELF64 binary with two input prompts, strncmp check and magic value comparison. Solution: Buffer overflow to overwrite adjacent global variable with calculated offset (52 bytes) and magic value 0xedbcdb.

$ ls tags/ techniques/

elf64 buffer_overflow variable_overwrite bof strncmp memory_layout pwntools

Buffer overflow to overwrite adjacent variableMemory layout analysis via disassemblyAddress arithmetic for offset calculation

Analysis

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

$ python3 exploit.py --target 192.168.1.1 --port 8080
[*] Connecting to target...
[+] Shell obtained!

Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.

🔒

Permission denied (requires tier.pro)

Sign in to access full writeups

$sign in

$ grep --similar

Similar writeups

[pwn][Pro]Вопрос (Question)— hackerlab
[pwn][Pro]Странный PWN?— hackerlab
[pwn][Pro]Simple BOF: Вредный пингвин— hackerlab
[pwn][Pro]HackerLab: Simple BOF - Я хочу купить этот флаг!!!— hackerlab
[pwn][Pro]HackerLab: Экзамен?? — Buffer Overflow via scanf(\"%lX\")— hackerlab