pwnPromedium
Luxury (Люкс)
duckerz
Task: PWN binary with buffer overflow in login function, PIE enabled but GOT addresses leaked in admin menu. Solution: Use hardcoded credentials to access admin menu, leak libc addresses, identify libc version via libc.rip, then ret2libc with system("/bin/sh").
$ ls tags/ techniques/
ret2libcstack_buffer_overflowgot_leakpie_bypasslibc_database_lookup
🔒
Permission denied (requires tier.pro)
Sign in to access full writeups
Sign in with GitHub to continue. No email required.
$sign in$ grep --similar
Similar writeups
- [pwn][Pro]В отеле (At the Hotel)— duckerz
- [pwn][Pro]Hospital (Больница)— duckerz
- [pwn][Pro]Говори - и будет исполнено (ask_and_you_shall_receive)— hackerlab
- [pwn][Pro]Древний замок мага (Ancient Magician Castle)— duckerz
- [pwn][Pro]Upcoming Flight (Предстоящий полет)— duckerz