Source |
SkullSecurity |
Identifiant |
8330464 |
Date de publication |
2023-04-24 00:08:44 (vue: 2023-04-24 01:08:26) |
Titre |
BSIDESSF 2023 Écritures: Overflow (défi de dépassement simple) BSidesSF 2023 Writeups: overflow (simple stack-overflow challenge) |
Texte |
Overflow is a straight-forward buffer overflow challenge that I copied from
the Hacking: Art of Exploitation examples CD.
I just added a flag. Full source is here.
Write-up
The source and binary are available, so the user can examine them. But they\'re
also fairly simple:
#include
#include
#include
#include
int main(int argc, char *argv[]) {
int value = 5;
char buffer_one[8], buffer_two[8];
strcpy(buffer_one, "one"); /* put "one" into buffer_one */
strcpy(buffer_two, "two"); /* put "two" into buffer_two */
printf("[BEFORE] buffer_two is at %p and contains \\'%s\\'\n", buffer_two, buffer_two);
printf("[BEFORE] buffer_one is at %p and contains \\'%s\\'\n", buffer_one, buffer_one);
printf("[BEFORE] value is at %p and is %d (0x%08x)\n", &value, value, value);
printf("\n[STRCPY] copying %d bytes into buffer_two\n\n", strlen(argv[1]));
strcpy(buffer_two, argv[1]); /* copy first argument into buffer_two */
printf("[AFTER] buffer_two is at %p and contains \\'%s\\'\n", buffer_two, buffer_two);
printf("[AFTER] buffer_one is at %p and contains \\' |
Envoyé |
Oui |
Condensat |
#include &value *argv /home/ctf/flag /overflowme 08x 0x00000005 0xffbb03b8 0xffbb03c0 0xffbb03c8 2023 4445 ::1:4445 aaaaaaaahacked aaaaaaaahacked: added after also are argc argument argv art available basically before binary bsidessf buffer but bytes can challenge char code congratulations connected contains copied copy copying ctf ctf@8f0a7eff015b:~$ else errno examine examples exit exploitation fairly fgets file first flag fopen forward from full grabbed hacked hacking: hello here hey https://nmap int just like: localhost main more ncat: ncongratulations nfailed nplease one open org/ncat overflow overflows printf put run set simple simple: solution source stack straight strcmp strcpy strerror string strlen successful than that them they two txt txt: use user value version write writeups: |
Tags |
|
Stories |
|
Notes |
★★
|
Move |
|