0
0

Delete article

Deleted articles cannot be recovered.

Draft of this article would be also deleted.

Are you sure you want to delete this article?

More than 5 years have passed since last update.

picoCTF 2019 slippery-shellcode - Points: 200

Posted at

問題

image.png

解いてみた

ソースを見てみます。

image.png

picoCTF 2019 handy-shellcode - Points: 50
https://qiita.com/CTFman/items/644f26ed07b75a4e77a0

これと似たような解き方ですが、33行目でランダムのオフセットを足しているので最大で256ずれるということでしょうか。
256分先頭にNOPを入れておけばよいということでしょうか。
NOPならたぶん読み飛ばしてくれるはず。

image.png

今回の実行ファイルも32bitです。
shellcodeを探します。

Shellcodes Database - shell-storm
http://shell-storm.org/shellcode/

image.png

これで良いですかね。

image.png

これの先頭に\x90(NOP)を256個つけて実行します。

image.png

おおできた。

0
0
0

Register as a new user and use Qiita more conveniently

  1. You get articles that match your needs
  2. You can efficiently read back useful information
  3. You can use dark theme
What you can do with signing up
0
0

Delete article

Deleted articles cannot be recovered.

Draft of this article would be also deleted.

Are you sure you want to delete this article?