Beginner

baby-bof

pwnable

683

168

Sign in and solve the challenge

Author

No badge

2023.10.20. 13:57:37

First Blood!

CTF Third Place

Solved in just 24 minutes!

Description

Description

Simple pwnable 101 challenge

Q. What is Return Address?

Q. Explain that why BOF is dangerous.

Solvers 168

No badge

14 hours ago

No badge

2 days ago

강의 수강: 1

2 days ago

No badge

2 days ago

No badge

2 days ago

No badge

2 days ago

No badge

2 days ago

No badge

3 days ago

No badge

4 days ago

강의 수강: 1

4 days ago

Comments 5

워게임 고인물

12 days ago

어렵네...

No badge

27 days ago

name은 신경쓰지 마세요

CTF Second Place

1 month ago

좋은 연습문제입니다~

No badge

1 month ago

오..

워게임 고인물

1 month ago

유튭각

Feedbacks 0

There are no feedbacks on the challenge yet.

Questions 3

Need help? Ask your question and get hints!

host3.dreamhack.games에서 잘못된 응답을 전송했습니다. ERR_INVALID_HTTP_RESPONSE

제목에 해당하는 오류가 발생하는데... 해결방법 없을까요?

닉네임이닉네임

어디에서 bof가 발생하는거에요???

// gcc -o baby-bof baby-bof.c -fno-stack-protector -no-pie #include <stdio.h> #include <stdlib.h> #include <unistd.h> #include <string.h> #include <fcntl.h> #include <signal.h> #include <time.h> void proc_init () { setvbuf (stdin, 0, 2, 0); setvbuf (stdout, 0, 2, 0); setvbuf (stderr, 0, 2, 0); } void win () { char flag[100] = {0,}; int fd; puts ("You mustn't be here! It's a vulnerability!"); fd = open ("./flag", O_RDONLY); read(fd, flag, 0x60); puts(flag); exit(0); } long count; long value; long idx = 0; int main () { char name[16]; // don't care this init function proc_init (); printf ("the main function doesn't call win function (0x%lx)!\n", win); printf ("name: "); scanf ("%15s", name); printf ("GM GA GE GV %s!!\n: ", name); printf ("| addr\t\t| value\t\t|\n"); for (idx = 0; idx < 0x10; idx++) { printf ("| %lx\t| %16lx\t|\n", name + idx 8, *(long)(name + idx*8)); } printf ("hex value: "); scanf ("%lx%c", &value); printf ("integer count: "); scanf ("%d%c", &count); for (idx = 0; idx < count; idx++) { (long)(name+idx*8) = value; } printf ("| addr\t\t| value\t\t|\n"); for (idx = 0; idx < 0x10; idx++) { printf ("| %lx\t| %16lx\t|\n", name + idx 8, *(long)(name + idx*8)); } return 0; } 어떤식으로 bof를 발생시켜야하는지 모르겠어요 ㅠㅠ

segmentation fault

intel 아이맥 사용 중입니다. 어떤 입력값을 넣어도 hex value를 넣는 과정에서 segmentation fault가 뜹니다. 도와주세요ㅠ