![](https://img-blog.csdnimg.cn/20201014180756926.png?x-oss-process=image/resize,m_fixed,h_64,w_64)
pwnable.kr
文章平均质量分 87
Yin_Z因
这个作者很懒,什么都没留下…
展开
-
【pwnable.kr】Toddler‘s Bottle-[random]
目录导航Target & DownloadAnalysis & IDADebug & writeupTIPSTarget & DownloadDaddy, teach me how to use random value in programming!ssh random@pwnable.kr -p2222 (pw:guest)scp 下载文件scp -P 2222 -p random@pwnable.kr:/home/random/* ./An原创 2021-12-07 19:46:26 · 3357 阅读 · 0 评论 -
【pwnable.kr】Toddler‘s Bottle-[passcode]
目录导航进入服务器下载文件反编译分析EXPTIPS进入服务器Mommy told me to make a passcode based login system.My initial C code was compiled without any error!Well, there was some compiler warning, but who cares about that?ssh passcode@pwnable.kr -p2222 (pw:guest)妈妈让我做一个密原创 2021-12-06 19:51:22 · 2718 阅读 · 0 评论 -
【pwnable.kr】Toddler‘s Bottle-[flag]
目录导航下载题目文件二进制分析获取flaggdb调试下载题目文件Papa brought me a packed present! let's open it.Download : http://pwnable.kr/bin/flagThis is reversing task. all you need is binary这是反向任务。你所需要的只是二进制。下载文件>wegt http://pwnable.kr/bin/flag二进制分析查看文件类型&原创 2021-11-20 14:58:19 · 3898 阅读 · 2 评论 -
【pwnable.kr】Toddler‘s Bottle-[bof]
目录导航打开题目审题nc 命令介绍获取服务器文件源代码分析ELF分析构造payload解题步骤打开题目审题Nana told me that buffer overflow is one of the most common software vulnerability. Is that true?Download : http://pwnable.kr/bin/bofDownload : http://pwnable.kr/bin/bof.cRunning at : nc pwnab原创 2021-11-19 22:15:50 · 391 阅读 · 0 评论 -
【pwnable.kr】Toddler‘s Bottle-[collision]
目录导航打开题目审题找到突破口源代码分析解题步骤相关知识打开题目审题Daddy told me about cool MD5 hash collision today.I wanna do something like that too!ssh col@pwnable.kr -p2222 (pw:guest)题目中提到MD5哈希碰撞,可以基本确定方向输入命令回车,输入密码:guest 即可登录服务器。找到突破口照例先 ls -lacol@pwnable:~$ ls原创 2021-11-07 23:01:12 · 2856 阅读 · 0 评论 -
【pwnable.kr】Toddler‘s Bottle-[fd]
打开题目审题Mommy! what is a file descriptor in Linux?* try to play the wargame your self but if you are ABSOLUTE beginner, follow this tutorial link:https://youtu.be/971eZhMHQQwssh fd@pwnable.kr -p2222 (pw:guest)Linux中的文件描述符是什么。如果你是完全的初学者,可以去youtube链原创 2021-11-06 23:33:27 · 2569 阅读 · 0 评论