pwnable.kr
文章平均质量分 87
Yin_Z因
这个作者很懒,什么都没留下…
展开
-
【pwnable.kr】Toddler‘s Bottle-[random]
目录导航Target & DownloadAnalysis & IDADebug & writeupTIPS Target & Download Daddy, teach me how to use random value in programming! ssh random@pwnable.kr -p2222 (pw:guest) scp 下载文件 scp -P 2222 -p random@pwnable.kr:/home/random/* ./ An原创 2021-12-07 19:46:26 · 3367 阅读 · 0 评论 -
【pwnable.kr】Toddler‘s Bottle-[passcode]
目录导航进入服务器下载文件反编译分析EXPTIPS 进入服务器 Mommy told me to make a passcode based login system. My initial C code was compiled without any error! Well, there was some compiler warning, but who cares about that? ssh passcode@pwnable.kr -p2222 (pw:guest) 妈妈让我做一个密原创 2021-12-06 19:51:22 · 2820 阅读 · 0 评论 -
【pwnable.kr】Toddler‘s Bottle-[flag]
目录导航下载题目文件二进制分析获取flaggdb调试 下载题目文件 Papa brought me a packed present! let's open it. Download : http://pwnable.kr/bin/flag This is reversing task. all you need is binary 这是反向任务。你所需要的只是二进制。 下载文件 >wegt http://pwnable.kr/bin/flag 二进制分析 查看文件类型 &原创 2021-11-20 14:58:19 · 4007 阅读 · 2 评论 -
【pwnable.kr】Toddler‘s Bottle-[bof]
目录导航打开题目审题nc 命令介绍获取服务器文件源代码分析ELF分析构造payload解题步骤 打开题目审题 Nana told me that buffer overflow is one of the most common software vulnerability. Is that true? Download : http://pwnable.kr/bin/bof Download : http://pwnable.kr/bin/bof.c Running at : nc pwnab原创 2021-11-19 22:15:50 · 532 阅读 · 0 评论 -
【pwnable.kr】Toddler‘s Bottle-[collision]
目录导航打开题目审题找到突破口源代码分析解题步骤相关知识 打开题目审题 Daddy told me about cool MD5 hash collision today. I wanna do something like that too! ssh col@pwnable.kr -p2222 (pw:guest) 题目中提到MD5哈希碰撞,可以基本确定方向 输入命令回车,输入密码:guest 即可登录服务器。 找到突破口 照例先 ls -la col@pwnable:~$ ls原创 2021-11-07 23:01:12 · 2924 阅读 · 0 评论 -
【pwnable.kr】Toddler‘s Bottle-[fd]
打开题目审题 Mommy! what is a file descriptor in Linux? * try to play the wargame your self but if you are ABSOLUTE beginner, follow this tutorial link: https://youtu.be/971eZhMHQQw ssh fd@pwnable.kr -p2222 (pw:guest) Linux中的文件描述符是什么。如果你是完全的初学者,可以去youtube链原创 2021-11-06 23:33:27 · 2664 阅读 · 0 评论