hhc0null hhc0null
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| int sub_400d5d(arg0) | |
| { | |
| rbp_18h = arg0; | |
| rbp_08h = rbp_18h ^ 0xdead; | |
| return rbp_08h; | |
| } | |
| void sub_400d79() | |
| { | |
| // Local variables. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| int main() | |
| { | |
| // Local variables. | |
| int rsp_04h; | |
| setvbuf(stdin, 0, 2); // maybe | |
| setvbuf(stdout, 0, 2); // maybe | |
| puts("\n ______\n | |__| | WELCOME TO THE\n | () | UNTRUSTED COMPUTING SERVICE\n |______| V0.0.1a\n\nLOAD PROGRAM"); |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python2 | |
| import binascii | |
| import re | |
| import socket | |
| import struct | |
| import sys | |
| import telnetlib | |
| import time |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // checked | |
| void sub_400976(arg0) | |
| { | |
| // Local variables. | |
| rbp_28h; | |
| rbp_10h; | |
| rbp_08h; | |
| rbp_28h = arg0; | |
| rbp_10h = 0; |
hhc0null
/ CODEGATE2015-systemshock-200pts
Last active
August 29, 2015 14:17
!!THIS IS NOT A WRITEUP!! CODEGATE 2015 [PWN200] systemshock
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // DEP, ASLR, SSP | |
| #include <ctype.h> | |
| #include <stdlib.h> | |
| #include <stdio.h> | |
| #include <unistd.h> | |
| #define not(x) (!(x)) | |
| extern char **environ; |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python2 | |
| """Usage: | |
| gizmo.py [-h] [-o NAME] [-r NUMBER] PATH | |
| gizmo.py --version | |
| Arguments: | |
| PATH source path | |
| Options: |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| int data_804b078 = 100; // Doraemon HP | |
| int bss_804b080; // fd | |
| char bss_804b0a0[5000]; // buffer | |
| // error message. | |
| void sub_804889d(char *arg0) | |
| { | |
| fprintf(bss_804b080, "%s\n", arg0); | |
| exit(EXIT_FAILURE); | |
| } |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // .data section | |
| char data_602800[] = "192.168.000.100"; | |
| char data_602810[] = "192.168.000.200"; | |
| char data_602820[] = "255.255.255.000"; | |
| char data_602830[] = "8.8.8.8"; | |
| // .bss section | |
| char bss_602880[128]; // buffer | |
| bool bss_602900; // flag: is_not_authenticated | |
| int bss_602904; // sockfd |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /* I might me making some mistakes... */ | |
| #define NONUSE 0xfffffffe | |
| #define INUSE 1 | |
| typedef struct _chunk { | |
| int size; | |
| chunk_t *next; | |
| chunk_t *back; | |
| } chunk_t; |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| int sub_8049110() | |
| { | |
| 8049110: 5d pop %ebp // return address: 0x8048f06 | |
| 8049111: 8b 45 00 mov 0x0(%ebp),%eax // eax = 0xfffffff | |
| 8049114: 83 e0 03 and $0x3,%eax | |
| *ebp &= 3; | |
| 8049117: 83 f8 03 cmp $0x3,%eax | |
| 804911a: 75 42 jne 804915e <exit@plt+0xb8e> | |
| if(*ebp == 3) { | |
| 804911c: 6a 00 push $0x0 |