½Ã½ºÅÛ ÇØÅ·

 1575, 1/79 ȸ¿ø°¡ÀÔ  ·Î±×ÀΠ 
   ewqqw
   r0pbabay ¸¦ Ǫ´Âµ¥....

http://www.hackerschool.org/HS_Boards/zboard.php?id=QNA_system&no=1883 [º¹»ç]


64ºñÆ®¶ó¼­

rbp ¿¡ dummy¸¦ 8¹ÙÀÌÆ® ä¿ì°í,

pop rdi ; ret °¡Á¬ + /bin/sh Æ÷ÀÎÅÍ + system ÇÔ¼ö

·Î rop °ø°ÝÇϴ°ÅÀݾƿä?

±×·±µ¥, offsetÂ÷À̸¦ ÀÌ¿ëÇؼ­ Àú ÇÔ¼öµéÀÇ ÁÖ¼Ò¸¦ ¾Ë¾Æ³»¾ß Çؼ­,

pop ret °¡Á¬Àº ¼º°øÀûÀ¸·Î systemÇÔ¼ö¿ÍÀÇ °Å¸®¸¦ ±¸Çß½À´Ï´Ù.

±×·±µ¥, /bin/sh ´Â gdb»ó¿¡¼­ ã¾Ò´Âµ¥, °á°ú°ªÀÌ ´Ù¸£´õ¶ó±¸¿ä.

r0pbaby ¿¡ pie°¡ °É·ÁÀ־ gdb¿¡ Á¦´ë·Î break point ¸¦ °É±â Èûµé´õ±º¿ä. ±×·¡¼­ ¹«ÀÛÁ¤ ½ÇÇà½ÃÅ°°í Á¾·á½ÃÄѼ­ p system°ú fine &system, +99999999, "/bin/sh" ¸¦ Çߴµ¥ °ªÀÌ ³ª¿Ô½À´Ï´Ù.

±×·±µ¥, ´Ù¸¥ºÐµéÀÇ writeupÀ» ºÃ´Âµ¥, gdb»ó¿¡¼­ set stop-on-solib-events 1 À» ÇÑ »óÅ¿¡¼­ ¾Ë¾Æ³½ /bin/sh´Â À§ÀÇ °ª°ú ´Þ¶ú½À´Ï´Ù.
±×·±µ¥ ¶Ç system ÇÔ¼ö´Â °°¾Ò±¸¿ä....

exploitÀº µÎ¹ø° »óȲÀÇ /bin/sh ÁÖ¼Ò¸¦ ½á¾ß °¡´ÉÇß½À´Ï´Ù...

¿Ö±×·±°¡¿ä>?????
  Hit : 2258     Date : 2017/07/07 09:46


    
vngkv123 libcÁÖ¼Ò¸¦ Ãâ·ÂÇØÁÖ´Ï µÚÀÇ 12bit°ªÀ» ¹ÙÅÁÀ¸·Î binshÁÖ¼Ò¸¦ libc-database¿¡¼­ ã¾Æº¸¼¼¿ë ¤¾¤¾ 2017/07/09  
1575   LOB ¹®Á¦ ÀͽºÇ÷ÎÀÕÀ» C·Î ÀÛ¼ºÇϸ鼭 Ǫ´Âµ¥¿ä.[2]     ÇØÅ·ÀßÇÏ°í½Í´Ù
 09/18 499
1574   pwnable.kr echo1 Áú¹®2 (½ºÆ÷ ÁÖÀÇ)[2]     turttle2s
 10/05 1717
1573   LOB GATE¹®Á¦ Ç®¸é¼­ ±Ã±ÝÇÑÁ¡[3]     hackxx123
 08/24 1443
1572   libc°ü·Ã - 2[5]     lMaxl04
 08/24 1322
1571   ASLRÀÌ °É·ÁÀÖÀ»¶§ ret¿¡ ROPÀ¸·Î jmp %espÀ» »ç¿ëÇÑ °æ¿ì.[3]     lMaxl04
 06/29 1611
1570   ¸®¸ðÆ® ȯ°æ¿¡¼­ÀÇ ½ºÅà ÁÖ¼Ò È®ÀÎ ¹æ¹ýÀÌ ±Ã±ÝÇÕ´Ï´Ù.[2]     lMaxl04
 06/16 1319
1569   ÇØÅ· ÇÁ¸®¼­¹ö ¾ø¾îÁ³³ª¿ä?[1]     terfkim
 04/15 2160
1568   ½ºÅÿ¡ µ¥ÀÌÅÍ ³ÖÀ» ¶§ SIGSEGV[4]     turttle2s
 02/04 1834
1567   pwnable.kr echo1 Áú¹®[2]     turttle2s
 06/17 2101
1566   ROP strcpy °ü·Ã Áú¹®ÀÔ´Ï´Ù.[3]     heeyoung0511
 06/16 1925
1565   Level2 -> Level3 ¿¡¼­ vi¿Í /usr/bin/EditorÀÇ Â÷ÀÌ[2]     hyemin1826
 07/18 2230
1564   Trainer3 ftz.hackerschool.org È£½ºÆ® Á¢¼Ó ºÒ°¡[1]     hyemin1826
 07/18 3813
1563   dllÀÎÁ§¼Ç ½ÇÇèÁß Áú¹® µå¸³´Ï´Ù.[1]     kkk477
 05/31 2286
1562   ÆÐŶ º¹È£È­¸¦ ¸¶½ºÅÍ ÇÏ·Á¸é ¾î¶² °úÁ¤ÀÌ ÀÖ¾î¾ßÇϳª¿ä?     sa0814
 04/01 1969
1561   »ç±â[2]     jas08
 03/31 2270
1560   ½Ã½ºÅÛ ÄÝÀÌ °¡´ÉÇÑ ¸Þ¸ð¸® ¿µ¿ª°ú ºÒ°¡´ÉÇÑ ¸Þ¸ð¸® ¿µ¿ªÀÌ Á¸ÀçÇϳª¿ä?     ocal
 03/30 2003
1559   pwntools »ç¿ë½Ã¿Í ±âº» socket ¸ðµâ ÀÌ¿ë½Ã Â÷ÀÌ?[4]     ocal
 01/09 2693
1558   lob level19(nightmare) °ü·ÃÁú¹®[1]     dnjsdnwja
 12/18 2026
1557   ftz level2 Áú¹®ÀÖ½À´Ï´Ù[1]     kihyun1998
 12/13 2168
1556   ftz level2¹ø Ǫ´Âµ¥¿ä ±ÇÇÑÀÌ...     kihyun1998
 12/06 2022
1 [2][3][4][5][6][7][8][9][10]..[79]

Copyright 1999-2024 Zeroboard / skin by Hackerschool.org / Secure Patch by Hackerschool.org