摘要:
nc pwn2.jarvisoj.com 9882 level2_x64.04d700633c6dc26afc6a1e7e9df8c94e 64位栈溢出,exp如下: from pwn import * #io = process('./level2_x64') io = remote('pwn2. 阅读全文
摘要:
nc pwn2.jarvisoj.com 9881 level0.b9ded3801d6dd36a97468e128b81a65d 64位栈溢出 exp如下: from pwn import * #io = process('./level0') io = remote('pwn2.jarvisoj 阅读全文
摘要:
nc pwn2.jarvisoj.com 9880 level4.0f9cfa0b7bb6c0f9e030a5541b46e9f0 无libc,使用DynELF exp如下: from pwn import * def leak(address): payload = b'a' * 140 + p3 阅读全文
摘要:
nc pwn2.jarvisoj.com 9879 Hint1: 本题附件已更新,请大家重新下载以免影响解题。 level3.rar.f795bbaa1e4a3f9d467317d6df936c6b 32位栈溢出,ret2libc exp如下: from pwn import * #io = pro 阅读全文
摘要:
nc pwn2.jarvisoj.com 9878 level2.54931449c557d0551c4fc2a10f4778a1 32位栈溢出 exp如下: from pwn import * #io = process('./level2') io = remote('pwn2.jarvisoj 阅读全文
摘要:
nc pwn2.jarvisoj.com 9877 level1.80eacdcd51aca92af7749d96efad7fb5 32位栈溢出,ret2shellcode exp如下: from pwn import * #io = process('./level1') io = remote( 阅读全文