Hello, This is another writeup for the Padocon 2011 CTF. This time, i'm gonna talk about a wargame-style binary exploitation level, karma 100. This one was not that difficult to exploit, in fact it took us only a couple of hours to obtain reliable code execution, but we were unable to find the flag until much later.

We were given ssh credentials and once logged in, we had a binary suid boom100 in our home directory with the source code.

#include <unistd.h>
#include <stdio.h>

/* hi, guys! */
/* This is just warm up :) */

int main( int argc, char *argv ...

5 Commentaires / Lire la suite...