I think yesterday I rushed too much with trying to get the
shell, and didn’t back off a little and go back to debugging and really aiming
for EIP.
Once I got EIP, I used breakpoints to make sure it was
jumping to the right part in memory. After only about 30 minutes I think, I got
shell for 643.c!
I then started on 646.c and though OMG. But after I read up
on what ptr is, and it references the byte in memory, again I played around
with immunity, playing around with values and debugging.
I got this one in about 1.5hrs!
--> n33dle
No comments:
Post a Comment