Hack The Box - Introduction to Binary Exploitation - Optimistic - [Walkthrough]
PinkDraconian
HackTheBox - Introduction To Binary Exploitation Track Playlist: https://www.youtube.com/playlist?list=PLeSXUd883dhjnFXPf2QA0KnUnJnn9dPWy
βΆοΈ YouTube: https://www.youtube.com/c/PinkDraconian π Patreon: https://www.patreon.com/PinkDraconian π¦ Twitter: https://twitter.com/PinkDraconian π΅ TikTok: https://www.tiktok.com/@pinkdraconian βΉοΈ LinkedIn: https://www.linkedin.com/in/robbe-van-roey-365666195/ π Discord: PinkDraconian#9907 π· Instagram: https://www.instagram.com/robbevanroey/ πΈοΈ Website: http://pinkdraconian.d4rkc0de.com/ π¨βπ» HackTheBox: https://www.hackthebox.eu/home/users/profile/129531 π€ Reddit: https://www.reddit.com/user/PinkDraconian βοΈ Steam: https://steamcommunity.com/id/PinkDraconian π GitHub: https://github.com/PinkDraconian
CTF: HackTheBox
Link: https://www.hackthebox.eu/
Category: Pwn
Challenge name: Optimistic
Difficulty: 5/10
00:00 Introduction 00:20 Checking out the binary 01:50 Looking at the binary in Ghidra 02:20 Patching the clock out of the binary in a hex editor (ghex) 04:20 Checking out how arguments work to function calls in assembly to see what address is being printed 07:40 Explaining integer under and overflows and applying to the binary 10:50 Writing a script that for now, just gets a buffer overflow working with pwntools 15:50 Our ussual shellcode is not allowed, so we need to check out what is and what is not allowed 19:30 Finding alphanumeric shellcode ... https://www.youtube.com/watch?v=MVeRz2ZdSdk
187844118 Bytes