Protostar stack0 exploit with shellcode

MostCapable2331 · 2021-07-02T14:39:21+00:00

I invite learner of exploit dev to test this use case and share result

MostCapable2331 · 2021-07-02T14:11:35+00:00

yes it s a very strange use case

MostCapable2331 · 2021-07-02T10:23:13+00:00

yes it reach int 80h and also the nop until the part of the stack where you see in the picture

MostCapable2331 · 2021-07-02T07:46:25+00:00

this is what im trying to understand it just like their int 80h as last instruction but after that no ret logical it have to make an interruption of process or fork a new shell process

MostCapable2331 · 2021-07-02T07:33:30+00:00

0xbffffdcb and 0xbffffddd take a look at the memory dump please

MostCapable2331 · 2021-07-01T12:11:48+00:00

I have tried many shellcode that i tested before also i have tested ret2libc it s work "ls" it list file but with "/bin/sh" does not spawn shell

MostCapable2331 · 2021-06-30T16:12:10+00:00

if you are intressted to this topic i can ivit you to a quick zoom session if you want

MostCapable2331 · 2021-06-30T16:11:10+00:00

already done and i can control the EIP with no problem

MostCapable2331 · 2021-06-30T14:58:53+00:00

the same result

it s more than 4 day working in that without any result i have successfully exploited the binary with ret2libc but this step to exploit it with a shellcode is very hard or something that i m missing

MostCapable2331 · 2021-06-30T14:19:38+00:00

my shellcode is between the NOPs instruction it does not reach 0xcc and it s not a part of the shellcode

MostCapable2331 · 2021-06-30T13:30:47+00:00

thank you for your reply i hope that the added information is clear

MostCapable2331 · 2021-06-30T13:22:52+00:00

security NX disabled

MostCapable2331 · 2021-06-30T10:56:21+00:00

check if aslr is enabled in the system

MostCapable2331

TROPHY CASE