OOO archive --- DEF CON CTF [ login ]

dc2020q - introool intro shellcoding pwn

by reyammer

This was a jeopardy challenge, part of dc2020q. (CTFtime)

Points: 135
Was solved by: 36 teams
PCAPs: download

You may spawn the server:

On your laptop
  • Install docker
  • docker pull archiveooo/pub:introool (docker-saved download)
  • docker run -d --name introool archiveooo/pub:introool
  • Local IP: docker inspect introool -f '{{ .NetworkSettings.Networks.bridge.IPAddress }}'
  • Connect to that IP:4242 — Remember to docker rm -f when done.
On your laptop (full source)
  • Install docker and pip install PyYAML coloredlogs
  • git clone https://github.com/o-o-overflow/dc2020q-introool-public
  • cd introool
  • ./spawner --log-level=INFO
  • Connect to the ip:port displayed
Hosted by OOO Right now we're asking players to login first.

Description

one NOP sled + two patches + three ROP gadgets => flag?

Hints

None yet :(
If you wish, you can contribute some.

There's an author-recommended writeup.

Source

Spoilers ahead! Code for this challenge is publicly available.