老乡鸡ctf 2025 | hard_oob
0x01
1
2
3
4
5
6
7
8
9
10
11
12
| ash@AWKZ:~/Desktop/github/老乡鸡$ file pwn
pwn: ELF 64-bit LSB executable, x86-64, version 1 (GNU/Linux), statically linked, BuildID[sha1]=1aa31973de5cf81dd7bf088b00da03b242b662c2, for GNU/Linux 3.2.0, not stripped
ash@AWKZ:~/Desktop/github/老乡鸡$ checksec pwn
[*] '/home/ash/Desktop/github/老乡鸡/pwn'
Arch: amd64-64-little
RELRO: Partial RELRO
Stack: Canary found
NX: NX enabled
PIE: No PIE (0x400000)
SHSTK: Enabled
IBT: Enabled
Stripped: No
|
题目是静态链接,有足够的gadget片段,开启了canary和Nx保护,关闭了PIE