Exploiting C strstr Function (PicoCTF 2022 #37 'rps')

Рет қаралды 13,090

Күн бұрын

Пікірлер: 17

@thetrollingboss3155 2 жыл бұрын

Wow, that's amazing! I did not even realize the strstr function was vulnerable during the competition and ended up doing some good 'ol PRNG abuse

@0xTas 2 жыл бұрын

That was a fun little exercise in reversing a program's logic, nice video.

@majoryoshi 2 жыл бұрын

The only proper way to win at RPS. I know these are designed to be easier but holy cow this made me laugh so hard at how stupid the answer was

@Lodinn 2 жыл бұрын

Tbf given a win is possible playing "normally" one might as well just brute force it.

@kawzaki 2 жыл бұрын

The moment I saw strstr I guessed put all of them in as one word. Funny! Then funny how the flag reads some extreme luck ! Hahaha

@noideawhatever Жыл бұрын

I searched what is strstr and figured the loophole out right away :D

@bhagyalakshmi1053 Жыл бұрын

Ok full pics and videos season.

@djibrille31 2 жыл бұрын

Why does he use the ? sign in the grep command regular expression? Is it not enough to just use the ".*" like grep -oE "picoCTF{.*}". It drives me mad that I do not get it.

@Lodinn 2 жыл бұрын

If the output contains another closing bracket, greedy capture would get the entirety of it. Not necessary here, but it's a good habit to have when dealing with regex matching something in brackets.

@lucidattf 2 жыл бұрын

if the text content for example included picoCTF{aaaaa}aaaaa and then another }, the grep without the question mark would output "picoCTF{aaaaa}aaaaa and then another }"

@mrhappytroll 2 жыл бұрын

Im proud of myself for figuring this out just by pausing and looking at the source code haha

@bladesvlogs4965 2 жыл бұрын

Would never have gotten that one 🤪

@AmanPatel-rv2it 2 жыл бұрын

That's nice - just strstr being my cousin 😂😂

@lordspacecake5565 2 жыл бұрын

Very neat trick

@vanfrancisco4573 2 жыл бұрын

Lmao, i have been tinkering the program only not to notice that the category was not a reverse engineering problem but a binary exploitation problem. stupid me. LOL