SMASH THE STACK LEVEL6

Smash The Stack  Level 6

this app take 2 argument

1 – username

2- password

it take it then say hi

also it check ur env language

and change the msg

lets make some love with gdb

btw without change ur language it will not overwrite the EIP

Continue reading SMASH THE STACK LEVEL6

SMASH THE STACK LEVEL 5

still smashing 😀

echo one 😀

lets see the source code

Continue reading SMASH THE STACK LEVEL 5

SMASH THE STACK LEVEL4

level 4 😀

so i will read the code

popen to execute whoami

Continue reading SMASH THE STACK LEVEL4

underc0de 3 WalkThrough

loaded the virtual machine

and run netdiscover to get the machine ip

x.112 is  the target

 

so lets see what ports available

apache is on 😀

Screen Shot 2014-12-03 at 7.07.00 AM

so lets bruteforce the directory in the server

Continue reading underc0de 3 WalkThrough

SMASH THE STACK LEVEL3

pretty good level i learned a few new stuff

so lets hit the game

fighting with the app till it crash and hell yeah we start from fault 😀

so we need to see what’s going on

Continue reading SMASH THE STACK LEVEL3

SMASH THE STACK LEVEL2

time to play

lets read what it says

first function catcher  and it trigger the suid  and drop the bash nice  this is what we want

Continue reading SMASH THE STACK LEVEL2

SMASH THE STACK Level1

after login to the ssh server

 

levels located on /levels

so lets play  level1

as u notice it had suid permeation  -r-sr-x— for level2  so it will lead us to user (level2 )

i entered  any test number and it lead me with no respond 😀 crazy huh !

so i decided to look inside the binary file (quick look )

Continue reading SMASH THE STACK Level1