a8888a   a8888a  dP                
                  d8' ..8b d8' ..8b 88                
.d8888b. 88d888b. 88 .P 88 88 .P 88 88d888b. d888888b 
88'  `88 88'  `88 88 d' 88 88 d' 88 88'  `88    .d8P' 
88.  .88 88    88 Y8'' .8P Y8'' .8P 88.  .88  .Y8P    
`8888P88 dP    dP  Y8888P   Y8888P  88Y8888' d888888P 
     .88                                              
 d8888P

SECCON Online CTF 2015 - Exec dmesg

 06 December 2015 by sku
  1. Download and extract archive to get core-current.iso
  2. Run it in qemu: $ qemu-system-x86_64 -cdrom core-current.iso -boot d
  3. Launch gdb, attach to the qemu process
  4. Search memory for SECCON
  5. Get flag: SECCON{elf32-i386}
# gdb /usr/bin/qemu-system-x86_64
gdb-peda$ ps -e | grep qemu
gdb-peda$ attach 1246
gdb-peda$ find 'SECCON'
Searching for 'SECCON' in: None ranges
Found 3 results, display max 3 items:
mapped : 0x7f10c4606c68 ("SECCON{%s}")
mapped : 0x7f10c473de84 ("SECCON{elf32-i386}")
mapped : 0x7f10cb03c1a4 --> 0x4e4f43434553 ('SECCON')
gdb-peda$ q

SECCON Online CTF 2015 - Reverse-Engineering Android APK 2
06 December 2015 by sku

Writeup for the reverse engineering and web exploitation challenge APK 2.

read more