ELF Exploitation, Practice Exercises!
Hello all! Some quick training exercises here for anyone that wants to get better at exploit development! I plucked both of these exercises from the recent SigInt 2013 CTF this last weekend. Both are ELF files and will get gritty with assembly exploitation (the first is 32 bit, the latter is 64 bit). The first one is a great warm up and assembly intro, titled baremetal. I'll help you get started a bit, as you will want some basic info to start; try running commands such as file baremetal, readelf -a baremetal, and objdump -x -s baremetal (http://linux.101hacks.com/unix/objdump/). You will also want a full disassembly, using something like Ollydbg or IdaPro (I went with Ida for the graph view). With these basic starting points, you should be able to parse through the executable and get a decent idea for what it is doing. If you get stuck or need help parsing through the assembly, a full writeup is available here. The next challenge is a 64-bit ELF, titled Tr0llSex. I don't have the time currently to go over this one, but you can see the full writeup here. Tr0llSex is really interesting and one of the many challenges that used SCTP, as opposed to TCP or UDP, this last weekend. Enjoy the practice exercises all; Happy Pwning!