r0pbaby and babycmd writeups Defcon prequal

r0pbaby was a rop exploitation challenge

exploitation approach :

pop rdi # points to a 'ed' or 'sh' call system

Exploit

we run this for couple seconds and we execute 'ed'

babycmd is another challenge

Proxied content from gemini://0x80.org/gemlog/2015-05-18-r0pbaby-writeup-defcon-prequal.gmi.
Get a proper gemini browser and visit!

Gemini request details:

Original URL
gemini://0x80.org/gemlog/2015-05-18-r0pbaby-writeup-defcon-prequal.gmi
Status code
20
Meta
text/gemini;lang=en-US