전체 글
![[TrollCat CTF] Only Pwnable WriteUp](https://img1.daumcdn.net/thumb/R750x0/?scode=mtistory2&fname=https%3A%2F%2Fblog.kakaocdn.net%2Fdn%2FcnJ57N%2FbtqV0EaEKDl%2FREBCJu8l3sPBtCaTe3ThWK%2Fimg.png)
[TrollCat CTF] Only Pwnable WriteUp
Thoughts Only using bad func, we can't attack BOF vulnerability. (Length of bad_thought is 0x20 and dest variable exists at [ebp - 0x28]) but look at this, using good_thougt, we can concatenate the two strings, good and bad thought. then 'strcpy' func in bad func copy the BIG STRING(bad + good thought) to dest variable. look at the exploit code. from pwn import * p = remote("157.230.33.195", 111..