Author Topic: Exploit Exercises-virtual machines (Read 1029 times)

geXXos · « **on:** November 15, 2012, 07:08:57 pm »

You may find this helpful

http://exploit-exercises.com/

Quote

exploit-exercises.com provides a variety of virtual machines, documentation and challenges that can be used to learn about a variety of computer security issues such as privilege escalation, vulnerability analysis, exploit development, debugging, reverse engineering.

Corrupted_Fear · « **Reply #1 on:** November 15, 2012, 08:06:33 pm »

Very nice find, this will be useful when I have time to kill. +1 for you.

geXXos · « **Reply #2 on:** November 15, 2012, 08:25:49 pm »

Thank you, i'm trying Nebula 01, it gives you some C code, which has a bug in it which i try to exploit, but ....but

Corrupted_Fear · « **Reply #3 on:** November 15, 2012, 08:43:34 pm »

stack overflow? or just an issue in the code?

geXXos · « **Reply #4 on:** November 15, 2012, 09:33:49 pm »

It must be something with the echo calling.

Code: [Select]

#include <stdlib.h>
#include <stdlib.h>
#include <unistd.h>
#include <string.h>
#include <sys/types.h>
#include <stdio.h>
 


int main(int argc, char **argv, char **envp)
{
 gid_t gid;
 uid_t uid;
 gid = getegid();
 uid = geteuid();
 
 setresgid(gid, gid, gid);
 setresuid(uid, uid, uid);
 
 system("/usr/bin/env echo and now what?");
}

Axon · « **Reply #5 on:** November 17, 2012, 02:05:08 am »

This looks interesting, thanks

EvilZone

News:

Author Topic: Exploit Exercises-virtual machines (Read 1029 times)

geXXos

Exploit Exercises-virtual machines

Corrupted_Fear

Re: Exploit Exercises-virtual machines

geXXos

Re: Exploit Exercises-virtual machines

Corrupted_Fear

Re: Exploit Exercises-virtual machines

geXXos

Re: Exploit Exercises-virtual machines

Axon

Re: Exploit Exercises-virtual machines