[Pwn] ASIS - Mary Morton


Mary Morton

Average: 4
Rating Count: 20
Top 3 Solver

217
DangRanKeYi
Alone

Points
43
Solves
142
Category
Pwnable

Description:

Mary surprises Sherlock with her knowledge and insight into his character, but she had a very obvious vulnerability which Sherlock exploited it, although it was very painful for him!

Starting by checking the binary security with checksec:

1
2
3
$ checksec -f ./mary_morton
RELRO STACK CANARY NX PIE RPATH RUNPATH FORTIFY Fortified Fortifiable FILE
Partial RELRO Canary found NX enabled No PIE No RPATH No RUNPATH Yes 0 2 ./mary_morton

We have stack canary protection and non executable stack, if we analyse the binary with radare2 we can see it’s protected with a password, we can obtain this using radare2:

password

The password