>/Ctf_tasks/broken_echo $
Estimated reading time: 28 seconds
Category: Pwn
Difficulty: Easy
Can you force this program reveal a secret flag? In broken_echo, the server prints back everything you send… almost too literally. A format string vulnerability allows you to peek into the stack and leak a hidden flag - if you know what to look for.
Requirements:
- Understanding of format string vulnerabilities (printf without format string)
- Some reverse engineering could be helpful
- Goal: leak the flag using crafted input
Download attachments: