Domain name resolver
10 points Easy

Check IP of your favorite domain.

nc rivit.dev 10004

task.tar.gz
Flag
Rating 4.67
5
4
3
2
1

Discussion

If anybody face extreme problem !!! 1. use reverse engineering tool (Ghidra or binary ninja) , 2. After analyzing you will see , The program use the system call and use our input as it's argument/param without sanity check . For this , " command injection " can be applied 3. So , after nc in linux cat the flag ( ; cat flag.txt )

0
  1. For those who want a hint, Decompile the source code you will find what is happening under the hood,
  2. See what command it's trying to execute and learn about that command.
  3. After finding the command, try how can you inject commands with that
0

eazy if somebody needs help just let me know

0
Protected
0

Ghidra :)

0

Just read the decompile

0

the solution is soo dumb.. i was stuck at this challenge for 3 days.. thought of some complex stuff.. in 10 point challenge.. but no.. the answer is simple and very very dumb.. anyone wanting hints... well.. no hints do it yourself.. its very easy

btw.. nice challenge.. researched and learnt a lot.. Thankyou..

1

hint please

0

Good challenge. For beginners: Whenever you are given executable, you must take a close look at it with proper tools...

1

I'm really stuck here tho, can u pls provide more hint about proper tool? I used wine but couldn't run it

0

There is another tool mentioned below, also you should definitely have IDA in your toolkit.

0

I have no idea

1

Try to find vulnerability in that app

1

Oh boy, I solved the challenge now. I saw the vulnerability from the start, but didn't know that syntax existed. Honestly, ChatGPT helped a lot. It gave an example of the attack, and that's exactly it.

0

I still cannot open that app by wine, can u pls provide more hints?

1

Use a decompiler like Ghidra to just see the source code.

1