Skip to content
Permalink
Browse files
Fstrings (#13) 
* 32Bit Fstrings

* Move Demo to 32Bit

* First Format Strings Target Done

* Trget 1 Added

* first Challenge Added
  • Loading branch information
@aa9863
aa9863 committed Feb 28, 2023
1 parent c356d2f commit 2e84ec912229b5881e185a2e24d3fff0e02efb2b
Show file tree
Hide file tree
Showing 6 changed files with 165 additions and 0 deletions.
19 Week7_Fstrings/ChallengeOne/builder/Dockerfile
View file
@@ -0,0 +1,19 @@
FROM ghcr.io/coventryuniversity/6048builder as ClientBuilder

RUN apt install -y --no-install-recommends python3 python3-jinja2

ADD src /opt

WORKDIR /opt

#We want to rebuld this each time
#ADD "https://www.random.org/cgi-bin/randbyte?nbytes=10&format=h" skipcache

RUN python3 /opt/process.py && gcc -fno-stack-protector /opt/target.c -o /opt/target

FROM ghcr.io/coventryuniversity/6048server
COPY --from=ClientBuilder /opt/target /home/cueh/target

ADD runserver.sh /opt/

CMD ["/bin/bash", "/opt/runserver.sh"]
5 Week7_Fstrings/ChallengeOne/builder/runserver.sh
View file
@@ -0,0 +1,5 @@
#!/bin/bash

echo "Starting Remote Service on port 1337"

/opt/server /home/cueh/target
38 Week7_Fstrings/ChallengeOne/builder/src/process.py
View file
@@ -0,0 +1,38 @@
import logging
import random
import string

import jinja2

def create_target():
"""
Create the Target C File
@param seed: Seed for the target, between 0 and 32
"""

env = jinja2.Environment(loader=jinja2.FileSystemLoader(searchpath="."))

template = env.get_template("target.jinja2")

username = random.choice(["Zaphod",
"Ford",
"Arthur",
"Tricia"])

logging.debug("User is %s", username)
password = "".join(random.choice(string.ascii_letters) for x in range(16))
logging.debug("Password is %s", password)

result = template.render(username = username,
password = password)

with open("target.c", "w") as fd:
fd.write(result)


if __name__ == "__main__":

logging.basicConfig(level=logging.DEBUG)

create_target()
46 Week7_Fstrings/ChallengeOne/builder/src/target.jinja2
View file
@@ -0,0 +1,46 @@
#include <stdio.h>
#include <string.h>
#include <unistd.h>

int BUFFER = 32;


int main(int argc, char* argv[]){
setvbuf(stdout, NULL, _IONBF, 0);
char username[16] = "{{ username }}";
char password[32] = "{{ password }}";
int attempts = 3;
char user[BUFFER];
char pass[BUFFER];

/* Main Function*/
while (attempts > 0){
//Get Data
printf("Enter Username >");
scanf("%32s", user);
printf("Enter Password >");
scanf("%32s", pass);

//Compare user
if(strcmp(username, user)){
printf("Incorrect Username ");
printf(user);
printf("\n");
attempts -= 1;
}
else{
//Compare Password
if(strcmp(pass, password)){
//A Non Zero == Fail
printf("Access Denied\n");
attempts -= 1;
}
else{
printf("Access Granted\n");
return 1;
}
}
printf("\n%d Attempts Remain\n", attempts);
}
return 0;
}
11 Week7_Fstrings/ChallengeOne/docker-compose.yaml
View file
@@ -0,0 +1,11 @@
version: "3.7"

services:
server:
build:
context: builder
args:
CACHE: "$(date)"
ports:
- "1337:1337"
# - "22:22"
46 Week7_Fstrings/ChallengeOne/target.c
View file
@@ -0,0 +1,46 @@
#include <stdio.h>
#include <string.h>
#include <unistd.h>

int BUFFER = 32;


int main(int argc, char* argv[]){
setvbuf(stdout, NULL, _IONBF, 0);
char username[32] = "Someone"; //0-16 Letter Username
char password[32] = "sECcuzDyeFmiXXbN"; // 0-16 Letter Password
int attempts = 3;
char user[BUFFER];
char pass[BUFFER];

/* Main Function*/
while (attempts > 0){
//Get Data
printf("Enter Username >");
scanf("%32s", user);
printf("Enter Password >");
scanf("%32s", pass);

//Compare user
if(strcmp(username, user)){
printf("Incorrect Username ");
printf(user);
printf("\n");
attempts -= 1;
}
else{
//Compare Password
if(strcmp(pass, password)){
//A Non Zero == Fail
printf("Access Denied\n");
attempts -= 1;
}
else{
printf("Access Granted\n");
return 1;
}
}
printf("\n%d Attempts Remain\n", attempts);
}
return 0;
}

0 comments on commit 2e84ec9

Please sign in to comment.