Points: 650
Binary Exploitation
Can you exploit the following program to get a flag? You may need to think return-oriented if you want to program your way to the flag. You can find the program in /problems/can-you-gets-me_1_e66172cf5b6d25fffee62caf02c24c3d on the shell server. Source.
This is a classic gets ROP
First, find out the padding required for the buffer overflow. Then, use a rop chain to get the flag.
ROP chain generated by ROPgadget.
Working solution solve.py.
picoCTF{rOp_yOuR_wAY_tO_AnTHinG_700e9c8e}