Rigel (Launched 2003)
- Password: 58623
- (20 points)
Table of contents
After reading the shocking revelations from Deneb, you realize that the Jupiter
mission is not what you thought it was. It must be aborted at all costs.
Rigel was one of the last satellites launched by the Gobian Union before its fall.
It uses ASLR, which at the time was the latest and most powerful defense against
memory exploits. Your final job is to hack into Rigel and get the blueprints to fully
understand Caltopia’s true intentions.
This part of the project enables ASLR.
Once you have logged into the rigel account, ASLR will stay enabled on your VM. You’ll need to restart your VM if you’d like to go back to the previous parts.
Note that even though ASLR is enabled, position-independent executables are not enabled. Therefore, the code section of memory is always at the same spot.
Tips
- It might help to read Section 8 of “ASLR Smack & Laugh Reference” by Tilo Müller.
Deliverables
A script egg and a writeup. Make sure the script works by running ./exploit.
