Stack Buffer Overflow - Skills Assessment - Linux x86 buffer overflow course Academy HTB

Hi guys,

thank you for your time to look into this and help me. I am trying to get the root flag from one of the course in academy.hackthebox, however, as its a buffer overflow attack, I followed it got the offset, and even got the shell to connect back, but the return shell is of the user(htb-student) level, and not root...
any guidance please?

there is a setuid set on the leave_msg program, so I run it under GDB and was able to get it to trigger the shell.



Sign In to comment.