<h1 id="spooky-time"><a aria-hidden="true" class="anchor-heading icon-link" href="#spooky-time"></a>Spooky Time</h1>
<h2 id="exploitation"><a aria-hidden="true" class="anchor-heading icon-link" href="#exploitation"></a>Exploitation</h2>
<ul>
<li>
<p>The binary gives the user two chances to input text before exiting, and after entry the text is displayed to the user.</p>
<p>Only the first word (divided by spaces) is read, if there are two words the second word is automatically the input for the next prompt. Running <code>strings</code> on the binary shows <code>%11s</code> after the first prompt and <code>%299s</code> after the second prompt, which in C means the input should be padded with that many spaces if the input is shorter than the specified length.</p>
<p>Pressing the <code>Enter</code> key will not terminate the input, it seems to still just wait for real input before continuing execution. There must be some way to break out of the normal flow of input and get the <code>flag.txt</code> file's contents, that is the only thing that makes sense.</p>
<p><code>exit</code> didn't do anything of interest, neither did <code>cat /flag</code>. Adding 11 spaces before <code>cat</code> and 299 spaces before <code>/flag</code> didn't work either, neither did adding the spaces after the words.</p>
</li>
<li></li>
</ul>

Spooky Time

bits-and-bobbles


# Welcome to bits-and-bobbles

This is the root of my project, an assortment of fragments of code that I have written in the past or used frequently enough that I think they are worth sharing. Please feel free to use them as you see fit, and share and leave a star if you find them useful!

## What's here?

- [[Stack Overflow|stack-overflow]]
- [[Unix & Linux Stack Exchange|unix-stack-exchange]]
- [[Codewars|codewars]]
- [[Codepens|codepen]]
- [[Euler Project|euler]]
- [[Google FooBar|foobar]]
- [[HackTheBox Ops Notes|hackthebox]]
- [[Medium Articles|medium]]
- [[CyberSoc|cybersoc]]
- [[Cyber Institute|cyberinstitute]]
