I miss the old libc
With updates in glibc 2.34, getting basic ROP gadgets inside your binaries is harder, which is good for security, but makes learning the basics of binary exploitation a bit more annoying. This small Docker container spins up an Ubuntu image with an older version of glibc, so that you don't have to download a bunch of things yourself. It will also copy the libc and linker out of the Docker container for added convenience.
This project is solely intended for small, typically single file C programs to be used in CTF-style challenges, nothing more.
Prerequisites: Docker
docker run --rm -it -v "$PWD:/pwd" --user $(id -u):$(id -g) take-me-back [GCC FLAGS]docker run --rm -it -v "$PWD:/pwd" --user $(id -u):$(id -g) take-me-back vuln.c -o vuln -fno-stack-protector -z execstack -no-pie- Figure out a clean way to allow someone to specify the glibc version they need
-
maybe write a Python wrapper to handle the whole file path issue?WORKDIRis a thing dummy - Use a smaller base image, maybe Arch Linux or alpine-glibc?
- Fix the whole ownership thing