1
00:00:01,290 --> 00:00:01,740
All right.

2
00:00:01,740 --> 00:00:02,910
Welcome back.

3
00:00:05,600 --> 00:00:08,780
And we're going to see.

4
00:00:14,820 --> 00:00:22,230
We go back to our session, remember, we were able to leak the canary from the canary.

5
00:00:24,810 --> 00:00:31,920
And notice how it changes and we have to dynamically capture the canary, repair it so that way it doesn't

6
00:00:31,920 --> 00:00:33,810
trigger stack smashing detected.

7
00:00:34,920 --> 00:00:42,240
So we're going to do a go exploit API then edit it.

8
00:00:45,330 --> 00:00:51,450
Now remember I am who am I id?

9
00:00:51,600 --> 00:00:54,990
So I am basically a underprivileged user.

10
00:00:54,990 --> 00:01:04,290
If I try to pseudo, let's say pseudo pseudo or s you root and then I try to enter my password player.

11
00:01:07,590 --> 00:01:08,650
It's the wrong password.

12
00:01:08,670 --> 00:01:10,770
See, because I can't sit out.

13
00:01:10,950 --> 00:01:12,300
It's not a suitable user.

14
00:01:12,540 --> 00:01:20,850
But if I ran my exploit python three exploit dot pie ID, I am now a root user.

15
00:01:21,210 --> 00:01:26,100
The reason why is because I hardcoded root within this vulnerable binary.

16
00:01:27,150 --> 00:01:31,950
And from this point on, you can actually just read the fly.

17
00:01:33,090 --> 00:01:37,560
So I just want to admit to you that I've been having some issues with poll tools.

18
00:01:39,030 --> 00:01:45,030
So if you have any issues like end of file errors and stuff like that, immediately let me know in the

19
00:01:45,030 --> 00:01:46,090
QA section.

20
00:01:46,110 --> 00:01:47,820
Tell me exactly what you did.

21
00:01:48,750 --> 00:01:52,200
I will address these issues because this is not the first time I've seen it.

22
00:01:52,770 --> 00:01:57,630
But I have restarted Docker on these exercises so many times.

23
00:01:57,750 --> 00:01:59,760
There might be some sort of issue with that.

24
00:02:00,840 --> 00:02:03,850
I've seen this issue happen with MacBooks and stuff.

25
00:02:03,870 --> 00:02:10,500
So let me know if the stationary bypass using specifically powered tools is having issues outside of

26
00:02:10,500 --> 00:02:10,680
that.

27
00:02:10,680 --> 00:02:15,990
If you manage to get the fly, go submit it as your quiz answer.