一个用于CTF PWN的docker容器

Posted on | Edited on | In |

1. 介绍

一个基于phusion/baseimage的docker容器,用于ctf中的Pwn类题目

2. 使用

1
2
3
4
5
6
7
8
docker run  -it \
            --rm \
            -h ${ctf_name} \
            --name ${ctf_name} \
            -v $(pwd)/${ctf_name}:/ctf/work \
            -p 23946:23946 \
            --cap-add=SYS_PTRACE \
            skysider/pwndocker

3. 包含的软件

  • pwntools —— CTF framework and exploit development library
  • pwndbg —— a GDB plug-in that makes debugging with GDB suck less, with a focus on features needed by low-level software developers, hardware hackers, reverse-engineers and exploit developers
  • ROPgadget —— facilitate ROP exploitation tool
  • roputils —— A Return-oriented Programming toolkit
  • one_gadget —— A searching one-gadget of execve(‘/bin/sh’, NULL, NULL) tool for amd64 and i386
  • angr —— A platform-agnostic binary analysis framework
  • radare2 —— A rewrite from scratch of radare in order to provide a set of libraries and tools to work with binary files
  • LibcSearcher —— A libc search tool based on leaked function address
  • linux_server[64] —— IDA 7.0 debug server for linux
  • tmux —— a terminal multiplexer
  • ltrace —— trace library function call
  • strace —— trace system call