Rushabh's Digital Garden

❯

❯

❯

PIE TIME

May 20, 20251 min read

ctf
picoctf
binary
exploitation
easy
picocCTF2025

Challenge Description

Can you try to get the flag? Beware we have PIE!

Connect to the program with netcat:
$ nc rescued-float.picoctf.net 49787

The program’s source code can be downloaded here. The binary can be downloaded here.

Approach and Steps

Tried to understand vuln.c

The program tries to run a function which is located at the address give by the user in the cli.

Tried giving random address to test, got segfault.

Used gdb on vuln

In (gdb) run: disass main which game me the assembly code of main with it’s location in memory. Start location was 0x000000000000133d
In (gdb) run: disass win which game me the assembly code of win with it’s location in memory. Start location was 0x00000000000012a7
Therefore 0x000000000000133d - 0x00000000000012a7 = 0x96 , the run run function is 96 addresses before main.

Subtracted 0x96 form the address of main which is provided in the cli and the program gives the flag.

Flag

Flag

picoCTF{b4s1c_p051t10n_1nd3p3nd3nc3_93dd5fcb}

Tools Used

Graph View

Challenge Description
Approach and Steps
Flag
Tools Used

Backlinks

picoCTF

Created with Quartz v4.5.0 © 2025

GitHub
Twitter
LinkedIn
Website
Instagram