![[DawgCTF 2021] :pwn: Jellyspotters Write-Up ํฌ์คํ
์ธ๋ค์ผ ์ด๋ฏธ์ง](https://img1.daumcdn.net/thumb/R750x0/?scode=mtistory2&fname=https%3A%2F%2Fblog.kakaocdn.net%2Fdn%2F59p5D%2Fbtq4XwNw9PP%2FmyOijUAeekPuL9admQAzVk%2Fimg.png)
CTF
[DawgCTF 2021] :pwn: Jellyspotters Write-Up
Jellyspotters - 100pts Description Tag pwnable, pickle, python Problem Analysis ๊ทธ๋ฆผ์ ๊ทธ๋ฆฌ๋ ํ๋ก๊ทธ๋จ์ด๋ค์ฉ ๋์ถฉ ์ด๋ฐ ํ๋ก๊ทธ๋จ์ด๊ณ ์ด๊ฒ์ ๊ฒ ํด๋ดค๋๋ฐ Pickle์ ์ฌ์ฉํ๋ค๋ ๊ฒ์ ์ ์ ์๊ตฐ์ Pickle์ ์ทจ์ฝ์ ์ด ๋ฐ์ํฉ๋๋ค. ๊ธ ์ฒจ๋ถํฉ๋๋ค. https://davidhamann.de/2020/04/05/exploiting-python-pickle/ Exploiting Python pickles How unpickling untrusted data can lead to remote code execution. davidhamann.de ๊ทธ๋ผ ์ด๊ฑธ ๊ฐ์ง๊ณ RCE๋ฅผ ํด๋ด ์๋น Exploit ์ ๊ธฐ๋ณธ์ ์ผ๋ก pickle์ ์ทจ์ฝ์ ์ __reduce__..