search

binarygolf / BGGP

Binary Golf Grand Prix
44 stars 10 forks source link

Linux aarch64 static ELF - 3043 bytes #51

Open DavidBuchanan314 opened 3 months ago

DavidBuchanan314 commented 3 months ago 
---BEGIN BGGP5---
Submit Date: 2024-09-06
BGGP Challenge Number: 5
Author: retr0id
Contact Info (Optional): 
Online Presence (Website/Social Media): 
Target File Type: Linux aarch64 static ELF
File Size: 3043
SHA256 Hash: b01a2f924b58a8b73b730d3b00479c62f37dd1ba4f17464843ef605b2a2b7ce2
Target Environment (How do we run the file?): sudo modprobe tls; ./kurl https://binary.golf/5/5
Any additional info?: It won't work under qemu-user, needs a "real" aarch64 system with a modern kernel (for ktls, crypto).
There are no userland dependencies, but cryptography happens in the kernel.
Link to PoC video, screenshot, or console output, if any: 
Link to writeup, if any: Dev log at https://github.com/DavidBuchanan314/kurl (I might do a better writeup in the near future but I'm hoping that README already qualifies for points ;)
File contents (base64 encoded please):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---END BGGP5---
neuschaefer commented 3 months ago

big kudos for going the KTLS route! i considered it too, and ended up spawning the openssl utility instead

DavidBuchanan314 commented 3 weeks ago

Turns out I didn't get around to golfing it any further, so this is my final submission. Time to remove the WIP label!