disable PIE -- oops

binary-exploitation/first-overflow-w/_1/binary-exploitation-first-overflow-w.c

@@ -125,6 +125,12 @@ int challenge(int argc, char **argv, char **envp)
     printf("You can make this variable be non-zero by overflowing the input buffer.\n");
     printf("The \"win\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", win_variable, ((unsigned long) win_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/first-overflow-w/_10/binary-exploitation-first-overflow-w.c

@@ -125,6 +125,12 @@ int challenge(int argc, char **argv, char **envp)
     printf("You can make this variable be non-zero by overflowing the input buffer.\n");
     printf("The \"win\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", win_variable, ((unsigned long) win_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/first-overflow-w/_11/binary-exploitation-first-overflow-w.c

@@ -125,6 +125,12 @@ int challenge(int argc, char **argv, char **envp)
     printf("You can make this variable be non-zero by overflowing the input buffer.\n");
     printf("The \"win\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", win_variable, ((unsigned long) win_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/first-overflow-w/_12/binary-exploitation-first-overflow-w.c

@@ -125,6 +125,12 @@ int challenge(int argc, char **argv, char **envp)
     printf("You can make this variable be non-zero by overflowing the input buffer.\n");
     printf("The \"win\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", win_variable, ((unsigned long) win_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/first-overflow-w/_13/binary-exploitation-first-overflow-w.c

@@ -125,6 +125,12 @@ int challenge(int argc, char **argv, char **envp)
     printf("You can make this variable be non-zero by overflowing the input buffer.\n");
     printf("The \"win\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", win_variable, ((unsigned long) win_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/first-overflow-w/_14/binary-exploitation-first-overflow-w.c

@@ -125,6 +125,12 @@ int challenge(int argc, char **argv, char **envp)
     printf("You can make this variable be non-zero by overflowing the input buffer.\n");
     printf("The \"win\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", win_variable, ((unsigned long) win_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/first-overflow-w/_15/binary-exploitation-first-overflow-w.c

@@ -125,6 +125,12 @@ int challenge(int argc, char **argv, char **envp)
     printf("You can make this variable be non-zero by overflowing the input buffer.\n");
     printf("The \"win\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", win_variable, ((unsigned long) win_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/first-overflow-w/_2/binary-exploitation-first-overflow-w.c

@@ -125,6 +125,12 @@ int challenge(int argc, char **argv, char **envp)
     printf("You can make this variable be non-zero by overflowing the input buffer.\n");
     printf("The \"win\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", win_variable, ((unsigned long) win_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/first-overflow-w/_3/binary-exploitation-first-overflow-w.c

@@ -125,6 +125,12 @@ int challenge(int argc, char **argv, char **envp)
     printf("You can make this variable be non-zero by overflowing the input buffer.\n");
     printf("The \"win\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", win_variable, ((unsigned long) win_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/first-overflow-w/_4/binary-exploitation-first-overflow-w.c

@@ -125,6 +125,12 @@ int challenge(int argc, char **argv, char **envp)
     printf("You can make this variable be non-zero by overflowing the input buffer.\n");
     printf("The \"win\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", win_variable, ((unsigned long) win_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/first-overflow-w/_5/binary-exploitation-first-overflow-w.c

@@ -125,6 +125,12 @@ int challenge(int argc, char **argv, char **envp)
     printf("You can make this variable be non-zero by overflowing the input buffer.\n");
     printf("The \"win\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", win_variable, ((unsigned long) win_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/first-overflow-w/_6/binary-exploitation-first-overflow-w.c

@@ -125,6 +125,12 @@ int challenge(int argc, char **argv, char **envp)
     printf("You can make this variable be non-zero by overflowing the input buffer.\n");
     printf("The \"win\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", win_variable, ((unsigned long) win_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/first-overflow-w/_7/binary-exploitation-first-overflow-w.c

@@ -125,6 +125,12 @@ int challenge(int argc, char **argv, char **envp)
     printf("You can make this variable be non-zero by overflowing the input buffer.\n");
     printf("The \"win\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", win_variable, ((unsigned long) win_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/first-overflow-w/_8/binary-exploitation-first-overflow-w.c

@@ -125,6 +125,12 @@ int challenge(int argc, char **argv, char **envp)
     printf("You can make this variable be non-zero by overflowing the input buffer.\n");
     printf("The \"win\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", win_variable, ((unsigned long) win_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/first-overflow-w/_9/binary-exploitation-first-overflow-w.c

@@ -125,6 +125,12 @@ int challenge(int argc, char **argv, char **envp)
     printf("You can make this variable be non-zero by overflowing the input buffer.\n");
     printf("The \"win\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", win_variable, ((unsigned long) win_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/lose-variable-w/_1/binary-exploitation-lose-variable-w.c

@@ -131,6 +131,12 @@ int challenge(int argc, char **argv, char **envp)
     puts("will not get the flag. Be careful not to overwrite this variable.\n");
     printf("The \"lose\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", lose_variable, ((unsigned long) lose_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/lose-variable-w/_10/binary-exploitation-lose-variable-w.c

@@ -131,6 +131,12 @@ int challenge(int argc, char **argv, char **envp)
     puts("will not get the flag. Be careful not to overwrite this variable.\n");
     printf("The \"lose\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", lose_variable, ((unsigned long) lose_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/lose-variable-w/_11/binary-exploitation-lose-variable-w.c

@@ -131,6 +131,12 @@ int challenge(int argc, char **argv, char **envp)
     puts("will not get the flag. Be careful not to overwrite this variable.\n");
     printf("The \"lose\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", lose_variable, ((unsigned long) lose_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/lose-variable-w/_12/binary-exploitation-lose-variable-w.c

@@ -131,6 +131,12 @@ int challenge(int argc, char **argv, char **envp)
     puts("will not get the flag. Be careful not to overwrite this variable.\n");
     printf("The \"lose\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", lose_variable, ((unsigned long) lose_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/lose-variable-w/_13/binary-exploitation-lose-variable-w.c

@@ -131,6 +131,12 @@ int challenge(int argc, char **argv, char **envp)
     puts("will not get the flag. Be careful not to overwrite this variable.\n");
     printf("The \"lose\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", lose_variable, ((unsigned long) lose_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/lose-variable-w/_14/binary-exploitation-lose-variable-w.c

@@ -131,6 +131,12 @@ int challenge(int argc, char **argv, char **envp)
     puts("will not get the flag. Be careful not to overwrite this variable.\n");
     printf("The \"lose\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", lose_variable, ((unsigned long) lose_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/lose-variable-w/_15/binary-exploitation-lose-variable-w.c

@@ -131,6 +131,12 @@ int challenge(int argc, char **argv, char **envp)
     puts("will not get the flag. Be careful not to overwrite this variable.\n");
     printf("The \"lose\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", lose_variable, ((unsigned long) lose_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/lose-variable-w/_2/binary-exploitation-lose-variable-w.c

@@ -131,6 +131,12 @@ int challenge(int argc, char **argv, char **envp)
     puts("will not get the flag. Be careful not to overwrite this variable.\n");
     printf("The \"lose\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", lose_variable, ((unsigned long) lose_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;

binary-exploitation/lose-variable-w/_3/binary-exploitation-lose-variable-w.c

@@ -131,6 +131,12 @@ int challenge(int argc, char **argv, char **envp)
     puts("will not get the flag. Be careful not to overwrite this variable.\n");
     printf("The \"lose\" variable is stored at %p, %d bytes after the start of your input buffer.\n\n", lose_variable, ((unsigned long) lose_variable) - ((unsigned long) input));
 
+    puts("We have disabled the following standard memory corruption mitigations for this challenge:");
+    puts("- the binary is *not* position independent. This means that it will be");
+    puts("located at the same spot every time it is run, which means that by");
+    puts("analyzing the binary (using objdump or reading this output), you can");
+    puts("know the exact value that you need to overwrite the return address with.\n");
+
     FIND_CANARY(cp_, cv_, bp_);
 
     size = 4096;