open-education-hub · cristina-marina1407 · May 23, 2025 · May 23, 2025 · razvand · May 18, 2025
diff --git a/...ers/exploitation-techniques/shellcodes/drills/06-challenge-binsh-shellcode/src/Dockerfile b/...ers/exploitation-techniques/shellcodes/drills/06-challenge-binsh-shellcode/src/Dockerfile
@@ -0,0 +1,21 @@
+# Build stage
+FROM gcc:latest AS build
+
+WORKDIR /app
+COPY vuln.c .
+COPY binsh_shellcode.nasm .
+COPY Makefile.sol .
+RUN apt-get update && apt-get install -y nasm binutils
+RUN make -f Makefile.sol
+
+# Runtime stage
+FROM debian:bullseye-slim
+
+WORKDIR /app
+COPY --from=build /app/vuln .
+COPY --from=build /app/binsh_shellcode.bin .
+
+# Expose port 31344 for external connections
+EXPOSE 31344
+
+CMD ["/app/vuln"]
diff --git a/chapters/exploitation-techniques/shellcodes/drills/06-challenge-binsh-shellcode/src/Makefile b/chapters/exploitation-techniques/shellcodes/drills/06-challenge-binsh-shellcode/src/Makefile
@@ -1,21 +1,21 @@
-CFLAGS = -Wall -fno-stack-protector -g -fno-PIC
-LDFLAGS = -no-pie
+PORT ?= 31344
+IMG_NAME ?= challenge06
+CONT_NAME ?= $(IMG_NAME)-cnt
 
-.PHONY: all clean
+build:
+	docker build -t $(IMG_NAME) -f Dockerfile .
 
-all: vuln binsh_shellcode.bin
+run: build
+	docker run -d --rm -p $(PORT):31344 --name $(CONT_NAME) -t $(IMG_NAME)
 
-vuln: vuln.o
-	$(CC) $(LDFLAGS) $< -o $@
+exploit:
+	python3 exploit.py
 
-vuln.o: vuln.c
-	$(CC) $(CFLAGS) -c $< -o $@
-	@# We need an executable .bss
-	objcopy --set-section-flags .bss=code,alloc,data $@
+stop:
+	-docker stop $(CONT_NAME)
 
-binsh_shellcode.bin: binsh_shellcode.nasm
-		nasm $< -o $@
-
-
-clean:
+clean: stop
+	-docker rm $(CONT_NAME)
 	-rm -f vuln *.o binsh_shellcode.bin
+
+.PHONY: build run stop clean
diff --git a/...s/exploitation-techniques/shellcodes/drills/06-challenge-binsh-shellcode/src/Makefile.sol b/...s/exploitation-techniques/shellcodes/drills/06-challenge-binsh-shellcode/src/Makefile.sol
@@ -0,0 +1,20 @@
+CFLAGS = -Wall -fno-stack-protector -g -fno-PIC
+LDFLAGS = -no-pie
+
+.PHONY: all clean
+
+all: vuln binsh_shellcode.bin
+
+vuln: vuln.o
+	$(CC) $(LDFLAGS) $< -o $@
+
+vuln.o: vuln.c
+	$(CC) $(CFLAGS) -c $< -o $@
+	@# We need an executable .bss
+	objcopy --set-section-flags .bss=code,alloc,data $@
+
+binsh_shellcode.bin: binsh_shellcode.nasm
+	nasm $< -o $@
+
+clean:
+	-rm -f vuln *.o binsh_shellcode.bin
diff --git a/...itation-techniques/shellcodes/drills/06-challenge-binsh-shellcode/src/README.md b/...itation-techniques/shellcodes/drills/06-challenge-binsh-shellcode/src/README.md
@@ -0,0 +1,33 @@
+### Building and running
+
+    Here is how to use the provided Makefile:
+
+- **Build the Docker image and compile binaries:**
+
+    ```console
+    make build
+    ```
+
+- **Run the container:**
+
+    ```console
+    make run
+    ```
+
+- **Stop the running container:**
+
+    ```console
+    make stop
+    ```
+
+- **Run the exploit script:**
+
+    ```console
+    make exploit
+    ```
+
+- **Clean up container state:**
+
+    ```console
+    make clean
+    ```