From cf00559b398eab50dc04a584ff22339258758364 Mon Sep 17 00:00:00 2001
From: Arslaan Pathan <arslaan@arslaancodes.com>
Date: Wed, 20 May 2026 19:46:27 +1200
Subject: Initial commit

---
 vuln.c | 25 +++++++++++++++++++++++++
 1 file changed, 25 insertions(+)
 create mode 100644 vuln.c

(limited to 'vuln.c')

diff --git a/vuln.c b/vuln.c
new file mode 100644
index 0000000..bd88a9d
--- /dev/null
+++ b/vuln.c
@@ -0,0 +1,25 @@
+#include <stdio.h>
+#include <string.h>
+#include <stdlib.h>
+
+void unused_function() {
+	printf("you did it! ROP achieved, we never call this function\n");
+	printf("calling /bin/sh...\n");
+	system("/bin/sh");
+}
+
+void vuln(char* input) {
+	char buffer[32];
+	// copy input but dont check size, purposefully vulnerable so we can ROP our way through stuff
+	strcpy(buffer, input);
+	printf("Your argument was: %s\n", buffer);
+}
+
+int main(int argc, char** argv) {
+	if (argc != 2) {
+		printf("Usage: %s <string>\n", argv[0]);
+		return 1;
+	}
+	vuln(argv[1]);
+	return 0;
+}
-- 
cgit v1.2.3