chapters/exploitation-techniques: Handle 07-challenge-shellcode-on-st…

chapters/exploitation-techniques/shellcodes/drills/07-challenge-shellcode-on-stack/sol/README.md

@@ -0,0 +1,12 @@
+### Building and running
+
+**Running challenge**
+Make sure you are in the `sol` directory and run the following command:
+
+```bash
+./run.sh
+```
+This will build the `challenge07` docker and run it. Afterwards, the `vuln`
+executable will be copied to the `sol` directory and the `exploit.py` script
+will be executed.
+Cleanup will be done automatically after the script is finished.

chapters/exploitation-techniques/shellcodes/drills/07-challenge-shellcode-on-stack/sol/run.sh

@@ -0,0 +1,19 @@
+#!/bin/bash
+# Build the Docker image from the correct directory
+cd ..
+docker build -f src/Dockerfile -t challenge07 .
+
+# Run container in background
+docker run -d --name challenge07 -p 31345:31345 challenge07
+
+# Copy the binary from the container for local analysis
+docker cp challenge07:/app/vuln sol/vuln
+
+# Navigate to the sol directory and run the exploit
+cd sol
+python3 exploit.py
+
+# Cleanup: Remove the local copy of the binary and stop the container
+rm -f vuln
+docker stop challenge07
+docker rm -f challenge07

chapters/exploitation-techniques/shellcodes/drills/07-challenge-shellcode-on-stack/src/Dockerfile

@@ -0,0 +1,28 @@
+# Build Stage
+FROM gcc AS builder
+WORKDIR /build
+
+# Copy only the content from the src directory
+COPY src/ .
+
+RUN make
+
+# Runtime Stage
+FROM python:3.9-slim
+WORKDIR /app
+
+RUN apt-get update && \
+    apt-get install -y --no-install-recommends binutils cpp && \
+    rm -rf /var/lib/apt/lists/* && \
+    pip install --no-cache-dir pwntools
+
+ENV TERM=xterm
+
+COPY --from=builder /build/vuln /app/vuln
+COPY sol/exploit.py /app/exploit.py
+
+# Expose port 31345
+EXPOSE 31345
+
+# Run the vulnerable binary
+CMD ["/app/vuln"]