ZERO TRUST AUTHENTICATION BYPASS

MEDIUM DIFFICULTY

Exploit a stack-based buffer overflow in a Zero Trust API endpoint to bypass multi-factor authentication.

← Back to Dashboard

🚀 Challenge Interface

zerotrust_api — buffer_overflow_challenge
$ ./zerotrust_api ======================================= Zero Trust Authentication System v2.4 ======================================= Protected Endpoint: /api/v1/verify_token Memory Protection: NX Enabled, ASLR Active Stack Canary: ❌ Disabled (Debug Mode) Buffer Location: 0x7ffc3a8b2d40 Win Function: 0x401216 (admin_bypass) Enter authentication token: █

🏴 Submit Flag

📚 Challenge Details

📖 Scenario

A Zero Trust API endpoint has been discovered with debug mode enabled. The token verification function contains a classic buffer overflow vulnerability. Exploit this to bypass authentication and gain admin privileges.

🎯 Learning Objectives

🔧 Tools Required

GDB with PEDA Python3 + pwntools checksec ROPgadget

Challenge Status

Not Completed

Complete this challenge by submitting the correct flag. Your progress is automatically saved.

← Return to Main Dashboard