You must create a flag.txt in the same folder as the binary for it to run.
nc ctf.b01lers.com 9202
sym.casino ask for a 4 byte string using
fgets, then it compare with a random string generate by
If we enter the same string as the random one, we get certain amount of money. If we have more than 1000 in balance, the program will print out the flag
The vulnerability here is that the binary never set random seed using
srand, therefore, the sequence
rand() give us will always be the same.
we can use following code to generate string and send string to the server
from pwn import *