All Activity

Here is little video i can make. tool I use.rar

Yes unbelievable... what happened this year?

damn it's already been taken down :/ thank you for trying to upload it anyways!

Highly appreciate if someone could upload a video tutorial regarding this topic. So that newbies like can at least pick up few ideas how things work. Thank you very much

What is the fastest way of finding OEP? Are there any specific techniques you guys use for this?

the prize is a fornicationin tote bag T.T hell nah

Look at how it checks if the order is correct

For challenge 9. Any tips on how to find out dll load order?

Awesome analysis, would like to see more. I'm myself into the water of reversing, hopefully cracking denuvo.

try to do all with python 3.12

Hey! Some rabbit holes are fun to dive into. And sometimes you also don't realize you are in a rabbit hole 🙃 (Definitely guilty of that myself here 😅)

@Rurik : riiight! 😂 Some people leave no stone unturned and analyze each challenge in details. Good for them. 👍 But me, I've lost count how many easter eggs I did not find over the years...

TIL people actually 'solved' four instead of it solving itself

@Pau1 : random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. You went in the wrong direction.

I'm a bit stuck on ch4 I've reversed the .exe and found the part where it takes the file version, XORs it with 0x6746, and then runs it through an LCG and a modulo operation. This seems to generate a file index and a value to XOR with that file. I've already generated the results for the 100 versions after 150, but I'm still not seeing the connection to the flag. I feel like I'm missing something obvious. Could you give me a nudge in the right direction? Any help would be appreciated, thanks!

At least search results are not featured prominently at the top of the main page.. 😄 Hopefully it all will be resolved someday.. Thanks Ted!

@NoHayShark Sometimes malware does silly things that don't make sense. Assume the operator is dumb.

I think I'm in the same boat with 75%. I see where a value could potentially be changed, but it looks like it's being set to the same exact thing. Would you mind giving me a nudge?

This is a known issue, and there is an open bug report with the Invision team to have it resolved. Spoiler contents are also visible in search results too... Ted.

When we put a text into spoiler block, the natural assumption would be that it's hidden until someone intentionally clicks to open it. Currently, it doesn't work like in the sidebar:

@lpu random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. random text so that spoiler actually works. You shouldn't be making any assumptions - it's a crypto problem, not a guessing game. You were given all the data you need to solve it.

Could really do with a nudge in the right direction for ch6, been working at it for a few days now and feel like I'm very close but missing something critical. I'm 99% certain I understand the logic and have re-implemented locally off-chain and can decrypt my own conversations for both modes but it won't work for the provided logs (seems a few people have hit this point). I've also adjusted my code in a few different ways based on assumptions about the chat logs being a two way conversation, e.g. the message count may vary at each end of the convo as would the conversation time, there might be two rsa keys etc, but still not having any success. At this stage I'm looking at trying to derive the lcg parameters, assuming none of the given states in the chat logs are actually the seed, but that seems to be mathematically very difficult.

can you please share devirtualization working tool for dotnet reactor