Extreme Coders Posted November 1, 2015 Posted November 1, 2015 (edited) This is a CTF style challenge. Objective : You need to find the flag which will print the good boy messageRules : Everything is allowed Have fun! Virustotal scanfindtheflag.rar Edited November 1, 2015 by Extreme Coders 4
GIV Posted November 2, 2015 Posted November 2, 2015 (edited) Stupid patch. findtheflag1.rar Edited November 2, 2015 by GIV 3
Extreme Coders Posted November 2, 2015 Author Posted November 2, 2015 @GIV: Good Work. A little hint if someone else is interested in finding the actual flag. It consists of exactly 30 printable ascii characters. 1
GIV Posted November 2, 2015 Posted November 2, 2015 (edited) They can do a simple compare of my patched file with original file. Is just a byte patch.Is a xor and a compare operation and a simple jump to pass the bad boy message. I have searched in memory the bad boy string, put a hwbp on access on the first letter then when it was triggered i looked in the call stack to see from where it was accessed and forward using the stack i have reached the actual check routine.I have no patience to recompose the original string just i have put a compare to be equal (EAX=0) and so the program jumps always to good boy. Edited November 2, 2015 by GIV
SmilingWolf Posted November 2, 2015 Posted November 2, 2015 (edited) The thing is, in an actual CTF you'd need the string. C'mon yer ol' lad, put a little extra effort in this, at least it is not the usual "überpacked" .NET file, too much of that sith has been posted here in the last year... Edited November 2, 2015 by SmilingWolf 2
Solution kao Posted November 2, 2015 Solution Posted November 2, 2015 (edited) flag{Y0u_s0lved_that_r1ght!!!} EDIT: I enjoyed it so much that I think it deserves a small writeup. Coming up in few hours.. Edited November 2, 2015 by kao 11
Extreme Coders Posted November 2, 2015 Author Posted November 2, 2015 That was quick. I am literally out of words. You actually deserve a prize for this.
kao Posted November 2, 2015 Posted November 2, 2015 Here's the writeup: http://lifeinhex.com/solving-find-the-flag-crackme-by-extreme-coders/ 6
Jasi2169 Posted November 2, 2015 Posted November 2, 2015 (edited) Where there is no hope there is KAO oh not to forget tonyweb Edited November 2, 2015 by Jasi2169
Gyrus Posted November 3, 2015 Posted November 3, 2015 Thank you Extreme Coders, nice challenge.flag{Y0u_s0lved_that_r1ght!!!} Attachments include cleaned (NOPed) executable findtheflag1.p1.rar a Mathematica nb file plus its html output Untitled-2.rar pseudo-code maincode.txt 3
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now