Jump to content
View in the app

A better way to browse. Learn more.
Tuts 4 You

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

CrackMe for nonskid

banme
banme
in CrackMe

Featured Replies

Posted

Difficulty : 3
Language : C# (.NET)
Platform : Windows x32/x64
OS Version : Windows 7/8/10
Packer / Protector : None [just sum anti-skid stuff]

Description :

get the password

Screenshot :

TASn8Zb_QrmTo47pzqramA.png 

Download:

CrackMe.exe

    • Thanks 1

    Solved by 0X7C9

    Go to solution
    • Solution

    I have password :) my friend. I'm not surprised that the "Password:" is being loaded for so long. This calculation is unique. Where did I just see ...

    Pass is:  

    5j/bFy;&<A~9!(:e:p<*m%$gXAyh!*%9

    How did I get the password?

    I've tried a lot of programs. But always full stack or crash. Programs like (dnSpy ... and other debuggers) They were useless in this case. So I had to explore the entire IL code. I tried profiling in .dot Trace. I found you were using base64 there. So I tried to write a base64 decryption program. Nothing helped.

    1) So I used Peek from Jetbrains .dot.
    2) I got the source code
    3) Created a new project in VS2010
    4) Copied your code and tried to run.
    5) I commented on parts such as: //Environment.FailFast ("");
    6) Found part where you compare if (str2 == @string)
    7) Then Console.Writeline (@string)

    I'm sorry, but I did not understand much about the string (UTF) calculation. Maybe later.

     

    cracked.jpg

    cracked2.jpg

    Edited by !Eddy420CZ
    Detailed solution..

    • Thanks 1
    • Author
    Spoiler

     

    13 minutes ago, !Eddy420CZ said:

    I have password :) my friend. I'm not surprised that the "Password:" is being loaded for so long. This calculation is unique. Where did I just see ...

    Pass is:  

    

5j/bFy;&<A~9!(:e:p<*m%$gXAyh!*%9

    cracked.jpg

    cracked2.jpg

    5v9Pk8kmSkymtuHFPMumBA.png

    btw: the pw doesnt load long. its just the Threading.Sleep(1000) to prevent boiz to bruteforce

    • 2 weeks later...

    Great crackme, thanks :lol:

    • 3 weeks later...

    Password: 

    5j/bFy;&<A~9!(:e:p<*m%$gXAyh!*%9

     

    Steps:

    1. Start app in Windbg
    2. When you hit the IsDebuggerPresent exception you simply break at current address
    3. Dump strings and you get the password. 

     

    Difficulty: 1/10

    • Like 1
    • 11 months later...

    Alright, it was really easy to remove :D

    Opening the .exe on Dnspy we can see that the methods have some kind of decompiler crashing.

    spacer.png

    So what i did was simply loading the .exe and writing each instruction to console to see what is going on.

    Well a lot of ldc.i4.6 appeared as you can see here spacer.png

    Simply made a quick tool to remove this

     spacer.png

    Now you can open it on dnspy and see the actual code. But there are some anti-debuggers so i

    modified the tool that i made to remove the antidebuggers too. like this spacer.png

    You can simply debug it now :D

    spacer.png

     

     

     

    CrackMe (1)-Cleaned.exe

    Edited by TobitoFatito
    Replaced links with images

    • Like 2

    Create an account or sign in to comment

    Go to topic listing

    Configure browser push notifications
    Chrome (Android)
    1. Tap the lock icon next to the address bar.
    2. Tap Permissions → Notifications.
    3. Adjust your preference.
    Chrome (Desktop)
    1. Click the padlock icon in the address bar.
    2. Select Site settings.
    3. Find Notifications and adjust your preference.