reversehard

0racle

kalmarctf

Task: Lazarus/FreePascal GUI executable with embedded shellcode validating flag via FNV-1a hashes. Solution: Extract TPF0 form resources, locate XOR-encrypted shellcode, reverse FNV-1a hash function, brute-force 7 flag segments independently.

$ ls tags/ techniques/

windows pe32 shellcode fnv1a xor_encryption lazarus freepascal gui custom_hash form_resource keypress_validation

lazarus_form_extractionshellcode_analysisfnv1a_hash_crackingsegment_brute_forcertti_analysistpf0_parsing

Analysis

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

$ python3 exploit.py --target 192.168.1.1 --port 8080
[*] Connecting to target...
[+] Shell obtained!

Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.

🔒

Permission denied (requires tier.pro)

Sign in to access full writeups

Create a free account with GitHub to get started.

$ssh [email protected]