reverseProeasy

Jaakko

sbpctf

Task: a PE32 crackme asks for a valid serial and contains an interesting embedded string in .rdata. Solution: reverse the validation routine, observe how it swaps two halves around an inserted underscore, and recover the serial answer_simple.

static_analysis strings crackme windows_pe serial_check

static_analysisstring_reconstructionbyte_by_byte_comparison

$ ls tags/ techniques/

static_analysis strings crackme windows_pe serial_check

static_analysisstring_reconstructionbyte_by_byte_comparison

Analysis

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

$ python3 exploit.py --target 192.168.1.1 --port 8080
[*] Connecting to target...
[+] Shell obtained!

Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.

Permission denied (requires tier.pro)

Sign in to access full writeups

Sign in with GitHub, Discord, or Google to continue. No email required.

$sign in

$ grep --similar

Similar writeups

[reverse][Pro]Uttar— spbctf
[reverse][Pro]CrackMe - TaipanByte CTF— taipanbyte
[reverse][Pro]crackme4— rev-kids20.forkbomb.ru
[reverse][Pro]Очень защищенный банк (Super Protected Bank)— duckerz
[reverse][free]roulette— umdctf