reversemedium

Only Give Me Flag

hackerlab

Task: a PE32+ Windows GUI crackme validates both a passphrase and a strictly formatted CODEBY flag made of four hex groups. Solution: recover the AES-CBC passphrase from embedded key material, reconstruct the flag constraints, invert the long arithmetic loop, and verify the recovered flag offline.

$ ls tags/ techniques/

aes_cbc windows_pe x64 flag_checker pe32_plus gui_checker wcstoul hex_flag_format

static_reverse_engineeringaes_cbc_decryptionformat_constraint_recoveryloop_inversion

Analysis

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

$ python3 exploit.py --target 192.168.1.1 --port 8080
[*] Connecting to target...
[+] Shell obtained!

Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.

🔒

Permission denied (requires tier.pro)

Sign in to access full writeups

Create a free account with GitHub to get started.

$ssh [email protected]