SignupHide Sidebar
Username: 
Password: 
Restrict session to IP 
Statistics
47 Sites
180 Challs
8864 Posts
66359 Users
41 donations
0 Patreons
1 Shop
47 Active Sites
World of Wargame
WeChall
TheBlackSheep
Rankk
Electrica
NewbieContest
LOST-Chall
Yashira
BrainQuest
Net-Force
HackThisSite
ThisisLegal.com
elhacker.net
TryThis0ne
TDHack
+Ma's Reversing
Hacker.org
HackBBS
Root-Me
SPOJ
Revolution Elite
W3Challs
Gekkó
Webhacking.kr
Reversing.Kr
SuNiNaTaS
Hacking-Challenges
OverTheWire.org
RedTigers Hackit
Defend the Web
Mod-X
Omega Project
ae27ff
pwnable.kr
RingZer0 Team Online CTF
pwnable.tw
Hack The Box
try to decrypt
MysteryTwister
LordofSQLi
Énigmes À Thématiques
247CTF
CryptoHack
PyDéfis
PromptRiddle
PWN.TN
pwn.college
Top 10 Players
dloser
benito255
jusb3
Caesum
tehron
phoenix1204
lordOric
thefinder
Akorlith
Xaav
Last 20 Activities
rostale
biyu
obeid2
tarv7
m0nd0r
apexs
spartan221
B0nk3rZ
sysfail
Nessie
durmus
Gengar
deamon9292
rayaseiren
mt963
rayaseiren
rayaseiren
KepLer500
MiaadP
soul3355
Online within 1d
36 Users
B0nk3rZ
HvT
deamon9292
cheerfulbull
rayaseiren
nowsh
rostale
biyu
apexs
soul3355
tarv7
obeid2
Nessie
Isodoro
durmus
jusb3
Rex_Mundi
lauchava
KepLer500
faust
more
WeChall->Challenges->Challenge: The Last Hope

pointers?  Go to the The Last Hope challenge

Problems executing
Global Rank: 535
Totalscore: 47147
Posts: 37
Thanks: 21
UpVotes: 24
Registered: 11y 192d
stormsurfer`s Avatar



Last Seen: 6y 303d
The User is Offline
pointers?
Nov 02, 2012 - 22:15:31 (11y 167d) Google/translate2Thank You!1Good Post!1Bad Post! link
Can I get some pointers on this? I've been working on it for a few good hours now and got nothing, it's very frustrating. I cracked it and removed the anti ptrace function to be able to use gdb on it, but I don't see the username any where. I didn't even began to look in the password section.

I also think I disabled the CAPS check, but not sure what the lc function does, at first I tought it check the lenghts of the username string but then I noticed I only enter it when I use all caps in the username (like AAAAA). in any case I can find my username string in the stack but I don't see the real username any where. I feel like I'm shooting blanks.

also does the md5 strings in the binary have anything do to with the user or pass? or they just decoy?
Global Rank: 54
Totalscore: 257206
Posts: 152
Thanks: 127
UpVotes: 157
Registered: 16y 59d





Last Seen: 14d 21h
The User is Offline
RE: pointers?
Oct 28, 2013 - 16:12:45 (10y 172d) Google/translate2Thank You!2Good Post!1Bad Post! link
You did something wrong along the way Drool
Global Rank: 659
Totalscore: 39082
Posts: 18
Thanks: 16
UpVotes: 23
Registered: 6y 170d
FranzT`s Avatar
Last Seen: 14d 12h
The User is Offline
RE: pointers?
Sep 02, 2018 - 09:59:10 (5y 227d) Google/translate2Thank You!1Good Post!1Bad Post! link
I did it the hard way: decompile everything -- the program is small enough to be done manually -- then analyze the code.
It was fun.
Global Rank: 7339
Totalscore: 1320
Posts: 3
Thanks: 3
UpVotes: 3
Registered: 4y 283d
Last Seen: 279d 20h
The User is Offline
RE: pointers?
Aug 10, 2019 - 12:53:21 (4y 250d) Google/translate1Thank You!1Good Post!0Bad Post! link
read http://www.exploit-db.com/papers/13234/ , use ida + gdb +python
Redknee, ckclark, tunelko, silenttrack, n0tHappy, stormsurfer, quangntenemy, TheHiveMind, Z, balicocat, Ge0, samuraiblanco, arraez, jcquinterov, hophuocthinh, alfamen2, burhanudinn123, Ben_Dover, stephanduran89, braddie0, JanLitwin17, SwolloW, dangarbri have subscribed to this thread and receive emails on new posts.
1 people are watching the thread at the moment.
This thread has been viewed 13394 times.