[Reversing] Exatlon
in Challenges
Sign In to comment.
Quick Links
Categories
- 3.7K All Categories
- 2.7K Discussion
- 1.3K Machines
- 492 Challenges
- 26 RastaLabs
- 142 Exploits
- 41 Programming
- 635 Off-topic
- 1.1K Tutorials
- 569 Writeups
- 96 Video Tutorials
- 176 Tools
- 217 Other
- 29 Links
- 29 News
Comments
I used IDA too, If you follow the input you can understand what's going on, but maybe there are easier way to achieve the flag
Yeah I'm having a bit of trouble as well, could use a nudge...
why the hell it's not working!
** Life is simple, we make it complex just out of curiosity **
yeah i found what i believe is a possible password but it's a long string and the program won't accept it as a password. i've also checked for bitwise operations to see if it and's or xor's the string but i just confused myself even more. any nudges would be appreciated. thx
Type your comment> @rshackleford85 said:
same here!
** Life is simple, we make it complex just out of curiosity **
Type your comment> @rshackleford85 said:
You are in the right direction. I would suggest to enter any character as the user input (for instance a 'Z') and see how the program transforms such value and compares it with the string that you have found. Try the same with a 'Y', and so on until you find the pattern.
EDIT : Solved it ! However, I didn't understand the goal of this chall... I've full guessed how to get the flag
load this into IDA / Ghidra. Don't read the decompilation.. carefully find the responsible function. I did everything manually like the guys mentionned above but when you understand the code it's super easy to convert/script it
Do you believe it's possible to complete this challenge with GDB? Mainly since I have no clue how IDA works
I think yes, if you can go thru mangled names and read an assembler.
@InsomniacOG said:
To find out what is going on, yes, GDB might be of help. But in order to not get lost, it is advised to first find out what part of the program you want to investigate with GDB. If IDA is too confusing for you, I'd suggest trying Ghidra. It is pretty intuitive to use, and also has a pseudo-c decompiler built in
GREM | OSCE | GASF | eJPT
Type your comment> @rshackleford85 said:
I'm stuck here as well, i think i have a possible password but the program wont accept it. If anyone who's using r2 could help me out I'd appreciate!
i found set of numbers that i think it's possibly password but its not working and i have no idea to go next. T T
Dear Santa,
I wish to be a good reverser, so maybe I will stop looking the screen with a retarded face for hours.
davihack
Type your comment> @davihack said:
I do the same thing....
Got the flag, but only by extrapolating rather than actually reversing this thing. If anyone could give me a breakdown of that one function, I'd much appreciate it!
After solving the challenge, I can say that it can be solved without debugging or decompiling the code; of course, I did some analysis using Cutter/Radare2 initially but I did not completely reverse the code.
can I ask someone to give me a helping hand with this. more like i want to understand it.
I have loaded it into ghidra and can see some data but don't know how to manipulate it
i got a long number string. i am stuck here. can anyone tell me if im in the right direction ?
okay. i was able to solve this.
this was pretty interesting one.
pm for a nudge.
Ok actually was really easy!!
Guys be careful this binary is compressed take a look to
stringsand google!The "hard" part is decoding the password!
I solve it
pm for a nudge
can I ask someone to hold my hand through this one. using IDA, I have found a possible long string but thats about it. Reversing is something new to me so getting confused very easily
Type your comment> @m0tic said:
This was the nudge I needed. Thanks
is it had to do with ul***g ?
I was able to solve it by reversing to narrow down to the actual functions, then used Python with GDB scripts. (May the brute force be with you)
Just out of curiosity, is it U**** compressed? I feel it's not, but cannot confirm.
This box is insane.
Discord: k4wld#5627
Type your comment> @k4wld said:
I agree
really cool challenge
eline sağlık OctopusTR
You can pm me on discord sh4d0wless#6154
Could use a nudge as well. Spent hours in ghidra finding tons of strings, none that make much sense. Found nothing in the functions either.