Listen

Medium challenge

files included:

8KB

archive

Program behaviour:

$ ./listen
Listen to this!
".ILnsI,[:um0~ha0Zd`sYw~}xy4C9B[QqkR%[nP.$0nrV2L19pPNa@~R&^ec/:&_aKCBS5rif)@R}BpLO|J4JI-y?|>3VT@52h~R'>d0>4V,!OD3X^h{e%t]7/$KQ#]bZE|ZovHOdILlh0h8|l=i$wX_,sQ<9_%43JRrsjafe7E*aR_$[qW'w_(~:@{eJ4{]|fFfMR+e~PEW[~vxNe^JL+}'W(9$~RafmDvt=kTny^++isNnPg1]!i0:$Ag]@6^C

the program throws up some random stuff and takes an input (possibly the flag)

Static analysis:

the program:

generates the 'noise'
takes in our input
compares our input character-by-character to the flag

Solving approach:

now here comes the tedious part, we now have to cycle through a debugger (gdb) and set breakpoints at the comparison of characters, and check the register its comparing (RAX) for the hex values that is correct

for every character that we get from RAX, we suffix that into our existing input, slowly but surely correcting it to the flag that we need

after repeating this a few more times, we get the final hex values

666C61677B315f7233614c4c795f6c3076455f52346e44306d5f5448694e6773217d

which then corresponds to:

flag{1_r3aLLy_l0vE_R4nD0m_THiNgs!}

gottem

flag: flag{1_r3aLLy_l0vE_R4nD0m_THiNgs!}

PreviousComparing Strings NextOSINT

Last updated 2 years ago

hashtagStatic analysis:

hashtagSolving approach:

Static analysis:

Solving approach: