View previous topic :: View next topic |
Author |
Message |
HolyBlah Master Cheater Reputation: 2
Joined: 24 Aug 2007 Posts: 446
|
Posted: Sun Jan 06, 2008 11:30 am Post subject: Crack me (delphi) |
|
|
Here it is xD:
Last edited by HolyBlah on Sun Jan 06, 2008 1:45 pm; edited 1 time in total |
|
Back to top |
|
|
haha01haha01 Grandmaster Cheater Supreme Reputation: 0
Joined: 15 Jun 2007 Posts: 1233 Location: http://www.SaviourFagFails.com/
|
Posted: Sun Jan 06, 2008 12:20 pm Post subject: |
|
|
>.>
the correct pass changes according to the pass i enter... does this even crackable?
|
|
Back to top |
|
|
HolyBlah Master Cheater Reputation: 2
Joined: 24 Aug 2007 Posts: 446
|
Posted: Sun Jan 06, 2008 12:28 pm Post subject: |
|
|
Sure it is.
Just find the right one.
If you want a hint just say.
|
|
Back to top |
|
|
haha01haha01 Grandmaster Cheater Supreme Reputation: 0
Joined: 15 Jun 2007 Posts: 1233 Location: http://www.SaviourFagFails.com/
|
Posted: Sun Jan 06, 2008 12:32 pm Post subject: |
|
|
lol.
i see the compare, and i know exactly how it work. it calculate the pass using binary. i see where the entered pass is stored, and where the right one is. what i DONT understand is, why when i copy the correct pass (after turning it into decimal) and enter it in the crackme, there is a diff pass in the correct pass zone...
|
|
Back to top |
|
|
HolyBlah Master Cheater Reputation: 2
Joined: 24 Aug 2007 Posts: 446
|
Posted: Sun Jan 06, 2008 12:35 pm Post subject: |
|
|
It is a different way to convert to binary...
|
|
Back to top |
|
|
haha01haha01 Grandmaster Cheater Supreme Reputation: 0
Joined: 15 Jun 2007 Posts: 1233 Location: http://www.SaviourFagFails.com/
|
Posted: Sun Jan 06, 2008 12:37 pm Post subject: |
|
|
>.>
|
|
Back to top |
|
|
HolyBlah Master Cheater Reputation: 2
Joined: 24 Aug 2007 Posts: 446
|
Posted: Sun Jan 06, 2008 12:38 pm Post subject: |
|
|
Funny, huh?
|
|
Back to top |
|
|
DeletedUser14087 I post too much Reputation: 2
Joined: 21 Jun 2006 Posts: 3069
|
Posted: Sun Jan 06, 2008 2:03 pm Post subject: |
|
|
i found this:
Code: | Stack SS:[0013FFAC]=00F31B58, (ASCII "11001110100111110000001")
EDX=00F2A670
Stack SS:[0013FFA8]=00F31BA8, (ASCII "10000001001000110110001")
EDX=00000001
EDX=00F31B58, (ASCII "11001110100111110000001")
0040932C=crackme_.0040932C (ASCII "Insert Password(numbers): ")
EDX=00F31BA8, (ASCII "10000001001000110110001") |
the password is in binary, should i be in decimal ?
i'll continue 2morrow
pretty hard and fun
|
|
Back to top |
|
|
atom0s Moderator Reputation: 198
Joined: 25 Jan 2006 Posts: 8516 Location: 127.0.0.1
|
Posted: Sun Jan 06, 2008 4:23 pm Post subject: |
|
|
Not sure if this was a joke type thing, but it seems like this has an error in the code. Working password: 9
_________________
- Retired. |
|
Back to top |
|
|
Symbol I'm a spammer Reputation: 0
Joined: 18 Apr 2007 Posts: 5094 Location: Israel.
|
Posted: Mon Jan 07, 2008 2:53 am Post subject: |
|
|
Code: | 00409253 . 83FB 08 CMP EBX,8
00409256 . 7F 1E JG SHORT 00409276
00409258 . A1 F0A94000 MOV EAX,DWORD PTR DS:[40A9F0]
0040925D . BA 5C934000 MOV EDX,0040935C ; ASCII "Wrong. Try again."
00409262 . E8 1DB8FFFF CALL 00404A84
00409267 . E8 50A2FFFF CALL 004034BC
0040926C . E8 6799FFFF CALL 00402BD8
00409271 .^ E9 EFFEFFFF JMP 00409165
00409276 > A1 20E24000 MOV EAX,DWORD PTR DS:[40E220]
0040927B . 8B15 24E24000 MOV EDX,DWORD PTR DS:[40E224]
00409281 . E8 AAB6FFFF CALL 00404930
00409286 . 75 1B JNZ SHORT 004092A3
00409288 . A1 F0A94000 MOV EAX,DWORD PTR DS:[40A9F0]
0040928D . BA 78934000 MOV EDX,00409378 ; ASCII "Gratz. you cracked me. =]"
00409292 . E8 EDB7FFFF CALL 00404A84
00409297 . E8 20A2FFFF CALL 004034BC
0040929C . E8 3799FFFF CALL 00402BD8
004092A1 . EB 1E JMP SHORT 004092C1
004092A3 > A1 F0A94000 MOV EAX,DWORD PTR DS:[40A9F0]
004092A8 . BA 5C934000 MOV EDX,0040935C ; ASCII "Wrong. Try again." |
Here we need a number larger than 8.
But here, at the end of the call to 00404930:
Code: | 00404933 |. 89C6 MOV ESI,EAX ; Eax = 8 Digits binary password. (Changes acoording to the real password)
00404935 |. 89D7 MOV EDI,EDX ; EDX = Real password. (binary) |
Remember the real password is always 8 digits.
Code: | 004049BA |. 38D9 CMP CL,BL ; if (real password[0] == 0)
004049BC |. 75 10 JNZ SHORT 004049CE
004049BE |. 38FD CMP CH,BH ; and if (real password[1] == 0)
004049C0 |. 75 0C JNZ SHORT 004049CE
004049C2 |. C1E9 10 SHR ECX,10
004049C5 |. C1EB 10 SHR EBX,10
004049C8 |. 38D9 CMP CL,BL ; and if (real password[2] == 0)
004049CA |. 75 02 JNZ SHORT 004049CE
004049CC |. 38FD CMP CH,BH ; and if (real password[3] == 0) |
Doesn't really tell the pass yet, because the binary password is probably encrypted, but every number was bigger than the other, and then when I saw the compares of the first 4 digits I thought trying smallest numbers we can. (To not make one of the first 4 digits to 1. if its 8 or smaller we never called 00404930 and if we entered a larger number than 9 one of the first 4 digits would turn 1)
I didn't really checked whats before the comparing the password > 8 but the encryption is probably there and that way you can find the pass. (or atleast the encryption and will help you find the pass)
Last edited by Symbol on Mon Jan 07, 2008 8:03 am; edited 1 time in total |
|
Back to top |
|
|
haha01haha01 Grandmaster Cheater Supreme Reputation: 0
Joined: 15 Jun 2007 Posts: 1233 Location: http://www.SaviourFagFails.com/
|
Posted: Mon Jan 07, 2008 6:38 am Post subject: |
|
|
wow...
the pass 9 really is working....
please tell me how u found it !!
|
|
Back to top |
|
|
HolyBlah Master Cheater Reputation: 2
Joined: 24 Aug 2007 Posts: 446
|
Posted: Mon Jan 07, 2008 6:46 am Post subject: |
|
|
YAY to Wiccaan and Symbol
I convert the pass into binary and BCD (Binary Code Decimal) and then compare them.
BCD and binary won't be the same if the number is above 9 or lower then 0, so I gave you only one pass - 9.
|
|
Back to top |
|
|
Symbol I'm a spammer Reputation: 0
Joined: 18 Apr 2007 Posts: 5094 Location: Israel.
|
Posted: Mon Jan 07, 2008 8:02 am Post subject: |
|
|
Hehe, smart. I never heard of BCD, but it explains why the binary value was diffrent only when its 10+.
haha01, I expected you to find the password before me.
I explained in my post how I found it.
|
|
Back to top |
|
|
Asian_Sucks How do I cheat? Reputation: 0
Joined: 07 Jan 2008 Posts: 8 Location: UAE, Iraq, Iran
|
Posted: Mon Jan 07, 2008 8:11 am Post subject: |
|
|
this crackme is easy i already cracked it
|
|
Back to top |
|
|
HolyBlah Master Cheater Reputation: 2
Joined: 24 Aug 2007 Posts: 446
|
Posted: Mon Jan 07, 2008 8:44 am Post subject: |
|
|
[quote="Symbol"]Hehe, smart. I never heard of BCD, but it explains why the binary value was diffrent only when its 10+. [quote]You are not the only one who never heard about BCD because it made for engineers.
Asian_Sucks, YAY for you too.
P.S.
I hate grammer.
|
|
Back to top |
|
|
|