View previous topic :: View next topic |
Author |
Message |
Noz3001 I'm a spammer Reputation: 26
Joined: 29 May 2006 Posts: 6220 Location: /dev/null
|
Posted: Wed Sep 17, 2008 3:37 pm Post subject: "The Game" |
|
|
The aim of this "crackme" is simple, there's a value which is randomized everytime you press enter. Your goal is to set this value to 5000 to win. This means that patching jumps to make it say you've won don't count but you can do that if you really cant figure out how to set the value.
I was inspired by this thread: http://forum.cheatengine.org/viewtopic.php?t=289549 so you might want to check it out.
What i'm really looking for is information and tips which will help me make the program even more secure.
Try it out =D.
Last edited by Noz3001 on Thu Sep 18, 2008 2:07 pm; edited 2 times in total |
|
Back to top |
|
|
AndrewMan Grandmaster Cheater Supreme Reputation: 0
Joined: 01 Aug 2007 Posts: 1257
|
Posted: Wed Sep 17, 2008 6:22 pm Post subject: |
|
|
I dont get it.
I pressed enter, it randomizes a number, than what do I do?
_________________
|
|
Back to top |
|
|
Noz3001 I'm a spammer Reputation: 26
Joined: 29 May 2006 Posts: 6220 Location: /dev/null
|
Posted: Thu Sep 18, 2008 2:02 am Post subject: |
|
|
AndrewMan wrote: | I dont get it.
I pressed enter, it randomizes a number, than what do I do? |
You're supposed to set it to 5000.
|
|
Back to top |
|
|
DoomsDay Grandmaster Cheater Reputation: 0
Joined: 06 Jan 2007 Posts: 768 Location: %HomePath%
|
Posted: Thu Sep 18, 2008 3:47 am Post subject: |
|
|
This crackme is well written...
It took me an hour or so to reach the decryption proc manually(I began by setting a breakpoint on WriteFile), but then I just had to monitor it.
The first call to it will check if the value is already 5000, else a random number will be generated, and then checked to zero out. If it won't - it will be encrypted by the function that follows the decryption routine (location-wise).
I won't reveal my solution this time, enjoy yourselves
EDIT: Security tips:- Don't use the same stack location twice - it's a high-risk security flaw
- Use exception handlers to trigger some events - cause an exception in purpose to jump out of a code block (it could be a bitch to analyze)
Last edited by DoomsDay on Thu Sep 18, 2008 5:15 am; edited 2 times in total |
|
Back to top |
|
|
Noz3001 I'm a spammer Reputation: 26
Joined: 29 May 2006 Posts: 6220 Location: /dev/null
|
Posted: Thu Sep 18, 2008 3:52 am Post subject: |
|
|
Nice one DoomsDay, you're the first person to beat it. Oohh, can't wait until i've finished the next version =].
|
|
Back to top |
|
|
SunBeam I post too much Reputation: 65
Joined: 25 Feb 2005 Posts: 4022 Location: Romania
|
Posted: Thu Sep 18, 2008 5:00 am Post subject: |
|
|
Should I even bother?
|
|
Back to top |
|
|
DoomsDay Grandmaster Cheater Reputation: 0
Joined: 06 Jan 2007 Posts: 768 Location: %HomePath%
|
Posted: Thu Sep 18, 2008 5:08 am Post subject: |
|
|
If noz is going to release an enhanced version, I'd say yes
|
|
Back to top |
|
|
Zand Master Cheater Reputation: 0
Joined: 21 Jul 2006 Posts: 424
|
Posted: Thu Sep 18, 2008 5:19 am Post subject: |
|
|
40245A = mov eax, 0x1388
401ff8 = NOP
|
|
Back to top |
|
|
SunBeam I post too much Reputation: 65
Joined: 25 Feb 2005 Posts: 4022 Location: Romania
|
Posted: Thu Sep 18, 2008 5:31 am Post subject: |
|
|
^ No patching, bithc
|
|
Back to top |
|
|
Zand Master Cheater Reputation: 0
Joined: 21 Jul 2006 Posts: 424
|
Posted: Thu Sep 18, 2008 5:46 am Post subject: |
|
|
I didn't patch no jumps....
|
|
Back to top |
|
|
DoomsDay Grandmaster Cheater Reputation: 0
Joined: 06 Jan 2007 Posts: 768 Location: %HomePath%
|
Posted: Thu Sep 18, 2008 5:54 am Post subject: |
|
|
You didn't patch the correct addresses either...
|
|
Back to top |
|
|
Zand Master Cheater Reputation: 0
Joined: 21 Jul 2006 Posts: 424
|
Posted: Thu Sep 18, 2008 5:58 am Post subject: |
|
|
I did.
|
|
Back to top |
|
|
Noz3001 I'm a spammer Reputation: 26
Joined: 29 May 2006 Posts: 6220 Location: /dev/null
|
Posted: Thu Sep 18, 2008 2:07 pm Post subject: |
|
|
Slightly updated version uploaded. Have a go =].
|
|
Back to top |
|
|
Cryoma Member of the Year Reputation: 198
Joined: 14 Jan 2009 Posts: 1819
|
Posted: Thu Sep 18, 2008 2:18 pm Post subject: |
|
|
Done.
|
|
Back to top |
|
|
Noz3001 I'm a spammer Reputation: 26
Joined: 29 May 2006 Posts: 6220 Location: /dev/null
|
Posted: Thu Sep 18, 2008 3:02 pm Post subject: |
|
|
Any more info?
|
|
Back to top |
|
|
|