There are only two functions. In start read 400 bytes then check in 4 byte increments.
Move 4 byte to eax, and ecx is index of loop. Then jump to some address by ecx and address table.
The length of the table is 100.
Each address have long-long codes and at last they jump to compare code.
I copy the 100 parts code and make python code to parse it.
yeah it is terrible code but work. :D
And write inverse function. It's just Add -> Sub, Sub -> Add, Inc <-> dec ..
Then call it!
'CTF Writeup' 카테고리의 다른 글
| hdrive - tar symbolic link attack (1) | 2023.11.27 |
|---|---|
| safe-compiler / C jail Trick (1) | 2023.11.27 |
| 2023 hspace CTF (0) | 2023.09.01 |
| 2023 Bauhinia CTF - Very Simplified RPG (1) | 2023.08.21 |
| 2023 SSTF - Dusty Code (0) | 2023.08.21 |