picoCTF - Reverse Engineering - patchme.py
Reverse Engineering - patchme.py - writeup description Can you get the flag? Run this Python program in the same directory as this encrypted flag. writeup Let’s take a look at the encrypted flag… 1 2 3 4 5 cat flag.txt.enc CR1@ UYX+ 6UB P\E That does not help. Let’s look at the python code… Mh that is peculiar: 1 2 3 4 if( user_pw == "ak98" + \ "-=90" + \ "adfjhgj321" + \ "sleuth9000") Let’s fire up bpython and input this code:picoCTF - Reverse Engineering - file-run2
Reverse Engineering - file-run2 - writeup description Another program, but this time, it seems to want some input. What happens if you try to run it on the command line with input “Hello!”? Download the program here. writeup by simply executing the file with ./run we get 1 Run this file with only one argument. if I try to supply one argument like this: ./run 1 I get 1 Won't you say 'Hello!picoCTF - Reverse Engineering - file-run1
Reverse Engineering - file-run1 - writeup description A program has been provided to you, what happens if you try to run it on the command line? Download the program here. https://artifacts.picoctf.net/c/314/run writeup by simply running the program we get the flag: 1 The flag is: picoCTF{U51N6_Y0Ur_F1r57_F113_ac61264e}picoCTF - Reverse Engineering - bloat.py
Reverse Engineering - bloat.py - writeup description Can you get the flag? Run this Python program in the same directory as this encrypted flag. writeup So let’s download the python program and the encrypted flag first! 1 wget https://artifacts.picoctf.net/c/434/bloat.flag.py 1 wget https://artifacts.picoctf.net/c/434/flag.txt.enc Let’s make a copy of the python program and try to fix it using debugging in bpython! 1 cp bloat.flag.py flag.py After a lot of debugging and reverse engineering using bpython I found the flag!