本文介绍了如何使用Wireshark捕获并解析网络流量包以获取密码,以及利用IDA进行逆向工程解决算法谜题。在Wireshark中搜索未果后,通过对提示的分析转而寻找'password',成功找到答案。同时,通过IDA分析了一个需要满足特定输入条件的算法,并编写Python脚本来生成符合条件的字符串,从而解密出flag。
preface
Today, I don’t have enough time to study .
There are so many unnecessary lessons , at least for me.
So I decide to sacrifice my game time to do these problems.
Let’s go!!!
MISC
Title : wireshark-1
source : XCTF
Hint : 黑客通过wireshark抓到管理员登陆网站的一段流量包(管理员的密码即是答案)。 flag提交形式为flag{XXXX}
File : click me
Obviously , we need to use the wireshark to solve this problems.
open it:
Search for string " flag " but nothing had finded .
Up to the hint , search for the " password ":
flag{ffb7567a1d4f4abdffdb54e022f8facd}
flag get!
RE
Title : logmein
Source : XCTF
Hint : 菜鸡开始接触一些基本的算法逆向了
File : Click me
Opening it with IDA , Shift + F12 to see the string:
Find the main function:
Sort it out , I need input a string which is need meet these requirements:
1、It’s length need equal to v8 : \ "AL_RT^L*.?+6/46 is 18
2、s[i] == the char of the sum of V7 plus I and V6 and XOR with V8 .
Based on the above requirements , we can write a python script:
v7 = 'harambe'
v8 = ':\"AL_RT^L*.?+6/46'
flag = ''
for i in range(len(v8)):
c = ord(v7[i % 7]) ^ ord(v8[i])
flag += chr(c)
print(flag)
flag get!!!
1486
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
