DEFCON 2016 CTF Quals pwnable banker writeup

Categories CTF

Banker is a big statically linked executable:

After the pain reversing the elf which contains 965 functions for about 8 hours(too slow)… I am clear what the server is doing and two vuls are found: Continue reading “DEFCON 2016 CTF Quals pwnable banker writeup”

0ctf 2016 writeup for VM challenge(reverse 7 pts)

Categories CTF

This is a write-up for the 0ctf 2016 quals “VM” reverse challenge worth 7 points.

The main process of solving this challenge contains 3 phase:

  1. Find the location of input check algorithm
  2. Reverse input transform algorithm
  3. profit

I wasted much life in the second phase. This function is flattend by a big switch structure and contains a lot of goto instruction. It’s hard to reverse such a function statically, So we use dynamic analysis and black box analysis. we make a few assumptions on the transform pattern. We can reverse the algorithm without understanding  assembly or decompiled code.

Continue reading “0ctf 2016 writeup for VM challenge(reverse 7 pts)”