View Full Version : What is this crackme's difficulty?

June 26th, 2007, 05:01
I'm wondering how you're defining this crackme?
very easy? easy? not really easy? hard? very hard?

i want to know if i can use my obfuscation method in real releases...

basicaly, that crackme take 1 parameter... the passphrase:
crakme.exe PASSPHRASE ...

should display a congratulation message when the pass is correct

It's pretty easy to patch to display the congrats message...but it's not the point... i didn't protect my crackme to avoid that patch.
I just want to know in how many time you're able to find the correct pass



June 26th, 2007, 06:59
Hmm, quite easy. Difficulty 3/10 I think. I found the second reference to argv with IDA, then used a hidden Olly to hwbp the call. IDA told me it was a strcmp function, so I just read the passphrase from the stack.

Solution base64: Y3JhY2ttZSAidGhpcyBpcyB0aGUgZnVja2luZyBwYXNzcGhyYXNlIg==

June 26th, 2007, 07:05
yes... wasn't really smart to use strcmp(argv[1], passphrase)... )

thank you for your awnser

August 21st, 2007, 03:15
Is that one a bit more difficult that the previous?
Thanks for your time guys!