Page 1 of 3 123 LastLast
Results 1 to 15 of 33

Thread: Gr. crackme: >>KongFuZi<<

  1. #1
    Musician member evaluator's Avatar
    Join Date
    Sep 2001
    Posts
    1,479
    Blog Entries
    1

    Gr. crackme: >>KongFuZi<<

    woah!
    this 2 day i force myself to burn-out this crackme.
    Idea came quite time ago, but i refused to show it, bcoz of bUstard-brute-force.
    thusly, yesterday i build VM-like code, which IMHO prevents brute-force.

    i will put it also on CrackmesDe.

    ya.. also: lets temporary no discuss it.
    it is personal challenge.
    if quite time will unresolved, then start discussion. OK?
    Attached Files Attached Files

  2. #2
    <script>alert(0)</script> disavowed's Avatar
    Join Date
    Apr 2002
    Posts
    1,281
    I've solved it
    Sending my solution to evaluator...

  3. #3
    andrewl
    Guest

    Thumbs up

    interesting work as usual ... this file does no execution into KEY file region (respecting intended DEP)

    [Attachment deleted at request of evaluator. JMI]
    Last edited by JMI; June 9th, 2010 at 03:42. Reason: evaluator requested deletion of attachment.
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  4. #4
    Musician member evaluator's Avatar
    Join Date
    Sep 2001
    Posts
    1,479
    Blog Entries
    1
    disavowed, your solution REJECTED :P

    andrewl, you are near..
    but, can't you all read DAMN Source!!??

  5. #5
    Musician member evaluator's Avatar
    Join Date
    Sep 2001
    Posts
    1,479
    Blog Entries
    1
    andrewl, you should not post it open. now others can EAT your finding!
    moderator, please, hurry & remove attatchment!

  6. #6
    andrewl
    Guest
    yea yea we can read the source...

    Code:
    ; KongFuZi said: "The hardest thing of all is to find a black cat in a dark room, especially if there is no cat."
    ; Lets break this!
    ; THINK, how to burn non existent string for MsgBox:
    ; "You have found a Black Cat in a Dark Room, although the cat was not even there!"
    ; Don't fight with crackme, main challenge is for your fUntasy :)
    ; after that, you will solve VM-like puzzle with KEY-file. (which is designed against BruteForce)
    ; PS. this code respects DEP.
    attached key file could "burn" any non-existent string for MessageBoxA(), yet it is not solved? why don't you clearly state goal of crackme then?

    and if key file data should be read only, why not make your crackme ENFORCE this? GetSystemDEPPolicy/GetProcessDEPPolicy/SetProcessDEPPolicy
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  7. #7
    Musician member evaluator's Avatar
    Join Date
    Sep 2001
    Posts
    1,479
    Blog Entries
    1
    1. u mean, below is not clear?!

    ; THINK, how to burn non existent string for MsgBox:
    ; "You have found a Black Cat in a Dark Room, although the cat was not even there!"

    2. DEP-policy works mostly on appropriate PCs. So solver must agree with statement.
    (other way was to put range check before any Jump.)

    3. you are on correct way, don't waste time, or other will use your finding.

    anything unclear?

  8. #8
    <script>alert(0)</script> disavowed's Avatar
    Join Date
    Apr 2002
    Posts
    1,281
    No idea why you are rejecting my solution. It works perfectly on Windows XP, Windows Vista, and Windows 7, 32-bit and 64-bit OS's, all with DEP set to its default value for the system and with NX enabled in the BIOS.

  9. #9
    Musician member evaluator's Avatar
    Join Date
    Sep 2001
    Posts
    1,479
    Blog Entries
    1
    bcoz DEP can be changed by user in any ways.. then referring to DEP became meaningless.
    thus, you must agree in strongest way: executable pages are only marked so.
    or in other words, KEYfile data not means for executing, but for adjustment only.
    (or in other wierd words: this crackme is not 1st-level, damn..)

  10. #10
    andrewl
    Guest
    Quote Originally Posted by evaluator View Post
    1. u mean, below is not clear?!

    ; THINK, how to burn non existent string for MsgBox:
    ; "You have found a Black Cat in a Dark Room, although the cat was not even there!"

    2. DEP-policy works mostly on appropriate PCs. So solver must agree with statement.
    (other way was to put range check before any Jump.)

    3. you are on correct way, don't waste time, or other will use your finding.

    anything unclear?
    Let me ask you this way: what should the crackmes.de moderators verify before approving someone's solution to your crackme?
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  11. #11
    Musician member evaluator's Avatar
    Join Date
    Sep 2001
    Posts
    1,479
    Blog Entries
    1
    with this question, do you mean - you give up on this crackme?!

  12. #12
    <script>alert(0)</script> disavowed's Avatar
    Join Date
    Apr 2002
    Posts
    1,281
    That's ridiculous. If you wanted DEP to be enforced, you should have used SetProcessDEPPolicy(...).
    I still consider my KEY file solution valid.

  13. #13
    Musician member evaluator's Avatar
    Join Date
    Sep 2001
    Posts
    1,479
    Blog Entries
    1
    bwah!
    Nobody can ruin your happyness..

    BUT, from my side, "I still consider" your solution INvalid.

  14. #14
    <script>alert(0)</script> disavowed's Avatar
    Join Date
    Apr 2002
    Posts
    1,281
    Looks like we'll have to agree to disagree then

  15. #15

    Re:

    Hei guys,

    I made a key file with around 90% of the bytes empty and unused
    it doesn't execute code inside the keyfile, vm only

    [edit]
    je==evaluator!
    didn't know that :O
    well I'll send my key to you

    smk

Similar Threads

  1. Need help with crackme
    By lucid_dream in forum The Newbie Forum
    Replies: 4
    Last Post: January 12th, 2005, 04:32
  2. help with this crackme
    By chitech in forum Mini Project Area
    Replies: 2
    Last Post: August 28th, 2002, 11:41
  3. try this crackme
    By SaNGa in forum Mini Project Area
    Replies: 11
    Last Post: June 4th, 2002, 20:13
  4. A little crackme
    By raven58 in forum Advanced Reversing and Programming
    Replies: 1
    Last Post: February 14th, 2001, 18:19

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •