Humour In Verse

From The warped mind of Emac

Wednesday, January 17, 2024

ASIS CTF Quals 2015 - Sawthis Writeup - Srand Remote Prediction


The remote service ask for a name, if you send more than 64 bytes, a memory leak happens.
The buffer next to the name's is the first random value used to init the srand()


If we get this value, and set our local srand([leaked] ^ [luckyNumber]) we will be able to predict the following randoms and win the game, but we have to see few details more ;)

The function used to read the input until the byte \n appears, but also up to 64 bytes, if we trigger this second condition there is not 0x00 and the print shows the random buffer :)

The nickname buffer:



The seed buffer:



So here it is clear, but let's see that the random values are computed with several gpu instructions which are decompiled incorrectly:







We tried to predict the random and aply the gpu divisions without luck :(



There was a missing detail in this predcitor, but there are always other creative ways to do the things.
We use the local software as a predictor, we inject the leaked seed on the local binary of the remote server and got a perfect syncronization, predicting the remote random values:




The process is a bit ugly becouse we combined automated process of leak exctraction and socket interactive mode, with the manual gdb macro.




The macro:



















Related word


  1. Hack Tools
  2. Hacking Tools Mac
  3. Hacker Tools 2020
  4. Pentest Tools List
  5. Hack Tools For Windows
  6. Hacking Tools Name
  7. Hacking Tools Usb
  8. Pentest Tools Windows
  9. Hacking Tools And Software
  10. Kik Hack Tools
  11. Beginner Hacker Tools
  12. Hacking Tools For Beginners
  13. Hacking Tools Windows
  14. Hacker Tools Apk Download
  15. Hacking Tools Usb
  16. Nsa Hacker Tools
  17. Hacker Tools Software
  18. Kik Hack Tools
  19. Hack Tools For Pc
  20. Pentest Tools Android
  21. Pentest Tools Port Scanner
  22. Hacker Tools Hardware
  23. Hacker Security Tools
  24. How To Install Pentest Tools In Ubuntu
  25. Hacker Tool Kit
  26. Usb Pentest Tools
  27. Hack Apps
  28. Hacker Security Tools
  29. Hack Tools For Pc
  30. Pentest Tools For Windows
  31. Pentest Tools Website Vulnerability
  32. Pentest Tools Url Fuzzer
  33. Hacker Tools Github
  34. Hack Tools For Windows
  35. Hack Tools For Pc
  36. Hack Tools For Windows
  37. Game Hacking
  38. Game Hacking
  39. Hacking Tools Github
  40. Hacking Apps
  41. Termux Hacking Tools 2019
  42. Nsa Hack Tools
  43. Hack Tool Apk No Root
  44. Pentest Tools Kali Linux
  45. Hacking Tools For Windows Free Download
  46. Hacker Tools Online
  47. Hack Tool Apk
  48. Hack Tool Apk
  49. Pentest Tools Alternative
  50. How To Hack
  51. Pentest Tools For Windows
  52. Pentest Tools Website Vulnerability
  53. Pentest Automation Tools
  54. Termux Hacking Tools 2019
  55. Hack Tools For Windows
  56. Hack Tools For Mac
  57. Hacker Tools
  58. Hacker Tools 2019
  59. Hacking Tools And Software
  60. Nsa Hacker Tools
  61. Hacking Tools Usb
  62. Pentest Tools For Mac
  63. Hacker Tools For Windows
  64. Pentest Tools For Windows
  65. Pentest Tools Online
  66. Black Hat Hacker Tools
  67. Hacker Hardware Tools
  68. Hacker Tools 2020
  69. Pentest Box Tools Download
  70. Hack Tools For Games
  71. Hacker Tools List
  72. Hack Tools Mac
  73. Pentest Tools Download
  74. Hack Tools Mac
  75. Pentest Tools For Windows
  76. Pentest Tools Bluekeep
  77. Computer Hacker
  78. Best Hacking Tools 2020
  79. Hacking App
  80. Underground Hacker Sites
  81. Pentest Tools For Mac
  82. Hacker Tools Free Download
  83. Physical Pentest Tools
  84. Tools Used For Hacking
  85. Best Hacking Tools 2019
  86. Pentest Tools Find Subdomains
  87. Easy Hack Tools
  88. Hacker Tools Apk
  89. Hacking Tools
  90. Hacking Tools Hardware
  91. Pentest Automation Tools
  92. Pentest Tools Website
  93. Hacker Tools List
  94. Pentest Tools Website Vulnerability
  95. Best Pentesting Tools 2018
  96. Hacker
  97. Pentest Tools For Ubuntu
  98. How To Make Hacking Tools
  99. Hackers Toolbox
  100. Hacking Tools Windows 10
  101. Hack Tools For Mac
  102. Game Hacking
  103. Hacker Tools Apk Download
  104. Hacking Tools Hardware
  105. Hacker Tools Free Download
  106. How To Hack
  107. New Hacker Tools
  108. Tools 4 Hack
  109. Hack Tools Github
  110. Hacking Tools Windows
  111. Hacking Apps
  112. Pentest Tools Android
  113. Hacker Tools 2019
  114. Pentest Tools Kali Linux
  115. New Hacker Tools
  116. Computer Hacker
  117. Top Pentest Tools
  118. Pentest Tools For Android
  119. Tools Used For Hacking
  120. Hacker Tools 2020
  121. Hacking Tools
  122. Easy Hack Tools
  123. Pentest Tools Website Vulnerability
  124. Nsa Hack Tools Download
  125. Hacker Tools Mac
  126. Hack Tools For Pc
  127. Growth Hacker Tools
  128. Best Pentesting Tools 2018
  129. Beginner Hacker Tools
  130. Nsa Hack Tools
  131. Hacker
  132. Pentest Tools List
  133. New Hack Tools
  134. Best Hacking Tools 2019
  135. Pentest Tools
  136. Underground Hacker Sites
  137. Hacking Tools Free Download
  138. Pentest Tools Tcp Port Scanner
  139. Hackrf Tools
  140. Github Hacking Tools
  141. Pentest Tools Linux
  142. Github Hacking Tools
  143. Hacker
  144. Beginner Hacker Tools
  145. Pentest Tools Apk
  146. Easy Hack Tools
  147. Hacker Tools Apk Download
  148. Github Hacking Tools
  149. Hacker
  150. Nsa Hack Tools
  151. Pentest Tools Android
  152. Hacking Tools For Mac
  153. Pentest Tools Port Scanner
  154. Pentest Tools Subdomain
  155. Hacking Tools And Software
  156. Hack Tools Github
  157. Hacker Tools For Windows
  158. Hacker Tools Github
  159. Hacker Techniques Tools And Incident Handling
  160. Hacking Tools For Windows Free Download
  161. Hacker Tools Mac
  162. Termux Hacking Tools 2019
  163. Kik Hack Tools
  164. Usb Pentest Tools
  165. Hacker Tools Mac
  166. Hacking Tools And Software

posted by Emac | 11:01 PM

0 Comments:

Post a Comment

<< Home