Celtic's Exploitme 1#
| Download exploitme.zip, 106 kb (password: crackmes.de) Browse contents of exploitme.zip Hello Freaks.
Difficulty: 2 - Needs a little brain (or luck) | RatingVotes: 4 View profile of Celtic » |
Solutions
Solution by Ramirez, published 21. sep, 2008; download (238 kb), password: crackmes.de or browse.
Ramirez has rated this crackme as nothing special.
Solution by rex922, published 21. sep, 2008; download (2049 kb), password: crackmes.de or browse.
rex922 has not rated this crackme yet.
Discussion and comments
| yomshleeshee 24. Sep 2008 | Any recommended reads/explainations on the VirtualProtect used here? |
|---|---|
| T[9]Uvatha 24. Sep 2008 | The VirtualProtect function changes the access protection on a region of committed pages in the virtual address space of the calling process. This function differs from VirtualProtectEx, which changes the access protection of any process. BOOL VirtualProtect( LPVOID lpAddress, // address of region of committed pages DWORD dwSize, // size of the region DWORD flNewProtect, // desired access protection PDWORD lpflOldProtect // address of variable to get old protection ); It's basically to enable "writing" to some place... that should leave you on the good way to solve this. (*Hint* *Hint* lpAddress *Hint* *Hint*) |
| yomshleeshee 24. Sep 2008 | Is it read only by default? Or did he change that somewhere? |
| simonzack Moderator 25. Sep 2008 | @yomshleeshee: check the section in lordpe |
| glery 26. Sep 2008 | How to get the secret place, for example 0x4011c0? |
| Ramirez 26. Sep 2008 | Look at rules - no rules .. do it as you can .-) |
You may leave your comment, thoughts and discuss this crackme with other reversers here.
Acting childish will not be tolerated.
HTML and such will be left as-is, so don't try.