 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
 |
Lookin for linux cracking tuts |
 |
 Posted: Mon Jan 23, 2006 11:08 pm |
 |
|
| fizzi |
| Advanced user |
 |
|
| Joined: Sep 14, 2005 |
| Posts: 55 |
|
|
|
 |
|
 |
|
hi everybody
everyone knows cracking in windows. but cracking programs under linux ... somehow impossible without right knowledge.
there is a game out there ... which has a stupid handbook-page/2letters protection. so ... i guess softice doesn't work under linux ... 
it's a statically linked file ... how do i disassembly it first and then debug it step by step?
(NO, GDB DOES WORK SHIT HERE)  |
|
|
|
|
|
Re: Lookin for linux cracking tuts |
|
| Posted: Tue Jan 24, 2006 12:43 pm |
|
|
| erg0t |
| Valuable expert |
 |
|
| Joined: Apr 08, 2005 |
| Posts: 55 |
| Location: Uruguay |
|
|
|
|
|
|
| fizzi wrote: | hi everybody
everyone knows cracking in windows. but cracking programs under linux ... somehow impossible without right knowledge.
there is a game out there ... which has a stupid handbook-page/2letters protection. so ... i guess softice doesn't work under linux ...
it's a statically linked file ... how do i disassembly it first and then debug it step by step?
(NO, GDB DOES WORK SHIT HERE) |
yes gdb sucks for re but is still usable, try strace, it will show you how syscalls are called in a clean way, the other think you can do is disassemble the file, try Bastard, or more simple stuff like HT, objdump maybe... |
|
|
|
|
|
|
|
|
| Posted: Tue Jan 24, 2006 6:32 pm |
|
|
| fizzi |
| Advanced user |
|
|
| Joined: Sep 14, 2005 |
| Posts: 55 |
|
|
|
|
|
|
|
damn
the only one i got working now is ldasm. all other pograms didn't want to compile (because of severail things, i guess my amd64 arch is problem #1), but also the compiled programs i downloaded didn't want to work. (missing own libs and stuff)
argh
anway ... what is HT? |
|
|
|
|
| Posted: Tue Jan 24, 2006 6:38 pm |
|
|
| fizzi |
| Advanced user |
|
|
| Joined: Sep 14, 2005 |
| Posts: 55 |
|
|
|
|
|
|
|
mhm
i tried strace ... but it does not get any output itself from the program. perhaps the coders used a workaround to hide their code from beeing traced by such simple standard linux tools.
| Quote: | execve("./program.bin.x86", ["program.bin.x86"], [/* XX vars */]) = 0
--- SIGTERM (Terminated) @ 0 (0) ---
PROGRAM OUTPUT BLA BLA BLA
...
|
|
|
|
|
|
|
|
|
|
| Posted: Tue Jan 24, 2006 11:08 pm |
|
|
| erg0t |
| Valuable expert |
|
|
| Joined: Apr 08, 2005 |
| Posts: 55 |
| Location: Uruguay |
|
|
|
|
|
|
| fizzi wrote: | mhm
i tried strace ... but it does not get any output itself from the program. perhaps the coders used a workaround to hide their code from beeing traced by such simple standard linux tools.
| Quote: | execve("./program.bin.x86", ["program.bin.x86"], [/* XX vars */]) = 0
--- SIGTERM (Terminated) @ 0 (0) ---
PROGRAM OUTPUT BLA BLA BLA
...
|
|
HT is an editor and disassembler that suports, ELF, PE, etc
try strace -f
If still doesn't work is becuase there is some ant-dbg trick, like using ptrace or sending itself a sigtrap. |
|
|
|
|
| Posted: Tue Jan 24, 2006 11:27 pm |
|
|
| fizzi |
| Advanced user |
|
|
| Joined: Sep 14, 2005 |
| Posts: 55 |
|
|
|
|
|
|
|
strace -f didn't even helped in that case.
but objdump -d is doing a good job so far. |
|
|
|
|
www.waraxe.us Forum Index -> Newbies corner
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
Discussions
Tools
Content
Info
Membership:
Latest: 
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 42
Members: 0
Total: 42
