Without a Trace¶
Menggunakan tools ltrace (sudo apt install ltrace)
$ ltrace without_a_trace
puts("[+] Primary Mothership Tracking "...[+] Primary Mothership Tracking Panel
) = 38
puts("[X] Unusual activity detected"[X] Unusual activity detected
) = 30
puts(" |-------] Unrecognised login lo"... |-------] Unrecognised login location: Earth
) = 46
printf("[X] Please verify your identity "...) = 60
fgets([X] Please verify your identity by entering your password > qwe
"qwe\n", 64, 0x7ffff7fa09a0) = 0x7fffffffdd80
strchr("qwe\n", '\n') = "\n"
ptrace(0, 0, 0, 0) = -1
strcmp("qwe", "IUCzus5b2^l2^tq^c5^t^f1f1|") = 40
printf("[X] Intruder detected - dispatch"...) = 52
[X] Intruder detected - dispatching security systems+++ exited (status 255) +++
terlihat input kita dicompare dengan IUCzus5b2^l2^tq^c5^t^f1f1|, tapi tidak terlihat seperti flag, setelah percobaan ternya string itu perlu di xor dengan nilai brute-force
flag.py
a = "IUCzus5b2^l2^tq^c5^t^f1f1|"
for i in range(50):
for j in a:
print(chr(ord(j)^i),end='')
print()
IUCzus5b2^l2^tq^c5^t^f1f1|
HTB{tr4c3_m3_up_b4_u_g0g0}
KWAxwq7`0\n0\vs\a7\v\d3d3~
JV@yvp6a1]o1]wr]`6]w]e2e2
...
flag HTB{tr4c3_m3_up_b4_u_g0g0}