๋ณธ๋ฌธ ๋ฐ”๋กœ๊ฐ€๊ธฐ

โœ’๏ธ Reverse Engineering24

[Reverse Engineering] CodeEngn Basic RCE L17 WriteUp ๐ŸŽฏ CodeEngn Basic RCE L17 WriteUp 1. ๋ฌธ์ œ ํ™•์ธ ํ›„ ํŒŒ์ผ ๋‹ค์šด๋กœ๋“œ 2. 7-Zip File Manager ์„ ํ†ตํ•ด ํŒŒ์ผ ์••์ถ• ํ•ด์ œ --> 17 ํŒŒ์ผ ์† ์‘์šฉ ํ”„๋กœ๊ทธ๋žจ ๋ฐœ๊ฒฌ 3. 17.exe ์„ ์‹คํ–‰ํ•˜์—ฌ ์ž„์˜์˜ ๊ฐ’ ์ž…๋ ฅ ํ›„ "Check it!" ํด๋ฆญ --> "Please Enter More Chars..." ์ด๋ผ๋Š” ๊ฒฝ๊ณ ๋ฌธ ํ™•์ธ 4. Immunity Debugger ์„ ํ†ตํ•ด 17.exe ํŒŒ์ผ ์˜คํ”ˆ --> ์„ฑ๊ณต & ์‹คํŒจ ๋ฉ”์‹œ์ง€์™€ ๋น„๊ต๋ฌธ ๋ฐœ๊ฒฌ 5. ๋ฐœ๊ฒฌํ•œ ๋น„๊ต๋ฌธ์„ 03 --> 01๋กœ ๋ณ€๊ฒฝ 6. ์‹คํŒจ๋ฌธ๊ณผ ๊ทธ ์•„๋ž˜ BreakPoint ์„ค์ • --> ํŒจ์น˜ ์‚ฌํ•ญ ์ €์žฅ 7. Debugging ์‹คํ–‰ ํ›„ ASCII ์‹œ๋ฆฌ์–ผ์ด ์ƒ์„ฑ๋œ ๊ฒƒ์„ ํ™•์ธ 8. 17.0045B850 ํ•จ์ˆ˜์— BreakPoint ์„ค์ •.. 2023. 11. 15.
[Reverse Engineering] CodeEngn Basic RCE L16 WriteUp ๐Ÿ‘บ CodeEngn Basic RCE L16 WriteUp 1. ๋ฌธ์ œ ํ™•์ธ ํ›„ ํŒŒ์ผ ๋‹ค์šด๋กœ๋“œ 2. 7-Zip File Manager ์„ ํ†ตํ•ด ํŒŒ์ผ ์••์ถ• ํ•ด์ œ --> 16 ํŒŒ์ผ ์† ์‘์šฉ ํ”„๋กœ๊ทธ๋žจ ๋ฐœ๊ฒฌ 3. 16.exe ์„ ์‹คํ–‰ํ•˜์—ฌ ์ž„์˜์˜ ๊ฐ’ ์ž…๋ ฅ ํ›„ "Enter" ํด๋ฆญ --> "Wrong password!" ์ด๋ผ๋Š” ๊ฒฝ๊ณ ๋ฌธ ํ™•์ธ 4. Immunity Debugger ์„ ํ†ตํ•ด 16.exe ํŒŒ์ผ ์˜คํ”ˆ 5. ์„ฑ๊ณต ๋ฌธ์ž์—ด๊ณผ ์‹คํŒจ ๋ฌธ์ž์—ด๋กœ ๋ถ„๊ธฐํ•˜๋Š” ๋ถ€๋ถ„ ๋ฐœ๊ฒฌ --> ๋ถ„๊ธฐ ๋ถ€๋ถ„๊ณผ ๊ทธ ์•„๋ž˜ BreakPoint ์„ค์ • 6. Debugging ์‹คํ–‰ ํ›„ ๋ ˆ์ง€์Šคํ„ฐ ๊ฐ’ ํ™•์ธ # EAX ๋ ˆ์ง€์Šคํ„ฐ : 000004D2 # EBP ๋ ˆ์ง€์Šคํ„ฐ : 0070FF28 7. ๋ฐœ๊ฒฌํ•œ ์‚ฌ์‹ค๋“ค์„ ๊ธฐ๋ฐ˜์œผ๋กœ Password ํƒ์ƒ‰ --> ํŒจ์Šค์›Œ๋“œ๊ฐ€ E4C60.. 2023. 11. 14.
[Reverse Engineering] CodeEngn Basic RCE L15 WriteUp ๐Ÿ“Œ CodeEngn Basic RCE L15 WriteUp 1. ๋ฌธ์ œ ํ™•์ธ ํ›„ ํŒŒ์ผ ๋‹ค์šด๋กœ๋“œ 2. 7-Zip File Manager ์„ ํ†ตํ•ด ํŒŒ์ผ ์••์ถ• ํ•ด์ œ --> 15 ํŒŒ์ผ ์† ์‘์šฉ ํ”„๋กœ๊ทธ๋žจ ๋ฐœ๊ฒฌ 3. 15.exe ์„ ์‹คํ–‰ํ•˜์—ฌ ์ž„์˜์˜ ๊ฐ’ ์ž…๋ ฅ ํ›„ "Check it!" ๋ฒ„ํŠผ ํด๋ฆญ --> "Try Again!" ์ด๋ผ๋Š” ํŒ์—…์ฐฝ ํ™•์ธ 4. Immunity Debugger ์„ ํ†ตํ•ด 15 ํŒŒ์ผ ์˜คํ”ˆ 5. ์„ฑ๊ณต ๋ฌธ์ž์—ด๊ณผ ์‹คํŒจ ๋ฌธ์ž์—ด๋กœ ๋ถ„๊ธฐํ•˜๋Š” ๋ถ€๋ถ„ ๋ฐœ๊ฒฌ --> ๋ถ„๊ธฐ ๋ถ€๋ถ„๊ณผ ๊ทธ ์•„๋ž˜ BreakPoint ์„ค์ • 6. Debugging ์‹คํ–‰ ํ›„ ๋ ˆ์ง€์Šคํ„ฐ ๊ฐ’ ํ™•์ธ # EAX ๋ ˆ์ง€์Šคํ„ฐ : 00000457 # 45B844 Address : 0x6160 ++ ์•Œ ์ˆ˜ ์žˆ๋Š” ์‚ฌ์‹ค : "CodeEngn" ์— ๋Œ€ํ•œ Serial ๊ฐ’ ==.. 2023. 11. 10.
[Reverse Engineering] CodeEngn Basic RCE L14 WriteUp โ›ฑ๏ธ CodeEngn Basic RCE L14 WriteUp 1. ๋ฌธ์ œ ํ™•์ธ ํ›„ ํŒŒ์ผ ๋‹ค์šด๋กœ๋“œ 2. 7-Zip File Manager ์„ ํ†ตํ•ด ํŒŒ์ผ ์••์ถ• ํ•ด์ œ --> 14 ํŒŒ์ผ ์† ์‘์šฉ ํ”„๋กœ๊ทธ๋žจ ๋ฐœ๊ฒฌ 3. 14.exe ํŒŒ์ผ์„ ์‹คํ–‰ํ•˜์—ฌ ์ž„์˜์˜ ๊ฐ’์„ ์ž…๋ ฅํ•œ ํ›„ "Check" ํด๋ฆญ --> Serial ์ด ํ‹€๋ ธ๋‹ค๋Š” ์•ˆ๋‚ด๋ฌธ์ด ์ถœ๋ ฅ 4. ๊ด€๋ จ ์ •๋ณด ์ˆ˜์ง‘์„ ์œ„ํ•ด Detect It Easy ๋ฅผ ํ†ตํ•ด ํŒŒ์ผ ์˜คํ”ˆ --> ํŒŒ์ผ์ด UPX ํ˜•์‹์œผ๋กœ ํŒจํ‚น๋˜์–ด์žˆ์Œ์„ ํ™•์ธ ++ ์•„์ง Detect It Easy ๋ฅผ ์„ค์น˜ํ•˜์ง€ ์•Š์•˜๋‹ค๋ฉด? --> https://www.majorgeeks.com/ MajorGeeks.Com - MajorGeeks www.majorgeeks.com 5. ํŒจํ‚น๋œ ์ƒํƒœ์ธ 14 ํŒŒ์ผ์— ๋Œ€ํ•˜์—ฌ ์–ธํŒจํ‚น ์ง„ํ–‰ ++ UP.. 2023. 11. 10.
[Reverse Engineering] CodeEngn Basic RCE L13 WriteUp ๐Ÿ CodeEngn Basic RCE L13 WriteUp 1. ๋ฌธ์ œ ํ™•์ธ ํ›„ ํŒŒ์ผ ๋‹ค์šด๋กœ๋“œ 2. 7-Zip File Manager ์„ ํ†ตํ•ด ํŒŒ์ผ ์••์ถ• ํ•ด์ œ --> 13 ํŒŒ์ผ ์† ์‘์šฉ ํ”„๋กœ๊ทธ๋žจ ๋ฐœ๊ฒฌ 3. 13.exe ํŒŒ์ผ์„ ์‹คํ–‰ํ•˜์—ฌ ์ž„์˜์˜ ๊ฐ’์„ ์ž…๋ ฅํ•œ ํ›„ "Enter" ํด๋ฆญ --> ํŒจ์Šค์›Œ๋“œ๊ฐ€ ํ‹€๋ ธ๋‹ค๋Š” ์•ˆ๋‚ด๋ฌธ์ด ์ถœ๋ ฅ 4. ๊ด€๋ จ ์ •๋ณด ์ˆ˜์ง‘์„ ์œ„ํ•ด Detect It Easy ๋ฅผ ํ†ตํ•ด ํŒŒ์ผ ์˜คํ”ˆ --> ํŒŒ์ผ์ด .NET ํ˜•์‹์ž„์„ ํ™•์ธ 5. ํŒŒ์ผ ๋ถ„์„์„ ์œ„ํ•ด dnspy ๋‹ค์šด๋กœ๋“œ ++ dnspy ๋‹ค์šด๋กœ๋“œ ๋ฐฉ๋ฒ•์ด ๊ถ๊ธˆํ•˜๋‹ค๋ฉด? --> https://alim11.tistory.com/484 [Debugging & Assembly] DnSpy ํˆด ๋‹ค์šด๋กœ๋“œ ๋ฐ ์‚ฌ์šฉ ๋ฐฉ๋ฒ• ๐Ÿ‘พ DnSpy ๋ž€? DnSpy๋Š” .NET ์–ด์…ˆ๋ธ”๋ฆฌ ํŽธ์ง‘.. 2023. 11. 10.
[Reverse Engineering] CodeEngn Basic RCE L12 WriteUp ๐Ÿ’ฅ CodeEngn Basic RCE L12 WriteUp 1. ๋ฌธ์ œ ํ™•์ธ ํ›„ ํŒŒ์ผ ๋‹ค์šด๋กœ๋“œ 2. 7-Zip File Manager ์„ ํ†ตํ•ด ํŒŒ์ผ ์••์ถ• ํ•ด์ œ --> 12 ํŒŒ์ผ ์† ์‘์šฉ ํ”„๋กœ๊ทธ๋žจ ๋ฐœ๊ฒฌ 3. 12.exe ํŒŒ์ผ์„ ์‹คํ–‰ํ•˜์—ฌ ์ž„์˜์˜ ๊ฐ’์„ ์ž…๋ ฅํ•œ ํ›„ "Check" ๋ฒ„ํŠผ ํด๋ฆญ --> ์•„๋ฌด ์ผ๋„ ์ผ์–ด๋‚˜์ง€ ์•Š์Œ์„ ํ™•์ธ 4. 12.exe ํŒŒ์ผ์„ Immunity Debugger ์—์„œ ์‹คํ–‰ 5. ์Šคํฌ๋กค์„ ๋‚ด๋ฆฌ๋‹ค๋ณด๋‹ˆ, ์‚ฌ์šฉ์ž๋กœ๋ถ€ํ„ฐ ์ž…๋ ฅ๋ฐ›์€ Key ๊ฐ’์„ ์ง„์งœ Key ๊ฐ’๊ณผ ๋น„๊ตํ•˜๋Š” ๋ถ€๋ถ„ ๋ฐœ๊ฒฌ ++ ์œ ์ถ” ๊ฐ€๋Šฅํ•œ ์‚ฌ์‹ค๋“ค # ์ง„์งœ Key ๊ฐ’ : 7A2896BF # ์‚ฌ์šฉ์ž๊ฐ€ ์ž…๋ ฅํ•œ Key ๊ฐ’ : EAX ๋ ˆ์ง€์Šคํ„ฐ์— ์ €์žฅ 6. ๋‹ค์‹œ 12.exe ํŒŒ์ผ์„ ๋”๋ธ”ํด๋ฆญํ•˜์—ฌ ๋ฐœ๊ฒฌํ•œ ์ง„์งœ Key ๊ฐ’ ์ž…๋ ฅ --> ๋ฌธ์ œ๊ฐ€ ์„ฑ๊ณต์ ์œผ๋กœ ํ•ด๊ฒฐ๋˜์—ˆ.. 2023. 11. 9.

ํ‹ฐ์Šคํ† ๋ฆฌํˆด๋ฐ”