How I Wrote a Script that Cracks Code Automatically

Рет қаралды 66,467

4 ай бұрын

Reverse engineering is a great way to learn about how computers work. Whether its malware analysis or just solving some problems, reverse engineering is a fun way to enhance your knowledge of computers. In today's video, we reverse engineer a problem from crackmes.one and use an interesting technique.
🏫 COURSES 🏫 Learn to code in C at lowlevel.academy
🛒 GREAT BOOKS FOR THE LOWEST LEVEL🛒
Blue Fox: Arm Assembly Internals and Reverse Engineering: amzn.to/4394t87
Practical Reverse Engineering: x86, x64, ARM, Windows Kernel, Reversing Tools, and Obfuscation : amzn.to/3C1z4sk
Practical Malware Analysis: The Hands-On Guide to Dissecting Malicious Software : amzn.to/3C1daFy
The Ghidra Book: The Definitive Guide: amzn.to/3WC2Vkg
🔥🔥🔥 SOCIALS 🔥🔥🔥
Low Level Merch!: lowlevel.store
Follow me on Twitter: / lowleveltweets
Follow me on Twitch: / lowlevellearning
Join me on Discord!: / discord

Пікірлер: 231

@afra1d828 4 ай бұрын

nice

@catatrophicalist 4 ай бұрын

nice

@cslearn3044 4 ай бұрын

nice

@jommeez 4 ай бұрын

nice

@zirgaoec3784 4 ай бұрын

nice

@grandmakisses9973 4 ай бұрын

nice

@mouradlaraba 4 ай бұрын

even if i didn't understand anything, all i could to say is that the humanity is still good that person like you still exist, thanks a lot

@rawallon 3 ай бұрын

idk man, he's writing P*thon

@n0o0b090lv 4 ай бұрын

This ain't low level chanel this is high level chanel I learn a lot Also thx LLL

@basedfacistman 4 ай бұрын

chanal

@n0o0b090lv 4 ай бұрын

@@basedfacistman you see... FAST LOOK AN ALIEN Nah just a bird, oh look chanel. I wonder what happened

@vnc.t 4 ай бұрын

*channel

@n0o0b090lv 4 ай бұрын

@@vnc.t the n went on vacation

@ProfessorThock 4 ай бұрын

LLL feels more Supreme than Chanel

@cyberpunk1618 4 ай бұрын

2:55 in and already 100% worth watching. Knowing I can use Ghidra without migraines is such a performance booster.

@coffeegonewrong 4 ай бұрын

Thanks for increasing the font size LLL 📱

@sarimbinwaseem 4 ай бұрын

Whole thing went above my head but I still watched... Soon it will go in my head... IDK when

@iwakeupsad 4 ай бұрын

Totally. So often for me, understanding comes through the side door unannounced.

@sarimbinwaseem 4 ай бұрын

@@iwakeupsad haha.. yeah.. unexpectedly..

@EmberDRG 4 ай бұрын

thank you for all these vids, they helped me with the basics of reverse engineering. I'm currently working on reverse engineering a ps3 game and it's been incredibly fun so far

@Pr0xima_audio 25 күн бұрын

MGS4?

@EmberDRG 25 күн бұрын

@@Pr0xima_audio NieR : Gestalt

@Damqq 4 ай бұрын

Honestly this is pretty interesting, I NEED MORE OF such content PLEASE.

@driden1987 4 ай бұрын

Looks like a lot of fun once you understand what's going on and know ways you could tackle the proble

@MyCodingDiarie 4 ай бұрын

I've never commented on a video before, but I had to for this one. It's that good!

@patriciopage6579 4 ай бұрын

How is it only now I find this gem of a channel? Dang youtube

@AgentXegy 4 ай бұрын

bro I could watch this every day that was awesome

@driden1987 4 ай бұрын

Thanks for zooming in!

@MyCodingDiarie 4 ай бұрын

Great video! Very informative and well explained.

@m1geo 4 ай бұрын

Nicely done, Mr LLL.

@IsaacNewTom22 4 ай бұрын

Thank you, LLL, the font size saved me :)

@titaniumtomato7247 4 ай бұрын

8:40 I am not a fan when people make negative comments about someone's use of a tool to complete a task. Programming doesn't need more elitism or stupid battles.

@arjix8738 4 ай бұрын

I read your comment before watching that part and I totally got the wrong idea lol Thought you meant that no-code "hackers" should not be looked down upon. To which I disagree. But by "tool" you were referring to the choice of language, to which I agree, hacking is a mess either way, the choice of language should not matter as long as it does the job.

@stefanalecu9532 4 ай бұрын

I just assumed it's a running joke within the LLL community (especially since he's known for being a C shill, for obvious reasons)

@P-G-77 2 ай бұрын

Awesome work !

@YourPocketTiger 4 ай бұрын

I love this channel.

@quietusplus1221 Ай бұрын

I have some experience with coding. The further this went on my head started spinning though. This is on another level, quite interesting ^^

@HypeLobbiesHD 2 ай бұрын

I love your merch, I have the mousepad and the t-shirt, do you have any other plans for more reverse engineering or low level related merch? I would totally buy more

@lazzalicious6220 4 ай бұрын

The man, The myth, The legend. Found you again

@iagosrodrigues 2 ай бұрын

I loved the video; I didn't understand anything, but it was an excellent video.

@adershvarshnei5198 4 ай бұрын

thanks for increasing the size mr lll :)

@DropShotPat 27 күн бұрын

I wasn't worried about the empty boxes, until you said something LOL.

@AgentKent 4 ай бұрын

Thanks LLL

@gringle8578 4 ай бұрын

Cool, next do Denuvo. Let's see how good you are!

@baranjan6969 4 ай бұрын

Ngl I am pretty new to low level stuff but I recommend running it a bit first before even running strings

@IZ4HDM_Chris 4 ай бұрын

Thanks for the Font LLL!!!!

@Armstrong1781 4 ай бұрын

you are the best

@terry- 2 ай бұрын

Great!

@icankickflipok 4 ай бұрын

Thanks LLL.

@EnderMega 4 ай бұрын

Thats how you know he is a _real manly_ C/C++ programmer, he apologies for using Python, and as a fellow C/C++ programmer I forgive you. Jokes aside, good video!!!

@Djay0Epizode 4 ай бұрын

Hey , very nice intro to angr, i have a bit that i didn’t get is why the first try with the 32.8 bit key space reached in the simulator the last address ? That for me doesn’t yet click

@makebreakrepeat 4 ай бұрын

Dark mode, let's go!

@Ni7ram 4 ай бұрын

yes, yes.. of course i understand all this

@sassywoocooo 4 ай бұрын

we finally got ghidra in dark mode

@Subcode 4 ай бұрын

Can you make a video on how this would work when an application also has a DLL etc? ive tried this once on an application with a DLL and it got very confusing, really couldnt figure any of it out.

@monterraythehomeless 6 күн бұрын

I needed the font size increase and I'm on desktop lol. Thanks LLL

@kcnl2522 4 ай бұрын

Terminal looks neat, what are you using?

@yahsprut 3 ай бұрын

what if the binary was built in something else like Rust for example? whould then Ghidra reverse engineer it to C or to Rust?

@logiciananimal 4 ай бұрын

Angr looks really neat. I suppose in some cases one runs into formal undecidability. How does it "cheat'"?

@luketurner314 4 ай бұрын

For anyone here new to Python, if __ name __ == "__main__": main() prevents the main function from running when you import the file/script somewhere else. If you call a function after defining it without this check, it will run even if the file is imported, which you usually don't want Edit: had to insert spaces between the underscores and name because YT thought I wanted it italic. In actual code, it would be 2 underscores, name, 2 underscores (no spaces between); sometimes read as "dunder name" (concatenating/abbreviating "double underscore" to "dunder")

@asseenontv247 4 ай бұрын

Do you have any recommendations on books that are useful desk references for this stuff?

@saulgoodman6710 4 ай бұрын

Great video, I'm new to this stuff. couple of doubts, when giving the address of the good and avoid case, why is only 4byte address is provided instead of entire address from memory map? secondly, how the hell do you learn all there stuff? since there are multiple libraries/tools.concepts used just for one problem. Impressive btw!

@Codingwannabe-cw1yd 4 ай бұрын

Thx lll for zooming in

@hakushakudoa283 3 ай бұрын

Thanks triple o

@RigoVids 3 ай бұрын

Thanks tripple el

@outtakontroll3334 4 ай бұрын

this is some dark art shit- only able to follow a little of it, but interesting

@cherubin7th 4 ай бұрын

I am looking forward, when we can take a binary and automatically turn it with AI in beautiful source code with comments etc.

@dtikvxcdgjbv7975 4 ай бұрын

You unbaked the bread!

@zxcvb_bvcxz 4 ай бұрын

So *why* does angr have issues with stdin and how were you able to work out the fix?

@SkibidiEugensson 4 ай бұрын

Why - just speculating here, because cpp streams are weird. How - he has emulated the result of the text input himself, he put the string pointer on the stack (this is exactly what that cpp function does after fetching the text), and he has skipped the stdin function.

@maz5232 2 ай бұрын

Hi please make more

@z8den 4 ай бұрын

why on earth do you not have the link to the cracksme in the description man

@secret_7025 4 ай бұрын

Low level programming is the hardest my bro ReSearch about it.

@JM-is1vf 4 ай бұрын

Thanks for your channel. I would love it even more without the background music.

@oliverpasquesi8068 15 күн бұрын

Can you do a Ghidra tutorial pls?

@GameBacardi 4 ай бұрын

...I need practise "hello world!" again, 60th time

@hoteny 4 ай бұрын

cool. now how do i guess what a weird 8 byte value does?

@Vazzible_gaming 26 күн бұрын

How do i find the CTF program, can you link it to me so I can do all the steps myself?

@hyperplano 4 ай бұрын

Waiting for LLL x LaurieWired video :)

@boenrobot 4 ай бұрын

14:37 - Hold up. Where did these magic hex numbers come from? Why those offsets? Can they be determined in a cleaner way, rather than hard coded like that?

@user-bp6xz6ll9t Ай бұрын

Did you find out this part? also need help here!

@theman1860 Ай бұрын

I noticed that too. Didn't he say -0x34?

@blehbleh9283 4 ай бұрын

Symbolic Execution 🔥🔥

@braveitor 4 ай бұрын

When machines take over us, I hope you speak for us all as you know their native language. Interesting to watch, don't hava a clue about how anyone can learn those skills... :D

@SadKris 4 ай бұрын

the a/v desync lmao

@monad_tcp 4 ай бұрын

Is scanf still using self modifying code or something ?

@llmnr3xp0sed 4 ай бұрын

I'm curious how angr works with ASLR enabled.

@nomio_o 4 ай бұрын

When running with correct permissions you can choose to disable ASLR for a spawned process which is likely what angr does. GDB uses the "personality" syscall to do this with the flag ADDR_NO_RANDOMIZE.

@llmnr3xp0sed 4 ай бұрын

@@nomio_o ah, good to know.

@user-bp6xz6ll9t Ай бұрын

why the -0x58? where does it come from?

@ErikBongers 4 ай бұрын

Can you crack how to exit vim?

@rudymoralesjr Ай бұрын

I need to learn how to do this proficiently so I can hack car ECUs for tuning. They made it so hard to tune cars these days...

@RandomGeometryDashStuff 4 ай бұрын

do you use computer with arm cpu?

@veritas7010 4 ай бұрын

Now crackmes are cool but whos gonna actually have good info on compiling osx/xnu kernel, modifying kernel/writing a kernel driver to disable debugging detection, bypass address randomization. What for? Oh yeah, just to bypass debug detection and also have a way to dump consistent traces. And just to begin on actually getting progress with 20mb+ binaries

@AndrewOverthrow 4 ай бұрын

Thanx Triple L

@rallokkcaz 4 ай бұрын

LFG!!!! LLG GANG GANG!

@nsg650 4 ай бұрын

Wait are you a cuber as well?

@UnrealEngine_Master 4 ай бұрын

nothing is clear, but very interesting 🤠

@MenkoDany 4 ай бұрын

There's a piece of abandoned niche commercial software which I'd love to crack for archival purposes. Will this work on it? It's written in Delphi and it can be activated offline even though there was an internet activation option (which obviously doesn't work anymore). There is version 3.x which is still being sold even though there were no updates for 8 years or any activity from the dev whatsoever. Thing is, version 3.x is a joke. Well, 2.x was an actual joke, not worth a penny, and 1.x is the legendary version which I'd like to crack. I believe it would still be used today if the dev released a 64bit version like he promised :( The released version crashes way too often because of the ram limitation.

@a_f_a_b 4 ай бұрын

Man you don't have to apologize for python. You don't have to apologize for anything!^_^

@danielrubin3649 4 ай бұрын

Tack 3xL

@VINICIUSMOURACARDOSO 3 ай бұрын

how can I change ghidra to dark mode?

@semitangent 4 ай бұрын

Thanks triple L - in the chat!

@almightyhydra 4 ай бұрын

Meh, automating the reverse engineering takes the fun out of the problem :p if each of those functions was only checking one of the bytes, you could solve each fairly simply, I'd imagine.

@vsevolodalipov4375 4 ай бұрын

May be a dumb question, but why not brute force it instead?

@wrathofainz 4 ай бұрын

Someone should write an ANGR-y UI for gui people

@catatrophicalist 4 ай бұрын

do you prefer intel or at&t syntax?

@grandmakisses9973 4 ай бұрын

intel of course

@godnyx117 4 ай бұрын

@@grandmakisses9973 Based opinion

@atijohn8135 4 ай бұрын

intel addressing syntax and at&t argument order ("mov rax (to) rcx" makes more sense than "mov (to) rcx: rax")

@godnyx117 4 ай бұрын

@@atijohn8135 The thing is, binary instructions follow the intel syntax. So, especially for those who create compilers, the AT&T syntax is confusing, even tho it makes more sense...

@flyinginthedark6188 4 ай бұрын

AArch64

@shteatinggrin 4 ай бұрын

It’s so weird knowing that the NSA has a program named after the Godzilla monster

@VivekYadav-ds8oz 4 ай бұрын

Remember that it's still nerds inside NSA that are responsible for creating and maintaining this. If they can get away with it, they will.

@shteatinggrin 4 ай бұрын

@@VivekYadav-ds8oz Ofc, every major tech system has been built up and maintained by nerds. It’s still pretty wild regardless

@konfushon 4 ай бұрын

W in the sHaT!

@dtikvxcdgjbv7975 4 ай бұрын

The magic starts at 15:44 😃

@ffeliziani 4 ай бұрын

Wait, how are you running arm code on your machine?

@tronosgamingwizard 4 ай бұрын

perhaps a VM

@ffeliziani 4 ай бұрын

@@tronosgamingwizard does ghidra run on ARM? I guess with the magic of editing (or ssh) he could be on different machines

@tronosgamingwizard 4 ай бұрын

@@ffeliziani I'm unable to answer this one, mate.

@ffeliziani 4 ай бұрын

Sorry yeah the Q should have been for @lowlevellearning

@yurilsaps 2 ай бұрын

I didn’t like that was necessary to use angr to solve the challenge

@katchen2626 4 ай бұрын

what does SAT mean?

@LowLevelLearning 4 ай бұрын

satisfiability solver

@christianremboldt1557 4 ай бұрын

i love you

@christianremboldt1557 4 ай бұрын

Context: I am interested in low level coding and cyber security. I've learned to compute RSA with a calculator and I am learning to use ASM and reverse enineering. You are on a level I want to get to. And I love learning from your Video. I started studying Computer Science and I'm working at an IT job. The IT Job doesn't really teach me about the low level stuff and the university only teaches computer architecture, some algorithms and high level programming (and C). But you can teach me what I ACTUALLY want to learn