Application 4

Learn to reverse engineer through some common application security methods.
Forum rules
DO NOT POST ANSWERS OR SPOILERS! [IE: Mission Links, Mission File Names/Pages, Scripts/Code, etc.]

Posting these will result in warnings/bans!

Application 4

Post by Monica on Thu Sep 16, 2010 7:36 am
([msg=45874]see Application 4[/msg])

It is highly suggested that you complete Basic missions before attempting Application missions.

If you need help with this mission, make sure you have a legitimate question. Questions like, "How can I find the password?" or "Where do I find the string?" is UNacceptable. Why? Because a.) You're stupid. b.) You obviously want to be spoonfed BECAUSE you're stupid or c.) You want to complete the mission for points because you think you can redeem them for a cheeseburger at McDonalds. I'll tell you what - below is a list of what you may need to know to complete many Application missions. Please note, not all are necessary to complete this particular mission.

In the end, we hope you do learn. That is the point of being here on HTS.

Knowledge May Be Required:
- Code Analysis/Hex-Editing
- ASM Knowledge
- Compiled Languages (i.e. C/C++, VB)
- Interpreted Languages (i.e. PHP, Perl)

Useful Tools:
- Ollydbg
- Decompiler

** P.S. Posting answers and/or spoilers (i.e. mission links, mission file names/gages, scripts/code) will DEFINITELY result in multiple warnings/bans.

The End.
hi am new so plz dont troll me or i report 2 the HTS mods ty
User avatar
Monica
Contributor
Contributor
 
Posts: 900
Joined: Thu Oct 02, 2008 12:29 am
Location: In The Shadows
Blog: View Blog (0)


Re: Application 4

Post by Mercurial on Fri Dec 17, 2010 7:14 am
([msg=50564]see Re: Application 4[/msg])

Should I be focusing on enabling one of the buttons so I can click it, or displaying the messagebox itself (without clicking one of the buttons)? Or anything third ? I found a messagebox function, but I'm not sure how (and when) to make an unconditional jump to it (thats one idea on my mind).
Mercurial
New User
New User
 
Posts: 1
Joined: Thu Mar 11, 2010 8:00 am
Blog: View Blog (0)


Re: Application 4

Post by midnite_cowboy on Sun Apr 03, 2011 11:24 am
([msg=55900]see Re: Application 4[/msg])

Instead of trying to force the program to do you what you want, see if you can SIDESTEP the obstacle and get the info somehow else...
midnite_cowboy
New User
New User
 
Posts: 3
Joined: Tue Jun 17, 2008 9:57 pm
Blog: View Blog (0)


Re: Application 4

Post by bergqvist on Fri Apr 08, 2011 7:29 am
([msg=56141]see Re: Application 4[/msg])

Im not sure if this is the right place for this report,

I could run app 1 - 3 allright in Wine, think they where coded in c++ or somthing, but now when i tried running app 4 it didnt work, and app 4 had traces of VB so im guessing VB compiled apps dont work well with Wine.

i have learned much from apps 1 - 3 so im really hoping for the other apps also. would be cool with more linux versions though for experience.

./Berg - My Pace
bergqvist
New User
New User
 
Posts: 1
Joined: Fri Apr 08, 2011 7:20 am
Blog: View Blog (0)


Re: Application 4

Post by jgs1 on Wed Jun 22, 2011 9:38 am
([msg=58836]see Re: Application 4[/msg])

bergqvist wrote:Im not sure if this is the right place for this report,

I could run app 1 - 3 allright in Wine, think they where coded in c++ or somthing, but now when i tried running app 4 it didnt work, and app 4 had traces of VB so im guessing VB compiled apps dont work well with Wine.

i have learned much from apps 1 - 3 so im really hoping for the other apps also. would be cool with more linux versions though for experience.

./Berg - My Pace


For anyone else using wine who has run into problems starting with the forth application a fix is available through wine called winetricks. http://wiki.winehq.org/winetricks offers installation instructions and worked for me on the first try. And just a note, in particular the package that winetricks will help install to get the 4 application working is called vb6run.

in brief:
Code: Select all
$wget http://winetricks.org/winetricks
$sh winetricks vb6run
jgs1
New User
New User
 
Posts: 1
Joined: Wed Jun 22, 2011 9:32 am
Blog: View Blog (0)


Re: Application 4

Post by fire_ball on Sat Mar 10, 2012 7:58 pm
([msg=64937]see Re: Application 4[/msg])

I'm having trouble with this one
does it require a decompiler?
if so can someone recommend a good opensource one?
fire_ball
New User
New User
 
Posts: 22
Joined: Thu Mar 24, 2011 6:29 pm
Blog: View Blog (0)


Re: Application 4

Post by tobiasente on Sat Mar 24, 2012 10:09 am
([msg=65187]see Re: Application 4[/msg])

yes,

http://www.hackthissite.org/pages/programs/programs.php

decompiler ... there is only one, VB Decompiler Lite
debugger ... maybe you will need it, Olly Debugger(OllyDbg)
User avatar
tobiasente
New User
New User
 
Posts: 5
Joined: Sat Mar 24, 2012 10:04 am
Blog: View Blog (0)


Re: Application 4

Post by fire_ball on Sun Mar 25, 2012 10:14 am
([msg=65200]see Re: Application 4[/msg])

Thank you very much, I believe I know what to do now
fire_ball
New User
New User
 
Posts: 22
Joined: Thu Mar 24, 2011 6:29 pm
Blog: View Blog (0)


Re: Application 4

Post by kutkloon7 on Sat Apr 21, 2012 9:35 am
([msg=65851]see Re: Application 4[/msg])

Is this one also possible (and not too hard) to do without the VB decompiler?
kutkloon7
New User
New User
 
Posts: 1
Joined: Sat Apr 21, 2012 9:30 am
Blog: View Blog (0)


Re: Application 4

Post by mookalovesgloop on Sat Sep 29, 2012 7:57 pm
([msg=69813]see Re: Application 4[/msg])

peace!
soooo based on what i've read in the forums and in xvi i'm thinking i might need to try something called sendkeys?? but i also notice that this challenge is only worth 15 points...the points are set according to the difficulty of the challenge right? so i'm wondering do i really need to go f-ing around in .dll files for something that should be so simple...

in xvi, i'm thinking i need to alter the "form1" info "command3" in particular stands out to me...anyone wanna help me out with this one?
hotep
mooka
Image
gloop!
User avatar
mookalovesgloop
Poster
Poster
 
Posts: 167
Joined: Wed Apr 18, 2012 7:48 pm
Blog: View Blog (0)


Next

Return to Application

Who is online

Users browsing this forum: No registered users and 0 guests

cron