Hacking Challenge

[Onetoomanysodas]

Well I made a small little example of a program that protects a program with a password. The thing is, multiple passwords are possible. I dare anyone to break this security and ScreenShot the success screen. Just to show how confident I am of this matter, the first person (if anyone) who can break in before Friday Januaray 13th, 2006 will recieve $20.00 from me personally. Good Luck Oh yeah, and don't just guess a ***** password, if you randomnly guess and get in then i'll tell you to go ***** a *****.

This is the program in a zip file

[superaison]

humumumumumumu, what form is it in?!

[Onetoomanysodas]

what form is it in?!

o_O ?

[dos mes]

you spelled access wrong

[superaison]

what form is the code in? form1,2? frmsuccess???

[Patrickssj6]

Omg i think he used that aehh "zor" thingy.I think it was calle "zor"

[Onetoomanysodas]

what form is the code in? form1,2? frmsuccess???

frmSuccess is the success screen you are shown once you enter the password correctly or in this case, if you get this form to show without problems, you win. And yes I'm sorry I did spell access wrong, I usually don't make teip0z that often The code for checking the password is in Form1.

EDIT:

Omg i think he used that aehh "zor" thingy.I think it was calle "zor"

Uhm, what?

[superaison]

ok, gimme a hour

[modder4321]

zor = decompiler basicly with it u can decompiler it to source edit so it works.

[xbox7887]

For all of those attempting to disassemble it and make the failure jump to the successful output, theres a check that makes sure there are some characters present in the box, that assembly line is located at offset 0x428984. Then you follow that jump which takes you to offset 428b9f. Right now I'm too tired to go much further but you can break it down and its fairly easy to read.

EDIT: other interesting strings, form2 contains "Thank you for logging in", ELEGANCE is probably printed....I searched for the frmsuccess, came across JFIF, which is indicative of a jpeg image, compared with another jpeg to rebuild the header and put together an image consisting of red and yellowish-orange "flames" which is most likely the background. For those who are curious to see the image themselves, it starts at offset 0x278D when looking at the exe in a hex editor. Just copy and paste into a separate file and save as .jpeg.

Point being, people don't need a password to look through protected material

[Onetoomanysodas]

Good work but the point is getting to use the program because it will be protecting an active program.

[kornman00]

Heres a database file with a great deal of the exe documented (events, gui objects, etc)
download

[xbox7887]

nice

[Onetoomanysodas]

You guys suck

[Onetoomanysodas]

Contest ends tomorrow. The source code will be released for teaching/information purposes.

[xbox7887]

lol the source can't teach you how to hack, in fact it makes the concept that much harder to grasp

[live2board]

I think he means so that people can understand how passwords and things are encrypted.

[Onetoomanysodas]

I think he means so that people can understand how passwords and things are encrypted.

Lol yes exactly, you took the words from my mouth. Plagiarism!

[modder4321]

its not hard.

1 way of encrypting which is my favorite is...

encode the pass into hex then simply strrev it.

then u got an encoded pass lmao

[Teh 1337z0rs]

Ha, its funny how you put it on a site that is all about reverse engineering.