Share how awesome the crack me was or where you struggle to finish it! Stay polite and do not spoil the solution/flag!
Author:
uwuowo
Language:
Unspecified/other
Upload:
7:55 PM 12/11/2024
Platform
Windows
Difficulty:
6.0
Quality:
4.0
Arch:
x86-64
Description
CuteGenMe is an aesthetically pleasing, yet deceptively difficult keygen challenge designed to put your reverse engineering skills to the test! CuteGenMe is built using Rust with Tauri and special care was taken to ensure NO strings are present in the codebase to further increase the difficulty of the challenge. More about this in the spoilers section. There are two success routes for this challenge patching or for those who want a real challenge valid key generation. Patching route: There are detection methods in place to detect if you went the patching route. If detected the challenge will display a unique victory screen, however you will be encouraged to try the valid key generation route. Valid key generation route: Navigate the complex key verification algorithm and generate a valid key. More information in the spoilers section. This is not a beginner-friendly challenge. It requires solid understanding of reverse engineering concepts and will test your ability to understand complex algorithms and implementations. Can you unravel the mysteries of CuteGenMe and generate valid keys? Accept the challenge and find out! Good luck and have fun! Made with love by uwuowo ---------------SPOILERS--------------- Keys are hardware based, time sensitive, and go through several cryptographic transformations. Red herrings are present to make debugging and reversing more challenging. Instead of a string for valid characters for keys, a byte array of valid characters is used. It is defined as such: ``` const CHARSET: &[u8] = b"abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789!@#$%^&*()_+"; ``` Keys go through an 11 step verification process, however the Achilles heel lies within the key verification process. In order to ensure your time sensitive hardware based key is valid, the application self tests and generates valid keys for the time window to test against. Due to this generated keys are valid for approximately 15 seconds. Examples of valid keys: q%9qMviqxl7yhj)2pc+^cgjfaY7S3pjCCAc!Ox*+OaK$(shNyELayRr$wzCYs!V0 uL23opC&xpDYtxv@sDfVUc4L2@6((lT)vWSy6OuL7peQKzDfp1n(KZg+Xy2gnyTR xoD*eZC+Cq*&nX*E+hjGlduAr^dvu&rndzsR_iZ_vXVw8*DmaMbz9Cwmpsbaz8vz x3ousdvCi3LcmsvLmoBKhaQKJoKVxk$mN^dvya45SopC#^dD%neGt!pWa!fF07Mm 1zQczmJCDFD3gPWTzMIcsRMCVb!%DqkmJMDkH)j)A6odKM8wEyhOzYxaE69w#uG9 ---------------SPOILERS---------------