You must be logged in to post a comment
ultrazvukoff on 4:37 PM 08/04/2025: EN: What's the point if it accepts any password and writes "you win"?
RU: А в чем суть, если он принимает любой пароль и пишет you win?
Elvis on 4:19 AM 08/05/2025: Look like bad crackme. Feel free to rate its quality
0x06k on 5:31 AM 08/05/2025: i did not get it even to extract it is asking me for password. do i need to guess that password?
b4shcr00k on 10:34 PM 08/05/2025: very bad crackme it prints u win when u were supposed to lose
barkgod on 6:11 PM 08/09/2025: ㅋㅋㅋㅋ 미친넘아
imp4qt0 on 9:30 PM 08/10/2025: The password for zip files are static and 'crackmes.one'. For this i can't say it's a good one. I don't get the point. It says you won all the time, do i have to print lose?
izijerry on 1:19 PM 08/11/2025: bruhh this code so bad
idsoftware on 5:53 PM 08/13/2025: First you have to unzip the file. the password for the zip file is cracksmes.one then you have the file test.exe or similar. then open the file with Ghidra or IDA or other tool of your preference. then look for the code to get the password, I found a num...r to be right and y....y keep trying.
_Vas on 5:42 PM 08/18/2025: lol the bug is that scanf("%s") stops at spaces, so you can never type the full "your mum is very sexy". strcmp always fails eax != 0 so jnz jumps you always get “you win!”. you need to fix it and swap the condition to get the correct branch.
SaintFTS on 2:12 AM 08/21/2025: I was stunned by how any input would give me "you win!". I thought that my bin was somehow damaged, but no. After generating a C file from an executable in ida, it all started to make sense:
if ( !strcmp(Str1, "your mum is very sexy") ) {
printf("you loose!");
}
these lines in particular are already funny. Because strcmp gives 0 if the lines are equal, -1 if the first is less than the 2nd, and 1 if vice versa.
But it's not really a problem. We still would want to get an alternative result! Besides, it's a simple crackme, and we don't gain anything aside from different text on the screen.
BUT GODDAMNIT, thank you _Vas (drum roll) - SCANF STOPS READING INPUT AT ' '!!! You could do it if you'd done "%[^\n]" in the formatter or comparing the passcode with the second "args", but it's literally an unsolvable crackme. Was funny to strip the bin and search for the main manually tho
torment on 8:59 AM 08/21/2025: I see a lot of confusion in these comments, so I thought I'd give my input to be some sort of help. From what I can tell, the goal is to get the program to print "you loose!". When looking at the decompiled C in Ghidra, you can see that in the main function, there is "char local_78 [112];", and a few lines down there's also "scanf("%s",local_78);".
Since scanf doesn't check the length of local_78, if you input a string with 112 A's, and then write "test" with no spaces after the A's, depending on if you use x64dbg or something similar, you can see that when you set a breakpoint at strcmp (when it tests your input), the "test" gets written to RBP, which is outside of the designed pointer that strcmp is designed to check; RCX.