Recovery: THM room, Writeup

Introduction

Getting Past the “You DIDN’T SAY THE MAGIC WORD!”

Flag 0

Flag 1

Flag 2

Reversing the fixutil binary

Flag 3

Part of incorrect LogIncorrectAttempt function in liblogging.so

Flag 4

Part of incorrect LogIncorrectAttempt function in liblogging.so

Flag 5

key=b"AdsipPewFlfkmll"
fil="index.html"
f=open(fil,"rb")
contents=f.read()
for i in range(0,len(contents)):
print(chr(contents[i]^key[i%len(key)]),end='')
roshan@kali:/tmp/ro$ python3 ro.py > ./upload/index.html

--

--

--

Infosec Enthusiast

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

NFT Phishing

{UPDATE} Ticklefluff Hack Free Resources Generator

10 Best Mobile Apps for social security office North Carolina

Wrapped ZNN (wZNN) Liquidity Program

Smaugs Ecosystem Roadmap

US Midterm Elections 2018 — Situational Awareness

Discord Invite Friends Event

A Case for the CASE Act

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Roshan Guragain

Roshan Guragain

Infosec Enthusiast

More from Medium

Proving Grounds Sirol walkthrough

Bounty Hacker (Easy) Walkthrough — TryHackMe

‘Meow’ Writeup — Hack The Box Starting Point

XSS Vulnerability Part 2