Flare-On 7 2020 Challenge #1: Fidler

We received the application binary file together with the python source code.

Tools to use:

  • notepad++

When you start the application, you get:

While checking the code in, we see that it first call to :

code from fidler.py

Which will return if it will return :

code from password_screen() in fidler.py

Checking it and we can see that our input is being checked against the :

To find the key we can just copy the code inside python:

We moved to the second stage:

There are two ways to solve it, you can just play and get the flag:

Use the mouse scroll to make the coins move faster.

But if you want to bypass it and understand what happens, we can go straight a head to the function in because it call to the function and we need to understand how to get to this function:

To get the we need that our will be between the following limits:

We will pick up a number between these limits: 103078166529.

The math calculation will convert it to 1030 which will pass as the token to which will call the function:

It will print the flag:

Of course we can also bypass all these stages and just try to call the function with a random number:

It easy to complete it, we need to have “i” in the beginning.

Security researcher interested in reversing, solving CTFs, malware analysis, penetration testing and DevOps security (docker and Kubernetes)