Skip to content

Instantly share code, notes, and snippets.

View BinaryResearch's full-sized avatar

Julian Daeumer BinaryResearch

34 followers · 1 following
View GitHub Profile
@BinaryResearch
BinaryResearch / solve_de_tcrack.py
Created February 8, 2020 05:43
keygen for paypain's de_tcrack1
#!/usr/bin/python3
# https://crackmes.one/crackme/5c9d9eea33c5d4419da55641
import angr
import claripy
import time
from subprocess import Popen, PIPE
N = 25 # number of keys to generate
@BinaryResearch
BinaryResearch / solve_half-twins.py
Last active January 30, 2020 20:58
#!/usr/bin/python3
# https://crackmes.one/crackme/5dce805c33c5d419aa0131ae
import angr
import claripy
import logging
import time
from subprocess import Popen, PIPE, STDOUT
@BinaryResearch
BinaryResearch / kawaii_keygen.py
Last active January 26, 2020 20:45
#!/usr/bin/python3
# https://crackmes.one/crackme/5d17962b33c5d41c6d56e1f2
import string
import random
import time
from subprocess import Popen, PIPE, STDOUT
@BinaryResearch
BinaryResearch / emulate_keygenme.py
Last active January 26, 2020 20:45
#!/usr/bin/python3
# https://crackmes.one/crackme/5d17962b33c5d41c6d56e1f2
from unicorn import *
from unicorn.x86_const import *
import sys
sys.path.append("../..")
from qiling import *
@BinaryResearch
BinaryResearch / glowwine_keygen.py
Created January 25, 2020 21:03
compute solutions to Bkamp's glow wine challenge
#!/usr/bin/python3
# https://crackmes.one/crackme/5df26b4033c5d419aa013362
import angr
import claripy
import subprocess
import sys
@BinaryResearch
BinaryResearch / solve_xordemo.py
Last active January 29, 2020 06:06
solves Exxtra12's xordemo crackme
#!/usr/bin/python3
# challenge page: https://crackmes.one/crackme/5dfd77a833c5d419aa013406
import angr
import claripy
from datetime import datetime
def solve():
@BinaryResearch
BinaryResearch / find_valid_passwords.py
Created January 17, 2020 23:44
For a given correct username, this can generate valid passwords. The length of the passwords and the number of passwords to compute can easily be adjusted.
#!/usr/bin/python3
import angr
import claripy
import subprocess
from datetime import datetime
# argument to hook
def skip_banner(state):
@BinaryResearch
BinaryResearch / find_valid_usernames.py
Last active January 17, 2020 23:35
uses angr to automatically generate valid usernames for keygenme
#!/usr/bin/python3
import angr
import claripy
from datetime import datetime
# called in the hook to skip instructions
def skip_banner(state):
pass
@BinaryResearch
BinaryResearch / repair_section_info.py
Created January 17, 2020 02:56
Uses lepton to write correct values to e_shoff, e_shnum and e_shstrndx. Creates new binary with fixed header.
#!/usr/bin/python3
from lepton import *
from struct import pack
def main():
with open("keygenme", "rb") as f:
elf_file = ELFFile(f)
elf_file.ELF_header.fields["e_shoff"] = pack("Q", 0x00003128)
@BinaryResearch
BinaryResearch / autosolve_keygenme.py
Last active January 16, 2020 23:23
This program uses angr to automatically find a valid username and password to solve the keygenme found at https://crackmes.one/crackme/5d7c66d833c5d46f00e2c45b
#!/usr/bin/python3
# crackme page: https://crackmes.one/crackme/5d7c66d833c5d46f00e2c45b
# download link: https://crackmes.one/static/crackme/5d7c66d833c5d46f00e2c45b.zip
# zip archive password: crackmes.one
import angr
import claripy
import subprocess
from datetime import datetime