Possibly Related Threads…

Jesta81 · Oct 25, 2023, 05:36 PM

(Oct 21, 2023, 09:16 PM)cutearmadillo Wrote:
(Oct 21, 2023, 03:26 PM)Jesta81 Wrote: Any help with root part would be greatly appreciated. I can see the following main func for doodle in Ghidra but unsure where to go from here?

undefined8 main(void)

{
int iVar1;
long in_FS_OFFSET;
char local_58 [16];
char local_48 [56];
long local_10;

local_10 = *(long *)(in_FS_OFFSET + 0x28);
setenv("PATH","",1);
setuid(0);
setgid(0);
puts(
"[!]Caution this tool still in the development phase...please report any issue to the developm ent team[!]"
);
puts("Enter Username:");
fgets(local_58,0x10,(FILE *)stdin);
sanitize_string(local_58);
printf("Enter password for ");
printf(local_58,0x10);
puts(":");
fgets(local_48,400,(FILE *)stdin);
sanitize_string(local_48);
iVar1 = strcmp(local_58,"moriarty");
if (iVar1 == 0) {
iVar1 = strcmp(local_48,"findMeIfY0uC@nMr.Holmz!");
if (iVar1 == 0) {
puts("Welcome...!");
main_menu();
goto LAB_0040231e;
}
}

You use the information you've posted to bypass the auth on the binary and then check the rest of the code in ghidra. There are a lot of hints in this thread

Thank you for the nudge...got it!! Much appreciated!!

Possibly Related Threads…
Thread		Author	Replies	Views	Last Post
	[FREE] CPTS 12 FLAGS	pulsebreaker	68	1,916	4 hours ago Last Post: VictorPipeau
	[FREE] HackTheBox Dante - complete writeup written by Tamarisk	Tamarisk	601	91,514	4 hours ago Last Post: VictorPipeau
	[FREE] 300+ Writeups PDF HackTheBox/HTB premium retired	Tamarisk	371	92,790	5 hours ago Last Post: phannguyenbaouy1
	[FREE] HackTheBox Academy - CBBH CDSA CPTS All Modules Flags	Techtom	21	2,604	9 hours ago Last Post: popoler
	Hack the box Pro Labs, VIP, VIP+ 1 month free Method	RedBlock	23	2,246	Yesterday, 02:10 PM Last Post: kkkato