I need some help with simple crackme written in DevC++ only 20KB weight. I figure out that name is "admin" and password is "LOL2BIN" but this is not end I get message and I dont know what to do next... We can enter name and password in two ways:
1) In command line when starting application with parameters
2) While application is running
I think is something about exploitations but I am new with this...
https://ufile.io/kxe03

92b5_08.06.2017_EXELAB.rU.tgz - alternative.exe

| Сообщение посчитали полезным:

NHFL writes:
I think is something about exploitations
Probably yes. You can make buffer overflow when answering question "no username/password given... do you want to enter them now? (yes/no)". You need to enter long string (which will modify return address in stack) at 1st attempt and "no" at 2nd attempt. As a result, program will print message "Now you're administrator".

| Сообщение посчитали полезным: CyberGod

Thank you

| Сообщение посчитали полезным:

NHFL writes:
I need some help with simple crackme written in DevC++ only 20KB weight.

Thank you for sharing this crackme. I agree with Prober. At http://www.oneclubofjusticides.com/p/bof2.html I'm showing, with analysis and screenshots, a "shellcode" string that accomplishes the task without entering the password.

I must say, though, that the crackme's mention of "Last four bytes of the 'alternative password'" turns confusing. Since no password is supposed to be entered, then one cannot identify its last four bytes. I searched for alternative program flows but didn't find anyone that would be relevant to the challenge.

| Сообщение посчитали полезным: tusofka