1. Contracting
    1. General
      1. Brexit
    2. Business / Contracts
      1. Coronavirus Assistance
    3. Accounting / Legal
      1. Umbrella Companies
      2. HMRC Scheme Enquiries
      3. The Future of Contracting
      4. IR35 Reform
    4. Technical
    5. Welcome / FAQs
  2. Social
    1. Light Relief
    2. Social / Events
  • Visitors can check out the Forum FAQ by clicking this link. You have to register before you can post: click the REGISTER link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. View our Forum Privacy Policy.
  • Want to receive the latest contracting news and advice straight to your inbox? Sign up to the ContractorUK newsletter here. Every sign up will also be entered into a draw to WIN £100 Amazon vouchers!

Who wants to become a spy?

Collapse
X
1 to 10 of 29 Previous 1 2 3 template Next
Collapse
Reply to Thread
  •  
  • Filter
  • Time
  • Show
Clear All
new posts
1 to 10 of 29 Previous 1 2 3 template Next
    #1

    Who wants to become a spy?

    The next 007

    UK intelligence agency GCHQ has launched a code cracking competition to help attract new talent.
    BBC News - GCHQ challenges code breakers via social networks


    Can you crack it?
    Fiscal nomad it's legal.
    Tags: None
    #2
    Originally posted by alreadypacked View Post
    The next 007



    BBC News - GCHQ challenges code breakers via social networks


    Can you crack it?
    No, because it says time remaining: 0 0 0

    Comment

      #3
      this means nothing to me but

      Code:
          // by petter wahlman, twitter: @badeip
    // solution to part #1 of http://www.canyoucrackit.co.uk/
    //
    // part2.h will be published along with solutions to the subsequent levels after 12 December 2011
     
    #include <stdio.h>
    #include <stdint.h>
    #include <malloc.h>
    #include <stdlib.h>
    #include <errno.h>
    #include <string.h>
    #include <time.h>
    #include <sys/types.h>
    #include <sys/mman.h>
    #include <sys/utsname.h>
     
    #include "part2.h" // see information above
     
    static char part1[] = {
        0xeb, 0x04, 0xaf, 0xc2, 0xbf, 0xa3, 0x81, 0xec,   0x00, 0x01, 0x00, 0x00, 0x31, 0xc9, 0x88, 0x0c,
        0x0c, 0xfe, 0xc1, 0x75, 0xf9, 0x31, 0xc0, 0xba,   0xef, 0xbe, 0xad, 0xde, 0x02, 0x04, 0x0c, 0x00,
        0xd0, 0xc1, 0xca, 0x08, 0x8a, 0x1c, 0x0c, 0x8a,   0x3c, 0x04, 0x88, 0x1c, 0x04, 0x88, 0x3c, 0x0c,
        0xfe, 0xc1, 0x75, 0xe8, 0xe9, 0x5c, 0x00, 0x00,   0x00, 0x89, 0xe3, 0x81, 0xc3, 0x04, 0x00, 0x00,
        0x00, 0x5c, 0x58, 0x3d, 0x41, 0x41, 0x41, 0x41,   0x75, 0x43, 0x58, 0x3d, 0x42, 0x42, 0x42, 0x42,
        0x75, 0x3b, 0x5a, 0x89, 0xd1, 0x89, 0xe6, 0x89,   0xdf, 0x29, 0xcf, 0xf3, 0xa4, 0x89, 0xde, 0x89,
        0xd1, 0x89, 0xdf, 0x29, 0xcf, 0x31, 0xc0, 0x31,   0xdb, 0x31, 0xd2, 0xfe, 0xc0, 0x02, 0x1c, 0x06,
        0x8a, 0x14, 0x06, 0x8a, 0x34, 0x1e, 0x88, 0x34,   0x06, 0x88, 0x14, 0x1e, 0x00, 0xf2, 0x30, 0xf6,
        0x8a, 0x1c, 0x16, 0x8a, 0x17, 0x30, 0xda, 0x88,   0x17, 0x47, 0x49, 0x75, 0xde, 0x31, 0xdb, 0x89,
        0xd8, 0xfe, 0xc0, 0xcd, 0x80, 0x90, 0x90, 0xe8,   0x9d, 0xff, 0xff, 0xff, 0x41, 0x41, 0x41, 0x41,
    };
     
    // code to dump the decrypted memory:
    static const char dump_mem[] = {
        0xba, 0x31, 0x00, 0x00, 0x00,   // mov    edx, 0x40
        0x8d, 0x4f, 0xce,               // lea    ecx, [edi-0x32]
        0x31, 0xdb,                     // xor    ebx, ebx
        0x43,                           // inc    ebx (stdout)
        0x31, 0xc0,                     // xor    eax, eax
        0xb0, 0x04,                     // add    al, 0x4           - sys_write
        0xcd, 0x80,                     // int    0x80
        0x31, 0xdb,                     // xor    ebx,ebx
        0x43,                           // inc    ebx
        0x31, 0xd2,                     // xor    edx,edx
        0x42,                           // inc    edx
        0x68, 0x0a, 0x00,0x00, 0x00,    // push   0xa
        0x8d, 0x0c, 0x24,               // lea    ecx,[esp]
        0xb8, 0x04, 0x00,0x00, 0x00,    // mov    eax, 0x4
        0xcd, 0x80,                     // int    0x80              - sys_write
        0x31, 0xdb,                     // xor    ebx,ebx
        0x31, 0xc0,                     // xor    eax,eax
        0x40,                           // inc    eax
        0xcd, 0x80,                     // int    0x80              - sys_exit
    };
     
    uint32_t patch_mem(char *ptr, size_t size)
    {
        uint32_t i;
     
        for (i = 0; i < size; i++) {
            if (*(uint16_t *)&ptr[i] == 0x80cd) {
                *(uint16_t *)&ptr[i] = 0x45eb;
                return 0;
            }
        }
        return 1;
    }
     
    uint32_t check_arch(void)
    {
        struct utsname kernel_info;
     
        uname(&kernel_info);
        return strcmp(kernel_info.machine, "i686") ? 1 : 0;
    }
     
    int main(int argc, char **argv)
    {
        void *mem;
     
        if (check_arch()) {
            printf("[-] this program must run on a 32-bit architecture\n");
            return 1;
        }
     
        printf("[*] allocating page aligned memory\n");
        mem = memalign(4096, 4096);
        if (!mem) {
            printf("[-] error: %s\n", strerror(errno));
            return 1;
        }
        memset(mem, 0, 4096);
     
        printf("[*] setting page permissions\n");
        if (mprotect(mem, 4096, PROT_READ | PROT_WRITE | PROT_EXEC)) {
            printf("[-] error: %s\n", strerror(errno));
            return 1;
        }
     
        printf("[*] copying payload\n");
     
        memcpy(mem, part1, sizeof(part1));
        memcpy(mem + sizeof(part1), part2, sizeof(part2));
        memcpy(mem + sizeof(part1) + sizeof(part2), dump_mem, sizeof(dump_mem));
     
        printf("[*] adding dump_mem payload\n");
        if (patch_mem(mem, sizeof(part1))) {
            printf("[-] failed to patch memory\n");
            return 0;
        }
     
        printf("[*] executing payload..\n\n");
     
        ((int(*)(void))mem)();
     
        return 0;
    }
      source
      The proud owner of 125 Xeno Geek Points

      Comment

        #4
        Originally posted by alreadypacked View Post
        The next 007



        BBC News - GCHQ challenges code breakers via social networks


        Can you crack it?
        Depends are you offering to by Ms Monneypenny with all the repressed sexual tension that goes on between her and Cmdr Bond?
        Originally posted by Stevie Wonder Boy
        I can't see any way to do it can you please advise?

        I want my account deleted and all of my information removed, I want to invoke my right to be forgotten.

        Comment

          #5
          Originally posted by chef View Post
          this means nothing to me but
          This code is written in C++.

          I had to look carefully to ascertain this as there is no evidence of object orientation within this code sample so it could easily be mistaken for C.

          Indeed it is just C with some sugar on it.

          The give away is the use of pointers.

          EDIT: This is where Is aw use of pointer: if (*(uint16_t *)&ptr[i] == 0x80cd)

          HTH

          Joshi

          Comment

            #6
            I would love to be a spy, but they wouldn't have me...
            Don't ask Beaker. He's just another muppet.

            Comment

              #7
              Do I get to meet Alotta Fagina and Ivana Humpalot?

              Comment

                #8
                I imagine being a involves the usual permie bulltulip: performance reviews, mandatory training days, team briefings etc.

                Comment

                  #9
                  GCHQ is full of semi autistic miss-fits with a bloated sense of self importance, you lot should fit in just nicely.
                  Science isn't about why, it's about why not. You ask: why is so much of our science dangerous? I say: why not marry safe science if you love it so much. In fact, why not invent a special safety door that won't hit you in the butt on the way out, because you are fired. - Cave Johnson

                  Comment

                    #10
                    Originally posted by gingerjedi View Post
                    GCHQ is full of semi autistic miss-fits with a bloated sense of self importance, you lot should fit in just nicely.
                    Crikey, I wondered where sasguru worked!

                    Comment

                    Reply to Thread
                    1 to 10 of 29 Previous 1 2 3 template Next

                    Advertisers

                    1. Contracting
                      1. General
                        1. Brexit
                      2. Business / Contracts
                        1. Coronavirus Assistance
                      3. Accounting / Legal
                        1. Umbrella Companies
                        2. HMRC Scheme Enquiries
                        3. The Future of Contracting
                        4. IR35 Reform
                      4. Technical
                      5. Welcome / FAQs
                    2. Social
                      1. Light Relief
                      2. Social / Events
                    Working...
                    X