For more info, CAFE BABE is a magic number for .class. It's intentional and was created by the developers. CAFE because some people call coffee java. BABE because they liked it. There was also CAFE DEAD for objects and that's because during the development they used to hang out in a Grateful Dead cafe. Anyways those magic numbers are very common and if you open different files with a hex editor you will see a lot of them have printable ASCII characters somewhere at the beginning. For example gif has "GIF89a" or ""GIF87a", executable elf files (linux) have "ELF" , png have "PNG". In itsec you will sometimes need those magic numbers to hack webapps. For example in fileuploads that allow only pictures to hide code to create a backdoor. Also the "file" command John is using in practically every video so far, uses, among other things, magic numbers to identify what file it is. For more info you can look up "Magic numbers" and about the CAFE BABE story "Gosling CAFE BABE"
It does accept class files, but if you read the stack trace of jadx it says it's an unsupported class version which means he's trying to decompile a file with a greater major version than the JDK installed on his computer. Java is backwards compatible, not forwards.
3:39 the question I ask my self everyday.
Do more picoCTF I like watching these videos
00:51 Interesting. At the beginning of the code there is CAFE.
In Brazil (café) CAFE = coffee in the USA.
For more info, CAFE BABE is a magic number for .class. It's intentional and was created by the developers. CAFE because some people call coffee java. BABE because they liked it. There was also CAFE DEAD for objects and that's because during the development they used to hang out in a Grateful Dead cafe. Anyways those magic numbers are very common and if you open different files with a hex editor you will see a lot of them have printable ASCII characters somewhere at the beginning. For example gif has "GIF89a" or ""GIF87a", executable elf files (linux) have "ELF" , png have "PNG". In itsec you will sometimes need those magic numbers to hack webapps. For example in fileuploads that allow only pictures to hide code to create a backdoor. Also the "file" command John is using in practically every video so far, uses, among other things, magic numbers to identify what file it is. For more info you can look up "Magic numbers" and about the CAFE BABE story "Gosling CAFE BABE"
This comment is so skull emoji
7:35 cat flag.txt | tr -d '
'
Thanks John, always learn a new trick from you
Honestly just use the JD eclipse plugin
it seems that jadx does not accept .class files, only .jar file. I don't know why but help page mentioned that.
It worked on my machine with the .class
It claims to take .class files in the list of accepted files?!???
It does accept class files, but if you read the stack trace of jadx it says it's an unsupported class version which means he's trying to decompile a file with a greater major version than the JDK installed on his computer. Java is backwards compatible, not forwards.
Another good one 👍
use jadx-gui instead its way easier to work with
I am giving malware by telling you about lookout security app and asking you to remove it please
what if they were not ordered, your little extraction would've been useless, but nevertheless cool video to look at.
I did with ghidra ^.^ this is bad ye? hh