I’ll be honest, a lot of your videos I have no idea what you are doing, but I enjoy watching you and your skill set and what is possible with the right tools. 🙏
In case anyone else was curious what the 'unscramble_flag' function did, here's the rough equivelent in Python 3: bytes([ b + (0x2F if b < 0x50 else -0x2F) for b in bytes([ 0x41, 0x3a, 0x34, 0x40, 0x72, 0x25, 0x75, 0x4c, 0x34, 0x46, 0x66, 0x30, 0x66, 0x39, 0x62, 0x30, 0x33, 0x3d, 0x5f, 0x63, 0x66, 0x30, 0x62, 0x65, 0x35, 0x35, 0x62, 0x60, 0x65, 0x32, 0x4e ]) ])
I first saw the code then the description you gave but I immediately recognized it as Python3-code because two of my last three Python3-projects involved exactly that, converting lists of numbers between 0x00 and 0xff to byte strings (`bytes` object) XD
This is my first time seeing Reverse Engineering. I am like WOW, this is so fun to watch & do. THanks John for introducing this very interesting things to us. :)
couldn't this be done in some other way, my feed is filled with all those uploads making it harder to browse, don't wanna unsubscribe cus I appreciate your work though!
Quite the same, after the first burst of videos I figured it was just a mistake or an error with the scheduler. After this new one I unsubbed unfortunately, as I enjoyed the content. RUclips should by now have made a limit, say 3 posts of a single person in the sub feed.
Would love to see a video on rebasing. I have a hard time with alignment using strings. Would love a newbie friendly of you rebasing binaries that do not align in disassembler. thanks!!
First of all, you're incredibly talented and even though I only comprehend bytes here and there its always interesting to follow along. My limited experience in reversing all took place in Olly x64/32 and recently hit a wall with some software for an automotive interface i paid good money for several years ago.. the mfgr ended support for it so theyre no longer supplying the updated "launcher" software that basically hijacks the proprietary diagnostic platform for the Blue Oval. The magic happens during the app startup process as long as the interface is connected to the car and the laptop via prolific serial over usb cable. Im not sure how to get olly to follow this process since the launcher software only exists to launch the official application without those pesky license requirements. I really just want to edit the last launcher update i got to get it to load the newer version of the main application. serval sources have figured it out and charge for their Re-Hack of the Hacked app and i would rather make the adjustments myself if i can just get started in the right direction. long winded sorry, its a simple (ish) app thats strangely hard to describe in a short and sweet mannor lol. how can i get a good breakdown of what its doing? TIA
I think if you just made it so the instead of if it equals the hexadecimal, does not equal that, then run the program, and any number will give you the flag.
Everytime I Try to run a binary file on my kali linux I am getting exec format error...so I am not able to solve any rev engineering problems....can someone plss help with it🙏🙏🙏🙏
My etc/apt/sources.list is using Kali Linux's default repo, but I can only install strace. ltrace keeps getting an error: "Unable to locate package". Has anyone figured out a working alternative repo?
Headless for Java means its stripped of mouse and keyboard input libraries and whatnot. Badly breaks java swing, so you probably don't want to use that.
Its zsh the shell that he uses, it isn’t bash. And the theme is the default kali theme. There are many other custom themes and wrappers such as powerlevel10k if you dig it deeper tho
That's pretty much the _only_ way to remove previously unknown malware: reverse engineer it, figure out all changes it makes and then undo all those changes on an infected system.
wtf, this is weird I had been watching your videos and even follow you in LinkedIn for years and just found out I wasn't subscribed to your channel. RUclips be playing tricks, they welcome you with your favorite channel for ever and you will never know you weren't subscribed because everytime you open youtube and see the same person there you automatically think you are subscribed
im watching your video and honestly i'm 80% didn't understand what are you doing exactly. i wonder what level is that ? im sure it is advanced level . where to start to achieve your level ??
Stuff from the repos on your distro tend/might be really old. In case of ghidra you just download and extract it so thats the fastest way to get the latest.
I wanted to ask same. I thought it might be the reason but to make sure... Is that a problem with distros like fedora or arch!?... those are more up to date than Debi an right!?
Hi , I am new PicoCTF . and i try to solve that for practice if i cant i am looking for in google for solving . But I cant find picoCTF notepad Author: ginkoid . Can you help me? How can i solve that
I do not have time with all these load it opens this read there and there then crack it i refuse all these stuff at the end you have to find the way to get in to the software, easy ways quickly just load malware to infect
Pretending its the first time you are looking at the code while having forgotten to edit out the clip that you actually stumbled upon it fot the first time.... no need to do that keep it real
is this real life? or just fantasy? so about that if you want more security stuff check out jh.live/training and join up at jh.live/newsletter 👀
Liked that one, since it is an easy example of how to disassemble code and make sense of what is readable. Perfect as a beginner tutorial.
I like the way you take us through step by step. I am learning a lot from these videos.
same
I’ll be honest, a lot of your videos I have no idea what you are doing, but I enjoy watching you and your skill set and what is possible with the right tools. 🙏
These videos are the spam I like to get, each one with GREAT info on CTFs.
Thanks John!
I have no idea why RUclips decided to recommend me these videos but I'm glad it did. This is awesome!
same here, I was watching people eating 30 bags of cheetos and I ended up here
@@vivarantx lmao
Been loving the PICO CTF videos you’ve been making have watch most of them and have been learning a lot as i am just a noob in IT
I'm so bad at RE but love watching others do it so I can pick up on little things each time.
Hey! Do you feel like you're better at it now?
Are you good at it now?
In case anyone else was curious what the 'unscramble_flag' function did, here's the rough equivelent in Python 3:
bytes([ b + (0x2F if b < 0x50 else -0x2F) for b in bytes([
0x41, 0x3a, 0x34, 0x40, 0x72, 0x25, 0x75, 0x4c,
0x34, 0x46, 0x66, 0x30, 0x66, 0x39, 0x62, 0x30,
0x33, 0x3d, 0x5f, 0x63, 0x66, 0x30, 0x62, 0x65,
0x35, 0x35, 0x62, 0x60, 0x65, 0x32, 0x4e ])
])
I first saw the code then the description you gave but I immediately recognized it as Python3-code because two of my last three Python3-projects involved exactly that, converting lists of numbers between 0x00 and 0xff to byte strings (`bytes` object) XD
This is my first time seeing Reverse Engineering. I am like WOW, this is so fun to watch & do. THanks John for introducing this very interesting things to us. :)
Thank you for making these videos! I'm new to this, so being able to see how this works first-hand is extremely helpful.
The more spend I time on your channel the more I learn.
Did you just accidentally release every video for the next weeks/months at once? Holy moly, that's a lot of stuff in my Watch Later playlist now! x)
same. just have had a marathon watching them
Okay, so I'm not the only one.
Man u r DANGEROUS! lol 🙃☺ keep ur great work up dude! 💪
Love this intricate logic tricks.
I like the fact that in each ctf videos, I learn new tools to use for hacking. Now I check the bell icon. Keep on going man, u the best
RUclips after seeing so many uploads: i'm gonna end this man's whole career
A flashback and relearning TY!
couldn't this be done in some other way, my feed is filled with all those uploads making it harder to browse, don't wanna unsubscribe cus I appreciate your work though!
Yep, unsubbed
Quite the same, after the first burst of videos I figured it was just a mistake or an error with the scheduler. After this new one I unsubbed unfortunately, as I enjoyed the content. RUclips should by now have made a limit, say 3 posts of a single person in the sub feed.
@@KoskiK ah that would actually assume that RUclips would output usable work
You can do reverse engineering with the Linux shell only .
Would love to see a video on rebasing. I have a hard time with alignment using strings. Would love a newbie friendly of you rebasing binaries that do not align in disassembler. thanks!!
super and i am 2 years late watching your vid
I appreciate hearing your thought process as you go through the challenge
i just love you man,you are just awesome....... hope someday i will meet u in person.... u r doing a great job... keep it up. ❤️❤️
This was interesting. Liked and subscribed.
As far as open source content goes, John, you’re an OG. A goat. Appreciate the content and knowledge dude, stay humble.
Very nice video about rev, thx.
I really liked this one.
That was cool man!
Can you decode and file from ECU which usually .bin file, how we will be able to find the maps for tuning for new ECU
I like the term "low-hanging fruit 🍓" 😊
Great video
First of all, you're incredibly talented and even though I only comprehend bytes here and there its always interesting to follow along. My limited experience in reversing all took place in Olly x64/32 and recently hit a wall with some software for an automotive interface i paid good money for several years ago.. the mfgr ended support for it so theyre no longer supplying the updated "launcher" software that basically hijacks the proprietary diagnostic platform for the Blue Oval. The magic happens during the app startup process as long as the interface is connected to the car and the laptop via prolific serial over usb cable. Im not sure how to get olly to follow this process since the launcher software only exists to launch the official application without those pesky license requirements. I really just want to edit the last launcher update i got to get it to load the newer version of the main application. serval sources have figured it out and charge for their Re-Hack of the Hacked app and i would rather make the adjustments myself if i can just get started in the right direction. long winded sorry, its a simple (ish) app thats strangely hard to describe in a short and sweet mannor lol. how can i get a good breakdown of what its doing? TIA
Great stuff
Awesome bro
Love me some Ghidra!
You can use "apt search" too for package searching
agreed
Awesome!
Nice!
This would have been a perfect intro tutorial to reverse engineering with Ghidra
Hi John, can you please review "angr" for us. I don't have a clue where to start...lol
I think if you just made it so the instead of if it equals the hexadecimal, does not equal that, then run the program, and any number will give you the flag.
Awesome
Nice one
Easy with the upload sir
but you can make the same video with the imusic aimersoft program?
I wish I had a nice laptop like yours 🥺
you should also check out cutter
Very Nice
I guess its kinda good you didn't have the environment requirements preinstalled
Sir big fan of yours from Lamatol village, golbazar-06 municipality, siraha district, sagarmatha zone, Madhesh Pradhesh (province no 2), nepal 🇳🇵
Everytime I Try to run a binary file on my kali linux I am getting exec format error...so I am not able to solve any rev engineering problems....can someone plss help with it🙏🙏🙏🙏
TF I just watched! Interesting
Another way of converting from hex to decimal is with the `printf` command which can be found on any linux system; use `printf %d 0xc0ffee` to see
My etc/apt/sources.list is using Kali Linux's default repo, but I can only install strace. ltrace keeps getting an error: "Unable to locate package". Has anyone figured out a working alternative repo?
There are 11 hidden videos in the playlist, when do we get them? :)
Headless for Java means its stripped of mouse and keyboard input libraries and whatnot. Badly breaks java swing, so you probably don't want to use that.
It's a good video
what if we reverse engineer Ghidra binarys using GHidra?
6:20 (sdkman is a good tool for downloading java stuff)
The word "Bbbbbbbloat" is a bloated word and has the same effect as a mass of bloatware has on a PC: it works, but slower.
what will happen if I swap the iF and else condition
at 13:26 you already got the decimal by hovering over the number
In ghidra you can also change the display type
Please 🙏 sir can I use this to do reverse engineering on my mobile app??? Can someone help me out
oh look a user agreement, "i agree"
never to be thought of again
...would it be possible to have subtitles in Portuguese ???
MAHYOUB WE MISS YOU
hello sir your videos are great it helped me for solving and understanding all the ctfs of thm
i got it 🙋🏾♂️. where can i learn this reverse engineering
nice
John can you post the code that formats your bash (or zsh) prompt? From your .bashrc or wtvr config file.
I like that two-line prompt.
Its zsh the shell that he uses, it isn’t bash. And the theme is the default kali theme. There are many other custom themes and wrappers such as powerlevel10k if you dig it deeper tho
Can we reverse engineer malware and then remove them this way ?
That's pretty much the _only_ way to remove previously unknown malware: reverse engineer it, figure out all changes it makes and then undo all those changes on an infected system.
I am having fun.
Bro it is possible to convert intel hex to c code using this
Has anyone on bohemia has their initial deposit asst changed..
can't wait till you go over noted, was my favorite one
What is this stuff called? Cybersecurity?
its already in the video title.
Does anyone have the bbbblob file to try it out?
wtf, this is weird I had been watching your videos and even follow you in LinkedIn for years and just found out I wasn't subscribed to your channel. RUclips be playing tricks, they welcome you with your favorite channel for ever and you will never know you weren't subscribed because everytime you open youtube and see the same person there you automatically think you are subscribed
im watching your video and honestly i'm 80% didn't understand what are you doing exactly.
i wonder what level is that ? im sure it is advanced level .
where to start to achieve your level ??
Wait this is intresting
nice and simple, but fun nonetheless!
Does picoCTF have have challenges that are more based on web applications?
picoCTF has a web exploitation category
What is the Linux wizardry… dude was flying through the terminal like nobody’s business
can you send us your shell modifications? This looks so cool.
Question: why didn’t he “trust” the Ghidra from the official Kali repo? Why go through the process of installing manually??
Stuff from the repos on your distro tend/might be really old. In case of ghidra you just download and extract it so thats the fastest way to get the latest.
@@SheIITear noted! Thanks!
I wanted to ask same. I thought it might be the reason but to make sure...
Is that a problem with distros like fedora or arch!?... those are more up to date than Debi an right!?
Hi , I am new PicoCTF . and i try to solve that for practice if i cant i am looking for in google for solving . But I cant find picoCTF notepad Author: ginkoid . Can you help me? How can i solve that
👍
I do not have time with all these load it opens this read there and there then crack it i refuse all these stuff at the end you have to find the way to get in to the software, easy ways quickly just load malware to infect
Hey jhon can you please tell me how I can trace the memory leak from heapdump file?
cool but i didn't understand a single word said in this video
Sup
Man, nothing like getting spammed. Should have spaced it out.
Is this the apparently kid all grown up?
I solve it by viewing your video but you did it late by looking for other stuffs. Maybe you do to let us all understand everything
You gotta stop man, this is flooding my sub box
You seemed disappointed that you got the flag so quickly.
Have you ever got a live virus on your own system? Or a RAT?
John 1337 the king
ez
Removed from my feed for uploading 18 videos at a time. You know how RUclips works and that is not how you do it.
Bye don't let the door hit you on the way out
Pretending its the first time you are looking at the code while having forgotten to edit out the clip that you actually stumbled upon it fot the first time.... no need to do that keep it real