Solving Flare-On 2016 Challenge 1 with Angr

Took me way too long to finally getting around to publishing this post, but here it is. Last fall, FireEye announced their 3rd annual Flare-On challenge. It's sort of a recruiting thing for them, I think -- if you solve all the challenges (and especially if you solve them quickly)…

Comments

Installing Angr in Windows

EDIT (7/15/2017): Updated instructions below. You no longer need Cygwin! Angr installs... seems to work mostly fine... but Z3 runs out of memory and crashes once it hits about 2GB. Not sure what's going on with that; haven't had a lot of time to troubleshoot yet. Also haven't…

Comments

Solving Dakotacon 2015 RE C2 challenge with Angr

Background The motivation my last entry was to provide an easier way for me, and others, to learn more about (and use!) Angr. Well, I've finally had some time to play around with Angr, and I've been able to use it to solve two CTF challenges (as of now --…

Comments

Eye of Jupyter: Angr iPython Notebooks in Sandstorm

EDIT (11/1/16): Well, Eye of Jupyter is now on the Sandstorm appstore, and is now simply called Angr Binary Reverse-Engineering! Many thanks to Asheesh Laroia for suggesting I publish it, and guiding me along the way. At the suggestion of a friend, I decided to take a look…

Comments

PoliCTF 2015 'Am I Cheating?' Reversing Writeup

This challenge was available only via the torrent -- probably because of its large size (close to 4GB). Let's go! Decompress and run Decompressing the challenge's .tar.gz gets you this: > $ file * challdeb.img: QEMU QCOW Image (v2), 6442450944 bytes qemu: directory run_and_solve_me: ELF 64-bit LSB…

Comments