Try your luck on this one: www.backtrace.de/cashdispenser

Looking forward to your solutions!

i haven't been able to access http://www.backtrace.de ("http://www.backtrace.de") / http://www.sport-und-event.de/backtrace.de/ ("http://www.sport-und-event.de/backtrace.de/") for weeks

ah, i remember you saying that once on irc.
but sorry, I dunno what the problem is. maybe try a proxy?
does anyone else have this problem ?

Here ya go.

simulation software of the German EuroBank AG.

Solutions will only be accepted until the 30th of April 2004 !!

Regards,

not really hard, so you guys should hurry up

http://www.backtrace.de ("http://www.backtrace.de") gives me a 302 redirect to http://www.sport-und-event.de/backtrace.de/ ("http://www.sport-und-event.de/backtrace.de/"), but i can't resolve www.sport-und-event.de ("http://www.sport-und-event.de") to an ip address

It sure opened rightly for me

doug, finished yet ?

ya, well, it's 'the document the interface' part that turns me off a bit

Wish i could understand what the fuck the german means in the program too

since its fictitious, why not using english directly ?

I don't speak / understand german either, however,
http://babelfish.altavista.com/ was enough to understand what each msg stands for...

use babelfish, treat the german language as the first hurdle.

Do we allowed to patch card.bin then it is easy to smash it for fun and profit

Woodmann

Readme.txt says:

Your goal is to

1.) decompile the software
2.) document the software
3.) find potential programming flaws
4.) exploit the vulnerabilities by
gaining control over the cash dispenser
5.) describe how to fix/secure the code

---
Anything else is not a valid solution.

I dont get it.If we have access to cash dispenser(software) directly we can change it in anyway we want.No fun in it.

i don't think your exploit can change anything in the .exe (however, when fixing those security vuln., then obviously there are changes to the exe)

The way I see it, the only input into the ATM machine (that you have control over) is the card.

why don't you just start off with the first task rather than discussing about patching anything ?

I know what I am talking about.Of course I dissambled it.As you know it gets name until it reaches 0 char.So if you patch card.bin you can let it to read a lot of bytes.And because name buffer 52h you wil have nice buffer overflow.Whatever.

but..

this is crackme or "upgrademe"?(upgrade my prog?)

there's nothing more to say, except if you're posting solutions here - where's the fun in it? readme.txt says it all.

IMHO, reverse engineering this program is like cracking a crackme, a total waste of time. Why find vulns in that program when one can find vulns in real programs?

imho, crackmes are often toy examples for specific problems.

If you can't do this crackme, you can't expect to do any kind of serious reversing on bigger, more complicated programs.

Usually, you don't waste time on a crackme unless there's something new/interesting to learn.

the task is to decompile it (convert it to 'C' or 'Pseudocode', not to crack it. but of course, if you are a pro at reverse engineering there's no reason to try it.