🔓 I Cracked a 20-Character Password Using Just 5 Letters and a Clock | Google CTF (BEGINNER'S QUEST)

The server gave me the first 5 letters of a 20-character password and said I'd never guess the rest. It was wrong — and it took under a second. In this video I solve "Guess Password Easy" from Google CTF (BEGINNER'S QUEST). The vulnerability is a classic weak PRNG bug: the C program seeds rand() with time(0), making the "random" password completely predictable if you know what to look for. 🧠 What you'll learn: → What rand() and srand() are — and why they're dangerous → Why seeding with time(0) is a critical mistake → How to read C source code to spot vulnerabilities → How to replicate C's rand() in Python using ctypes → How to build a working exploit script from scratch 🔗 Tools used: → Python 3 + ctypes (no extra installs) → pwntools (pip install pwntools) Follow me on Instagram :-   / kushgo13   Follow me on Tweeter :-   / kushgo13   #ctf #cybersecurity #ethicalhacking #pythonexploit #ctfwriteup #reverseengineering #prng #beginner