PDA

View Full Version : I'm looking for any stuff protected by Crypkey !


blackos
January 20th, 2002, 17:56
Hi all !

I'm looking for any program protected by a recent version of crypkey ...

The kind of program is not important, but Crypkey is

If anybody can post any valid (software really protected by Crypkey) url here, I'll be very happy.



thanks !

bye.

blak.

scorpie
January 21st, 2002, 09:01
Hello there,

Try h**p://www.ermapper.com (proggie: ERMAPPER 6.2).

This is a "modified" Crrypkey, and I am sure you will have a lot of fun.

jsteed
January 21st, 2002, 10:59
I don't believe ermapper 6.2 is protected by crypkey. The company put it's own protection in that version and is pathetically weak. Version 6.1 however was protected with crypkey. Ketronics MPSIII 4.0 is protected by crypkey and is a good target because it uses both the option and level variables.
jsteed

scorpie
January 21st, 2002, 12:54
Hello jsteed,

ERMAPPER version 6.1 is certainly protected by Crypkey, although the Site Key consists of more than 26 Hex's (pls recall that Crypkey Site Key consists of 26 Hex's). Version 6.2 is also protected by Crypkey. Have a look the Site Code and drop the first 8 Hex's, then the rest of the code is our Crypkey Site Code.

What you mean by weak ? Does it mean you have understood how the protection works ? Kindly share your knowledge if that is true.


Bye,

Scorpie

blackos
January 21st, 2002, 17:00
thanks guys !

I need these urls not because I'm gonna try to break Crypkey protection, but because it's already done and I need more examples to find bugs in my little unpacker/unprotector for Crypkey.
It actually automatically unpack the protected executable, then, uncipher the imports and write down a new clean executable without Crypkey layer. It was done with a program protected by version 5.7 of crypkey, that's why I need to test it with other programs.

By the way, if anybody needs some infos about Crypkey, I'll be happy to take a break and try to explain what I understood about this funny protection.

thanks...

don't forget to give me more urls if you can.


blak.

jsteed
January 21st, 2002, 18:36
Hi Scorpie,
Hmmm.. maybe there are two versions of ermapper 6.2. The one I have doesn't seem to be crypkey protected. I agree some parts of the site code & site key look similar but they do not pass the crypkey checksum tests. The protection is contained in a function erm_get_license_status. The encryption function is also there, but the algo does not look like crypkey either. Enclosed is a short tutorial and the source code for a keygen. The whole process took less than a day as opposed to nearly two weeks for a complete bust of crypkey, Hence the 'pathetically weak' comment. Those two extra chars. at the end of the 6.1 version I think is the company vendor ID (just a guess). They seem to use it as a 2nd check for a good site key.
jsteed

scorpie
January 21st, 2002, 21:35
Hello jsteed,

Thank for the response. I will come back to you later, once I finish with my "small job".


Bye,

scorpie

peterg70
January 22nd, 2002, 07:09
Blackos: Would like to get a copy of the unpacker when it ready. I have been doing some crypkey work myself.

But note not all crypkey implementations are exe wrapped. Some utilise the crypkey functions to determine permissions for operation and are usually encoded inside the exe or dll..


Another crypkey wrapped program i found was paqrat. Don't know what version of crypkey it was w*w.paqrat.c*m

Scorpie: I see your still around. Thought you had finished on the crypkey stuff??


Peterg70

blackos
January 22nd, 2002, 07:51
Hi Peterg70 !

thank you for the link, I'm gonna try...

could you give me an e-mail address to send you the stuff about Crypkey ?... it's a bit too large to join it to this forum....

(about 178 ko)....

have fun.

bye.



blak.

thewd
January 22nd, 2002, 16:23
for anyone interested in the crypkey protection, i wrote a utility a while back that displays the information contained in the encrypted keys (for master keys, user keys, site codes, site keys, restriction keys & entry keys)

regards
thewd

[10 March 2002]
v1.04 uploaded
- supports confirmation codes
- when generating site key, can now enter user key, user key value or the password
- minor updates

[02 April 2002]
v1.051 uploaded
- scripting engine added for key creation
- further examples and sample scripts
- fixed a couple of issues

scorpie
January 23rd, 2002, 12:18
Hi Jsteed,

That is a nice tutorial, and more of this kind are welcomed.

My proggie is exactly the same as yours. I should agree with you that the algo is not crypkey, but the way how it transfer the license as well as the site code are certainly Crypkey, so I would guess it is derived from Crypkey. Regarding your keygen, I am not sure in the following:

1. Do you mean ermapper62.h is the one from the proggie (ermapper.h).

2. Where can I find vcl.h ? (I could give you my e-mail).


Regards,

scorpie




Hi Peterg70,

With additional information from JMI, I have solved the crypkey protected program, but ermapper 6.2 is interesting. Have a look the tutorial from Jsteed, it is informative.


Regards,

scorpie


Hi Blackos,

Do you mind to send your unpacker to me ? I am learning Crypkey protection systems.
Thank in advance.

Regards,

scorpie


Hi thewd,

What a nice utility you have.

Regards,

scorpie

jsteed
January 23rd, 2002, 15:43
Hi Scorpie,

Thanks, I'm glad you liked the tut. You won't need the header files that you mentioned. vcl.h is from borland c++ builder and is used by the compiler to determine whether debug info should be included. ermapper62.h just contains a published list of components for the IDE. You would want to make your own front end and probably clean up the code too. It was just a quick and dirty job. I have not looked at the function that produces the site code. If it is crypkey then the program must be compiled with static libraries since the crypkey dll's are not used. Also the site code does not change each time LicenseWizard is run so it must not use systime to randomize this. I guess ermapper got tired of paying crypkey for their product and thought they could code up something just as good. That shouldn't be very hard to do, but they didn't pull it off this time.
regards, jsteed

blackos
January 23rd, 2002, 16:10
Hi Scorpie !
If you want me to send you any information I've found about Crypkey and/or the unwrapper, please, let me know where (your e-mail address) to send all the stuff.


I'm pleased to see people interrested in this protection scheme !... I searched during a long time and found nobody until this time !

So thanks everyone.

blak.

scorpie
January 23rd, 2002, 21:15
Hi Jsteed,

Thank you for the explanation.

I am curious about your keygen, although I have found the Auth. Key manually.


Regards,

scorpie

scorpie
January 23rd, 2002, 21:22
Hi Blackos,

I appreciate very much your cooperation.

I have sent my e-mail address, so kindly check your e-mail.


Regards,

scorpie

hasher
January 25th, 2002, 22:46
editorsoftware.com/stylewriter/index.html


crypkey 5.6

Hope it helps

Hash

blackos
January 26th, 2002, 16:12
Hi Hasher !

Thanks a lot for the new link !

best regards.

blak.

pReJkEr
January 28th, 2002, 08:20
try: *******http://***.swishzone.com/[/url]
prog: SWiSH of course

blackos
January 29th, 2002, 06:21
Thank you all !

I don't need new urls anymore. All I've got is enough.

once more, thanx !

blak.

egads
February 2nd, 2002, 21:33
hello blackos
in case you need another to test, try brainvoyager, a brainmapping program. can send you the demo exe if you want it
brainvoyager.com

i would also like any information you have on crypkey and the unwrapper you are creating. i have just begun to figure out crypkey and would find your info helpful. thanks

egads

peterg70
February 3rd, 2002, 06:28
Egads

Might be worthwhile doing a search on this board and seeing what has already been done.


Peterg70

egads
February 3rd, 2002, 13:57
Thanks Peterg70,
I had indeed searched the board and found some useful infos. several posts ago, blackos had kindly offered to take a break and explain what he had understood about this protection, so i thought i would take up that offer.
egads

muslhead
March 10th, 2002, 17:50
Hi Blackos:
If you are still looking for CK protected pgms you can download a nice one at .naviplan.com (get the naviplan extended).

If you have trouble, email me and I will send it to you.
Musl

thewd
April 1st, 2002, 00:55
uploaded v1.051 of ckInfo, with includes a scripting engine for key creation. also, includes a number of samples scripts for crypkey instant, crypkey site key generator, swish, uk info disk and more...

original post above (http://www.woodmann.net/forum/showthread.php?s=&threadid=2544#post12996)

regards
thewd

glasha
April 3rd, 2002, 00:26
Hello all guys, i need help about this protection, how find level optios and pass to generate userkey via ckinfo, please send me all information and stufff


i only ar can path via get_authorization jz -jnz


thanks all for this information about of crypkey!!!!!


Best regards !

email123
April 13th, 2002, 18:57
hi,everyboby,how can I crack this changed crypkey protected programme by mpsiiilm.exe



thank you all for any help!!!

peterg70
April 14th, 2002, 01:43
First Rule of Requesting a crack : DON'T

Second Rule of Requesting : SEARCH (notice that little button up the top of the screen [NOT THE MICROSOFT ONE])

Thirdly and finally : DON'T ASK FOR A CRACK. Show us what you've done and we help with pointers.


Sorry for ramblings
peterg70

glasha
April 25th, 2002, 12:05
hi thewd if you can help me how get option/level from a protected aplication i try with breapoints, but sice dont break, this function dont is called, i need search in execution of a program ?

thewd
April 25th, 2002, 13:25
there are a number of ways to obtain the level/options, but they may not work will all applications,

- monitor (possibly through breakpoints, or by examining disassembled code) function calls to GetAuthorization, GetLevel, GetOption; and see what values are checked for:
   int GetAuthorization(unsigned long *oplevel, int decrement);
   unsigned long GetLevel(int numDefineOpts);
   int GetOption(int numDefineOpts, int optnum);
   Note: these function calls could be to a separate module, or embedded within the application, depending on whether it uses static or dynamic crypkey libraries

- examine using ckInfo, the site key contained in the ???.key file (providing the application is registered successfully, i.e. trial version with all features enabled)

- examine the function calls ReadyToTry, ReadyToTryDays, ReadyToTryRuns to see what values are passed:
   int ReadyToTry(unsigned long oplevel, int numDays);
   int ReadyToTryDays(unsigned long oplevel, int numDays, int version, int copies);
   int ReadyToTryRuns(unsigned long oplevel, int numRuns, int version, int copies);
   Note: you should be able to get these values without using a debugger - disassemble the code

regards
thewd

p.s. glasha: what application are you looking at?

glasha
April 25th, 2002, 18:13
i have try with you information, i have dissasemble but this is packed and dont show any information about option/level, debugging only breack in get_authorization, init_crypkey and get_RTT *( ready to try) is called only when generate autorization to run 20 uses, i can try more, thanksfor you very good help 1





the aplicattion is from www.compac.com.mx any aplicattion is protected with crypkey 5.5. SDK and packed



Than very much Thewd !