Results 1 to 10 of 10

Thread: HaspHL- Time Emulation Hangup

  1. #1

    HaspHL- Time Emulation Hangup

    #1) I've read the the faq
    #2) I've googled thoroughly before posting

    Here are the tools that im using

    A) Softkey HaspHL2007
    B) edgehasp.exe (for dmp to dng conversion)
    C) haSploGer (for initial information dump)

    Here is my procedure

    #1) Plug in hasp dongle, run hasploger, capture entire session
    #2) Information retrieved is as follows
    Pass1 = aaaaa
    Pass2 = bbbbb
    Type = HaspHL-Time
    Serial = xxxxxxxxxx
    #3) Start up HaspHL2007, install driver, start emulator service
    #4) Collect dongle information from Dumper tab, it captures correctly. This took several times to do, the dongle was not seen the first couple times
    #5) Make dng from dmp file with edge tool
    #6) Load DNG into HaspHL2007
    #7) File shows up properly, says "full version", etc
    #8) Load up EDGE tool again, select type HASPHL (also tried plain HASP)
    #9) Enter dongle serial number obtained from hasploger, set date from one day before current to a date in 2010
    #10) Generate string, paste into HL2007
    #11) Click update license

    I believe that i have taken all the proper steps, however the license does not appear valid to the program, it claims invalid license. I also have the program Unidumptoreg, do i need to make a registry file of some sort in addition to the steps i have taken?

    The other possibility is that the program contains anti-emulator code, however i find this highly doubtful, as its not even an executable. Its just a raw JAR with several types of protection mashed into it (flexLM, a custom license file, or a hasp usb token), doesnt appear very professional.

    Any ideas or advice would be greatly appreciated, I hope i posted enough information and offer my sincere thanks in advance

  2. #2
    Quote Originally Posted by Perrin View Post
    Its just a raw JAR with several types of protection mashed into it
    If its truly "just a JAR", why not decompile it to find the protection and patch around it? Or use the code to make a license generator? (I've done both with Java based apps).

    Java is one of the least "protectable" languages, right up there with dotNET.

  3. #3
    I did run it through a basic decompiler (Cavaj) and although i unfortunately dont know java, theres a pretty clearly defined "licensing.class" that looks very relevant.

    Unfortunately, legally emulation is our only option right now. The EULA which we must abide by does state against decompiling/reversing. Although definitely a grey area, i believe an emulator falls outside those limitations

  4. #4
    You're trying to run the program without its required security device, I'd say you're already outside the EULA.

    You may want to re-try the license generation. I've seen some software do sanity checks on the expiration date and bomb out if its "too far" into the future. Why not try for a couple months into the future to see if that works, then if it does you can incrementally go longer until you break the license.

  5. #5
    reknihT esreveR SiGiNT's Avatar
    Join Date
    Sep 2004
    Location
    Wherever I am
    Posts
    750
    ODD!

    I'm in the middle of exactly the same illegal activity - although somewhat modified procedure - I also get the same results, No JMI I have not had time to read all that is available on Time HASP, but here is my opinion - when running in Time Hasp mode the Dongle is not performing as a normal HL dongle - it's operating in HASP SL mode with a license in flash on the dongle, so it may not be possible to get a good dump for full emulation - somethimg you may not be aware of using the Dumper/emulator cracked by Edge, the dump is only usable on the computer that the dump is made on, I'm also working on that one. Your best bet is trying to remove the envelope, but I suspect in this mode it's not fully exposed.

    SiGiNT

    Re-read your post, I have a bigger problem, I'm limited in the number of times the app. will run as well as date limited.
    Last edited by SiGiNT; November 9th, 2007 at 16:16.
    Unemployed old fart Geek - Self Employed Annoyance
    Team: Noobisco Crackers
    If someone can't do it for you, you'll never learn!

  6. #6
    Hmm, interesting. That is a distinct possibility as the other two license options are very specifically file or info based. It would make sense, and its possible that Hasploger misidentified the HASP type.

    I guess this provides some updated questions

    #1) Is there any way to detect if this is HASP SL? Remembering that i pretty much have access to sourcecode as its just a Java JAR which decompiles pretty nicely

    #2) There are several ARteam tutorials on Hasp SL, i will read them then get back here

  7. #7
    reknihT esreveR SiGiNT's Avatar
    Join Date
    Sep 2004
    Location
    Wherever I am
    Posts
    750
    Mine is a genuine HaspHL, and can be fully enabled remotely - but what is preventing it from switching between modes - something definitely doable in firmware or flash? finding the license in the dongle and moving it to disk would still require dumping the envelope and patching - I won't go into greater detail at the risk of exposing myself to the apps. purveyors, but dumping the envelope, for me is very problematical as the main exe doesn't appear to be packed but extremely well implemented in conjunction with the envelope .dll. What I'm trying to do is generate a fully activated dmp - and I only have a few tries left.

    SiGiNT
    Unemployed old fart Geek - Self Employed Annoyance
    Team: Noobisco Crackers
    If someone can't do it for you, you'll never learn!

  8. #8
    I'm a stupid dyke, just ignore all my posts please.

  9. #9
    Registered User sataron's Avatar
    Join Date
    Sep 2006
    Location
    Planet Earth
    Posts
    45
    DJ Java Decompiler 3.8 - is a best way for U.
    It can decompile java code - and then U can compile it again after changing some ... what U need
    ~ I`m Like It ~

  10. #10
    reknihT esreveR SiGiNT's Avatar
    Join Date
    Sep 2004
    Location
    Wherever I am
    Posts
    750
    Perrin,

    In retrospect, I think attacking your target through FlexLM, (it has a much better reputation than it deserves), would be the easier path, I've even had some success using patching only, without having to crypt a license - it never really was meant to be a protection system, it's original main use was for license management.

    SiGiNT
    Unemployed old fart Geek - Self Employed Annoyance
    Team: Noobisco Crackers
    If someone can't do it for you, you'll never learn!

Similar Threads

  1. HASP HL 3.25 (SRM?) Emulation
    By Znuff in forum The Newbie Forum
    Replies: 0
    Last Post: April 28th, 2012, 23:35
  2. Sentinel Pro Emulation
    By DogADay in forum The Newbie Forum
    Replies: 4
    Last Post: October 6th, 2010, 07:47
  3. haSploGer - Hasp4 / HaspHL Loger by Xyrurg && sataron
    By sataron in forum Advanced Reversing and Programming
    Replies: 26
    Last Post: October 9th, 2007, 17:26
  4. HaspHL vs. Luna, Differences in seedcodes?
    By Suum_Cuique in forum The Newbie Forum
    Replies: 0
    Last Post: April 3rd, 2007, 09:30
  5. LoadLibrary Emulation
    By r00t in forum Advanced Reversing and Programming
    Replies: 5
    Last Post: March 3rd, 2002, 04:14

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •