Page 2 of 2 FirstFirst 12
Results 16 to 28 of 28

Thread: My New KeygenMe --- Give it a try ;-)

  1. #16
    GodsJiva
    Guest
    Nicely done!

    The trick was to look ahead and not shout bruteforce-impossible!!! as soon as you saw the md5 hash :-)

    Cyberheg - have you successfully keygenned it?

    Smile
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  2. #17
    : Code Injector : nikolatesla20's Avatar
    Join Date
    Apr 2002
    Location
    :ether:
    Posts
    815

    Yes

    Yes, I saw too, I did do the look ahead. One thing I have learned while learning to keygen is that it doesn't matter what all math and crap is being done, what matters most is what the program checks for, so you should look there first, which is what I did.

    When I first started, I noticed that the return value from this function would never be a 1 unless the call ecx was performed correctly. And this call was loaded from the hash value.

    So yes, I saw it too, I just didn't feel like doing anything about it until after vacation. And by then I forgot again about it.

    The only problem is the hash is still compared with the hardcoded hash BEFORE it gets to the call ecx.

    -nt20
    Last edited by nikolatesla20; August 26th, 2002 at 14:15.

  3. #18
    Easy, peasy.

    No GodsJiva, I am not entirely done with it because of lack of time.

    However I spent part of saturday and sunday on it and would consider myself 95% done. I found out whats worth finding out, rewrote the whole serial check to C and only need to finish reversing a last part of it.
    I would say it's not really hard, all it takes is time. As for the md5 hash I got my guess correct in 2nd attempt. Again you don't need alot fantasy of what the program wants.

    What makes it more time consuming then other targets is that you wrote it entirely in asm. Normally if it would be written in C there are patterns more easy to recognize and at some points your code could have been optimized better but then again it would only have come to my advantage then.

    One thing which annoys me is that the serial check is beeing run every time the dialog is updated. This means whenever you switch window or do anything else it's beeing called atleast twice. This is annoying because you have to enable and disable breakpoints all the time unless you want the program to break whenever it feels like it.

    To answer nt20's comments:

    I learned the hard way exactly the opposite of what you write. If you overlook all the math and crap and go directly to the end result at some point of time you will wonder how the values ended up like they did. All this work just to go from start again and see how it's performed.

    So what if the hash is done before the code is called. You should consider this as a service so you wouldn't have a crashing crackme instead.

    // CyberHeg
    Last edited by cyberheg; August 26th, 2002 at 15:35.

  4. #19
    GodsJiva
    Guest
    Easy, peasy.

    Goodie, I was hoping someone would say that so I can make an even more evil kgme number 2...


    However I spent part of saturday and sunday on it and would consider myself 95% done. I found out whats worth finding out, rewrote the whole serial check to C and only need to finish reversing a last part of it.

    Cool, I'd like to see it in C... I'll pm my email if thats ok with you. Which part are you still reversing? The fp bit?


    What makes it more time consuming then other targets is that you wrote it entirely in asm. Normally if it would be written in C there are patterns more easy to recognize and at some points your code could have been optimized better but then again it would only have come to my advantage then.

    Not much point optimising sth short like this. And I like asm


    One thing which annoys me is that the serial check is beeing run every time the dialog is updated.

    Hehe, sowwy

    Hope you enjoyed it.


    Smile!
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  5. #20
    : Code Injector : nikolatesla20's Avatar
    Join Date
    Apr 2002
    Location
    :ether:
    Posts
    815

    importance

    cyberheg,

    I agree with you that eventually you will have to go back and see how things are calculated, but my main point was - you might go thru all the math routines and calculation routines and then when it gets time to do the comparison, you find out for example that only the last three characters matter.

    So like I am saying my point is there is no reason reading thru calculations unless you know they are actually being used. Some of them may simply be for distraction, to drive you crazy trying to work them out. Find out what the program actually wants first, and then go back and see where it comes from. That way you dont waste time on stuff it doesn't care about.

    That was what I was trying to say

    -nt20

  6. #21
    OK, finished.

    I'd like to either post my source of the keygen or just a valid serial but before I do that I'd like to hear of it's ok. Not that I fear that there is anything illegal about it but I might spoil some fun for others.

    // CyberHeg

  7. #22
    Ok here is a valid serial combination from my keygen. Hopefully this encourages others to finish it too:

    Name: CyberHeg
    Serial: JA,7<2 B%$$Q@(^8

    // CyberHeg

  8. #23
    nofurs
    Guest
    Hi Cyberheg,
    I just don't believe my eyes you are giving cracks in here?!?
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  9. #24
    Heh!
    I don't believe my eyes you can't read.

    In my opinion a crack is a program which will defeat a comercial program.
    If this would be a comercial program I would agree with you and not do it. However there is nothing comercial about this crackme. It was made as a task to defeat and has nothing to do with warez. You can call is "name and serial" or "trial and response" if you like those terms better. It doesn't change anything as there are noone getting unhappy here. I even got permission by the guy writing the crackme before doing it. Ofcourse if the gang behind this webboard feel this is incriminating they are free to remove it but since there are no company behind it and the program was written only to be broken I don't see any problem with it.

    // CyberHeg

  10. #25
    nofurs
    Guest
    Hi again,
    Once a cracker always a cracker
    its a crack doesn't matter if its a commercial program
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  11. #26
    Red wine, not vodka! ZaiRoN's Avatar
    Join Date
    Oct 2001
    Location
    Italy
    Posts
    922
    Blog Entries
    17
    hi cyberheg/cluesurf,

    it seems just that your argument is ended here; in any case i would want to add two words in order to prevent that other persons join to the argument.

    cluesurf, what you have said about crack_release is right but this time it's different; the proggie is only a crackme and (like cyberheg said) it is only planned for being resolved.
    i'll leave the name/serial where it is because cyberheg has put it in order to only help the others to solve this keygenme.
    i don't like this type of approach but sometimes a name/serial combination can help much more than words...

    please, leave this thread only for those who wants to solve the crackme

    regards,
    ZaiRoN

  12. #27
    nofurs
    Guest
    Hi Zairon,
    >it seems just that your argument is ended here; in any case i >would want to add two words in order to prevent that other >persons join to the argument.

    Dunno maybe its my attitude thats how I feel and if you think its
    ok that's settled But a question if everyone cracking other crackmes in this mini project and they post the same thing user and serial what will ya do
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  13. #28
    Red wine, not vodka! ZaiRoN's Avatar
    Join Date
    Oct 2001
    Location
    Italy
    Posts
    922
    Blog Entries
    17
    Hi cluesurf!

    >if everyone cracking...what will ya do
    i'll ban them!!!

    oh, i'm only joking
    i hope and i don't believe that someone will make it

    regards,
    ZaiRoN

Similar Threads

  1. Help at newbie KeygenMe
    By opc0d3 in forum The Newbie Forum
    Replies: 8
    Last Post: March 23rd, 2013, 08:37
  2. New KeygenMe: Darkelf KeygenMe #2
    By Darkelf in forum Mini Project Area
    Replies: 0
    Last Post: July 20th, 2012, 16:20
  3. Just a KeygenMe...
    By Darkelf in forum Mini Project Area
    Replies: 18
    Last Post: February 29th, 2012, 19:56
  4. Easy KeygenMe !!
    By kami13x in forum Mini Project Area
    Replies: 17
    Last Post: March 7th, 2006, 20:54
  5. Can Someone Please Give Me Some Tips In Cracking Password Protection On .exe Files.
    By Mogsey in forum Malware Analysis and Unpacking Forum
    Replies: 3
    Last Post: October 5th, 2001, 15:11

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •