rezel
Now it's time for key generator Knowledge :) !
Mon Nov 9 06:08:57 1998


Greeting Sandman, Jeff, and Others
hello again!

yes i agree with you that KNOWLEDGE is USLESS if not pass
to someone else but KNOWLEDGE is POWER ONLY WHEN YOU USE it
if you did not use your knowledge it is also useless

ok! ok! enough with knowledge stuff but can i pass the knowledge on how to create keygen here? i'm not sure either coz this place is moderated! and also maybe it will ruin the
others fun!

anyway now i would like to pass my knowledge on how I crack it! please do not delete though ! he he!!

FIRST and FORMOST I think now is the right time to learn to
create keygenerator!!!! (Fravia Really hate it maybe :) )
but you need to do at least ONCE in your life time.

Please Sandman! do not delete this posting! anyway if you still find this posting is a little to fast for others then save it and post it when you feel that they have learn a lot with this APPZ.

AND if you remember my suggestion ask
crackers to create their on keygen with Blackboard Software
the Zipbak V3.0 and the Netscape Privacy Interface V1.8.
coz that apps is much easier to create the keygenerator
infact you can create the two in one keygen! that is one
keygen for the two appz with the choice for either Appz
the serial is a bit different and the routine is identical with the slightest different! TRUST me crackers will love to create their FIRST keygen and as a challenge combine the two app in 1 keygenerator.

Now let's go with UNinstall Manager V2.6
you say i'm using dead listing in your other posting (the silicon surfer [pc] subject) no!!! actually all i use is
our BELOVED SOFTICE ONLY!!!

Here is my approach!

Usually like i say in my deleted posting! if i find this kind of protection i will try to crack it right at that time
because it is so teasing!! :)

again SORRY because i use SOFTICE and you said don't use it
first !!

1. bpx on window mesage , messagebox ,etc
and i did not get anything! obviously i did not bpx on
getwindowtexta? like jeff said! and i jump to conclusion
to go with my second beloved attack the HMEMCPY

2. This breakpoint will break you right in the middle of the proctection. Now what you need to do is tracing the code
and feel it (+ORC ask us to feel the code remember?)

3. Once you feel the code! you can find a lot of detail and info about this app!! you can dump memory in register
and find out what is happening! here is how i find the
silicon surfer thingy by the way!!

4. Now you know you are on the right track!!time to find
more info! look around for jnz yesss!! but before the JMP
you should find the the CMP or TEST instruction! look for
the obvious CMP or TEST. The one which is very obvious is
the CMP or TEST right after a CALL is made.

5. Now please find the right CALL !! I don't wanna put it
here coz it will ruin your fun!! Believe it or not you
will find the CALL and the CMP right after it!!

6. Fast crack for cracker!! reverse the JNZ or NOOP or whatever base on the conditional JUMP ! that's it
you are done with your very first crack!!!

7. But!! here come the more fun part!!! yes the compare
is so obvious maybe and the serial number is so short!!
now you can deduce thath maybe you can simply write a keygen for it!!

8. Now time to write the keygenerator. Look at the compare
and find the correct register !! use softice watch function and watch that register. Go up a few instruction
until the Regsiter is clear (value is 0) and trace again
until you come at the compare again.

9. Now you feel the code do you? if your answer is no! then please proceed with other gadget! WDASM32 for sure huh?
if the answer is yes let's go come with me!! enjoy your first keygen!!

10. Here hows the serial works!! the protection will add you
corresponding HEX value to the character into THE REGISTER
e.g.: Name: REZEL SN:11221122 (my lovely serial)
a. REZEL the routine will convert to lowercase first
to become rezel
b. it then sum up all the hex value of r,e,z,e,l and
place it in the register
c. if there is space it will sum the value of the space
also
d. it will XOR (yess you hate this part Sandman ? :)
first with 89h and then XOR again with 33h and then
INC the register and viola ===> valid serial!!!

11. How to write keygen? you can write it with assembly
just rip apart the protection instruction itself!!
here how you can coding it!!

a. First pointer point to your name char r
and convert it to hex by AND 0ffh and store in
register
b. Same as above until you get l
c. if space CMP REG,20h inc eax
d. etc,etc, bla bla bla bla!!

12. I don't want to write the whole keygen here! but you get the point. The serial number generation is right there
in front of your eye ! you do not need to dead listing
,etc. Coded you keygen with the smae instruction and you are all SET.

13. If you (crackers) want further explanation! go and get the keygen tutorials and learn on how to make one yourself!!

14. If you asked me i think i already help a lot here! but if you still insist i can give you my ASM coded keygen and the compile binary but ONLY for the SAKE of LEARNING and REVERSING.
That's why i did not released any of my crack so far!
what i mean for personal use is that! for my personal
learning library (like a collection of books you know).


kind regards!
sign of in peace

rezel

ctc ronnrezel@hotmail.com