Cheat Engine

[dnsi0]

How do those programs create a virtual machine to process the new set of instructions?

[sponge]

It's like a disassembler, that handles the code step by step.

• Disassemble first instruction.
  
• Execute and update VM context.
  
• Disassemble next instruction.
  
• Execute and update VM context.
  
• ...
  
• Return to non virtualized code.
  

It's basically an emulation of what a processor does. The VM context is a structure that holds register information. Execution of the instructions is done by specific handlers.

[dnsi0]

[Pro-surf]

Themida is still crackable ..
the one i use is -_- wbb-themidaVersion2.0.3.0

too bad

[sponge]

[Pro-surf]

lol

[pkedpker]

well I can unpack themida no problem just making it runable is hard story.. but unpacked its still good resource for hacking you can see strings.. and even OLD patterns you can find to make injections etc.. still good for hacking

[dnsi0]

Im gonna make a fail version of a vm and see if I fail or not at making it.

[&Vage]

I managed to unpack Warrock.exe which is packed with Themida, but I failed to unencrypt the VM ops :< I suck.

[azfk]

vm is like a one way encryption... (it was never meant to be reversed)

and the part where it says that theres a unique set of instructions for EVERY different protected application is stretching the truth...

the algorithm is studied on some level, i have a small paper on it

so if you can replicate it which is quite tedious... then you got it

[&Vage]

There's a x86 virtualizer source...

https://www.openrce.org/blog/view/847/x86_Virtualizer_-_source_code

[Sprinto]

inst thamida the hardest to crack?

[azfk]

one of the hardest things to crack, to fully understand and reverse it completely (and not just mash up a workaround because of what you know what the protection scheme is) takes university level knowledge.