| View previous topic :: View next topic |
| Author |
Message |
DeletedUser14087
I post too much
![]() Reputation: 2
Joined: 21 Jun 2006
Posts: 3069
|
 Posted: Mon Jul 23, 2007 1:21 pm Post subject: Crackme Lv. Beginner V2 |
 |
|
This time, the password will change within the time.
Good Luck.
|
|
| Back to top |
|
 |
alvin93
Expert Cheater
 Reputation: 0
Joined: 05 May 2007
Posts: 249
Location: Money
|
| Posted: Tue Jul 24, 2007 12:10 am Post subject: |
|
|
1k-F81IZ-UG9LT CORRECT 4th time cracking..took 10seconds
_________________
|
|
| Back to top |
|
|
haha01haha01
Grandmaster Cheater Supreme
 Reputation: 0
Joined: 15 Jun 2007
Posts: 1233
Location: http://www.SaviourFagFails.com/
|
| Posted: Tue Jul 24, 2007 12:16 am Post subject: |
|
|
what do u know kaspersky made a nice 1 this time
and the pass is not what this guy said.
btw ur protection is stronger now if u just nop tha line it make some exception errors so i just found the line being moved to eax and noped it there... alredy cracked both crackmes now going to find passes.
EDIT: WTF KASPERSKY THE PASS TO THIS CRACKME IS NOTHING
JUST OPEN THE CRACKME AND PRESS THE BUTTON WITHOUT WRITING ANYTHING
|
|
| Back to top |
|
|
Symbol
I'm a spammer
![]() Reputation: 0
Joined: 18 Apr 2007
Posts: 5094
Location: Israel.
|
| Posted: Wed Aug 22, 2007 5:41 pm Post subject: |
|
|
is this possible without patching -.-
i tried every combination, i found out its an L at F8lXZ not F8IXZ but tried anything and then i patched it and worked...
|
|
| Back to top |
|
|
zart
Master Cheater
 Reputation: 0
Joined: 20 Aug 2007
Posts: 351
Location: russia
|
| Posted: Wed Aug 22, 2007 6:18 pm Post subject: |
|
|
| Symbol wrote: | is this possible without patching -.-
i tried every combination, i found out its an L at F8lXZ not F8IXZ but tried anything and then i patched it and worked... |
Yes, it's possible without patching... Look at what haha said - apparently you can crack it with no serial at all...
If you fire up ollydbg it will kill it and itself on the run - but if you fire up the program itself, and hit crack... your done. I was just trying to get the badboy message so i know where to look and it was already done?
though if you wanted to run this with ollydbg or cheatengine (since he's killing that process too) you can patch it (or rename your debugger... or use IDA.. or sice..)
patch the following lines:
| Code: |
00451F1C . B8 3C1F4500 MOV EAX,CrackMe.00451F3C ; ASCII "CheatEngine.exe"
00451F21 . E8 1AFAFFFF CALL CrackMe.00451940
00451F26 B8 541F4500 MOV EAX,CrackMe.00451F54 ; ASCII "ollydbg.exe"
00451F2B . E8 10FAFFFF CALL CrackMe.00451940
00451F30 . C3 RETN
|
You can patch the ascii or the call, or all of them, doesn't matter it will cancel it out. I just patched the calls to nops and it worked fine.
_________________
0x7A 0x61 0x72 0x74
TEAM RESURRECTiON |
|
| Back to top |
|
|
SunBeam
I post too much
 Reputation: 65
Joined: 25 Feb 2005
Posts: 4023
Location: Romania
|
| Posted: Thu Aug 23, 2007 2:52 am Post subject: |
|
|
Why not patch the caller to the ASCII function. Hit Ctrl+A in Olly, and place a bp on top of the func (where the accolade starts  )...
KlPrcTimer is @ 451F1C. Whenever it calls the ASCII portion, turn that call into a nop or make it call a RETN. I'm sure you can find a RETN in all the code 
If you want to patch it, the easiest way:
00451C41 33C0 XOR EAX,EAX <- change it to MOV AL,1
And lol - in my case it was UG9LT-F8lZX-??
Also, patching 451C41 will make the CrackMe not decrease the # of tries Use it whenever you want to get the working key and buy tons of time!
P.S.: What amuses me - WE NEVER USE OLLYDBG IN ITS ORIGINAL STATE. You people fail to see that. No real cracker would use it raw, due to all the detections and shit. Get over it - "ollydbg.exe", "Cheat Engine.exe", name detection - that is OLD SCHOOL!
|
|
| Back to top |
|
|
Zand
Master Cheater
![]() Reputation: 0
Joined: 21 Jul 2006
Posts: 424
|
| Posted: Thu Aug 23, 2007 4:19 am Post subject: |
|
|
| Simple IsDebuggerPresent (Or EnumWindows) would be nice, but with all the hideOlly plugins out there, all you have to do is close Olly, d/l the plugin, pop it in your olly folder and BAM! Undetected.
|
|
| Back to top |
|
|
S3NSA
:3
 Reputation: 1
Joined: 06 Dec 2006
Posts: 1908
Location: England.
|
|
| Back to top |
|
|
haha01haha01
Grandmaster Cheater Supreme
Reputation: 0
Joined: 15 Jun 2007
Posts: 1233
Location: http://www.SaviourFagFails.com/
|
| Posted: Tue Feb 12, 2008 7:03 am Post subject: |
|
|
| S3NSA wrote: | Just going through old threads doing some easier for experience and..
this one cracks just by pressing "crack"?
Or was a different message suppose to appear :/? If so what am I doing wrong?
also I dont think theirs anything wrong with bumping old topics as they are still relevant, forgive me if I am wrong.. |
| haha01haha01 wrote: | EDIT: WTF KASPERSKY THE PASS TO THIS CRACKME IS NOTHING
JUST OPEN THE CRACKME AND PRESS THE BUTTON WITHOUT WRITING ANYTHING |
|
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
