Comments on: Tutorial #6: Our First (True) Crack http://thelegendofrandom.com/blog/archives/397 Programming and Reverse Engineering Wed, 18 Sep 2013 02:04:37 +0000 hourly 1 http://wordpress.org/?v=3.5.1 By: dydrax http://thelegendofrandom.com/blog/archives/397#comment-24489 dydrax Wed, 13 Mar 2013 02:58:05 +0000 http://thelegendofrandom.com/blog/?p=397#comment-24489 the author of crackme say not to patching,,
the gentle way is get the key

]]>
By: $okow http://thelegendofrandom.com/blog/archives/397#comment-21976 $okow Wed, 27 Feb 2013 08:18:32 +0000 http://thelegendofrandom.com/blog/?p=397#comment-21976 BTW the call is lstrcmpA and it returns FFFFFFFF to EAX if values are not equal.

And i fished the code ^^ It’s 553518 ;-)
You can see it as a parameter to lstrcmpA

]]>
By: $okow http://thelegendofrandom.com/blog/archives/397#comment-21975 $okow Wed, 27 Feb 2013 08:14:31 +0000 http://thelegendofrandom.com/blog/?p=397#comment-21975 I solved it with a
CMP AL,0FF
because the EAX register is xor’ed in a previous call.

]]>
By: M4deM4n http://thelegendofrandom.com/blog/archives/397#comment-9947 M4deM4n Fri, 14 Dec 2012 04:04:59 +0000 http://thelegendofrandom.com/blog/?p=397#comment-9947 I traced through the application starting at 0040104F and watched the registers and dump closely. I was able to determine that to generate the valid key, he was simply multiplying the sum of all the ascii values in the Username by 1337. so I fired up C# and wrote a solution:

public string generateKey(string username)
{
int len = username.Length;
int result = 0;

for(int i = 0; i < len; i++)
{
result += username[i];
}

result *= 1337;
return result.ToString();
}

I returned a string so I could throw it right in a textbox. I'm learning a lot from this site, thank you very much R4ndom! Note: This function doesn't account for the fact that the username requires at least 4 chars.

]]>
By: maxluvr1981 http://thelegendofrandom.com/blog/archives/397#comment-9586 maxluvr1981 Mon, 10 Dec 2012 19:22:04 +0000 http://thelegendofrandom.com/blog/?p=397#comment-9586 I just did a JMP SHORT to 004010ED to pass the JNZ and it worked …

]]>
By: Mindvision http://thelegendofrandom.com/blog/archives/397#comment-8155 Mindvision Sat, 24 Nov 2012 04:17:21 +0000 http://thelegendofrandom.com/blog/?p=397#comment-8155 XOR is working :D

]]>
By: bino1810 http://thelegendofrandom.com/blog/archives/397#comment-6447 bino1810 Sun, 28 Oct 2012 08:46:56 +0000 http://thelegendofrandom.com/blog/?p=397#comment-6447 Hello R4ndom, i’m newbie in RCE, so this tutorial is very useful for me, thanks you for writing them.

Here’s my answer for the homework:

TEST EAX,EAX —> XOR EAX,EAX

Is this correct?

]]>
By: Our First (True) Crack « msg1len Official Website http://thelegendofrandom.com/blog/archives/397#comment-779 Our First (True) Crack « msg1len Official Website Tue, 03 Jul 2012 05:12:26 +0000 http://thelegendofrandom.com/blog/?p=397#comment-779 [...] Original Post Share this:TwitterFacebookLike this:LikeBe the first to like this. [...]

]]>
By: ludkiller http://thelegendofrandom.com/blog/archives/397#comment-293 ludkiller Wed, 13 Jun 2012 12:32:03 +0000 http://thelegendofrandom.com/blog/?p=397#comment-293 oh sorry i din’t see the RSS feed Icon Extremely Sorry.
I will get Feeds on the Go thanks :P Keep up the good work
(looks like I am becoming sloppy)

]]>
By: ludkiller http://thelegendofrandom.com/blog/archives/397#comment-292 ludkiller Wed, 13 Jun 2012 12:29:43 +0000 http://thelegendofrandom.com/blog/?p=397#comment-292 another awesome TUT , I am waiting for More advance one :D
Keep up the good work (do you have a mailing list or something) PS when you show Some Anti-Anti Techniques please inform me , well I will be checking this blog regularly so if I miss something :D Kindly get feeds or mailing list?

]]>