Log in

View Full Version : HaspHL- Time Emulation Hangup


Perrin
November 5th, 2007, 09:48
#1) I've read the the faq
#2) I've googled thoroughly before posting

Here are the tools that im using

A) Softkey HaspHL2007
B) edgehasp.exe (for dmp to dng conversion)
C) haSploGer (for initial information dump)

Here is my procedure

#1) Plug in hasp dongle, run hasploger, capture entire session
#2) Information retrieved is as follows
Pass1 = aaaaa
Pass2 = bbbbb
Type = HaspHL-Time
Serial = xxxxxxxxxx
#3) Start up HaspHL2007, install driver, start emulator service
#4) Collect dongle information from Dumper tab, it captures correctly. This took several times to do, the dongle was not seen the first couple times
#5) Make dng from dmp file with edge tool
#6) Load DNG into HaspHL2007
#7) File shows up properly, says "full version", etc
#8) Load up EDGE tool again, select type HASPHL (also tried plain HASP)
#9) Enter dongle serial number obtained from hasploger, set date from one day before current to a date in 2010
#10) Generate string, paste into HL2007
#11) Click update license

I believe that i have taken all the proper steps, however the license does not appear valid to the program, it claims invalid license. I also have the program Unidumptoreg, do i need to make a registry file of some sort in addition to the steps i have taken?

The other possibility is that the program contains anti-emulator code, however i find this highly doubtful, as its not even an executable. Its just a raw JAR with several types of protection mashed into it (flexLM, a custom license file, or a hasp usb token), doesnt appear very professional.

Any ideas or advice would be greatly appreciated, I hope i posted enough information and offer my sincere thanks in advance

CluelessNoob
November 5th, 2007, 11:39
Quote:
[Originally Posted by Perrin;70031]Its just a raw JAR with several types of protection mashed into it


If its truly "just a JAR", why not decompile it to find the protection and patch around it? Or use the code to make a license generator? (I've done both with Java based apps).

Java is one of the least "protectable" languages, right up there with dotNET.

Perrin
November 5th, 2007, 11:45
I did run it through a basic decompiler (Cavaj) and although i unfortunately dont know java, theres a pretty clearly defined "licensing.class" that looks very relevant.

Unfortunately, legally emulation is our only option right now. The EULA which we must abide by does state against decompiling/reversing. Although definitely a grey area, i believe an emulator falls outside those limitations

CluelessNoob
November 6th, 2007, 09:35
You're trying to run the program without its required security device, I'd say you're already outside the EULA.

You may want to re-try the license generation. I've seen some software do sanity checks on the expiration date and bomb out if its "too far" into the future. Why not try for a couple months into the future to see if that works, then if it does you can incrementally go longer until you break the license.

SiGiNT
November 9th, 2007, 16:09
ODD!

I'm in the middle of exactly the same illegal activity - although somewhat modified procedure - I also get the same results, No JMI I have not had time to read all that is available on Time HASP, but here is my opinion - when running in Time Hasp mode the Dongle is not performing as a normal HL dongle - it's operating in HASP SL mode with a license in flash on the dongle, so it may not be possible to get a good dump for full emulation - somethimg you may not be aware of using the Dumper/emulator cracked by Edge, the dump is only usable on the computer that the dump is made on, I'm also working on that one. Your best bet is trying to remove the envelope, but I suspect in this mode it's not fully exposed.

SiGiNT

Re-read your post, I have a bigger problem, I'm limited in the number of times the app. will run as well as date limited.

Perrin
November 9th, 2007, 17:02
Hmm, interesting. That is a distinct possibility as the other two license options are very specifically file or info based. It would make sense, and its possible that Hasploger misidentified the HASP type.

I guess this provides some updated questions

#1) Is there any way to detect if this is HASP SL? Remembering that i pretty much have access to sourcecode as its just a Java JAR which decompiles pretty nicely

#2) There are several ARteam tutorials on Hasp SL, i will read them then get back here

SiGiNT
November 9th, 2007, 19:43
Mine is a genuine HaspHL, and can be fully enabled remotely - but what is preventing it from switching between modes - something definitely doable in firmware or flash? finding the license in the dongle and moving it to disk would still require dumping the envelope and patching - I won't go into greater detail at the risk of exposing myself to the apps. purveyors, but dumping the envelope, for me is very problematical as the main exe doesn't appear to be packed but extremely well implemented in conjunction with the envelope .dll. What I'm trying to do is generate a fully activated dmp - and I only have a few tries left.

SiGiNT

LLXX
November 10th, 2007, 03:55
I'm a stupid dyke, just ignore all my posts please.

sataron
November 10th, 2007, 04:00
DJ Java Decompiler 3.8 - is a best way for U.
It can decompile java code - and then U can compile it again after changing some ... what U need

SiGiNT
November 12th, 2007, 02:17
Perrin,

In retrospect, I think attacking your target through FlexLM, (it has a much better reputation than it deserves), would be the easier path, I've even had some success using patching only, without having to crypt a license - it never really was meant to be a protection system, it's original main use was for license management.

SiGiNT