Hi Guys
i tried looking around the net for any information about flexlm and SGI unix but unfortunatly every thing is windows related so if any body can help me either where to find info about the seed extraction and vendor key extraction or to tell me where to search.. puting in considaration that the SGI tools for hacking are very limted thank you all

IRIX binarries? you 13370

We have a page here http://hculinux.cjb.net, there are essays about flexlm, check it out.

Most -if not all- of the essays are about linux cracking, but the info given apply to most versions of unix.

Check your manpages about ptrace and /proc abusing, these areas are where posix gets blurry.

If you are totally new to this, post your questions in http://mb.hcunix.org and you will be answered. First checkout the links at the page. Mammon has some nice TuxTales, get the second one (IIRC) here http://www.eccentrica.com/mammon. Also dose had a nice little page but don't know where is it anymore.

Peace

MO K

P.S. which proggie is that? if there are linux/solaris/fbsd binarries for it, get me the url and i might jumb in the wagon

DBX can be used to crack applications on the SGI, but it's a lot
more work, as dbx is much less convenient that tools such as SoftICE.

I don't think DBX comes with the EOE though.

I suppose I should mention that the structure that holds the vendor
keys and encryption seeds can be fished out of v5 and earlier based
flexlm targets, so if it's one of those you can save yourself some work.

IRIX binarries? you 13370

We have a page here http://hculinux.cjb.net, there are essays about flexlm, check it out.

Most -if not all- of the essays are about linux cracking, but the info given apply to most versions of unix.

Check your manpages about ptrace and /proc abusing, these areas are where posix gets blurry.

If you are totally new to this, post your questions in http://mb.hcunix.org and you will be answered. First checkout the links at the page. Mammon has some nice TuxTales, get the second one (IIRC) here http://www.eccentrica.com/mammon. Also dose had a nice little page but don't know where is it anymore.

Peace

MO K

P.S. which proggie is that? if there are linux/solaris/fbsd binarries for it, get me the url and i might jumb in the wagon

IRIX binarries? you 13370

We have a page here http://hculinux.cjb.net, there are essays about flexlm, check it out.

Most -if not all- of the essays are about linux cracking, but the info given apply to most versions of unix.

Check your manpages about ptrace and /proc abusing, these areas are where posix gets blurry.

If you are totally new to this, post your questions in http://mb.hcunix.org and you will be answered. First checkout the links at the page. Mammon has some nice TuxTales, get the second one (IIRC) here http://www.eccentrica.com/mammon. Also dose had a nice little page but don't know where is it anymore.

Peace

MO K

P.S. which proggie is that? if there are linux/solaris/fbsd binarries for it, get me the url and i might jumb in the wagon

IRIX binarries? you 13370

We have a page here http://hculinux.cjb.net, there are essays about flexlm, check it out.

Most -if not all- of the essays are about linux cracking, but the info given apply to most versions of unix.

Check your manpages about ptrace and /proc abusing, these areas are where posix gets blurry.

If you are totally new to this, post your questions in http://mb.hcunix.org and you will be answered. First checkout the links at the page. Mammon has some nice TuxTales, get the second one (IIRC) here http://www.eccentrica.com/mammon. Also dose had a nice little page but don't know where is it anymore.

Peace

MO K

P.S. which proggie is that? if there are linux/solaris/fbsd binarries for it, get me the url and i might jumb in the wagon

[QUOTE]Nolan Blender (01-09-2001 21:51):
Hi Nolan
i read your essay about flexlm but i coudnt folow up since most of your assembly quotes are on PC .... if you have any other essay which is a little more clear i would realy areciate it.... an for dbx i have it nd also i have gdb and ddd ... the comand DIS which disasembles the binary but theres is no hex editor and my major problem is that the target program detects my flirting with the debuger and it doesnt start.... thank you

hi MO K
th proggies are Alias Maya flint and some other compositing sw's .. i have a lot of work i guess .. i tried the first addres but its a bad link http://hculinux.cjb.net and the second link has nothing on flex and the third link in conection refused please advise...

First off, sorry about my four posts, i don't know what the heck went wrong ~

The link is working fine; or try the main page at hcunix.org.

There are essays about FlexLM, one of which is writen by -yes- Nolan Blender. Plus some others by Siul+Hacky
Go there and get them.

I will try to find your appie on the net, and give it a wack.

Peace MO K

unix (01-09-2001 23:17):
[QUOTE]Nolan Blender (01-09-2001 21:51):
Hi Nolan
i read your essay about flexlm but i coudnt folow up since most of your assembly quotes are on PC .... if you have any other essay which is a little more clear i would realy areciate it.... an for dbx i have it nd also i have gdb and ddd ... the comand DIS which disasembles the binary but theres is no hex editor and my major problem is that the target program detects my flirting with the debuger and it doesnt start.... thank you
You can disassemble IRIX binaries with the correct version
of IDA. Since the source code for the UNIX and NT versions
of FLEXlm are very similar, the actual operation of the programs
is the same. The Intel pentium processors are radically different
than the MIPS machines - I don't have any essays for the SGI,
but if you understand Intel and MIPS processors, figuring out what
is going on should be relatively straightforward.
If it has vendor defined encryption, or crypt filters, it will be
a considerable amout of work to figure out - it's possible to
do it, just more work.



What is the target that you're working on? Most targets use the
same seeds for the unix and NT variants, so it may be easier to
reverse engineer the target on the NT platform.

If you're trying only to get the seeds out of the target, one
thing that can help is to use syscall to trap calls to time - the
code in lm_new calls it a lot, and it might help you get to
the right spot in the code.

First off, sorry about my four posts, i don't know what the heck went wrong ~

The link is working fine; or try the main page at hcunix.org.

There are essays about FlexLM, one of which is writen by -yes- Nolan Blender. Plus some others by Siul+Hacky
Go there and get them.

I will try to find your appie on the net, and give it a wack.

Peace MO K

First off, sorry about my four posts, i don't know what the heck went wrong ~

The link is working fine; or try the main page at hcunix.org.

There are essays about FlexLM, one of which is writen by -yes- Nolan Blender. Plus some others by Siul+Hacky
Go there and get them.

I will try to find your appie on the net, and give it a wack.

Peace MO K

First off, sorry about my four posts, i don't know what the heck went wrong ~

The link is working fine; or try the main page at hcunix.org.

There are essays about FlexLM, one of which is writen by -yes- Nolan Blender. Plus some others by Siul+Hacky
Go there and get them.

I will try to find your appie on the net, and give it a wack.

Peace MO K

First off, sorry about my four posts, i don't know what the heck went wrong ~

The link is working fine; or try the main page at hcunix.org.

There are essays about FlexLM, one of which is writen by -yes- Nolan Blender. Plus some others by Siul+Hacky
Go there and get them.

I will try to find your appie on the net, and give it a wack.

Peace MO K