Hello after unpaking it successfully (aspack) I am trying to reverse engineer an application written in delphi (registration by serial, no name).
Spent hours looking at code but could not find a cmp or test which looks useful.
Strings appear to be encrypted. looks so hard.
Can you advise a good tut or an easy method that I could use.
Thanks
Michael

u tried DeDe ?
if not, than try, else just use SoftIce..

Use Dede!
It's an awsome tool!

You can view all the forms and when you find one that seems to fit ie. proper caption or buttons or something, you can view the code that executes after you have typed in serial and pressed the button. The calls in the listed code will have descriptive names souch as:

* Reference to: controls.TControl.GetText(TControl):System.String;

:P

If you double click on a call it will also be dissassembled...

You can export references to w32dasm, ida and softice!

I tend to take an adress after the gettext and break on it in softice... Works great!

Mind you, I'm just interested, can hardly even call myself a newbie cracker... If you need more info, just ask!

/Manko

Hello Michael,

try some tutorials on my page (Delphi oriented).

Good luck,
sF

Went to your page clicked on re and said page cannot be displayed

It might have something to do with the fact that this thread is over 2 years old...

What? You mean to tell me that people don't guarantee that their web pages will be hosted at the same URL "forever" so that I can find anything I want without doing any serious work? Oh what a cruel world.

Regards,

Have you tried to see if Google caught a cache of it before it came down, whenever that was?

elo

delphi app -
to get sice to break, do i need to export a .sym file first with DeDe and then load it into sice symbol loader? how do i set the breakpoint then? (serial fishin
I tried seeting sice to break at the adress given in DeDe after a button click but she just aint breakin. pls shed some light. I know i'm in the deep-end here but not giving up...

I wouldn't get too hung up on a Delphi file. It responds in quite a similar manner to normal exe's. It depends on what version of softice you're using. Some require you to download symbol files from Microsoft and nothing will work till you do.

I was loading a packed Delphi exe in Symbol Loader and getting it to break at the beginning of it's code (not Winmain) before the protection. That way I could trace from the start of code. Once you're in the code, then set your breakpoint. If you set it before you're in the apps code, it likely won't break.

Also, if the code is using SEH's, they will sometimes wipe out your breakpoint.

All I can suggest is that you read through the archives. Try entering 'Aspack' or 'Asprotect' and Delphi.