Log in

View Full Version : PortTunnel v1.6.14.211 - Keyfile protection & Packer $ Unkeygenable ???


OHPen
August 23rd, 2003, 15:38
http://www.steelbytes.com

The PortTunnel Programm uses Serial which is stored in a keyfile.
It's protected with exepak32 v1.3-Packer, but it's no problem to unpack manually.

OEP = 412190

I tried to keygen it, but i have probs.

I can't find the check routine. Maybe someone can give me a hint ?

THX

OHPen

Abbreviated version:
Please give me a crack for PortTunnel v1.6.14.211

KSA
August 23rd, 2003, 15:50
Hi,

Forget it to make a keygen for it because it uses 512-bits RSA Encryption. So, You have to find the private which is impossible.

I just change one byte and allowed an expired key to register

KSA

Bengaly
August 23rd, 2003, 17:45
just patch the E to 1 or someting and have ur self an keygen (kinda ugly but heck..)

OHPen
August 24th, 2003, 07:47
Hi,

I'm the last one who calls itself RSA-Expert.
But isn't ther a chance to make a Keygen if RSA isn't implemented well ?

I haven't check this, but maybe it's a possibility

greets

OHPen

dELTA
August 24th, 2003, 12:48
The practically only chance you have to keygen an RSA protection is if the randomization algorithm for the original private/public key-generator is known and weak. This was the case when they broke the RSA keys in Asprotect before. But it is very unlikely that you'll get this kind of information if it's not a widespread protection that you can study the randomization code for, and of course it doesn't have to be weak in the first place even then, and then you're screwed anyway. And even if you DO have the randomization code for the original private/public key-generator and it IS indeed weak, it is still quite advanced crypto/math stuff to break it.

If it is "not implemented well" in any other way, it has to be implemented so bad that it's not RSA anymore if you should have a chance. The keylength can be ridiculously short of course, as have been known to happen in some other protections, but if it's 512 bit keys in this one, like KSA said, you can pretty much forget it (and revert to your original question about to which address you should apply a nop-patch to crack it).


dELTA