Boris
July 22nd, 2004, 11:50
Hi, I can`t imagine I`m the first who had this idea, but I would like to ask you what you think about it :
I`d like to develop a universal brute-force tool to get serialnumbers for programms protected with name+serial or serial-only protection.
1. Create a process with the debugge with set DEBUG_PROCESS | DEBUG_ONLY_THIS_PROCESS flags
2. let the debugge run to the point the serial ist read in and find out the adress where the serial is placed in memory.
3. store the thread context
4. try serial 1... n dependent on how long the serial number should be,
casesensitivity ...., by writing the serial to the adress found out in step 2
5. let the programm proceed, while logging its progression ( fe. jump adresses till the occurency of a special event f.e. a message box, a special number of jumps ...
6. the result is a logfile with serial numbers and what they affected ( jumps..)
7. I would guess that there is a big part of serials which affected the same reaction of the programm, these might be invalid serials, the rest should be analysed.
Please tell me what you think about it, I have good experiance in coding, but just little in cracking, so I can`t appraise wether such a programm would deliver useful results.
I`d like to develop a universal brute-force tool to get serialnumbers for programms protected with name+serial or serial-only protection.
1. Create a process with the debugge with set DEBUG_PROCESS | DEBUG_ONLY_THIS_PROCESS flags
2. let the debugge run to the point the serial ist read in and find out the adress where the serial is placed in memory.
3. store the thread context
4. try serial 1... n dependent on how long the serial number should be,
casesensitivity ...., by writing the serial to the adress found out in step 2
5. let the programm proceed, while logging its progression ( fe. jump adresses till the occurency of a special event f.e. a message box, a special number of jumps ...
6. the result is a logfile with serial numbers and what they affected ( jumps..)
7. I would guess that there is a big part of serials which affected the same reaction of the programm, these might be invalid serials, the rest should be analysed.
Please tell me what you think about it, I have good experiance in coding, but just little in cracking, so I can`t appraise wether such a programm would deliver useful results.