ÉÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍ» º º º °°°°°°° °°°°°° °°°°°°°° °°°°°°°°° °°°°° °°°°° º º °²²²²²²° °²ÛÛ²° °²Û²²²²Û²° °²²²²²²²° °²Û²° °²²²²²° º º °²²ÛÛÛ²²° °Û Û° °²Û Û²° °²²ÛÛÛÛ²° °²Û²° °²ÛÛÛÛÛ²° º º °²Û Û²° °²ÛÛ²° °²Û Û²²Û Û²° °²Û Û° °²Û²° °²Û Û²° º º °²Û Û²° °²Û Û²° °²Û Û° °²Û²° °²Û Û²° º º °²Û Û²° °²ÛÛ²° °²Û Û²²²²Û Û²° °²Û²²²Û° °²Û²° °²Û Û²° º º °²Û Û²° °Û Û° °²Û Û²°°°°²Û Û²° °²Û Û° °²Û²° °²Û Û²° º º °²Û Û²° °Û Û° °²Û Û²° °²Û Û²° °²Û Û° °²Û²° °²Û Û²° º º °²Û Û²° °Û Û° °²Û Û²° °²Û Û²° °²²ÛÛÛÛ²° °²Û²°°°°°°° °²ÛÛÛÛÛ²° º º °²²ÛÛÛ²° °²ÛÛ²° °²²Û²²° °²²Û²²° °²²²²²²²° °²Û²Û²Û²Û²° °²²²²²²²° º º °°°°°°° °°°°°° °°°°°°° °°°°°°° °°°°°°°°° °°°°°°°°°°° °°°°°°° º º -=ðDiABLOð=- º ÈÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍÍͼ --- Cracking Quake 2 --- Info: ***** Hello friend! So, U want to crack Quake 2, eh? This tutorial is made for newbies, by a newbie, so I'm going to make this as easy to do as I can. This is my first tutorial, and I hope I can make lots more!!! But if its hard to understand, well... it is my first tut... Tools Needed: ************* Hacker's View 6.00 W32Dasm 8.93 The Cracking Begins: ******************** OK, first install Q2 (maximum install), then make a backup of the Quake2.exe Now, lets play Quake 2 without the cd! Choose game, medium... damn! It says 'You must have the Quake 2 CD in the drive to play.' Hmmm... what a suprise... k, start W32Dasm and disassemble the Quake2.exe Done? Fine, lets continue. Push the button next to the printer button (String Data References) and look for the phrase 'You must have the...' There it is. Doubleclick on it. Now we see this: ---------------- * Referenced by a (U)nconditional or (C)onditional Jump at Address: |:0042B21E(C) <-- here we came from | :0042B235 8A442404 mov al, byte ptr [esp+04] :0042B239 FEC0 inc al :0042B23B 3C7A cmp al, 7A :0042B23D 88442404 mov byte ptr [esp+04], al :0042B241 0F8E6AFFFFFF jle 0042B1B1 * Possible StringData Ref from Data Obj ->"You must have the Quake2 CD in " ->"the drive to play." | :0042B247 6864474400 push 00444764 :0042B24C 6A00 push 00000000 :0042B24E E89D6CFEFF call 00411EF0 :0042B253 83C408 add esp, 00000008 ---------------------------------------------------- Hmmm.... lets goto there it's jumped from (0042B21E) Now we see this: ---------------------------------------------------- * Possible StringData Ref from Data Obj ->"%s\quake2.exe" | :0042B1FC 6898474400 push 00444798 :0042B201 52 push edx :0042B202 E839430000 call 0042F540 :0042B207 83C40C add esp, 0000000C :0042B20A 8D442408 lea eax, dword ptr [esp+08] * Possible StringData Ref from Data Obj ->"r" | :0042B20E 68A8474400 push 004447A8 :0042B213 50 push eax :0042B214 E897250000 call 0042D7B0 :0042B219 83C408 add esp, 00000008 :0042B21C 85C0 test eax, eax :0042B21E 7415 je 0042B235 <-- it jumped from here :0042B220 50 push eax :0042B221 E86A200000 call 0042D290 :0042B226 83C404 add esp, 00000004 :0042B229 8D4C2404 lea ecx, dword ptr [esp+04] :0042B22D 51 push ecx :0042B22E FFD6 call esi :0042B230 83F805 cmp eax, 00000005 :0042B233 7421 je 0042B256 --------------------------------------------------------------------- Maybe its looking for the quake2.exe? The %s must be the directory to where its looking for it. Lets just change this to . . = the directory you're in ex: c:\windows\system\ .. = the directory 'behind' you ex: c:\games\ ... = the directory 'behind, behind' you ex: c:\ Etc, etc... Start Hacker's View (Hiew) and choose quake2.exe. Press F4 and choose HEX. Press F7 to search. In the ASCHII field type %s\quake2.exe Now we're gonna change the %s to . Press F3 to edit. Then press TAB and press SPACE then . Press F9 to update the file. Then it will look like this: .\Quake2.exe. Then F10 to quit. Now lets try Quake 2... HEEEEEEEEEEYYYYY... U can play it now! Wow! This was easy to crack! You've now cracked Quake 2! Congratulations! Ending Info: ************ Quake 2 was easy to crack! You can meet me on EFNet in #Cracking4Newbies as DiABLO or Da_DiABLO and if you learned something from this tutorial, please tell me! And expect some more tutorials soon... Cya! lea eax, dword ptr [ebp+FFFFFEC4]