þ¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿þ ÛÛÛÛ ÛÛ ÛÛÛ ÛÛ ÛÛÛ ÛÛÛÛ ÛÛ ÛÛ ÛÛ ÛÛÛÛ ÛÛ ÛÛÛÛ ÛÛÛÛ ÛÛ Û ÛÛÛÛ ÛÛÛÛÛ ÛÛ Û Û Û Û Û Û Û Û Û Û Û ÛÛ Û ÛÛ Û ÛÛ ÛÛ Û Û ÛÛ Û Û ÛÛ Û ÛÛ ÛÛ ÛÛÛÛÛ ÛÛÛÛ ÛÛÛÛ ÛÛ Û ÛÛ Û ÛÛ Û Û Û Û ÛÛÛÛÛÛ Û Û ÛÛ Û Û Û Û ÛÛ ÛÛÛÛÛ ÛÛÛÛÛ Û Û ÛÛÛÛÛ ÛÛÛ Û Û ÛÛ ÛÛ Û ÛÛ ÛÛÛ Û ÛÛÛÛÛÛ ÛÛ Û ÛÛÛ Û ÛÛÛ Û Û ÛÛÛÛÛÛ Û Û Û ÛÛ ÛÛ Û Û Û ÛÛ ÛÛ ÛÛÛÛ ÛÛÛÛ ììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììì Cracking Tutorial #21: CrAcKiNG DLL Show 4.7 bY Turning it Into its Own Keygen [cracked bY:] sLeEpY¿[FWA/NWA/FTPR8Z] iN 04/2002 [difficulty:] beginner/intermediate [where:] http://www.gregorybraun.com [tOOLz:] w32dasm 8.93, softice 4.05, Hiew 6.0 ììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììì Hullo once again. This is another "software by design" program written by gregory braun , sorry greg, i know im not leaving you alone. Anyway if you read the Blowfish tutorial you will see that this is the same protection system that is on all his apps. So you can use this tutorial to make all his apps into there own keygens. Well we wont get into the stuff i showed in the blowfish tut but i will show you how to make DLL Show 4.7 into its own keygen. Lets check out the protection systems core compare! (Just like blowfish, ect) ììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììì * Referenced by a (U)nconditional or (C)onditional Jump at Address: |:0040E4A1(C) | :0040E4BB 3D3CCE5F0D cmp eax, 0D5FCE3C :0040E4C0 750C jne 0040E4CE * Referenced by a (U)nconditional or (C)onditional Jump at Address: |:0040E4B9(U) | :0040E4C2 57 push edi :0040E4C3 56 push esi :0040E4C4 E8D77B0000 call 004160A0 :0040E4C9 83C408 add esp, 00000008 :0040E4CC 8BD8 mov ebx, eax * Referenced by a (U)nconditional or (C)onditional Jump at Address: |:0040E4C0(C) | :0040E4CE 57 push edi :0040E4CF 56 push esi :0040E4D0 E8CB7B0000 call 004160A0 :0040E4D5 83C408 add esp, 00000008 :0040E4D8 3BD8 cmp ebx, eax <--compare good and bad serials :0040E4DA 5F pop edi :0040E4DB 741D je 0040E4FA <--jump if serial checks out ok :0040E4DD 68CFEA0000 push 0000EACF * Possible Reference to String Resource ID=05000: " Register DLL Show for Windows 9x/ME" ììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììì Ok you tried to reg the program and get the error msg, but with softice you can find your valid serial at address 0040E4D8 by typing in softice "? eax" and you can see your fake serial by typing "? ebx". So we allready learned that you say! Well how bout this, Lets modify the code so that the program tell us our real serial number, therefore making this program into a keygen for itself. Grab this part of the code: :0040E4D8 3BD8 cmp ebx, eax <--compare good and bad serials :0040E4DA 5F pop edi :0040E4DB 741D je 0040E4FA <--jump if serial checks out ok :0040E4DD 68CFEA0000 push 0000EACF and modify it to this: :0040E4D8 3BD8 mov ebx, eax <--move good serial to bad serial place :0040E4DA 5F pop edi :0040E4DB 751D jne 0040E4FA <--can also be EB(jmp), we just want to jump here :0040E4DD 68CFEA0000 push 0000EACF (In HIEW the cmp is at offset E4D8) Go ahead and start the program again. Go to the register box and enter any info you want in the Name, Organization, & serial. Now the program will register with any info because it will take that jump to goodguy message which is important because we need it to do that so it will write in the correct serial overtop of your fake serial. After you registered go back to Help, Register, you will see the name and organization as you entered it, but notice the serial number is the correct one now. For me it was: User Name: sLeEpY¿ Organization: CRACKING Registration: 3710505364 You know have a working valid regged copy of DLL Show. This works for all "software by design" stuff. If you wanna kill the registration its stored in the registry here: HKEY_CURRENT_USER\Software\Software by Design\DLL Show for Windows 95\Registration Just delete out your code there and it will be unregged again. Laterz ¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿ email me if you are bored: sleepy@linuxwaves.com ._Tutorialz_. [--------------------------------------------------------------------] [ 1. Cracking Cosmi's Generic Installshield Protection ] [ 2. CRACKING(?) MATH WORKSHOP 2.0 ] [ 3. CrAcKiNG DLSuperCBT Resynchronizing Byte Compare Program ] [ 4. CrAcKiNG the nag on DLSuperCBF - Dir Binary File Compare Program] [ 5. CrAcKiNG n)0(va crackme v3 (crazy approach) ] [ 6. CrAcKiNG mIRC(R) v5.91 Internet Relay Chat Client ] [ 7. CrAcKiNG Actionizer 1.4 ] [ 8. CrAcKiNG Tag Wizard 4.3.0 ] [ 9. CrAcKiNG Freecell for Win2k and WinXP ] [10. CrAcKiNG Netrace 1.0a ] [11. CrAcKiNG Winrar 3 Beta 2 THROUGHLY ] [12. CrAcKiNG Aditor Pro 3.05 build 1 ] [13. CrAcKiNG EasyType 1.0 ] [14. CrAcKiNG The Psychedelic Screen Saver v2002.0215 ] [15. CrAcKiNG Applet Headline Factory Version 4.0 ] [16. CrAcKiNG Codewhiz Editor Version 1.7 (build 1.01b) ] [17. CrAcKiNG iuVCR 4.0.0.205 beta5 Trial (R_02-28-2002) ] [18. CrAcKiNG The Weakest Link -NOCD- ] [19. CrAcKiNG Blowfish 2000 V2.3 by finding a valid serial ] [20. CrAcKiNG the CD Check in Tony Hawk Pro Skater 3 ] [21. CrAcKiNG DLL Show 4.7 bY Turning it Into its Own Keygen ] ¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿ gReEtz: MiNioN, GreycZ, KlutCh, KiNgEr, MidNight, FWA, NWA, FTPiRatEz! HAR! BEASTFXP! ¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿ CopyLeft: __ ______ __ __ _ _____/ / ___ / ____/__\ \/ /(_) / ___/ / / _ \/ __/ / __ \ // / (__ ) /__/ __/ /___/ /_/ / / _/_ /____/_____|___/_____/ .___/_/\___/ /_/ [all rights reversed] Boredom causes crackers and babies. ¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿E>