Name : Absolute Security Standard Encryption Program Version : 3.3 Editor : Pepsoft Target : Absec.exe s/n saved : HKEY_CURRENT_USER\Software\Pepsoft\AbSec\Reg Tools : Softice Brain Cracker : LW2000 Tutorial : No.46 http://www.pepsoft.com --- DISCLAIMER For educational purposes only! I hold no responsibility of the mis-used of this material! --- 1. Go to the regscreen and enter the details: User Name: Cracked by LW2000 Key: 1230099 Click on OK. *BOOM* 'Sorry... Invalid registration password.' Enter the same key again. 2. Switch to Sice and set a bpx on hmemcpy. 'bpx hmemcpy' Press F5 to return to the app and click on ok. *BOOM* Sice pops up. Press F5 and count how often sice breaks on hmemcpy. Then enter the details again (better to disable the bpxs first... ;) and try it again. Now press F5 one time minor than you count the breaks. If you done so, you should be now at the last call from hmemcpy. Then press F12 until you are in the 32Bit Code. Then trace with F10 until you are here (takes a while... because of a loop) :0048B6B3 E8949BF8FF call 0041524C :0048B6B8 8B85D4FBFFFF mov eax, dword ptr [ebp+FFFFFBD4] :0048B6BE 50 push eax :0048B6BF 8D85D8FBFFFF lea eax, dword ptr [ebp+FFFFFBD8] :0048B6C5 8D95F8FDFFFF lea edx, dword ptr [ebp+FFFFFDF8] :0048B6CB E8F080F7FF call 004037C0 :0048B6D0 8B95D8FBFFFF mov edx, dword ptr [ebp+FFFFFBD8] :0048B6D6 58 pop eax :0048B6D7 E84882F7FF call 00403924 :0048B6DC 757A jne 0048B758 <-- check :0048B6DE 8B45FC mov eax, dword ptr [ebp-04] 3. Trace with F10 trough the code and take a look at eax. btw: with 'd eax' you can display eax... ;) Then simply note the serial (EEYVEBLTULHMEAW) and try it, but first type 'bc hmemcpy' to clear the breakpoint. Congratulation! You are a registered user. FINISH! Easy, or? cu LW2000 Any comments? Mail me LW2000@gmx.net or go to http://www.LW2000.cjb.net ---- tKC, thx for your tutors! I started with tutor 1 and i still read them... they are the best!