----------------------------------------------------
How to find a serial in Golden HTML Editor
----------------------------------------------------

Cracker: stealthFIGHTER

Target: Golden HTML Editor v4.18 free

Tools: Soft-Ice
		Brain

Where: http:// www. http://www.oknet.cz/~pavelp/lide/pavelp/ghe/

----------------------------------------------------------------
Sorry for my english, its not my mother language.
----------------------------------------------------------------


-----------
Step 1:
-----------

===
Run GHE ... (window popup) ... Enter registration number (press) ... you should see 5 boxes: User name and Registration key (4x). Good. Fill them.
Press Ok ... Check your registration... (blah blah)
===
Goto Soft-Ice (Ctrl+D) and type bpx hmemcpy (breakpoint when is something copied to memory). Go back (F5). Press Ok  ...b.o.o.m... we are SI.
===
Press 6 times F5 and F11 to get to the caller. Then 11 times F12. You should be here:
===

:004BB696		CALL 004239F4
:004BB69B		MOV EAX, [EBP-0C]
:004BB69E		MOV EDX, 004BB8F0
:004BB6A3		CALL 0403F84
:004BB6A8		JZ 004BB6BF

===
If you try go through the code you don´t find some interesting (only your name is compared). So scroll up in the data window (Ctrl+up) till you see something like this:
===

===

:004BB643		CALL 00403F84		< --- call real reg. key
:004BB648		JNZ 004BB68D		< --- bad boy

===
Now double click on the CALL and go back to GHE.
Press Ok again. We are back in Soft-Ice.
Now press F5 till you land on the CALL 00403F54.
Once you are on the CALL press F8 to trace into it. You should see this:
===

:00403F81		LEAX, EAX [EAX+00]
:00403F84		PUSH EBX
:00403F85		PUSH ESI
:00403F86		PUSH EDI
:00403F87		MOV ESI, EAX
:00403F89		MOV EDI, EDX
:00403F8B		CMP EAX, EDX		< --- compare our reg. keys
:00403F8D		JZ 00404022			< --- jump to bad boy

===
Trace to CMP EAX, EDX. Here it compare our serials. Now type d edx - our fake Reg. key. Type d eax - our real Reg. key. - note it.
Enter found Reg. key - Thank you for registering.
===
---------------------------------------------------------
If i make a mistake, please e-mail me 
to: stealthfighter@another.com
---------------------------------------------------------