FordPrefect
11-25-2010, 01:09 PM
This one may be a bit long, so please bear with me.
I have an installer that's using Installshield 15. Shortly after launching the installer it requests a password. Since I don't know the password, I've been trying to figure out a way to fish one (doesn't seem possible from what I've been reading) or patch the installer to accept any password.
I initially started this from the perspective that if it has a password, there must be some tools that will recover that password. I found some tools that were created for Installshield package for the web, but none of these worked. This wasn't a big surprise since these tools are 3-4 years old now.
I then began down a different route of trying to use Olly to set a BP where the installer was reading the password and see if I could have it accept the bad password. I found 2-3 tuts floating around about how to do this. They all looked to be perfectly reasonable, but when I set my BPs none of them fired on the password dialog. I've tried setting BPs on a number of items such as GetDlgItemTextA, GetDlgItem, GetWindowTextA and a few others. None of these are breaking at the password dialog.
Since I can unpack the installer using UniExtract, I've began wondering if there is a way to brute force the password on the cab archive. Has anyone been able to successfully defeat the password protection on IS15? Is there any such thing as a brute force IS cab password tool?
I have an installer that's using Installshield 15. Shortly after launching the installer it requests a password. Since I don't know the password, I've been trying to figure out a way to fish one (doesn't seem possible from what I've been reading) or patch the installer to accept any password.
I initially started this from the perspective that if it has a password, there must be some tools that will recover that password. I found some tools that were created for Installshield package for the web, but none of these worked. This wasn't a big surprise since these tools are 3-4 years old now.
I then began down a different route of trying to use Olly to set a BP where the installer was reading the password and see if I could have it accept the bad password. I found 2-3 tuts floating around about how to do this. They all looked to be perfectly reasonable, but when I set my BPs none of them fired on the password dialog. I've tried setting BPs on a number of items such as GetDlgItemTextA, GetDlgItem, GetWindowTextA and a few others. None of these are breaking at the password dialog.
Since I can unpack the installer using UniExtract, I've began wondering if there is a way to brute force the password on the cab archive. Has anyone been able to successfully defeat the password protection on IS15? Is there any such thing as a brute force IS cab password tool?