Exetools  

Go Back   Exetools > General > General Discussion

Notices

Reply
 
Thread Tools Display Modes
  #1  
Old 06-29-2008, 06:52
LaBBa LaBBa is offline
VIP
 
Join Date: Jul 2003
Posts: 150
Rept. Given: 0
Rept. Rcvd 16 Times in 4 Posts
Thanks Given: 0
Thanks Rcvd at 11 Times in 11 Posts
LaBBa Reputation: 16
rank your "uncrackable" software protection

Hi all
well i open this thread in "General Discussion " because i just wanted to create a General Discussion about : " how do you rank the protections" ?

I have entered in google a serach : uncrackable software protection

I wanted to know what kind of protections are claiming to be 100% safe
here are the TOP5 resualts that google ranked:

1. ROCKEY6 - dungle. well we know that v1 - v4 have been already cracked and no one is realy looking on v6 or even v5 because no "real" intersting targets protected with rocky6 or 5

2. siliconkey - dungle. same as rockey... no "real" target is protected

3. ExeCryptor - has been unpacked and is crackable.

4. CodeProtector - the only way for "1 time password safe" and anti reversing and serial fishing and keygening if you don't have at least 1 time some one registeration info.

5. eXPressor 1.6 - it's fully known how to unpack and crack


it's realy strange because we know that most 0day applications uses ASPR and ARM for protection but some how they are not in the google TOP 5 even FlexLM and HASP are not there..

if i would have need to rank the protections base on how good they are i would have puted :

#1 for 0day - CodeProtector ( i know that there are more of those but this is currently #1 choise by google)
#1 for ISO protections - siliconkey Or ROCKEY6

and then all the rest no mater who or what because they are all crackable


please post your ranks for the best protector that you think is the better choise.

(I think it's going to be a fun thread)

Regards,
LaBBa
Reply With Quote
  #2  
Old 06-30-2008, 01:23
Av0id Av0id is offline
VIP
 
Join Date: Jan 2006
Posts: 399
Rept. Given: 112
Rept. Rcvd 111 Times in 69 Posts
Thanks Given: 0
Thanks Rcvd at 15 Times in 15 Posts
Av0id Reputation: 100-199 Av0id Reputation: 100-199
armadillo with secure sections, asprotect or execryptor with key markers and of course starforce

ps. also senselock dOngle
Reply With Quote
  #3  
Old 06-30-2008, 04:01
ahmadmansoor's Avatar
ahmadmansoor ahmadmansoor is offline
Coder
 
Join Date: Feb 2006
Location: Syria
Posts: 1,044
Rept. Given: 505
Rept. Rcvd 373 Times in 142 Posts
Thanks Given: 326
Thanks Rcvd at 406 Times in 119 Posts
ahmadmansoor Reputation: 300-399 ahmadmansoor Reputation: 300-399 ahmadmansoor Reputation: 300-399 ahmadmansoor Reputation: 300-399
Code Virtualizer .....and WinLicense & Themida ....take some wide place specially when u protect program and u has the sorce code for it so u can obfuscation some area of ur code so it make it hrad to dump and cracked..i like this protector ....so I still not produce any carck for programs protected with this protector
__________________
Ur Best Friend Ahmadmansoor
Always My Best Friend: Aaron & JMI & ZeNiX
Reply With Quote
  #4  
Old 06-30-2008, 19:21
Git's Avatar
Git Git is offline
Old Git
 
Join Date: Mar 2002
Location: Torino
Posts: 1,115
Rept. Given: 220
Rept. Rcvd 265 Times in 157 Posts
Thanks Given: 108
Thanks Rcvd at 216 Times in 124 Posts
Git Reputation: 200-299 Git Reputation: 200-299 Git Reputation: 200-299
You forgot VMProtect. As close to uncrackable as it gets.

Git
Reply With Quote
  #5  
Old 07-01-2008, 23:41
TmC TmC is offline
VIP
 
Join Date: Aug 2004
Posts: 328
Rept. Given: 1
Rept. Rcvd 15 Times in 9 Posts
Thanks Given: 2
Thanks Rcvd at 22 Times in 16 Posts
TmC Reputation: 15
I think that software protections are dead, at least if concepted like armadillo, acprotect, obsidium, and so on.
The only one that are saved are the one with heavy virtual machine transformation like execryptor, themida and all VM-alike protections (private exe protector, vmprotect, ttprotect etc...)
Reply With Quote
  #6  
Old 07-02-2008, 07:59
D-Jester's Avatar
D-Jester D-Jester is offline
VIP
 
Join Date: Nov 2003
Location: Ohio, USA
Posts: 269
Rept. Given: 39
Rept. Rcvd 61 Times in 41 Posts
Thanks Given: 0
Thanks Rcvd at 4 Times in 4 Posts
D-Jester Reputation: 61
Aye, localized protections (those limited to client only) are a dying breed.
More and more custom protections are being seen requiring server-side activation and runtime requiring a server connection.

REing won't go with them though. Waiting for the day when loaders handle TCP packet captures. Truly a new phase, rather than a deadening.
__________________
Even as darkness envelops and consumes us, wrapping around our personal worlds like the hand that grips around our necks and suffocates us, we must realize that life really is beautiful and the shadows of despair will scurry away like the fleeting roaches before the light.
Reply With Quote
  #7  
Old 07-25-2008, 06:09
Sabor Sabor is offline
Friend
 
Join Date: Sep 2005
Posts: 68
Rept. Given: 0
Rept. Rcvd 3 Times in 3 Posts
Thanks Given: 0
Thanks Rcvd at 2 Times in 2 Posts
Sabor Reputation: 3
except with server side protection each time the company goes bankrupt or looses connection you're screwed. Especially a mutlibillion dollar accounting firm who cannot connect to their dbase because of a activation.
Reply With Quote
  #8  
Old 07-25-2008, 16:50
squareD's Avatar
squareD squareD is offline
VIP
 
Join Date: Aug 2005
Location: Banana Republic
Posts: 301
Rept. Given: 31
Rept. Rcvd 35 Times in 27 Posts
Thanks Given: 37
Thanks Rcvd at 110 Times in 72 Posts
squareD Reputation: 36
I think Obsidium shell become a place in rank-list...
Tried a target with may be version > 1.4.0.0 beta and failed piteous.
Seems like detecting hided debugger, no dump possible, crash by searching referenced text strings and other silly things!
Looks like Obsidium ist debugging himself with CreateProcessInternalW.

If someone would like to unpack my target, I really would be thankfully...

regards, magic
__________________
The three worst enemies of the reversers: sun , fresh air and especially this unbearable roar of birds ...
Reply With Quote
  #9  
Old 07-26-2008, 03:32
tofu-sensei tofu-sensei is offline
Friend
 
Join Date: Jul 2004
Posts: 113
Rept. Given: 1
Rept. Rcvd 15 Times in 9 Posts
Thanks Given: 1
Thanks Rcvd at 24 Times in 13 Posts
tofu-sensei Reputation: 15
syncrosoft claims their protection mcfact (which apparently transforms machine code into really, really slow finite automata and is used e.g. by steinbug) has never been broken...
Reply With Quote
  #10  
Old 07-26-2008, 06:27
Sabor Sabor is offline
Friend
 
Join Date: Sep 2005
Posts: 68
Rept. Given: 0
Rept. Rcvd 3 Times in 3 Posts
Thanks Given: 0
Thanks Rcvd at 2 Times in 2 Posts
Sabor Reputation: 3
hm

syncrosoft has been broken plenty of times. but it is actually good.
Reply With Quote
  #11  
Old 07-29-2008, 03:17
D-Jester's Avatar
D-Jester D-Jester is offline
VIP
 
Join Date: Nov 2003
Location: Ohio, USA
Posts: 269
Rept. Given: 39
Rept. Rcvd 61 Times in 41 Posts
Thanks Given: 0
Thanks Rcvd at 4 Times in 4 Posts
D-Jester Reputation: 61
Quote:
All USB-eLicenser protected software products running on the Windows platform remain uncracked since autumn 2005.

On the Mac OS X platform, Syncrosoft protected software has never been cracked since the launch of the MCFACT technology in the year 2000.
I don't do Mac
__________________
Even as darkness envelops and consumes us, wrapping around our personal worlds like the hand that grips around our necks and suffocates us, we must realize that life really is beautiful and the shadows of despair will scurry away like the fleeting roaches before the light.
Reply With Quote
  #12  
Old 07-29-2008, 10:17
xilefarte
 
Posts: n/a
I believe that the new versions of Oreans Technology Code Virtualizer , WinLicense & Themida, , are beyond the reach of crackeable be, but this theory is generating a Chinese forum and be reflected in future with new tools unpackers,.
Reply With Quote
  #13  
Old 07-29-2008, 14:50
LaBBa LaBBa is offline
VIP
 
Join Date: Jul 2003
Posts: 150
Rept. Given: 0
Rept. Rcvd 16 Times in 4 Posts
Thanks Given: 0
Thanks Rcvd at 11 Times in 11 Posts
LaBBa Reputation: 16
Quote:
Originally Posted by D-Jester
I don't do Mac
it's like saying " i don't do drugs"
Reply With Quote
  #14  
Old 07-30-2008, 03:35
Sabor Sabor is offline
Friend
 
Join Date: Sep 2005
Posts: 68
Rept. Given: 0
Rept. Rcvd 3 Times in 3 Posts
Thanks Given: 0
Thanks Rcvd at 2 Times in 2 Posts
Sabor Reputation: 3
heh

a dongle cracked on windows is the same as a dongle cracked on mac; it is the same dongle (duh), the only difference is no one has cared to port the emulator to macos due to lack of demand.
Reply With Quote
  #15  
Old 08-02-2008, 00:48
Archer's Avatar
Archer Archer is offline
retired
 
Join Date: Aug 2005
Posts: 239
Rept. Given: 1
Rept. Rcvd 46 Times in 19 Posts
Thanks Given: 3
Thanks Rcvd at 387 Times in 57 Posts
Archer Reputation: 46
I don't get any point in ranking protections. I think crackers already approximately know about hard and easy protections. So this topic may help only to software developers to choose the hardest protection. And that's the reason why I'm also against releasing protectors to the public. I think it's a bit egoistic and looks like: I can unpack this protector so I'll release it to the public so anyone can pack it's software with it, it's time for you to have some pain with unpacking. Anyway it's just imho.

What about the topic, I successfully unpacked with some generic private tool Themida, ExeCryptor, AsProtect, StarForce and many other packers and protectors. So I think some dongles offer the best protection. Maybe the ones that allow to load arbitrary code into them.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
When use "vendor defined encryption routines", how to set daemon related part? bridgeic General Discussion 6 01-22-2015 11:35
Wlscgen: Are "Vendor Id" and "Developer Id" different ? Numega Softice General Discussion 6 02-12-2007 18:12


All times are GMT +8. The time now is 17:51.


Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX, chessgod101
( 1998 - 2024 )