Exetools  

Go Back   Exetools > General > Community Tools

Notices

Reply
 
Thread Tools Display Modes
  #1  
Old 03-25-2015, 05:35
raduga_fb raduga_fb is offline
Family
 
Join Date: Nov 2012
Posts: 70
Rept. Given: 3
Rept. Rcvd 121 Times in 21 Posts
Thanks Given: 1
Thanks Rcvd at 128 Times in 32 Posts
raduga_fb Reputation: 100-199 raduga_fb Reputation: 100-199
ckinfo+ rev.1

I made some modifications & corrections.

* Mistyped constants are corrected.
* New section (0x10000 size) for inline code & constant pairs is added to keep compatibility back.
* inline codes written to address 045B000.
* constants are written to address 045B600.

I have just replaced the constant pairs in previous release. It means, I did not keep the original constant pairs which were using for old versions. This
time, the program is diverted at 3 places to new codes & constants. Now, it works for all versions (up to 7.8).

The new section size is quite enough for future modification & addition.

0040388D CMP DWORD PTR DS:[EBX],20 <- first constant pairs
00403890 JB 004037D6
00403896 MOV EAX,DWORD PTR SS:[ESP+20]
0040389A INC DWORD PTR DS:[EAX]
0040389C CMP DWORD PTR DS:[EAX],20
0040389F JB 004037D0 <- second constant pairs
004038A5 POP EDI <- could not be decrypted

004038A5 JMP 0045B0CA <- divert it to our new code


@control_1: ; 45b0ca
cmp byte ptr [@counter], 2 <- for future version purpose
jne @f
pop edi
pop esi
pop ebp
xor eax, eax
pop ebx
retn
@@:
push eax
xor eax,eax
mov al, byte ptr [@counter] <- counter
add eax, 1
mov byte ptr [@counter], al <- increase it
pop eax
mov dword ptr [eax], 0 <- we will try with new constants. therefore, set it to zero
jmp 004037D0 <- try again


When ckinfo cannot decrypt, we diverted it here and counter is set to 1.

Now, it is time to use new constants ->

00402DC3 CMP EAX,60000003 <- divert it -> JMP 0045B0FA
00402DC8 JNE SHORT 00402DD3
00402DCA MOV EDI,DWORD PTR DS:[ECX*4+43F008] <- one of constant pairs
00402DD1 JMP SHORT 00402E01
...


@part_2: ; 45b0fa
cmp eax, 60000003 ; original code
jne @table_6

@table_5:
cmp byte ptr [@counter], 0 ; is counter set ?
jne @f ; yes, use new constant
MOV EDI,DWORD PTR DS:[ECX*4+43F008] ; no, use old
JMP 00402E01
@@:
mov edi, 045e756 ; new constant pairs
imul ecx, ecx, 2C ; distance between constants
jmp @goback_2 ;


@goback_2:
sub edi, ecx ; find the new constant
JMP 00402E01 ; go to original code

There are totally 8 constant tables. Just, look to new codes for details.

I would like to thank to "thewd" again for awesome tool "ckinfo". It is designed perfectly, therefore it deserves to be inlined / saved for new versions of Crypkey as much as I can :-)

Regards,

raduga_fb
March 25, 2015
Attached Files
File Type: rar ckInfo+.rar (140.1 KB, 198 views)
Reply With Quote
The Following 15 Users Gave Reputation+1 to raduga_fb For This Useful Post:
alekine322 (04-20-2015), b30wulf (03-25-2015), besoeso (03-25-2015), canopus (03-30-2015), conan981 (03-25-2015), jump (03-27-2015), kjms (03-25-2015), MarcElBichon (03-25-2015), mr.exodia (03-27-2015), niculaita (03-29-2015), nikkapedd (03-26-2015), orfei (03-27-2015), sendersu (03-26-2015), uranus64 (03-25-2015), winndy (03-29-2015)
The Following 7 Users Say Thank You to raduga_fb For This Useful Post:
backdoor_b (08-17-2017), daqstar (06-10-2015), ontryit (03-04-2016), psgama (09-25-2015), uel888 (10-26-2015), uranus64 (09-23-2015)
  #2  
Old 08-14-2015, 07:51
backdoor_b backdoor_b is offline
Friend
 
Join Date: Sep 2005
Location: Mexico
Posts: 45
Rept. Given: 53
Rept. Rcvd 22 Times in 13 Posts
Thanks Given: 45
Thanks Rcvd at 1 Time in 1 Post
backdoor_b Reputation: 22
Could someone upload to another server? uploaded.to or mediafire.

thanks in advance
Reply With Quote
  #3  
Old 09-23-2015, 08:32
psgama psgama is offline
Friend
 
Join Date: Jul 2014
Posts: 100
Rept. Given: 0
Rept. Rcvd 6 Times in 6 Posts
Thanks Given: 12
Thanks Rcvd at 75 Times in 44 Posts
psgama Reputation: 6
Yes, May someone please upload to another server. This tool is fantastic! I just wish I could download it from here rather than another server.
Reply With Quote
  #4  
Old 09-24-2015, 03:05
b30wulf's Avatar
b30wulf b30wulf is offline
Family
 
Join Date: Nov 2013
Posts: 194
Rept. Given: 210
Rept. Rcvd 116 Times in 38 Posts
Thanks Given: 195
Thanks Rcvd at 229 Times in 74 Posts
b30wulf Reputation: 100-199 b30wulf Reputation: 100-199
there must be probably a good reason why this tool is not uploaded on public server.
Deserve to download it
Reply With Quote
The Following User Says Thank You to b30wulf For This Useful Post:
giv (09-24-2015)
  #5  
Old 09-24-2015, 06:49
bigears
 
Posts: n/a
Can download this tool from lavteam.org, free to register.

Quote:
Originally Posted by b30wulf View Post
there must be probably a good reason why this tool is not uploaded on public server.
Deserve to download it
What a shame this community has become this way...
Reply With Quote
  #6  
Old 09-24-2015, 13:45
psgama psgama is offline
Friend
 
Join Date: Jul 2014
Posts: 100
Rept. Given: 0
Rept. Rcvd 6 Times in 6 Posts
Thanks Given: 12
Thanks Rcvd at 75 Times in 44 Posts
psgama Reputation: 6
b30wulf, I appreciate your contributions, I have the original tool and ckinfo+ just not the new revision that is posted here.

I also have one of the first programs that used crypkey protection. A program called Flowcheck, written by Kenonic Controls. Which was purchased by Emerson. The protection was poorly implemented in Flowcheck, and can be completely removed with a single byte patch.

I understand where you are coming from with your post saying "Deserve to download it" I try to contribute where I can, and I do contribute on other message boards with help for others to patch programs for learning. plcforumn.uz.ua is one of these boards. Unfortunately, there are much more skilled contributors to this forum then myself and I am still learning.

Cheers
Reply With Quote
The Following 2 Users Say Thank You to psgama For This Useful Post:
b30wulf (09-24-2015), ontryit (03-04-2016)
  #7  
Old 09-24-2015, 19:46
FnZnL! FnZnL! is offline
Friend
 
Join Date: Dec 2012
Posts: 11
Rept. Given: 6
Rept. Rcvd 16 Times in 7 Posts
Thanks Given: 0
Thanks Rcvd at 3 Times in 2 Posts
FnZnL! Reputation: 16
the people here deserves "sharing"

Code:
http://www.mirrorcreator.com/files/0ZZM4MAK/
Reply With Quote
The Following User Says Thank You to FnZnL! For This Useful Post:
ontryit (03-04-2016)
  #8  
Old 09-24-2015, 21:43
b30wulf's Avatar
b30wulf b30wulf is offline
Family
 
Join Date: Nov 2013
Posts: 194
Rept. Given: 210
Rept. Rcvd 116 Times in 38 Posts
Thanks Given: 195
Thanks Rcvd at 229 Times in 74 Posts
b30wulf Reputation: 100-199 b30wulf Reputation: 100-199
My point is not to be selfish, when I say deserve to download, I want to force you learn and contribute. I love this community very very much and seeing how its growing with script kiddies that wait for ready made solutions im sick of thet.
Attachments have download access level for a good reason....
Reply With Quote
  #9  
Old 09-25-2015, 13:39
psgama psgama is offline
Friend
 
Join Date: Jul 2014
Posts: 100
Rept. Given: 0
Rept. Rcvd 6 Times in 6 Posts
Thanks Given: 12
Thanks Rcvd at 75 Times in 44 Posts
psgama Reputation: 6
b30wulf, I agree with you in that respect. My skill level is not nearly where the main contributors of this forumn are at. But I do try, and I do, occasionally succeed. I have learned much from this forumn.

I learned a lot about FlexLM, CrypKey, and Wibu Dongle. I've discovered tools like multikey, and ckinfo. I learned about .Net reflector from this site and others, and have succeeded in reversing licensing on a hardware device by forcing the software to Decrypt a license file locked to an SD card and display the decrypted XML for editing before encrypting it again. All using Reflector and Reflexil.

I was able to upgrade to bigger SD cards in my device in this way, as well as turn on options.

Unfortunately the projects I have worked on are for hobby only and specific to applications I use, so they are not very popular or worth sharing. I do respect the reversing community and the contributions they make.

Any way, this has gone off topic. Raduga_FB, Thank you for your contribution! It is appreciated.
Reply With Quote
The Following User Gave Reputation+1 to psgama For This Useful Post:
TechLord (09-25-2015)
The Following 2 Users Say Thank You to psgama For This Useful Post:
b30wulf (09-25-2015), ontryit (03-04-2016)
  #10  
Old 10-24-2015, 21:25
rooky2000 rooky2000 is offline
Friend
 
Join Date: Feb 2009
Posts: 24
Rept. Given: 71
Rept. Rcvd 3 Times in 1 Post
Thanks Given: 24
Thanks Rcvd at 4 Times in 4 Posts
rooky2000 Reputation: 3
How to get option and level £¿
Reply With Quote
  #11  
Old 10-25-2015, 09:36
psgama psgama is offline
Friend
 
Join Date: Jul 2014
Posts: 100
Rept. Given: 0
Rept. Rcvd 6 Times in 6 Posts
Thanks Given: 12
Thanks Rcvd at 75 Times in 44 Posts
psgama Reputation: 6
It depends on the program you are reversing. It could be easy, or the option and levels could be dynamic, You must follow out the code and see what levels or options are being looked for.
Reply With Quote
  #12  
Old 03-04-2016, 11:48
daqstar's Avatar
daqstar daqstar is offline
Family
 
Join Date: Jun 2006
Posts: 97
Rept. Given: 34
Rept. Rcvd 59 Times in 22 Posts
Thanks Given: 37
Thanks Rcvd at 31 Times in 17 Posts
daqstar Reputation: 59
Exclamation Options and Levels

Quote:
Originally Posted by rooky2000 View Post
How to get option and level ��

It's quite easy to get these values.
When you run the program for the first time it creates the 3 License files,
and an ngn file which contains the User and Master Keys.
The SiteKey,
in particular,
gives you the Options and Levels,
so you have nothing to worry about.
It seems to be invisible these days so you need a program like
'everything'
to actually find and read it.
You now have all the info you need to create a ckinfo script to feed into
ckinfo
and create any SiteKey that you want.
But first you need a SiteCode which is particular to your PC
and generated by the program afresh
(it is time dated)
each time you want to create a new license.
It is now usually obfuscated,
so the only problem you have is deobfuscating the SiteCode!
There's the rub!

__________________
0z0n3
Reply With Quote
The Following 2 Users Say Thank You to daqstar For This Useful Post:
backdoor_b (08-17-2017), ontryit (03-04-2016)
  #13  
Old 05-28-2017, 19:36
wassim_ wassim_ is offline
Friend
 
Join Date: Nov 2002
Posts: 105
Rept. Given: 1
Rept. Rcvd 1 Time in 1 Post
Thanks Given: 14
Thanks Rcvd at 10 Times in 4 Posts
wassim_ Reputation: 2
@rooky2000
There used to be an IDA signature file for crypkey function, that would surely help you in placing bps on the right addresses to get the levels and options. I'm not sure if it has been recently updated though.
Reply With Quote
  #14  
Old 06-04-2017, 22:35
FoxB FoxB is offline
VIP
 
Join Date: Jan 2002
Location: Earth...
Posts: 970
Rept. Given: 15
Rept. Rcvd 125 Times in 83 Posts
Thanks Given: 23
Thanks Rcvd at 711 Times in 295 Posts
FoxB Reputation: 100-199 FoxB Reputation: 100-199
Ckinfo source will released at https://github.com/thewd-hub/source/
Reply With Quote
The Following User Gave Reputation+1 to FoxB For This Useful Post:
user1 (06-06-2017)
The Following 6 Users Say Thank You to FoxB For This Useful Post:
backdoor_b (08-17-2017), niculaita (06-06-2017), uranus64 (06-05-2017), user1 (06-06-2017), user_hidden (06-07-2017), zeuscane (06-06-2017)
  #15  
Old 06-06-2017, 17:45
user1 user1 is offline
Family
 
Join Date: Sep 2012
Location: OUT
Posts: 1,060
Rept. Given: 586
Rept. Rcvd 120 Times in 67 Posts
Thanks Given: 732
Thanks Rcvd at 588 Times in 349 Posts
user1 Reputation: 41
AccessData CodeMeter Dongle Emulator/v1.04 inside.
Reply With Quote
Reply

Tags
ckinfo, crypkey

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Where can I find the newest version ckinfo? ycloud General Discussion 1 03-04-2016 12:22


All times are GMT +8. The time now is 11:10.


Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX, chessgod101
( 1998 - 2024 )