#1
|
|||
|
|||
Flexlm ECC
I am trying to reverse a flexlm protected program which uses ECC.
I Managed to find the seeds and features, build lmcrypt, and patched l_pubkey_verifyl However the program refuses to run, and crashes every time, so I assume that it uses some form of CRC check, and crashes because this value has changed due to patching. What is the general approach to defeat the CRC check? |
#2
|
|||
|
|||
how about you show us how to in a tutorial?
someone will help if you serious. |
#3
|
|||
|
|||
Not sure what you mean with show us how to in a tutorial?
Do you want me to write a tutorial on how to extract the encryption seeds & patching of l_pubkey_verify?? |
The Following User Says Thank You to rcer For This Useful Post: | ||
niculaita (08-29-2018) |
#4
|
|||
|
|||
yes please do. not worry 90% are just persons of scripts and automated tool olly plugins.
if very private ask one VIP to move your complete tutorial to VIP area. long time I not seen such one. |
The Following User Says Thank You to user1 For This Useful Post: | ||
chants (09-02-2018) |
#5
|
||||
|
||||
is your target x64?
__________________
Ur Best Friend Ahmadmansoor Always My Best Friend: Aaron & JMI & ZeNiX |
#6
|
|||
|
|||
Yes the target is x64
|
#7
|
|||
|
|||
fishing of encryption seeds, and patching of l_pubkey_verify is common knowledge, so no need to write a tutorial
|
#8
|
|||
|
|||
ahmadmansoor ,
why did you ask if my target is x64? |
#9
|
|||
|
|||
if that common show us !
I want see basic instinct again, reloaded ! Last edited by user1; 09-01-2018 at 03:58. |
#10
|
|||
|
|||
Simple,In common way catch CRC checking routine and modify asm code for jmp.
|
#11
|
|||
|
|||
Understood, but I have never dealt with CRC checking routines, so can you give me a hint as how do I find the dll or executable which checks the CRC?
|
#12
|
|||
|
|||
search all Exitprocess call in exe with olly,bookmarks all call,run exe its stop on exitprocess call.its most likely your crc check routine.
|
#13
|
||||
|
||||
Quote:
did you check if it is packed -if yes you will see that the target has many calls out of the .text section with many anti-debug checks - what you need ( as I remember) is dll inject and huck some API before you use HW-BP to bypass anti-debug, then you apply ur patches.
__________________
Ur Best Friend Ahmadmansoor Always My Best Friend: Aaron & JMI & ZeNiX |
#14
|
|||
|
|||
Well it looks that I have a lot of studying to do, and learn about anti-debug checks, API hooking and dll injecting, because i don't have a clue
|
#15
|
||||
|
||||
Can you mention your target name?
Because I already have a target with same protection, I hope it not same yours
__________________
Ur Best Friend Ahmadmansoor Always My Best Friend: Aaron & JMI & ZeNiX |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Flexlm 7.2 LIC file use on Flexlm 9.2 display error -73 ? | hanzi | General Discussion | 9 | 07-05-2006 18:51 |