#1
|
||||
|
||||
java cracking
I have run into interesting program.. its registration algorithms are completely in java, so I used IDA to disassemble a class file named something like "license_check.class" and it looks very easy to crack it.. but i did not know java opcodes, so i googled it up here:
http://en.wikipedia.org/wiki/Java_bytecode_instruction_listings I'm still looking for "olly" like debugger for java, capable to do patches on the fly.. Is there anything like that? p.s. you can PM me with info if you don't want to reply here. THANKS! |
The Following User Says Thank You to ChupaChu For This Useful Post: | ||
Indigo (07-19-2019) |
#2
|
||||
|
||||
you decompile the Java program with JD and then debug it with JDebugTool.
After load in Eclipse IDE, go to hot zone, patch it and compile. Tools: JD: http://java.decompiler.free.fr/ JDebugTool: http://www.debugtools.com/ Eclipse ide: http://www.eclipse.org/downloads/ |
The Following User Gave Reputation+1 to besoeso For This Useful Post: | ||
The Old Pirate (11-06-2010) |
#3
|
||||
|
||||
thanks mate, JD, and JDebugTool downloaded.. now downloading Eclipse IDE for Java Developers, (99 MB) will try and see how it goes.
Any good tutorials for JdebugTool usage, tips&tricks or similar? |
The Following User Says Thank You to ChupaChu For This Useful Post: | ||
Indigo (07-19-2019) |
#4
|
|||
|
|||
Quote:
DJ (http://www.neshkov.com/dj.html) has bytecode, sourcecode, and hex views, unfortunately those aren't synchronized (like the source/hex views in IDA). Some good info on Java decompilers is at http://strategoxt.org/Transform/JavaDecompilers Regards |
The Following User Says Thank You to 2late For This Useful Post: | ||
Indigo (07-19-2019) |
#6
|
|||
|
|||
2 nice tuts
|
The Following 3 Users Gave Reputation+1 to romero For This Useful Post: | ||
#7
|
|||
|
|||
Quote:
... you can download the "normal" Java SDK's from SUN (Oracle) : hxxp://www.oracle.com/technetwork/java/index.html |
The Following User Says Thank You to nuemga2000 For This Useful Post: | ||
Indigo (07-19-2019) |
#8
|
||||
|
||||
IMHO IDA is excellent tool, we only lack a plugin that would act like when you hit "space" on code in olly - to accept new line of code, transcodes it into java opcodes, adjusts ponters and saves modified codes to some file.
Anyone ever hear of similar plugin for ida? Manually patchig byte by byte is PITA. Not to mention recompiling never really worked for me, as no java coding experience here.. |
The Following User Says Thank You to ChupaChu For This Useful Post: | ||
Indigo (07-19-2019) |
#9
|
|||
|
|||
Well my 2 cents ...
I feel quite comfortable with tools like CCK (Class Construction Kit) and the new (not so stable) JBE (Java Bytecode Editor) ... These are very useful for "small" patches because they allow to not recompile all stuff However IMHO for all serious patches ... you have to recompile (even if most of the time you need a linux or mac box (or VM image ) ... for the case-sensitiveness) Best Regards, Tony |
The Following User Says Thank You to tonyweb For This Useful Post: | ||
Indigo (07-19-2019) |
#11
|
|||
|
|||
Well JD andDJ Java 3.11.95(2009) with JAD Jad 1.5.8g(2001).7z is nice to see what's going on in the code.
When you just like to do some little magic - compiling the whole class file is often really painful, error prune or even not possible since there are to many errors / missing classes or whatever problems... Before I open the *.class in IDA(enable in option/Disam/opcode byte=3) and a hexeditor. And wow the CCK (Class Construction Kit)was a real revelation to me and exactly what I was looking for !!! http://bcel.sourceforge.net/cck2_2.gif (^As long as the [img] tag is not working here. you need the click") Beside modifying the bytecode (That JBE also does) you can also delete or add lines and when doing so CCK also takes care about updating jmp and goto references. Installation took me some time because I just downloaded BCEL.jar and tried to figure out how to run it. Well DL http://bcel.sourceforge.net/downloads/BCEL.jar and http://bcel.sourceforge.net/downloads/cck.jar and then run it with java.exe -jar cck.jar Btw. if you like associate *.jar with javaw.exe like this. Well you can do it the clicky-clicky-way or in like this <windowskey+run>"cmd"<Enter> Code:
>assoc .jar .jar=WinRAR <-wuups :D >assoc .jar=jar_file >ftype jar_file=%ProgramFiles%\Java\jdk1.6.0_26\jre\bin\javaw.exe -jar "%1" |
The Following User Gave Reputation+1 to For This Useful Post: | ||
chessgod101 (06-28-2011) |
#12
|
|||
|
|||
Hi all
my 5 cents into java RE-ng there is a very nice tool called JMD, just give it a try when you see strings encrypted inside your files nice video tut: http://invokestatic.org/?p=88 |
The Following User Says Thank You to sendersu For This Useful Post: | ||
Indigo (07-19-2019) |
#13
|
||||
|
||||
I have done java cracking once before on a target call smart math calculator and another called graphing calculator 3d(both by the same company). I used the JD Decompiler and JBE(Java bytecode Editor). I could write a tutorial if anyone is interested.
|
The Following User Gave Reputation+1 to chessgod101 For This Useful Post: | ||
JeRRy (06-29-2011) |
The Following User Says Thank You to chessgod101 For This Useful Post: | ||
Indigo (07-19-2019) |
#14
|
|||
|
|||
Cracking Java programs Part1/Part2:
http://forum.tuts4you.com/index.php?showtopic=19653 |
The Following 2 Users Gave Reputation+1 to CodeCracker For This Useful Post: | ||
chessgod101 (07-01-2011), Corsten (07-04-2011) |
The Following User Says Thank You to CodeCracker For This Useful Post: | ||
Indigo (07-19-2019) |
Thread Tools | |
Display Modes | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Java Cracking... | deephousederek | General Discussion | 5 | 05-17-2005 07:55 |