#16
|
|||
|
|||
Quote:
Quote:
|
#17
|
|||
|
|||
BadBoy
Hello Nikita .
Can you send hl_struct structure to me too? Thanks in advance! |
#18
|
|||
|
|||
hi nikita
i am workin on hl_code. its packet size is 0x138; 0x100 byte is coded and uncoded via enc\dec routins. i tested hl_code with bcnt=4. for one hl_code call only one deviceiocontrol is called with packet size=0x138. that packet only contain first block of data at hl_packet+0x128. at return it contain crypted first block plus a 0x8 byte in hl_packet+0x100 that i gess is hardlock signature. because it seems that encryption of other blocks is performed in programs itself by use of that signiture, is it true? however i found some of function numbers, but not all of them. can you help me. tanks toro. |
#19
|
|||
|
|||
Quote:
Quote:
|
#20
|
|||
|
|||
hi nikita
Quote:
Quote:
tanks. toro |
#21
|
|||
|
|||
hi nikita
are you there? finally i found an apllication that use version 2 of algo. after compeletion of my emulator when i work with bistro2.5, i see that function numbers are incorect. so i test the calls to driver and find version 2 in hlvdd. i wonder that hlvdd is packed with upx, i unpacked it manually ( is there an unpacker that uncpack upx packed dlls aotumaticlly?). you don't answer to my last question, previously i read in another forum that for emulation of hl_code function , 8kB of hl_code blocks is needed (meteo), but as i see in hlvdd, a signature is return from driver that the caller can calculate encrypted datablocks by it, is it true? toro. |
#22
|
|||
|
|||
Quote:
Quote:
|
#23
|
|||
|
|||
hi nikita
thanks for your reply and forgive me for my questions. i added version 2 of algo to my driver and it is completed. i deside to start a same project on hasp. can you compair hardlock and hasp from packet encryption point of view? previously you say that there are 2 version of enc\dec algo for sentinel, are you know there are 3. toro |
#24
|
|||
|
|||
Quote:
Quote:
|
#25
|
|||
|
|||
hi nikita
for sentinel enc\dec version detection, i use (packet+0x4). i saw that in superpro 6.3 this memory address contain 0x7. in last versions i saw 0x6. so i decide to use this memory address for detection of version, am i true? however in a target that this memory address contain 6, i saw 2 different algo, both of them is in shell. toro. |
#26
|
|||
|
|||
Quote:
|
#27
|
|||
|
|||
Aladdin released new dongle with AES crypt algo.
hppt://www.ealaddin.com/hasp/hasphl.asp And new hasp hl driver - ver 5.11 _ftp://ftp.ealaddin.com/pub/hasp/hl/windows/installed/redistribute/drivers/HASPDinst.zip CD _ftp://ftp.ealaddin.com/pub/hasp/hl/HASP_HL_CD_1.10.iso Tools _ftp://ftp.ealaddin.com/pub/hasp/hl/windows/HASP_HL_For_Windows.zip |
#28
|
|||
|
|||
hi nikita
i found another algo version in sx32w.dll version 5.0.0.0 . it is used by rnbosprofunctions and its packet version is 4 also packet size is 0xffc that is very bigger than 6 and 7 versions. toro |
#29
|
||||
|
||||
Hello Nikita .
Can you send hl_struct structure to me too? Thanks. |
#30
|
|||
|
|||
Hello Nikita .
Can you send hl_struct structure to me too? orshare it here Thanks. |
Thread Tools | |
Display Modes | |
|
|