View unanswered posts | View active topics It is currently Thu Apr 09, 2020 2:11 am



Reply to topic  [ 630 posts ]  Go to page Previous  1 ... 10, 11, 12, 13, 14, 15, 16 ... 26  Next
VBA-M 
Author Message
ZSNES Developer
ZSNES Developer
User avatar

Joined: Tue Jul 27, 2004 10:54 pm
Posts: 3902
Location: Solar powered park bench
Reply with quote
Post 
Okay mudlord, the app is ready. Meet me on IRC for it.

You include a .h file, link against a .c file, and call a function internally inside the app, which you use to make the app fail if it doesn't return success.

Once compiled, you now run my program to "sign" the binary. Once signed, they can't make any changes to the binary, even compressing it, otherwise it'll bomb out when trying to run.

For them to bypass my signing, they'd need to:
A) Figure out how it's signed, and replicate the signing, which odds are, not happening.
B) Hack the code in the binary to skip over the protection routines, possible, but these people don't seem up to that, we'll see. If they bypass it like this, we can toughen it up a bit.
C) Compile from source. As we all know, this is near impossible, and they'd never do that. Why if they do this, we'll just have to let them continue with their stupid hacks :roll:

Oh and BTW, the signatures written into the binary are also covered by signatures, and unless you have my algorithms, you won't be able to modify any of them and keep the others in sync, since they all cover each other. Man, I love reading up PhD thesis crypto papers that everyone ignores :D

_________________
May 9 2007 - NSRT 3.4, now with lots of hashing and even more accurate information! Go download it.
_____________
Insane Coding


Mon May 19, 2008 9:03 am
Profile WWW
has wat u liek
User avatar

Joined: Tue Sep 11, 2007 2:54 pm
Posts: 559
Location: Banland.
Reply with quote
Post 
Awesome, and I was hoping of getting a small MFC GUI build update out. Perfect opportunity to see what they do eh?


Mon May 19, 2008 9:33 am
Profile
Regen Developer
Regen Developer
User avatar

Joined: Sun Feb 17, 2008 8:01 am
Posts: 533
Reply with quote
Post 
Hi,

I implemented AES some time ago and if you guys need it in protecion I can put it up for you.

stay safe,

AamirM


Mon May 19, 2008 10:57 am
Profile WWW
has wat u liek
User avatar

Joined: Tue Sep 11, 2007 2:54 pm
Posts: 559
Location: Banland.
Reply with quote
Post 
Thanks for the offer Aamir but I think our current ideas are more than enough. I think though AES is for pros, and since we aren't dealing with warez groups here, we don't need that level of binary protection.

Still, its very nice of you to want to help :)


Mon May 19, 2008 12:48 pm
Profile
Joystick Jedi
User avatar

Joined: Wed Jul 28, 2004 3:43 am
Posts: 228
Location: Portland, Oregon - USA
Reply with quote
Post 
I am sorry to say it but it looks like they cracked it.

http://www.freewebs.com/laterza/index.htm

_________________
Image
E=mc²
"People should not be afraid of their governments, governments should be afraid of their people." -V
The Ur-Quan Masters


Tue May 20, 2008 3:26 am
Profile
Zealot

Joined: Tue Nov 27, 2007 7:03 am
Posts: 1325
Reply with quote
Post 
Quote from their change log:
Quote:
-fixed Direct3D/DirectDraw sequences


*Ahem*

BULLSHIT

Directdraw was removed quite a while ago. They're lying out their ass.

Edit: Oh, and they deleted their forums again. :lol: :lol: :lol:


Tue May 20, 2008 3:50 am
Profile
has wat u liek
User avatar

Joined: Tue Sep 11, 2007 2:54 pm
Posts: 559
Location: Banland.
Reply with quote
Post 
Quote:
I am sorry to say it but it looks like they cracked it.


I beg to differ, they are re-reshacking old releases.

Shame.


Tue May 20, 2008 4:13 am
Profile
-Burninated-
User avatar

Joined: Mon Sep 10, 2007 11:33 pm
Posts: 871
Location: Unspecified
Reply with quote
Post 
Uh, can we say "moron"? What're they trying to do, ruin VBA-M!?

_________________
俺はテメエの倒す男だ! 宜しく! お前はもう死んでいる...


Tue May 20, 2008 4:13 am
Profile
has wat u liek
User avatar

Joined: Tue Sep 11, 2007 2:54 pm
Posts: 559
Location: Banland.
Reply with quote
Post 
Seems like it, or they just want me to quit.

I know several people that hate my guts and would do such a thing, just to get to me...


Tue May 20, 2008 4:16 am
Profile
ZSNES Developer
ZSNES Developer
User avatar

Joined: Tue Jul 27, 2004 10:54 pm
Posts: 3902
Location: Solar powered park bench
Reply with quote
Post 
Well, it seems they don't even have the skill to bypass a protection.

Repackaging an old release, that's nice and original.

On the other hand, byuu did bypass the protection within 10 minutes, that's what real developers do.

On the bright side, we now know for any new builds we have with new features we add, they won't be able to put out a ripped off version.

_________________
May 9 2007 - NSRT 3.4, now with lots of hashing and even more accurate information! Go download it.
_____________
Insane Coding


Tue May 20, 2008 4:18 am
Profile WWW
Zealot

Joined: Tue Nov 27, 2007 7:03 am
Posts: 1325
Reply with quote
Post 
Nach wrote:
On the other hand, byuu did bypass the protection within 10 minutes, that's what real developers do.


Don't you know? byuu is the god of emulation.

>.>


Tue May 20, 2008 4:20 am
Profile
ZSNES Developer
ZSNES Developer

Joined: Tue Dec 28, 2004 6:47 am
Posts: 6747
Reply with quote
Post 
The proof is in the pudding... as they say.

_________________
Continuing FF4 Research...


Tue May 20, 2008 4:22 am
Profile
has wat u liek
User avatar

Joined: Tue Sep 11, 2007 2:54 pm
Posts: 559
Location: Banland.
Reply with quote
Post 
Quote:
On the other hand, byuu did bypass the protection within 10 minutes, that's what real developers do.


Not bad...though if you have some reversing skill, it shouldnt be hard at all.

I'm interested with what byuu can do with Starforce, could take 10 hours, 10 days, 10 months (Splinter Cell 3 with SF lasted a year uncracked)....


Tue May 20, 2008 4:28 am
Profile
Reply with quote
Post 
MIDIs on a webpage? Is it still 1997?

Yeah, Nach asked me to test his protection earlier today. I gave him some suggestions that I strongly recommend you try for hardening things up a bit, but it's always 100x harder to protect an EXE than it is for someone with reverse engineering skills to crack it. You really shouldn't waste your time with these people.

Quote:
I'm interested with what byuu can do with Starforce, could take 10 hours, 10 days, 10 months (Splinter Cell 3 with SF lasted a year uncracked)....


Starforce 3 bested me.

I hijacked the program entry point with a LoadLibrary call, eg DLL injection. From here, I patched back over the entry point so the program would pass its own initial checksum test. I also patched out IsDebuggerPresent, and then hooked Advapi32 calls to block the SoftICE check.

After that, I wrote my own single stepping debugger to let the program decrypt the first payload, and then successfully dumped the process memory to reveal the decrypted program.

From here, it tested to see if two .sys kernel-level drivers were installed, and if not, it would spawn them from the EXE, install them, and then activate them. For Win9x, it'd install VXDs. Scary when you realize those two kernel drivers run 24/7 on your PC.

I had the ability to patch these kernel drivers before they were created, and I could disassemble the drivers, albeit with no heuristics (kernel function call names and such), but I couldn't actively debug them, even with SoftICE. I would basically need a kernel-level debugger to continue, and that requires two machines.

At that point, I realized I was pretty much in over my head, and I really didn't care that much to continue. Could I have cracked it if I kept at it? Probably not. Still, it was a fun learning experience.


Tue May 20, 2008 5:14 am
Joystick Jedi
User avatar

Joined: Wed Jul 28, 2004 3:43 am
Posts: 228
Location: Portland, Oregon - USA
Reply with quote
Post 
mudlord wrote:
Quote:
I am sorry to say it but it looks like they cracked it.


I beg to differ, they are re-reshacking old releases.

Shame.
So their release is not a cracked version of 515? My bad. I was just pointing out what they had said on their site. Good to know your protection works. Hopefully what their doing won't discourage you from working on VBA. WE all know who has put the real time and effort into it. Many thanks to the VBA-M Team, from me as well, I'm sure, most of the emulation community.

_________________
Image
E=mc²
"People should not be afraid of their governments, governments should be afraid of their people." -V
The Ur-Quan Masters


Tue May 20, 2008 6:55 am
Profile
Veteran
User avatar

Joined: Sat Apr 21, 2007 8:05 pm
Posts: 637
Reply with quote
Post 
DEFIANT wrote:
Hopefully what their doing won't discourage you from working on VBA. WE all know who has put the real time and effort into it. Many thanks to the VBA-M Team, from me as well, I'm sure, most of the emulation community.


Gladly seconded. We really appreciate your hard work.

_________________
I bring the trouble.


Tue May 20, 2008 8:00 am
Profile
Justice is Blind

Joined: Wed Jul 28, 2004 3:33 pm
Posts: 620
Location: Test
Reply with quote
Post 
I doubt something like this would discourage him. He sure doesn't look like Nightwolve.


Tue May 20, 2008 7:30 pm
Profile ICQ YIM WWW
Zealot

Joined: Tue Nov 27, 2007 7:03 am
Posts: 1325
Reply with quote
Post 
Nightwolve, the guy who did the hacking on a few Ys translations?


Tue May 20, 2008 7:32 pm
Profile
Justice is Blind

Joined: Wed Jul 28, 2004 3:33 pm
Posts: 620
Location: Test
Reply with quote
Post 
He threw a massive tantrum when his near-complete Ys 6 patch he was giving to donators was leaked.


Tue May 20, 2008 7:33 pm
Profile ICQ YIM WWW
Zealot

Joined: Tue Nov 27, 2007 7:03 am
Posts: 1325
Reply with quote
Post 
He killed the translation? that sucks.

Then again, it is time honored tradition in the emulation world...


Tue May 20, 2008 7:45 pm
Profile
ZSNES Shake Shake Prinny

Joined: Wed Jul 28, 2004 4:15 pm
Posts: 5621
Location: PAL50, dood !
Reply with quote
Post 
Wasn't that the one asking for the smashed original disk ?

_________________
皆黙って俺について来い!!
Code:
<jmr> bsnes has the most accurate wiki page but it takes forever to load (or something)

Pantheon: Gideon Zhi | CaitSith2 | Nach | kode54


Tue May 20, 2008 7:46 pm
Profile
"God"

Joined: Tue Jul 27, 2004 11:24 pm
Posts: 1128
Reply with quote
Post 
mudlord, you should give this cloud duds credit for exemplar specimens of internet stupidity

_________________
Does [Kevin] Smith masturbate with steel wool too?

- Yes, but don’t change the subject.


Tue May 20, 2008 9:24 pm
Profile
Zealot

Joined: Tue Nov 27, 2007 7:03 am
Posts: 1325
Reply with quote
Post 
And it's down now. freewebs must have found out about the GPL violations...


Tue May 20, 2008 9:31 pm
Profile
-Burninated-
User avatar

Joined: Mon Sep 10, 2007 11:33 pm
Posts: 871
Location: Unspecified
Reply with quote
Post 
I.S.T. wrote:
And it's down now. freewebs must have found out about the GPL violations...
Serves them right for trying to screw the VBA-M users over!

_________________
俺はテメエの倒す男だ! 宜しく! お前はもう死んでいる...


Tue May 20, 2008 11:01 pm
Profile
ZSNES Developer
ZSNES Developer
User avatar

Joined: Tue Jul 27, 2004 10:54 pm
Posts: 3902
Location: Solar powered park bench
Reply with quote
Post 
I'm still able to access this page just fine.
http://www.freewebs.com/laterza/index.htm

_________________
May 9 2007 - NSRT 3.4, now with lots of hashing and even more accurate information! Go download it.
_____________
Insane Coding


Tue May 20, 2008 11:29 pm
Profile WWW
Display posts from previous:  Sort by  
Reply to topic   [ 630 posts ]  Go to page Previous  1 ... 10, 11, 12, 13, 14, 15, 16 ... 26  Next

Who is online

Users browsing this forum: No registered users and 3 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum

Search for:
Jump to:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group.
Designed by ST Software.