megadoctor's Ser-Me 2
| Download Ser-Me2.zip, 204 kb (password: crackmes.de) Browse contents of Ser-Me2.zip Read The Readme File For Info!
Difficulty: 1 - Very easy, for newbies | Send a message to megadoctor » View profile of megadoctor » |
Solutions
Solution by Tenshi, published 18. jul, 2006; download (410 kb), password: crackmes.de or browse.
Tenshi has rated this crackme as nothing special.
Solution by MiniMinou, published 05. jul, 2006; download (209 kb), password: crackmes.de or browse.
MiniMinou has rated this crackme as quite nice.
Discussion and comments
| megadoctor Author 27. Jun 2006 | damn... i forgot how to remove jumps in ollydbg, can someone help? |
|---|---|
| Ank83 27. Jun 2006 | Hi megadoctor. If you mean noping a jump, just right click on the address and chose Binary\Fill with NOPs. Or more simple is to go at that address press SPACE and insted of the text that will have into the text box enter NOP and press Enter. I hope this will help you. Regards Ank83 |
| MiniMinou 28. Jun 2006 | Hey all, just finished my solution. Hope you will enjoy it! Any question ? Ask me ! Don't be shy ! It was quite easy to do, so if you take the time to do it, divide your work, you'll finish it too ! |
| MySacrafice 28. Jun 2006 | Ya, I am noobie at cracking, I am not sure what API's to look for. I am working in olly debugger and I have, under the reccomendation of a friend who dosent crack, but said that the endable window api is responsible for the activation / deactivation of butting in GUI. So I found 3 references to that in the program, makes sense, 3 important buttons, (textbox, button1, button2) and looked at the code. I nop'd off any jumps that might not allow the API call to run, but with no change to the program :( |
| megadoctor Author 28. Jun 2006 | Patcing IS allowed! |
| c_07 28. Jun 2006 | MySacrafice, a good way to start is to look for GetDlgItemTextA, SendMessage, etc. or similar APIs because the serial must at some point be retrieved from the edit. That's just a general idea. |
| MySacrafice 29. Jun 2006 | I looked and didnt see any GetDlgItemTextA, MiniMinou said he had a solution but I dont see one yet, must be in qeue, could anyone help me with how to enable the buttons, I think I might be able to get it after that. |
| Tenshi 29. Jun 2006 | hi, is there an goodboy message ?or the programm just close ? if the programm just close, i had an solution ^^ regards |
| c_07 29. Jun 2006 | First disable the routine that checks to see if you've enabled the window (hint: IsWindowEnabled), then maybe insert some code?... or just use ResourceHacker :D |
| Tenshi 29. Jun 2006 | i know, i had done all. but the questions was if there is a message that the programm is "register" or if the programm just close if the serial is right.... |
| c_07 29. Jun 2006 | Oh, I was actually trying to answer MySacrafice's question (sorry, should have specified). |
| Tenshi 30. Jun 2006 | oh, im sorry too ^^ |
| toshimi 04. Jul 2006 | explain more, step 5, pls. |
| c_07 04. Jul 2006 | I can't seem to figure out how to disable the ExitProcess without having the app crash. How can I get it back into the normal message loop without freezing the code? |
| megadoctor Author 04. Jul 2006 | i see that its pretty hard for newbies... i dunno i haven't cracked ir my self :)) im too much of a newbie to crack my own Crackme :)) but my friend tests them... he cracked this fucker ;) |
| thehyper 05. Jul 2006 | c_07,look at 0x455ed6. nop the call it out if you don't want the crackme to exit :) |
| MiniMinou 06. Jul 2006 | Haaa, there it is ! Hope you will all learn from it ! |
| hardcoder 10. Jul 2006 | I've tried something different, Patched 00437958 814B 04 00000>OR DWORD PTR DS:[EBX+4],8000000 With NOP, so both of the textbox and button got enabled and 00455ED6 E8 5DB2FFFF CALL cked.00451138 With NOP, so it prevents from exiting finally WRONG with GOOD I patched , 00455EC8 . /74 0A JE SHORT Ser-Me2.00455ED4 with nop too |
You may leave your comment, thoughts and discuss this crackme with other reversers here.
Acting childish will not be tolerated.
HTML and such will be left as-is, so don't try.