Ms-Rem's Ring0 crackme
| Download crackme.zip, 517 kb (password: crackmes.de) Browse contents of crackme.zip This crackme use packing and ring0 tricks for hiding serial check code.
Difficulty: 7 - Very hard | Send a message to Ms-Rem » View profile of Ms-Rem » |
Solutions
Solution by deroko, published 07. oct, 2006; download (218 kb), password: crackmes.de or browse.
deroko has rated this crackme as awesome.
Discussion and comments
| Shism 15. May 2006 | You mean: It is a valid serial |
|---|---|
| Shism 15. May 2006 | Great crackme btw |
| TQN 16. May 2006 | Very hard crackme to me ! Need patch the dxapi32.sys to unhide two crackme process. |
| Shism 16. May 2006 | really lol!? Is there gonna be a tutorial for this lol Also how do you recalculate the checksum for the sys after you patch it? |
| autarky 16. May 2006 | BitSum do a PE xsum checker/patcher. You can get it with the free trial download of PECompact. Also, I found trying this with a blank user name gave ... intersting results. And you can always patch the device driver in memory with another device driver. Or a ring0 privilege exploit. |
| Shism 16. May 2006 | This crackme is pretty hard to me.... I wonder if they'll be a tutorial for this |
| thehyper 16. May 2006 | I managed to dump the process and fix the iat. But don't how to get the ep? :( any ideas? |
| Shism 17. May 2006 | What is this trick with the focs.dll, that causes OllyDbg to terminate. Where it says Bad or unknown format of 32-bit executable and the process exits |
| thehyper 17. May 2006 | have same msgbox problem. but ollydbg does not terminate in my case. It detect ollydbg through the FindWindow function. |
| thehyper 17. May 2006 | You can calculate the checksum for the sys file using LordPE |
| Shism 17. May 2006 | I know it finds it through FindWindow... However, my process exits, not OllyDbg terminates |
| thehyper 17. May 2006 | i have the same problem though the process does not exit. it simply hangs. i have not been able to run this crackme in ollydbg. i have started using softice. |
| Shism 18. May 2006 | Damn, I've been trying to get SoftICE to work on my system for ages.... Do you know where I can get a instant working copy for Windows xp sp 1? |
| zairon Moderator 18. May 2006 | Just to make things clear: don't post warez link here! |
| deroko 05. Oct 2006 | excelent crackme, very very good... |
You may leave your comment, thoughts and discuss this crackme with other reversers here.
Acting childish will not be tolerated.
HTML and such will be left as-is, so don't try.