Programming and Coding

Hi. Ok so I'm making a packer, but, its not working on some files. For example, works fine on a Delphi hello world, but on HoundPE(also coded in Delphi) it doesn't. Get an exception then an empty message box. Checked and the file is being mapped correctly and imports definatly fixed. Attached are examples of working and non-working files. Any suggestions welcome. Thanks. Tests.rar

Can anyone tell me some basic functions to learn about C for keyggening? Sorry for my bad english, thanks, thanos713.

Hey guys, I am looking for a KG template (MASM) that would bruteforce a serial that is 15 characters long (0-9 chars only). The ripped code is 2.5megs as a text file and consists mostly of IMULs & IDIVs, etc. There is a total of 17 math checks done. During each check, the char manipulation is done on 13-15 characters from the serial as well as on chars from the username; these are done independantly and the if the results match then variable "Valid" is set. Subsequent checks also set/reset "Valid" accordingly... I realize I have to loop through the whole thing until all criteria are met so I am looking for the SPEEDIEST and MOST EFFICIENT way to do it. I intended…

Finally play XM files, just with 28.5kb NET DLL file full credits fly to : UFO-Pu55y I just make the wrapper (check .vbproj for more) dn 98kb @: http://rapidshare.com/files/346235556/ufMODWrapper-whoknows.7z.html

I'm leaning BHO programming with this tutorial. />http://www.codeproject.com/KB/shell/BHOinCPP.aspx I used VC6 to compile the project, and got the error: cannot convert from 'const struct _GUID' to 'unsigned long' from the line: const IID CClassFactory::SupportedIIDs[]={IID_IUnknown,IID_IClassFactory}; SupportedIIDs is an array (class member of CClassFactory) which is declared as: private: static const IID SupportedIIDs[2]; in SDK (Guiddef.h), IID is declared as: typedef GUID IID typedef struct _GUID { unsigned long Data1; unsigned short Data2; unsigned short Data3; unsigned char Data4[ 8 ]; } GUID; the attachment is the VC6 project. Thank you for hel…

Hello masters I have a problem with using drivers in delphi , how i can use a driver file with sys extension , is there any chance ? Thanks.

Ok so I'm messing around with injecting dll's into other processes. The code I have works perfectly fine on any 32 bit machine but completely blows up on W7 64 bit. If it's compiled for pure 32 bit it works ok but only with 32 bit programs. I'm getting "CreateRemoteThread exited with error 8" Any ideas? public unsafe static bool LoadRemoteLibrary(Process process, string Dll2Inject, out IntPtr lpModule) { lpModule = IntPtr.Zero; if (!File.Exists(Dll2Inject)) { throw new FileNotFoundException(String.Format("PE File '{0}' not found.", Dll2Inject)); } UnicodeEncoding enc = new UnicodeEncoding()…

can someone help me with this algorithm? thanks in advance .. algoritmo.rar

How can I send packages to Delphi? I want to hook certain API's for a game and then send the package for Delphi ... Help me;) thx a lot

Yohoo hord of fans, Here is my VGCrypt v0.75 decryptor. You can say that Lutin Noir has already released a decrypter for it, but his decrypter doesn't remove decryptor section or code. It just decrypt it and restore original EP. My decryptor removes unwanted sections and code, so the file get smaller... Tested with VGCrypt v0.75... As usual, source code in masm and cryptor are also included for interested ones... See you soon ... (Working actually on VGShrink and PCShrink) Laurent aka BIGBOSS from COPs VGCrypt_v0.75.zip CPS!UnVGCrypt_v1.0.zip

Hi Friends How To Use Register Of Dr0,..,Dr7 In Visual Basic And Set Hardware BreakPoint ? Thanks

Hi, I have the name, base address and size of a section which i have to save to disk. I have to do this with C/C++ and not PE tools or something like that. Well I guess that's not a big problem, just save each byte from base address to (base address + size) to a file right? Then I have to attach this section to a binary with c++, but i am not sure how to do this. First I have to write the section at some address in the binary, but what do i have to edit in the PE header? Is there a way to add a section and use it directly, while the program is in memory? Primarily I'm talking about code sections here.

I want to make dll with Decorated Names by using masm32 the export name is like ?MoleBox_GetUserMail@@YA?AVMoleString@@XZ when i wrote in .def file like this LIBRARY MYCLASS EXPORTS ?MoleBox_GetUserMail@@YA?AVMoleString@@XZ=MoleBox_GetUserMail @1 ?MoleBox_GetUserName@@YA?AVMoleString@@XZ=MoleBox_GetUserName @2 when i make the dll,i find it is ?MoleBox_GetUserMail rva: 00001006 ord: 1 ?MoleBox_GetUserName rva: 00001014 ord: 2

Hey guys! Well I'm currently doing some experimenting with coding an exe packer/protector. I've got it working up to the point of loading and packing an executable written in C++ compiled with Dev-c++ and it works fine. Whenever I compile the same source code in Visual Studio 2008 pack it and run it I get "Not a valid executable file!" Anyone have an ideas? I can post the code if need be. Thanks in advance

Hi, I am stuck at converting a negative signed value to an unsigned value in vb.net 2008: e.g. signed: -1111111 unsigned: 4293856185 I am trying to do a "NEG" operation... any ideas? deep0

hello there im trying to make some usermode hooks to explorer.exe process my first goal is to hook findnextfileW api but when im going to open a directory explorer crashes.I have spot an access violation but i cant spot why that happened here is my source code diafora.h typedef struct AdressEs{ //....target DWORD FindNextFileW_; //....redirect DWORD FindNextFile_; //...data BYTE FindNextFileData[6]; }AdressEs;void HoonOnAddress(DWORD addr,DWORD dst); void UnHoonOnAddress(DWORD addr,BYTE *patch); int JMP(DWORD func,DWORD tramboline); bool FindNextFile_(HANDLE hAndle,WIN32_FIND_DATAW *FileData); void DumpFirstBytesBeforePatch(DWORD addr); void InitializeHook();DWORD p…

The key isn't generated from a username. I managed to get the key validation routine, and it is rather complex. I was able to translate it to Python code, and I tried generating random numbers and trying each generated number with the validating routine, but I was not able to get a valid key, since the chance of each randomly generated number being valid is near 0. What is the best way to generate a valid key?

I have a binary with 3 radio buttons, I want to change the default startup selection and resource hacker does not allow me to change the default value. So I must assume the GetDlgItem is where and how the control is initialized. When I break on GetDlgItem, the stack never shows the known control ID for the three buttons I want to switch in code. Since I don't have the source code, I have to do it in asm, but I can't really find any methods that deal with this. Any thoughts? Thanks

Hey I wonder how you would use WM_COPYDATA in ASM or more specifically how to create the COPYDATASTRUCT like defined in here: Clickity Click, I am hoping someone is willing to help out a bit Regards, Filiph

XOR BYTE PTR DS:[EAX],AL i am confusing about some piece of code.. AL is byte size register ... how can i find it in ollydbg..

Trying to create a hidden window in delphi or (message only window) I have read up on the msdn, and come up with var WClass :TWndClass; TempClass :TWndClass; ClassRegistered :Boolean; begin WClass.style := 0; WClass.lpfnwndproc := @WndProc; WClass.cbClsExtra := 0; WClass.cbWndExtra := SizeOf(TWndClass); WClass.hinstance := hInstance; WClass.hIcon := 0; WClass.hCursor := 0; WClass.hbrbackground := 0; WClass.lpszMenuName := nil; WClass.lpszClassName := 'Server'; ClassRegistered := GetClassInfo(hInstance,WClass.lpszClassName,TempClass); if ClassRegistered = True then UnregisterClass(TempClass.lpszClassName,hInstance); Registerclass(Wclass); Res…

I am designing a delete function for a file manager i am coding however, i want to be able to delete a file even if you get that stupid windows "cant not delete due to blah" message. programs like unlocker. http://ccollomb.free.fr/unlocker/ search for all open handles for a given file and close them how is this acheived? i know after all handles are closed the obvious DeleteFileA is callled to delete the file. example, file1.txt has handle 1 and handle 2 open. search and find the handes CloseHandle(1) close handle(2) deleteFileA(file.txt); Delphi prefered but would settle with other langs and convert my self. TIA

dn 870kb @: http://rapidshare.com/files/326470028/NET.Introduction_to_APIs-whoknows.7z.html

NET.Reflection and Dynamic Class/Method Invocation Is this code will show you : -how you can load a DLL without add it as reference, call a method and get the return value -Create a class instance of DLL -show a FORM from 3rd party assembly! -as the 1st but the DLL in Resources! -export the Resource file dn (510kb) @: http://rapidshare.com/files/324777942/NET.Reflection_AppDomain-whoknows.7z.html

I'm attempting to uncompress and PECompact 2.XX file, and having a frustrating time. I followed a number of the tutorials here, but I think I'm missing some important stuff regarding the import tables. Here's what I've done: - Loaded .exe in IDA and saw junk - Used a hex editor to view the file, saw the "PECompact" string and knew it needed unpacking - Loaded .exe into ollydbg (using some stealth plugins) and found the signature PECompact "JMP EAX" instruction - Modified the JMP EAX to JMP EIP so it goes into infinite loop at that point - Ran the "infinite loop" version of the .exe, then attached to the process using ollydbg. Program is decrypted in memory! - The…