Jump to content
Tuts 4 You

Leaderboard

Popular Content

Showing content with the highest reputation on 10/20/2020 in all areas

  1. Oops... misread your first post. Now I understand. I have made some changes, give it a test run and let me know if not all good... Ted.
    1 point
  2. 1,771 downloads

    I want to release a new tutorial about the popular theme Themida - WinLicense. So I see there seems to be still some open questions mostly if my older unpack script does not work anymore and the unpacked files to, etc. So this time I decided to create a little video series on how to unpack and deal with a newer protected Themida target manually where my older public script does fail. A friend of mine did protect unpackme's for this and in the tutorial you will see all steps from A-Z to get this unpackme successfully manually unpacked but this is only one example how you can do it, of course. So the tutorial [videos + text tutorial] is very long and has a run-time of more than three hours and of course it will be necessary that you also read the text parts I made at the same time if possible but if you are already a advanced user then you will have it easier than a newbie. So I hope that you have enough patience to work through the whole tutorial. So the main attention I set on all things which happen after normal unpacking so the unpack process is the simplest part and all what comes after is the most interesting part and how to deal with all problems that happen. It's more or less like a live unpack session. I also wrote some small basic little helper scripts which you can also use for other targets to get valuable information if you need. Short summation: Unpacking Exception analysing VM analysing with UV plugin AntiDump's find & fixing & redirecting "after fix method" Testing on other OS My Special Thanks goes to Lostin who made this unpackme and others + OS's tests. (I want to send a thank you to Deathway again for creating this very handy and helpfully UV plugin). So this is all I have to say about the tutorial so far, just watch and read and then try it by yourself. Oh! and by the way I record ten videos and not only one. If something does not work or you have any problems with this tutorial, etc. then ask in the support topic only. Don't send me tons of PM's, OK! Thank you in advance. PS: Oh! and before someone has again something to complain because of my tutorial style [goes to quickly or is bad or whatever] then I just want to say, maybe you're right so normally I don't like to create and write tutorials. This is really not my thing so keep this in your mind.
    1 point
  3. _PyEval_EvalFrameDefault executes a code object on the Python frame. To dump the code object to a file you need to use PyMarshal_WriteObjectToFile / PyMarshal_WriteObjectToString at an appropriate place within the function. DnSpy has nothing to do with Python. It's just a piece of string inserted there on purpose.
    1 point
  4. My observation over the past few months shows the following categories of unpackmes/crackmes: 1. Genuine ones by members serious about RE: These are becoming more and more rare. These are the ones where the OP had put in personal effort to make them interesting and a real challenge to reversers, often using their own techniques to obfuscate or complicate the code.These are the ones that the likes of @kao and @Washi would enjoy. Here, the OP can post the solutions visible only to the mods. 2. Quick unpackmes/crackmes created from the latest releases of (commercial) protectors: These are quite common and submitted by many members including (in some cases) the vendors themselves in order to avail of the "free testing" here so that they could then go and patch their protectors. Noobs also post them in the hope of getting quick solutions for their unpacking needs. For this category, the posters would not be able to provide solutions (as commented by @Washi above). If we insist on solutions to be posted along with the challenge then we would lose this category. 3. "Modded" ConfuserEx and the likes (by noobs): These are the bane here and are a dime a dozen. Well hated by experienced reversers who come here only for the sake of pure reversing knowledge. Solutions can be asked but this category only irks most of us and is best done away with. This category is mainly from the noobs who want to "protect" their plagiarized tools and re-sell them after "protecting" them with the "modded" protector. So they just give a quick trial of their handiwork here to see if anyone here would be able to crack their mods. Then they go ahead and sell the plagiarized tools on underground forums for a few mBTC. So, we want to keep only the category 1 for sure. If we keep category 2 then we need to allow the posting of challenges without solutions. Manual moderation is the only way in my opinion. I would say that @Teddy Rogers idea works fine.
    1 point
  5. Not necessary to unpack to get the key. Key: Steps :
    1 point
  • Newsletter

    Want to keep up to date with all our latest news and information?
    Sign Up
×
×
  • Create New...