Leaderboard

@XenocodeRCE: I have a huge respect for you as a RE guy but now you're just being a d*ck. If you have some personal issues with mamo/localhost0/whatever he calls himself this week, please resolve them privately and don't make a huge public drama out of it. No matter how I count, it's 3 months and 2 days max. If you're gonna whine, at least get your facts right. Umm, no. The requirement from law is to react on any reported copyright infringements, not to actively run around and search for any possible issues. See DMCA 512(c). So, if admins ignored a properly reported copyright issue for 3 months, then yes, maybe they could be held responsible. But that's not the case.

Hello everyone. For some time now any registered member of the forum can upload or download copyrighted content that is illegally shared and hosted on the forum. Indeed, not only are there disruptive elements within this community, but in addition they allow themselves to use the forum as a platform for retrieving pirated and / or stolen content. Here is a non-exhaustive list of these positions: - https://forum.tuts4you.com/topic/42411-armdot-source-code/ - https://forum.tuts4you.com/topic/42159-beds-protector-private/ - https://forum.tuts4you.com/topic/42391-cawk-vm-open-source/ - https://forum.tuts4you.com/topic/42210-atomic-obfuscator-90-open-source/ 1) The first item is copyrighted software which has nothing to do here. Not only can we download the software, but we can also view its source code, which is a violation of digital copyright law and a violation of reverse engineering laws. 2) The other three are not copyrighted software, but remain private projects. - For example the second subject, "Beds protector -> private <-" includes in its title directly the information that it is a sharing of a private project. So while the software or the code behind the software is not currently regulated, should everyone be allowed to share private code? - The third subject concerns a private project, once again, of one of our emeritus member, Cawk [https://forum.tuts4you.com/profile/90434-cawk/]. Those who speak with him or those who have had the chance to communicate with him know very well that he kept this project private in order to sell it. He had already sold one of his private project on this forum. Out of pure respect I wonder if it makes him happy to see his private projects shared with impunity on a forum he appreciated. - The last one has already been the subject of a DMCA complaint [https://i.imgur.com/V4GjHXR.png] but I want to add something even more serious in my opinion: if you do not know what is " atomic-obfuscator ", you can imagine that it is a paid private obfuscator, which had a very small number of users. Now if you type the name of the project on Google you will find its shared source code several times, in different versions of the project, and this in a systematic way. What I am targeting here is the relentlessness that certain users allow themselves towards other users and their projects. If we refer to the forum rules, since the first sharing of private content on the forum by the user "localhost0" we can observe several repeated violations of the rules: - "01. Your Expected Behavior and Attitude": what good attitude would allow you to share private code on semi-public forums? None. - "07. Uploads, Downloads & Files": the leaked and cracked versions of the programs mentioned above are expressly hosted on the forum, or use the forum's hosting platform. In other words, the forum is currently hosting illegal content. - "11. Scene Warez": A bit for the same reasons, but if only it was disparate; we can see that the user "localhost0" is ONLY sharing leaked code or private project source code. - "22. Intellectual Property": It goes without saying that all of this content hosted on the forum is subject to violation of the intellectual property code. I am not a lawyer but in my humble opinion there is no need to get a PhD in digital law to understand the problem. What I propose: - The "Packer and Protector release" section must be reworked, or be moderated: our newly created topic must be approved by a moderator before being visible, in order to prevent sharing of illegal content or sensitive.

This code and accompanying article is worse than most ConfuserEx mods written by script kiddies... Where do I start? Holy f*ck, have you ever heard of things you should never ever do inside DllMain? Loading another DLL from DllMain is one of the basic ones - it virtually guarantees a deadlock. "DLL hook"... You mean DLL name? Like, I don't know... a string? Not since year 2018... And it's called "Detours" And the cherry on the top! Just 4 problems in 9 lines of code! Must be a world record or something! 1) if CreateRemoteThread fails, child process is left hanging; 2) WaitForSingleObject with 4000ms timeout assumes that remote thread runs immediately and that hook DLL loads and does its stuff immediately. You just created a race condition between hooking thread and main process thread. 3) WaitForSingleObject with timeout + VirtualFreeEx creates another nasty race condition. 4) You should close the thread handle for the process you created: CloseHandle(processInformation.hThread);

I noted in at least one of the links you posted you were able to "like" a post and likely downloaded content yet did not report to moderators any of these up until 45 minutes prior to starting this topic. I am assuming your current motives and interest are purely driven due ArmDot source code being released and were okay not to care reporting of the other links up until this point. As commented previously one of those topics you linked (source code for commercial copyright software) was taken down, within five hours of it being posted. Another was taken down and restored after a week because the person (claimed author) making the complaint never responded to PM's to provide further information or context. Regarding "private", it is not uncommon in the RCE scene for private tools, code, etc. to be released (not leaked) to the public. There are also open source code that get released under various licences that people modify and those changes may still fall under an open licence. What I am getting at here, and this is not an excuse, is that sometimes there are grey areas and it would be appreciated if you reported these to the moderators as we aren't always aware of everything that is happening out there. Occasionally people have incorrectly or falsely reported posts and topics for various reasons (sometimes out of spite, jealousy, personal disputes, etc.). If we really want to follow the rules moderators could request information to validate as described in section 22 of the terms. The moderators have actioned all your reports on good faith and in a timely manner without requesting any of this information... Ted.

Unfortunately, people who write these kinds of articles, lack even the most basic knowledge of economics. "Loss of revenue" is not the same as an actual "loss" (also called "financial loss"). Suppose you're selling cars. You normally sell one car a month for 20'000EUR. A bad month (or Coronavirus) comes and you don't sell any car that month. Did you just lose 20'000EUR? No, you didn't. Sure, you had some expenses, like salary, rent of the office, telephone - those expenses will be your actual financial loss. But that wouldn't sound that scary, right?

@Kurapica https://www.bleepingcomputer.com/news/security/bypassing-windows-10-uac-with-mock-folders-and-dll-hijacking/

Get your tools ready!

Hi all i'm new on this forum and i really need you're help (sorry for my bad english) let me introduce my problem : in few days ago i tried to crack a keylogger to see how he was made and this software was packed by two packers the number one is called enigma protector 5.x and the second packer is called dnguard (yeah dnguard a very old packer) so i successfully bypassed the enigma protection and now there is my problem "DNGUARD" this packer is old and he seems to be good as far as i could see so i googled how to unpack this and i found nothing i just found one unpacker made by "death" and this tool upgraded and fixed by codecracker (codeexplorer i think ?) so i downloaded the codeexplorer version but now i have a huge problem the unpacker returns a error when i want to unpack my keylogger after this error the program won't continue so i searched for a fixed version of this problem and i found some links but all links where the uploaded fixed version are dead 🙁 or make this error obfuscated code : all strings are encrypted by this message "error dnguard runtime library not loaded" so if someone can help me how to unpack it it would be really nice the exe (zipped with all resources) : https://www28.zippyshare.com/v/lJ9k96Xb/file.html i left the enigma version if i do something wrong Thanks !

Hi Password : @flag{} inline patched file attached CrackMe_inlined.rar

Hello All, I created my first reverse engineering project. It's an open source loader called patchya, It's not strong as dUP yet. I am planning to port it to Linux and to add more features as anti anti debugging tricks. Would appreciate any feedback! Github project: https://github.com/misaleh/patchya

Difficulty : 5 Language : Delphi Platform : Windows X86 OS Version : XP and above Packer / Protector : Safengine Licensor 2.3.7.0 Description : We need to do a patch HWID or unpack. Password - unpackme Screenshot : unpackme Safengine Licensor 2.3.7.0.rar

PatchRSAPublicKey_KeyGen PatchRSAPublicKey_KeyGen.rar