Jump to content
Tuts 4 You

Leaderboard

  1. Teddy Rogers

    Teddy Rogers

    Administrator


    • Points

      37

    • Content Count

      8,932


  2. Skarz

    Skarz

    Full Member


    • Points

      24

    • Content Count

      96


  3. kruzco

    kruzco

    Full Member


    • Points

      16

    • Content Count

      46


  4. Xyl2k

    Xyl2k

    Full Member


    • Points

      8

    • Content Count

      105



Popular Content

Showing content with the highest reputation since 07/20/2009 in Files

  1. 7 points

    12,061 downloads

    Many of you may be amazed at Guru LCF-AT's script "VMProtect API Turbo Tracer 1.2". But for most of the newbies, just like me, you may have a lot of problems in getting the script work properly in your own Ollydbg. LCF-AT already uploaded a lot of Ollydbg setting information togehter with the script to help us fix those Ollydbg problems, but there are too many details. Yes, I suffered a lot at the inital stage when I was trying to use "VMProtect API Turbo Tracer 1.1" by my chinese version "Terminator Ollydbg 1.1.0". Under LCF-AT's kind help, I created this basic version Ollydbg 1.1.0, which is specially for running "VMProtect API Turbo Tracer 1.1". And it works smoothly in my laptop, with Windows XP Professional SP3. If you like, get it and give it a try. Enjoy Cracking!!
  2. 6 points

    Version 1.7

    3,337 downloads

    REPT KeyGen Maker is an utility to make keygens easily without having a programming knowledges. Please report any bug/improve to make it better This is currently done in .NET so will need .NET Framework 3.5 or higher. Thanks for download it!
  3. 6 points

    Version 1.0.1

    161 downloads

    Hello friends . new uppp interface. do you like it ? try! Respects by SKARZ
  4. 5 points

    Version 1.0.0

    55 downloads

    hotkeys: m: (play/stop music) f1: (switch fullscreen/windows) f3: (nfo reader) elite: (hidden part) esc: (quit)
  5. 5 points

    Version 1.0.0

    235 downloads

    hi guys, new UNDF. Skin version2 for dUP2 . Long Life Cracking GFX Resource based on World Of Crack D2's Skin Source .psd
  6. 4 points

    Version v1.1 & v2.0 & Sh

    3,069 downloads

    OllyDbg with Plugin + OllyDBG v1.1 + OllyDBG v2.0.1 + OllyDBG Shadow GUI with Vic Plug-In Enjoy !
  7. 4 points

    Version 1.0.0

    188 downloads

    hello friends , i hope you're having a good time . i spent all day trying to design a nice skin for DuP2 i've finished my work with a few mistakes . you know am a beginner and that's my first design , hope you like it Regards , Hamid .
  8. 4 points

    Version 1.7

    1,297 downloads

    Bundle of .NET tools! The development ended @ 2012 with v1.7. Main reason is to defeat strong name validation, on the other hand third party tools merged! ACorns.Hawkeye Is the only .Net tool that allows you to view, edit, analyze and invoke (almost) any object from a .Net application. Whenever you try to debug, test, change or understand an application, Hawkeye can help. CFF Explorer-NTCore Designed to make PE editing as easy as possible, but without losing sight on the portable executable's internal structure. HwndSpy-dp0 Is an invaluable tool for developers doing maintenance on GUI applications, where they first need to understand the windows hierarchy and how the windows are structured. HxD-Mael Horz Is a carefully designed and fast hex editor which, additionally to raw disk editing and modifying of main memory (RAM), handles files of any size. Mono.Cecil-Evain Is a library to generate and inspect programs and libraries in the ECMA CIL format. Procmon-SysInternals Is an advanced monitoring tool for Windows that shows real-time file system, Registry and process/thread activity. Resource2+4-fish Is a utility to easily refresh embedded resources in a .NET assembly. ResX Schema(*.resX), Embedded Resource(*.resources), Import/Export/View/Edit/Translate embedded resources, Text/Icon/Bitmap/Cursor/String/ImageListStreamer/PinnedBufferMemoryStream (v4)... SysTracer-blueproject Is a system utility tool that can scan and analyze your computer to find changed (added, modified or deleted) data into registry and files. de4dot-0xd4d Is an open source .NET deobfuscator and unpacker written in C#. Assembly_Resigner-CodeCracker HeaderFixer-CodeCracker NR_Bad_Net_Opcode_Remover-CodeCracker StrongName_Killer-CodeCracker Password to extract is bs
  9. 4 points

    Version 1.0.0

    131 downloads

    [URET Metal Skull dup]
  10. 4 points

    Version 1.0.0

    97 downloads

    Hi, Guys Let yourself go, the harmony of classic colors MacOSX Style uPPP interface by.Skarz..
  11. 4 points

    Version v 1.0

    863 downloads

    hey guys i create a program for serial sniff by vb6 esc features : check crc(automatic) unicode string small size background music bypass packers and ..... sorry for my english (im persian) enjoy it
  12. 3 points

    278 downloads

    fonts i am most use for gfx
  13. 3 points

    Version 1.12

    1,278 downloads

    This is a professional PE file explorer that lets you dig into all data directories available in the PE/PE64 file and edit them. Export, Import, Resource, Exception, Certificate(Relies on Windows API), Base Relocation, Debug, TLS, Load Config, Bound Import, IAT, Delay Import and CLR are supported. Two companion plugins are also provided. FileInfo, to query the file in the well-known malware repositories and take one-click technical information about the file such as its size, entropy, attributes, hashes, version info and so on. YaraPlugin, to test Yara rules against opened file. Puppy is robust against malformed and crafted PE files which makes it handy for reversers, malware researchers and those who want to inspect PE files in more details. Puppy is free and tries to be small, fast, nimble and friendly as your puppy! Website: https://www.mzrst.com/
  14. 3 points

    Version 0.0.1

    201 downloads

    Thx all guys for creating AT4RE - my crazy skin "The Game"
  15. 3 points

    Version 1.0.0

    48 downloads

    Hello friends. I try to prepare a classic logo for the forum. -Feel free to use in your projects or documents. I hope you will like it. note:Source file only xcf format. for GIMP. sory for photoshop users. Detailed previw ( click to support button in forum page.)
  16. 3 points

    Version 1.0.0

    158 downloads

    hi guys, new UNDF. Skin for dUP2 . Long Life Cracking
  17. 3 points

    Version 700 Olly scripts

    5,611 downloads

    I know everyone Knows How To use this.But those hu dont know may goo on first of all download ollydbg script plugin from attachment and paste in olly directory... then extract this 700 scripts to any folder then simply detect any packed/protected file with peid or RDG and goto olly and plugin>run script and simply open the script belongs to any protection or packing...
  18. 2 points

    Version 1.8

    2,676 downloads

    OllyExt is a plugin for Olly 2.xx debugger. The main intention of this plugin is to provide the biggest anti-anti debugging features and bug fixes for Olly 2.xx. VMProtect support! The currently available commands are the following: Code Rip to Clipboard Code Rip to Clipboard Recursive Data Rip to Clipboard Signature Rip to Clipboard The currently supported protections are the following: IsDebuggerPresent NtGlobalFlag HeapFlag ForceFlag CheckRemoteDebuggerPresent OutputDebugString NtClose SeDebugPrivilege BlockInput ProcessDebugFlags ProcessDebugObjectHandle TerminateProcess NtSetInformationThread NtQueryObject FindWindow NtOpenProcess Process32First Process32Next ParentProcess GetTickCount timeGetTime QueryPerformanceCounter ZwGetContextThread NtSetContextThread KdDebuggerNotPresent KdDebuggerEnabled NtSetDebugFilterState ProtectDRX HideDRX DbgPrompt CreateThread NtSystemDebugControl Custom ( Write your own ) The currently supported bug fixes are the following: Caption change Kill Anti-Attach ( dll integrity check ) Requirements: Microsoft Visual C++ 2010 Redistributable Package (x86) OS support: Windows XP Windows Server 2003 R2 Windows Server 2008 R2 Windows 7 Windows Server 2012 Windows 8 Windows Server 2012 R2 Windows 8.1 Limitations: Because of missing PDK function data ripping is ONLY on 2.01 latest supported If you have any problem just notify me.
  19. 2 points

    6,862 downloads

    A collection of tutorials aimed particularly for newbie reverse engineers. 01. Olly + assembler + patching a basic reverseme 02. Keyfiling the reverseme + assembler 03. Basic nag removal + header problems 04. Basic + aesthetic patching 05. Comparing on changes in cond jumps, animate over/in, breakpoints 06. "The plain stupid patching method", searching for textstrings 07. Intermediate level patching, Kanal in PEiD 08. Debugging with W32Dasm, RVA, VA and offset, using LordPE as a hexeditor 09. Explaining the Visual Basic concept, introduction to SmartCheck and configuration 10. Continued reversing techniques in VB, use of decompilers and a basic anti-anti-trick 11. Intermediate patching using Olly's "pane window" 12. Guiding a program by multiple patching. 13. The use of API's in software, avoiding doublechecking tricks 14. More difficult schemes and an introduction to inline patching 15. How to study behaviour in the code, continued inlining using a pointer 16. Reversing using resources 17. Insights and practice in basic (self)keygenning 18. Diversion code, encryption/decryption, selfmodifying code and polymorphism 19. Debugger detected and anti-anti-techniques 20. Packers and protectors : an introduction 21. Imports rebuilding 22. API Redirection 23. Stolen bytes 24. Patching at runtime using loaders from lena151 original 25. Continued patching at runtime & unpacking armadillo standard protection 26. Machine specific loaders, unpacking & debugging armadillo 27. tElock + advanced patching 28. Bypassing & killing server checks 29. Killing & inlining a more difficult server check 30. SFX, Run Trace & more advanced string searching 31. Delphi in Olly & DeDe 32. Author tricks, HIEW & approaches in inline patching 33. The FPU, integrity checks & loader versus patcher 34. Reversing techniques in packed software & a S&R loader for ASProtect 35. Inlining inside polymorphic code 36. Keygenning 37. In-depth unpacking & anti-anti-debugging a combination packer / protector 38. Unpacking continued & debugger detection by DLL's and TLS 39. Inlining a blowfish scheme in a packed & CRC protected dll + unpacking Asprotect SKE 2.2 40. Obfuscation and algorithm hiding
  20. 2 points

    Version 0.1

    686 downloads

    This is a simple utility to convert between ImageBase, VA, RVA & File offset
  21. 2 points

    Version 1.0.0

    64 downloads

    intro for WebScene.IR (ex-0777) gfxs included.
  22. 2 points

    Version 2.2

    481 downloads

    Bundle of .NET tools! Main reason is to defeat strong name validation, on the other hand third party tools merged! ACorns.Hawkeye Is the only .Net tool that allows you to view, edit, analyze and invoke (almost) any object from a .Net application. Whenever you try to debug, test, change or understand an application, Hawkeye can help. CFF Explorer-NTCore Designed to make PE editing as easy as possible, but without losing sight on the portable executable's internal structure. HwndSpy-dp0 Is an invaluable tool for developers doing maintenance on GUI applications, where they first need to understand the windows hierarchy and how the windows are structured. HxD-Mael Horz Is a carefully designed and fast hex editor which, additionally to raw disk editing and modifying of main memory (RAM), handles files of any size. Mono.Cecil-Evain Is a library to generate and inspect programs and libraries in the ECMA CIL format. Procmon-SysInternals Is an advanced monitoring tool for Windows that shows real-time file system, Registry and process/thread activity. Resource2+4-fish Is a utility to easily refresh embedded resources in a .NET assembly. ResX Schema(*.resX), Embedded Resource(*.resources), Import/Export/View/Edit/Translate embedded resources, Text/Icon/Bitmap/Cursor/String/ImageListStreamer/PinnedBufferMemoryStream (v4)... SysTracer-blueproject Is a system utility tool that can scan and analyze your computer to find changed (added, modified or deleted) data into registry and files. de4dot-0xd4d Is an open source .NET deobfuscator and unpacker written in C#. Assembly_Resigner-CodeCracker StrongName_Killer-CodeCracker
  23. 2 points

    Version all

    253 downloads

    here sample
  24. 2 points

    Version 1.0.0

    79 downloads

    [ Black & Yellow Skin ]URET ]
  25. 2 points

    Version 1.0.0

    43 downloads

    [ H4ppy H4ll0ween ] URET ]
  26. 2 points

    Version 1.0.0

    54 downloads

    [ p33k Skin uppp ]
  27. 2 points

    Version 1.0

    49 downloads

    My Team Offical Super Octopus skin for dUP2. Author´╝ÜMind Code Made in China.My blog is here.
  28. 2 points

    Version all

    33 downloads

  29. 2 points

    Version 1.0.0

    672 downloads

    NEW dUP2 - Friendly with antivirus Password: tuts4you.com
  30. 2 points

    Version 0.2

    1,229 downloads

    Hello everyone! I made a new utility for Team Rept called "REPT Patch Engine". As it name says, this patch engine provides you an easy to use interface to make different types of patch in one single executable. Currently it has 3 types of patching method: Hex Editor (Offset Patch) File Export Registry Patch This utility is made on .NET. I did NOT put any credit of "Created with REPT Patch Engine" because I wanted to make a new patch engine useful. Things to update for next versions: Compare files to see the offset of cracked and original file. DONE! Add custom skin If you need another thing to put on the patch tell me I hope you like it and it could be interesting to use. Fell free to use as you want. LordCoder
  31. 2 points

    332 downloads

    Did you see the great logo that cond0lence put in the gallery? Well I decided to use it in a new dUP skin for the new dUP version 2.15. This skin makes use of the new "bitmap button" feature ..... If you use it, please be sure to credit cond0lence for the SnD logo! Files included: example exe, resource, tune, and color file PS: This skin doesn't include the filename, url, author, or date fields..... so, if required, place this information into the release info box .
  32. 2 points

    3,103 downloads

    1- Gives some info about programs PE and sections !! 2- Converts Virtual to Real and Real to Virtual Offset !!
  33. 1 point

    Version 2.06

    1,187 downloads

    ----- [ MENU ] ----- Show the toolbar in the title of OllyDbg window Maximize OllyDbg window when staring Maximize OllyDbg child windows when staring Show address info in status bar Use APIs menu in OllyDbg menu bar Apply confirm exit for OllyDbg Make the transparency for OllyDbg window Debuggee Data Delete UDD data of the current session Delete all UDD data Open UDD data list Delete recent debuggee files Data Converter DLL Process Viewer File Location Converter PE Viewer Thread Viewer Lookup Error Code Find events of C++ Builder / Delphi VCL GUI application Advanced Map File Importer Map File Importer Open Label window Open Comment window Bypass Anti Debugging Hide the PEB Data Copier VA Address RVA Address Offset Address ANSI String UNICODE String Code Ripped Breakpoint Manager INT3 Delete all INT3 Import INT3 Export HWBP Delete all HWBP Import HWBP Export MBP Delete all MBP Import MBP Export Follow Me Follow in Disassembler at <address> Follow in Dump at <address> Copy <address> to clipboard Check for update Information
  34. 1 point

    Version 1.1

    44 downloads

    Improved LoadDLL for use with OllyDbg. It uses LoadLibraryEx with DONT_RESOLVE_DLL_REFERENCES to load the dll without calling DllMain.
  35. 1 point

    42 downloads

    This is my 2nd tutorial for BiW-Reversing that will discuss about MUP with ollydbg + ollydump. BTW, my 2nd tute should be about the truth lies behind a keygen. But i need more time to get as much as ideas to discuss about it deeply. For this tute, i just want to unpack UPXed file and as a bonus, FSG 1.33 packed one. I assume the reader has a little knowledge about PE like Entry Point (EP), Original Entry Point (OEP) in packed PE executables. BTW, I want to recommend you to read 'Peering Inside the PE: A Tour of the Win32 Portable Executable File Format' by Matt Pietrek, but other manual/docs about PE also recommended to read (and to learn too).
  36. 1 point

    13 downloads

    The default windows API functions to load external libraries into a program (LoadLibrary, LoadLibraryEx) only work with files on the filesystem. It's therefore impossible to load a DLL from memory. But sometimes, you need exactly this functionality (e.g. you don't want to distribute a lot of files or want to make disassembling harder). Common workarounds for this problems are to write the DLL into a temporary file first and import it from there. When the program terminates, the temporary file gets deleted. In this tutorial, I will describe first, how DLL files are structured and will present some code that can be used to load a DLL completely from memory - without storing on the disk first.
  37. 1 point

    9 downloads

    A quick video tutorial on keygenning TccT KeygenMe #2 by Tarequl.
  38. 1 point

    10 downloads

    A video tutorial on keygenning BadSector CrackMe #1.
  39. 1 point

    71 downloads

    In patching .Net, you could disassemble/decompile the executable with ildasm and when done patching you would assemble/compile it again with ilasm. In this tutorial I will show you how to patch the executable with hex editor.
  40. 1 point

    45 downloads

    Anti-unpacking tricks can come in different forms, depending on what kind of unpacker they want to attack. The unpacker can be in the form of a memory-dumper, a debugger, an emulator, a code-buffer, or a W-X interceptor. It can be a tool in a virtual machine. There are corresponding tricks for each of these, and they will be discussed separately. - A memory-dumper dumps the process memory of the running process, without regard to the code inside it. - A debugger attaches to the process, allowing single-stepping, or the placing of breakpoints at key locations, in order to stop execution at the right place. The process can then be dumped with more precision than a memory-dumper alone. - An emulator, as used within this paper, is a purely software-based environment, most commonly used by anti-malware software. It places the file to execute inside the environment and watches the execution for particular events of interest. - A code-buffer is similar to, but different from, a debugger. It also attaches to a process, but instead of executing instructions in-place, it copies each instruction into a private buffer and executes it from there. It allows fine- grained control over execution as a result. It is also more transparent than a debugger, and faster than an emulator. - A W-X interceptor uses page-level tricks to watch for write-then-execute sequences. Typically, an executable region is marked as read-only and executable, and everything else is marked as read-only and non-executable (or simply non-present, depending on the hardware capabilities). Then the code is allowed to execute freely. The interceptor intercepts exceptions that are triggered by writes to read-only pages, or execution from non-executable or non-present pages. If the hardware supports it, a read-only page will be replaced by a writable but non-executable page, and the write will be allowed to continue. Otherwise, the single-step exception will be used to allow the write to complete, after which the page will be restored to its non-present state. In either case, the page address is kept in a list. In the event of exceptions triggered by execution of non-executable or non-present pages, the page address is compared to the entries in that list. A match indicates the execution of newly-written code, and is a possible host entrypoint.
  41. 1 point

    Version 1.0.0

    58 downloads

    [ P0KER Skin UPPP ]
  42. 1 point

    Version 1.0.0

    65 downloads

    [ URET Merry Christimas ]
  43. 1 point

    Version all

    61 downloads

  44. 1 point

    1,449 downloads

    hello this release again....i know this not a ferfect skin, still improve and need more learn about hover button. but hope you enjoyed with this....and wait for next release. and thanks you so much if you have rate it and give a good comment or.... just keep more pratice.
  45. 1 point

    594 downloads

    Here's another different version of my first Keygen-Intro. I've included the MASM-Source (WinAsm). Big thanks to EclipTic for the GFXs !! I tried to go for a lill msx-gfx-crescendo. Have phun & please report bugs Cheers
  46. 1 point
  47. 1 point

    Version 1.0.3

    90 downloads

    File Include: - SkinFile.res - Chiptune.xm - Icon.ico - ColorScheme.ini - Screenshots
  48. 1 point

    Version 2.0

    248 downloads

    Ver2 of my KgnTmp No threats in it -- AVG sux.
  49. 1 point

    692 downloads

    A keygen template for all to use. Let me know if you need any modifications / adjustments. Included: Photoshop PSD file and fonts.
  50. 1 point

    220 downloads

    Filez included are resource, region, and colors.
  • Newsletter

    Want to keep up to date with all our latest news and information?
    Sign Up
×
×
  • Create New...