Posted June 1, 201312 yr Hello! I made a new crackme with this things: Language: Visual Basic .NET Protection: ExePack.NET Rules: Crack this crackme to show the good message. But you can't dissamble the code, edit it and compile it again! So you can't use Reflexir. Let's see how you do it Level: 2/10 crackme_lordcoder.rar
June 1, 201312 yr Solution Steps to crack: Open in ILSpy2 File - > Save Code (To create the project and resource.) Click on the - folder for the project. Select the only class object. File -> Save Code and name as main.cs Rename functions to whatever to make it compile, such as: http://www.privatepaste.com/e286e5bf2d Inside the last method, before the Assembly.Load add: using (var fStream = new FileStream("derp.exe", FileMode.CreateNew, FileAccess.ReadWrite)) { using (var sWriter = new BinaryWriter(fStream)) sWriter.Write(new BinaryReader(deflateStream).ReadBytes(count)); } This will create derp.exe in the same folder which is the compressed resource. Next: Open the new derp.exe in ILSpy. File -> Save Code Fix the minor issues ILSpy makes when saving code etc. (InternalXmlHelper stuff.) Open Form1.cs, locate Button1_Click Change the first bool flag = true; to bool flag = false; Done. Edited June 1, 201312 yr by atom0s
June 1, 201312 yr Author Yes you're right. But you edited the full code. I mean to use a HEX editor. But your solution was cool also. Well done
June 1, 201312 yr Yes you're right. But you edited the full code. I mean to use a HEX editor. But your solution was cool also. Well done Ok, after dumping the real crackme, the main click function starts with: IL_0000: nop 00 IL_0001: ldc.i4.1 17 IL_0002: stloc.0 0A IL_0003: ldloc.0 06 IL_0004: stloc.1 0B IL_0005: ldloc.1 07 Which is found at: 0x15DC Set 17 to 16 to crack it. Edited June 1, 201312 yr by atom0s
Create an account or sign in to comment