Posted October 27, 20195 yr Language : C# .Net Platform : Windows x32/x64 OS Version : All Packer / Protector : Agile.Net v6.6 Description : Hi everyone, hope one of you friends can unpack the target and teach us how to unpack it Screenshot : Secured.rar
October 28, 20195 yr Your topic has not been approved. You did not follow the correct posting format and/or provided enough information regarding the challenge. Quote Language : (Assembler, C++, Java, .NET, Python, Borland, PureBasic, etc.) Platform : (Windows, Linux, Android, MacOS, DOS, etc. + architecture eg. x32/x64) OS Version : (All, Windows 7, Ubuntu 15.10, OS X v10.11, etc.) Packer / Protector : (None, ASProtect 1.73, Confuser 1.9, Enigma 4.40, UPX 3.91, etc.) Description : Description of the challenge and any other related information, this must be presented clearly and legibly. Your challenge will not be approved if this is presented poorly. Screenshot : All challenges must include a screenshot. The challenge must be attached directly to the topic and not linked to an external host. You have 48 hours to correct your topic before it will be moved to the Trashcan. For further details regarding the formatting of the topic please refer to the topic in the below link... [This is an automated reply]
October 30, 20195 yr Author On 10/28/2019 at 5:34 PM, Teddy Rogers said: Your topic has not been approved. You did not follow the correct posting format and/or provided enough information regarding the challenge. You have 48 hours to correct your topic before it will be moved to the Trashcan. For further details regarding the formatting of the topic please refer to the topic in the below link... [This is an automated reply] Edited
November 10, 20195 yr https://github.com/ribthegreat99OrN0P/Agile.NET-Deobfuscator USE MY TOOL LAST AFTER YOU HAVE DONE THE FOLLOWING STEPS Instructions: 1. Jit-dump the executable with JitDumper3/4 enable the checkbox (Dump MD). 2. Clean the (String And Flow) with SimpleAssemblyExplorer(SAE) checking the checkbox (Delegates} as well. 3. De4dot. Files.rar Edited August 15, 20205 yr by N0P/ribthegreat99 UPDATE
November 10, 20195 yr 7 hours ago, N0P/ribthegreat99 said: I have unpacked most of the protections just need someone to complete the last part of it, the calls/delegates!! Instructions: 1. Jit-dump the executable with JitDumper3/4 enable the checkbox (Dump MD). 2. Clean the (String And Flow) with SimpleAssemblyExplorer(SAE) checking the checkbox (Delegates} as well. 3. De4dot. Files.rar 37.3 kB · 2 downloads Could you provide a download for JitDumper ? I can’t find it any where
November 12, 20195 yr On 11/11/2019 at 2:22 AM, ElektroKill said: Could you provide a download for JitDumper ? I can’t find it any where JitDumperv4.rar
April 21, 20205 yr On 11/12/2019 at 2:45 PM, N0P/ribthegreat99 said: JitDumperv4.rar 159.86 kB · 236 downloads This is not working
April 24, 20205 yr On 4/21/2020 at 11:50 AM, Prab said: This is not working you need to run it in NetBox
April 25, 20205 yr 13 minutes ago, khodam said: please link for NetBox thank https://forum.tuts4you.com/topic/39321-netbox
May 2, 20205 yr On 11/10/2019 at 1:24 PM, N0P/ribthegreat99 said: I have unpacked most of the protections just need someone to complete the last part of it, the calls/delegates!! Instructions: 1. Jit-dump the executable with JitDumper3/4 enable the checkbox (Dump MD). 2. Clean the (String And Flow) with SimpleAssemblyExplorer(SAE) checking the checkbox (Delegates} as well. 3. De4dot. Files.rar 37.3 kB · 54 downloads the calls/delegates is the problem. I also stuck at this place
July 4, 20205 yr On 5/2/2020 at 9:47 PM, BlackHat said: the calls/delegates is the problem. I also stuck at this place The same for me! Need help with that.. All Methods are shown like that, but can't really see what does the method do?! @CodeExplorer Can you help with a tip? @N0P/ribthegreat99 Did you get it yet? or still??
July 4, 20205 yr 8 hours ago, GameHackerPM said: The same for me! Need help with that.. All Methods are shown like that, but can't really see what does the method do?! @CodeExplorer Can you help with a tip? @N0P/ribthegreat99 Did you get it yet? or still?? Hello can you pm me this file i want to check it out. By the way, i have made a tool to deob cflow, strings, and delegates of agile
July 4, 20205 yr tool to decrypt strings & delegates will make public switch (num) { case 0: { bool flag = !(this.\u00A0.Text == " ! C@tch Y0u ,B@bY"); num = Math.Abs(-8); continue; } UnpackMe-noag.exe
July 4, 20205 yr 7 hours ago, N0P/ribthegreat99 said: Hello can you pm me this file i want to check it out. By the way, i have made a tool to deob cflow, strings, and delegates of agile can You share?
July 4, 20205 yr 8 hours ago, AzoresRCE said: tool to decrypt strings & delegates will make public switch (num) { case 0: { bool flag = !(this.\u00A0.Text == " ! C@tch Y0u ,B@bY"); num = Math.Abs(-8); continue; } UnpackMe-noag.exe Any ETA?
July 8, 20205 yr https://github.com/ribthegreat99OrN0P/Agile.NET-Deobfuscator @GameHackerPM @BlackHat To fix delegates, controlflow, and strings here yous go ive made a tool with many comments to help you understand! Edited July 8, 20205 yr by N0P/ribthegreat99
July 8, 20205 yr 12 hours ago, N0P/ribthegreat99 said: https://github.com/ribthegreat99OrN0P/Agile.NET-Deobfuscator @GameHackerPM @BlackHat To fix delegates, controlflow, and strings here yous go ive made a tool with many comments to help you understand! I still couldn't fix the delegates (Methods VM) , I sent you a message via Email, please check it.
July 9, 20205 yr 16 hours ago, N0P/ribthegreat99 said: https://github.com/ribthegreat99OrN0P/Agile.NET-Deobfuscator @GameHackerPM @BlackHat To fix delegates, controlflow, and strings here yous go ive made a tool with many comments to help you understand! Lots of Love for Your Work. ❤️
July 21, 20205 yr On 4/26/2020 at 12:09 AM, CodeExplorer said: https://forum.tuts4you.com/topic/39321-netbox How to use it?
October 4, 20204 yr On 11/11/2019 at 11:45 PM, N0P/ribthegreat99 said: JitDumperv4.rar 159.86 kB · 626 downloads @N0P/ribthegreat99NetBox seems to just start the program then instantly stop it, any fix? Edited October 4, 20204 yr by notkult
October 7, 20204 yr On 10/4/2020 at 2:27 PM, notkult said: @N0P/ribthegreat99NetBox seems to just start the program then instantly stop it, any fix? Try use it on a windows 7 vm/machine
October 9, 20204 yr On 10/6/2020 at 7:04 PM, N0P/ribthegreat99 said: Try use it on a windows 7 vm/machine Used it on a laptop with Windows 8, worked just fine.
October 9, 20204 yr Just a little tip, JitDumper is good as long as you are running it against an executable which needs .NET 4.0 or earlier but once you start unpacking DLLs which require .NET 4.5 or higher, it will probably crash, so it's going to be obsolete sooner or later and a new approach will have to be created.
October 9, 20204 yr 13 hours ago, Kurapica said: Just a little tip, JitDumper is good as long as you are running it against an executable which needs .NET 4.0 or earlier but once you start unpacking DLLs which require .NET 4.5 or higher, it will probably crash, so it's going to be obsolete sooner or later and a new approach will have to be created. Thanks for the tip! I ran it for a standard .NET Framework 4.0 exe and worked fine.
Create an account or sign in to comment