lengyue Posted February 16 Author Posted February 16 (edited) 6 hours ago, X0rby said: This NOOB boi is trying to make some problems with people here - we don't have problems with Chinese, only some remarques. @lengyueare you the author of Baymax? I just tried it and it's a nice tool btw. I am not the author of Baymax. We are friends.Even without his explanation, I am still very angry. I think there are also non Chinese people visiting on Chinese forums. Considering the difficulty of communication, many people have remained silent. I don't want to stir up trouble anymore, I hope this topic ends here. Looking forward to friendly exchanges with everyone Edited February 16 by lengyue 1
boot Posted February 16 Posted February 16 17 hours ago, lengyue said: Your language is very unfriendly, I didn't want to reply to your messages anymore. Other friends should be friendly. Also, to clarify, my code project is not related to 52pojie.cn, but was generated using the Hijack Code Generator tool included in Baymax Patch Tools. Therefore, I have decided to take some time to create a copy of the Baymax Patch Tools project file for this example, as well as screenshots of my code snippets, and send them to other friends. Please ask your friends for guidance. To be clear, as a Chinese, I have not received anything from you. shfolder.rar 101.57 kB · 18 downloads CFF Explorer_CN.BPT 2.2 kB · 10 downloads @converse the project file Baymax In addition to the PatchHWID method, I have some new questions: For this target: Name: tuts4you HWID: C16BF-8E2CA-FF15D-2CE16 KEY: BA23FLLESM75MTHXKU3Z8JNA3VJWLKCSZWV3PS76NAMJK5D3MRQ5ZYJ5ZPE9EKA7SUS8YV6N2TQN The Enigma Protector_7.5.rar (7.14 MB · 37 downloads) The Constant_Value has been obtained: Constant_Value: 0xD6410E3B - If I want to KeyGen this target. How to use Baymax or shfolder.dll to replace Public_Key? - Where is the memory address that should be patched?
RADIOX Posted February 16 Posted February 16 (edited) 9 hours ago, lengyue said: I am not the author of Baymax 不予置评 是一个中文谚语,用阿拉伯语来说就是“不予置评或无意见”。这个谚语用在你想对某个话题保持中立或隐蔽的立场时,尤其是当这个话题很有争议或敏感时。这个谚语也可以作为你不想回答的问题的回应,或者是避免争论或分歧的方法。 Sorry i forget we should speak in English here my bad Edited February 16 by RADIOX 1 1
lengyue Posted February 16 Author Posted February 16 2 hours ago, boot said: In addition to the PatchHWID method, I have some new questions: For this target: Name: tuts4you HWID: C16BF-8E2CA-FF15D-2CE16 KEY: BA23FLLESM75MTHXKU3Z8JNA3VJWLKCSZWV3PS76NAMJK5D3MRQ5ZYJ5ZPE9EKA7SUS8YV6N2TQN The Enigma Protector_7.5.rar (7.14 MB · 37 downloads) The Constant_Value has been obtained: Constant_Value: 0xD6410E3B - If I want to KeyGen this target. How to use Baymax or shfolder.dll to replace Public_Key? - Where is the memory address that should be patched? Firstly, KeyGen cannot use Baymax. Baymax will detect it as shellcode, believing that the code has security risks and refusing to execute patch data. Secondly, KegGen poses too much harm to some software authors who use The Enigma, as well as to it itself. Temporarily refuse to disclose. If Enigma fixes these issues in the future. Perhaps it will be made public. PatchHWID is currently in a public state, so I am willing to provide my patch data and some logic. The cracking technique itself is not wrong, it is the people who use it that are at fault. There are always some people who take advantage of the technology shared with others and do things that harm others to gain benefits. Sorry! 1
boot Posted February 16 Posted February 16 5 minutes ago, lengyue said: Firstly, KeyGen cannot use Baymax. There is doubt here. Either the first solution (using shfolder.dll) https://forum.tuts4you.com/topic/43133-enigma-protector-v69/?do=findComment&comment=212935 or the second solution (using Baymax) https://forum.tuts4you.com/topic/43133-enigma-protector-v69/?do=findComment&comment=213863 None of them can solve this unpackme. 2 hours ago, boot said: How to use Baymax or shfolder.dll to replace Public_Key? Therefore, I think keygen needs to patch some hashes by using VEH Hook/Veh handle, but this Constant_Value is necessary. So I also think that the idea of keygen is to replace it with your own public_key after a specific value appears in the register or stack. 20 minutes ago, lengyue said: harm others to gain benefits. The Enigma 7.4 _x86_x64授权一份 https://www.52pojie.cn/thread-1870623-1-1.html (出处: 吾爱破解论坛)
lengyue Posted February 16 Author Posted February 16 15 minutes ago, boot said: The Enigma 7.4 _x86_x64授权一份 https://www.52pojie.cn/thread-1870623-1-1.html (出处: 吾爱破解论坛) Because the main program has already been made public, and it's not my fault. At this point, I will provide you with a free crack patch and key specifically for The Enigma 7.4. I have previously released a cracking video targeting the reselling of patches by second tier vendors. This action does not seem to harm the author of The Enigma. The KeyGen vulnerability I found has been submitted to The Enigma author through a proxy. Looking forward to fixing it. 1
Sean Park - Lovejoy Posted February 17 Posted February 17 (edited) Can anyone record the bypass process of this target for us and upload it to the cloud? Regards. sean. Edited February 17 by windowbase adding words. 1
X0rby Posted February 18 Posted February 18 Arrived late to the party (was busy with real life) but better late than never. Didn't change anything with my dbg, method or VM still works for this version. Rec 0243.mp4 2
X0rby Posted February 19 Posted February 19 On 2/15/2024 at 12:23 PM, windowbase said: Do this everyone. It is x64 enigma 7.40 protected application. Win64GUI_Enigma v.7.40.zip 3.54 MB · 6 downloads 1
Sean Park - Lovejoy Posted February 19 Posted February 19 1 minute ago, X0rby said: Very good @X0rby. can you please share your solution with us? Regards. sean. 1
Sean Park - Lovejoy Posted February 20 Posted February 20 (edited) 13 hours ago, windowbase said: Very good @X0rby. can you please share your solution with us? Regards. sean. Don't you have this problem after entering the password? @X0rby. Regards. sean. Edited February 20 by windowbase adding words. 1
2lht_love Posted April 11 Posted April 11 On 2/15/2024 at 6:23 PM, Sean Park - Lovejoy said: Do this everyone. It is x64 enigma 7.40 protected application. Win64GUI_Enigma v.7.40.zip 3.54 MB · 19 downloads Const value: 0xF69CB31B Cracked_x64_Enigma_7.4.mp4 1
Sean Park - Lovejoy Posted April 12 Posted April 12 (edited) 9 hours ago, 2lht_love said: Const value: 0xF69CB31B Cracked_x64_Enigma_7.4.mp4 1.08 MB · 0 downloads What is the Const value? and how is it got? thanks. Regards. sean. Edited April 12 by Sean Park - Lovejoy 1
CodeExplorer Posted April 12 Posted April 12 Quote What is the Const value? Encryption constant: constant used for decrypting the program. 1 1
Sean Park - Lovejoy Posted April 12 Posted April 12 1 hour ago, CodeExplorer said: Encryption constant: constant used for decrypting the program. It would be symmetric. wouldn't it? @CodeExplorer many thanks. Regards. sean. 1
Sean Park - Lovejoy Posted April 13 Posted April 13 On 4/12/2024 at 12:41 AM, 2lht_love said: Const value: 0xF69CB31B Cracked_x64_Enigma_7.4.mp4 1.08 MB · 0 downloads How to find the constant value when debugging an enigma protected application? Can anyone explain about it? Regards. sean. 1
SAMY27 Posted April 19 Posted April 19 How to find the constant value when debugging an enigma protected application? no answer ???
Priboi Posted May 24 Posted May 24 On 2/13/2024 at 1:52 PM, 2lht_love said: Constant value for your target : D6410E3B 😉 Const value is needed to decrypt sections but I dont understand how to use this. Is possible to unpack exe without correct hwid/key pair having only constant value? Or maybe when we have this const value we can use somehow protector option Tools > Key generator against itself. Tell me what am I missing. 1
Sean Park - Lovejoy Posted May 25 Posted May 25 On 2/19/2024 at 9:31 PM, X0rby said: @X0rby Can you please write a tutorial for this if you did? Regards. sean. 1
Sean Park - Lovejoy Posted May 29 Posted May 29 How should I do to bypass the hardware id check? Does anyone who can bypass this? Quote HWID : 923B-5BD2-95B3-3774-72B5-F9A4-36E1-CDB6 NAME : tuts4you KEY : RRZ83RXZU84RWXUCAFNQU66E5ATAYT7ZG8766V48QH4SCGVZ63T6QEN35XZ63VXNEEWXM2PVDKLVGNQVFGHW6 Win64GUI_Enigma v.7.40_2_encrypted.zip Regards. sean. 2
Sean Park - Lovejoy Posted May 29 Posted May 29 On 4/12/2024 at 12:41 AM, 2lht_love said: Const value: 0xF69CB31B Cracked_x64_Enigma_7.4.mp4 1.08 MB · 0 downloads @2lht_love If I know the constant value of Const value: 0xF69CB31B, then how do I bypass the check? Do I have to do inline patch? Regards. sean. 1
Sean Park - Lovejoy Posted May 30 Posted May 30 (edited) Deleted. Edited May 30 by Sean Park - Lovejoy 1
Sean Park - Lovejoy Posted May 30 Posted May 30 On 2/15/2024 at 9:00 PM, boot said: Due to only testing in the Win7 x64 and Win10 x64 operating environments before, the two patches are valid; In the Win11 x64 operating environment, two patches are invalid. After debugging && testing in the Win11 x64 environment, I re-used Baymax to generate these two patches. Just download this attachment again. It supports the Win7/10/11 x64 operating environment. TEP_v7.5_Win_7_10_11_x64_Baymax_Patchers(updated).zip (10.37 MB) @boot Does not work. It is unloaded after a few seconds. Regards. sean. 1
2lht_love Posted June 2 Posted June 2 On 5/29/2024 at 9:00 PM, Sean Park - Lovejoy said: How should I do to bypass the hardware id check? Does anyone who can bypass this? Win64GUI_Enigma v.7.40_2_encrypted.zip 3.3 MB · 4 downloads Regards. sean. Const value : 0x209F930A 1
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now