📄 lesson1512.htm
字号:
</span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> (s 0 l ffffffffff 8B,CA,F3,A6,74,01,9f,92,8D,5E,08,E8,0E,06)</font>
</span></p>
<p> <span class="p9"><font face="Times New Roman" color="#000000">-</font>
<font face="宋体" color="#000000">在返回地址处设置正确断点</font> </span></p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> (bpx <seg:offset>)</font>
</span></p>
<p> <span class="p9"><font face="Times New Roman" color="#000000">-</font>
<font face="宋体" color="#000000">按</font> <font face="Times New Roman" color="#000000">F5</font>
<font face="宋体" color="#000000">你将落在以上比较代码处。</font> </span></p>
<p> <span class="p9"><font face="Times New Roman" color="#000000">-</font>
<font face="宋体" color="#000000">最后一步是用</font> <font face="Times New Roman" color="#000000"> es:di and ds:si</font>
<font face="宋体" color="#000000">查看序列号。</font> </span></p>
</td>
</tr>
</table>
<p></p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> </font>
</span> </p>
<p><span class="p9"><font face="宋体" color="#FF0066"><b><a name="5"></a>例二</b></font>
<b><font face="Times New Roman" color="#FF0066">: Minimize Magic 1.2.4</font>
</b> </span></p>
<p> <span class="p9"> </span> </p>
<p> <span class="p9"><font face="宋体" color="#000000">关于此程序的一些信息</font> <font face="Times New Roman" color="#000000">:</font>
</span></p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> </font>
<font face="宋体" color="#000000">名称</font> <font face="Times New Roman" color="#000000"> : Minimize Magic 1.2.4</font>
</span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> </font>
<font face="宋体" color="#000000">下载</font> <font face="Times New Roman" color="#000000"> : http://www.genesoft.demon.co.uk/</font>
</span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> </font>
<font face="宋体" color="#000000">尺寸</font> <font face="Times New Roman" color="#000000"> : minimagic.exe = 159.744 bytes</font>
</span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> </font>
<font face="宋体" color="#000000">保护方式</font> <font face="Times New Roman" color="#000000"> : password based on key</font>
</span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> DLL : uses VB4 dll</font>
</span></p>
<p> </p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000">crack</font>
<font face="宋体" color="#000000">这程序你可参考以上的一些经验,可以用设断</font> <font face="Times New Roman" color="#000000">hmemcpy</font>
<font face="宋体" color="#000000">进入</font> <font face="Times New Roman" color="#000000">DLL</font>
<font face="宋体" color="#000000">中,查看比较核心。不过重要一点是,</font> <font face="Times New Roman" color="#000000">VB4 dll</font>
<font face="宋体" color="#000000">在它处理之前总是把先把字符串转化成</font> <font face="Times New Roman" color="#000000">wide</font>
<font face="宋体" color="#000000">字符格式,因此用一般中断在</font> <font face="Times New Roman" color="#000000">MultiByteToWideChar</font>
<font face="宋体" color="#000000">函数处,这函数具体含义可参考</font> <font face="Times New Roman" color="#000000">windpws API</font>
<font face="宋体" color="#000000">函数手册。</font> </span><span class="p9"> </span></p>
<p> </p>
<p> <span class="p9"><font face="宋体" color="#000000">我己为找出</font> <font face="Times New Roman" color="#000000">VB4 dll</font>
<font face="宋体" color="#000000">字符串(是</font> <font face="Times New Roman" color="#000000">WIDE</font>
<font face="宋体" color="#000000">字符格式)的比较核心做了大量工件。</font> </span></p>
<p> <span class="p9"><font face="宋体" color="#000000">具体如下:</font> </span></p>
<p> </p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> : 56 push esi</font>
</span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> : 57 push edi</font>
</span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> : 8B7C2410 mov edi, [esp + 10]</font>
</span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> : 8B74240C mov esi, [esp + 0C]</font>
</span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> : 8B4C2414 mov ecx, [esp + 14]</font>
</span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> : 33C0 xor eax, eax</font>
</span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> : F366A7 repz cmpsw ;<-- </font>
<font face="宋体" color="#000000">这里是</font> <font face="Times New Roman" color="#000000">(WideChar)</font>
<font face="宋体" color="#000000">格式字符串在</font> <font face="Times New Roman" color="#000000"> ds:esi</font>
</span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> : 7405 je 0F79B362 ; </font>
<font face="宋体" color="#000000">和</font> <font face="Times New Roman" color="#000000"> es:edi </font>
<font face="宋体" color="#000000">处取得比较</font> </span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> : 1BC0 sbb eax, eax</font>
</span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> : 83D8FF sbb eax, FFFFFFFF</font>
</span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> : 5F pop edi</font>
</span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> : 5E pop esi</font>
</span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> : C20C00 ret 000C</font>
</span></p>
<p> </p>
<p> </p>
<p> </p>
<p> <span class="p9"><font face="宋体" color="#000000">现在我们己掌握了足够多的</font> <font face="Times New Roman" color="#000000">VB4 dll</font>
<font face="宋体" color="#000000">信息,可以</font> <font face="Times New Roman" color="#000000">crack Minimize Magic: </font>
</span></p>
<p> </p>
<p> <span class="p9"><font face="宋体" color="#000000">第一步:开始运行</font> <font face="Times New Roman" color="#000000"> Minimize Magic</font>
<font face="宋体" color="#000000">并且从菜单处选择</font> <font face="Times New Roman" color="#000000"> Register</font>
<font face="宋体" color="#000000">,你将被要求输入</font> <font face="Times New Roman" color="#000000">Name</font>
<font face="宋体" color="#000000">和</font> <font face="Times New Roman" color="#000000">Password </font>
<font face="宋体" color="#000000">。输入姓名和假密码。按“</font> <font face="Times New Roman" color="#000000">OK</font>
<font face="宋体" color="#000000">”,继续下一步。</font> </span></p>
<p> </p>
<p> <span class="p9"><font face="宋体" color="#000000">第二步:切换到</font> <font face="Times New Roman" color="#000000">SOFTICE</font>
<font face="宋体" color="#000000">下,设</font> <font face="Times New Roman" color="#000000">hmemcpy</font>
<font face="宋体" color="#000000">断点。离开</font> <font face="Times New Roman" color="#000000">SOFTICE</font>
<font face="宋体" color="#000000">,后在程序按“</font> <font face="Times New Roman" color="#000000">OK</font>
<font face="宋体" color="#000000">”,你将被</font> <font face="Times New Roman" color="#000000">SOFTICE</font>
<font face="宋体" color="#000000">拦截。</font> </span></p>
<p> </p>
<p> <span class="p9"><font face="宋体" color="#000000">第三步:按</font> <font face="Times New Roman" color="#000000">F11</font>
<font face="宋体" color="#000000">和</font> <font face="Times New Roman" color="#000000">F10</font>
<font face="宋体" color="#000000">直到你走出</font> <font face="Times New Roman" color="#000000">kernel</font>
<font face="宋体" color="#000000">领空,来到</font> <font face="Times New Roman" color="#000000">VB40032.dll</font>
<font face="宋体" color="#000000">领空</font> <font face="Times New Roman" color="#000000">,</font>
<font face="宋体" color="#000000">现在你可搜寻如下</font> <font face="Times New Roman" color="#000000">VB</font>
<font face="宋体" color="#000000">比较核心代码:</font> </span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000">'s 0 l fffffffff 56,57,8b,7c,24,10,8b,74,24,0c,8b,4c,24,14'</font>
</span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> </font>
<font face="宋体" color="#000000">并且在返回地址处用</font> <font face="Times New Roman" color="#000000">bpx</font>
<font face="宋体" color="#000000">设断。</font> </span></p>
<p> </p>
<p> <span class="p9"><font face="宋体" color="#000000">第四步:按</font> <font face="Times New Roman" color="#000000">F5</font>
<font face="宋体" color="#000000">离开</font> <font face="Times New Roman" color="#000000">SOFTICE</font>
<font face="宋体" color="#000000">,但你立即被再次拦截,正确落在上面的比较代码处。这里你输入的密码将和正确密码进行比较。你可一直跟踪,直到指令</font>
<font face="Times New Roman" color="#000000">REPZ CMPSW</font> <font face="宋体" color="#000000">之前,下命令:</font>
<font face="Times New Roman" color="#000000">'ed es:edi'</font> <font face="宋体" color="#000000">你将看到输入的密码。如果下命令:</font>
<font face="Times New Roman" color="#000000">'ed esi'</font> <font face="宋体" color="#000000">你将看到正确密码。</font>
</span></p>
<p> </p>
<p> <span class="p9"><font face="宋体" color="#000000">(这里字符串是</font> <font face="Times New Roman" color="#000000">WideChar</font>
<font face="宋体" color="#000000">格式,例如你看到是:</font> <font face="Times New Roman" color="#000000">A T G H D E H D</font>
<font face="宋体" color="#000000">,那意味着密码是</font> <font face="Times New Roman" color="#000000">ATGHDEHD</font>
<font face="宋体" color="#000000">。)</font> </span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000">OK,</font> <font face="宋体" color="#000000">你稍微留意一下会发现这密码仅能在你本人机子上正确,把密码给另外一台将不能注册。密码是在不同微机安装时根据你的硬件随机产生的随机号(</font>
<font face="Times New Roman" color="#000000">key)</font> <font face="宋体" color="#000000">计算出来的</font>
</span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> </font>
<font face="宋体" color="#000000">我们能否彻底</font> <font face="Times New Roman" color="#000000">crack</font>
<font face="宋体" color="#000000">它,让它在每台机上能注册。</font> </span></p>
<p> </p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> </font>
</span><span class="p9"><font face="宋体" color="#000000">我们可用</font> <font face="Times New Roman" color="#000000"> 'Magic Window'</font>
<font face="宋体" color="#000000">的技巧来处理这问题。我们将“改编”</font> <font face="Times New Roman" color="#000000">VB40032.dll</font>
<font face="宋体" color="#000000">来显示正确密码。</font> </span></p>
<p> <span class="p9"><font face="Times New Roman" color="#000000"> </font>
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -