Reverse Engineering Team Board

Reverse Engineering Team Board (
-   Reverse/Social Engineering (
-   -   HASP SRM dump (

husmanafper3 07-10-2012 04:50 PM

Hi expert

I have dump file for SRM doungle how can i convert it to emulator plz?

Thanks in advance

crackslab 07-11-2012 05:21 AM

dump file not enough for Hasp SRM Solution, need usbtrace log also

husmanafper3 07-11-2012 02:18 PM

i have usb trace i have dump can any one help ?????

TEMS 09-26-2012 02:03 AM

Please kindly help
Dear brother,
please kindly help how to make emulator SRM from dump and usb trace to emulator SRM

Thanks for kindly support

saullow 03-24-2013 01:44 PM

agree with TEMS, please help us....

Git 04-07-2013 07:08 AM

OK, better stop there. This is NOT a warez board. We are here to promote learning of reverse engineering, not the swapping of commercial software.


Larry 08-28-2013 06:13 AM

HASP SRM USB Protocol are crypting by AES. You need make UsbTrace decode tool to decrypt the log.

Dongle use a few AES keys. At least:

* One - for communicate with aksusb.sys driver (functions 2F/AF: check the dongle by white-box AES crypto; you can skip to solve this key now, just install old Sentinel HASP driver < 6.56);

* One - for communicate with HASP License Manager (difference versions of HASP License Manager used defferent AES Keys; now it's a 3 different keys);

* One - for communicate with the protected software (read memory, write memory, hasp_encrypt() / hasp_decrypt() operations, etc).

To decrypt UsbTrace log you need reverse HASP License Manager and modify public HASP Emulator source by Chingachguk & Denger2K.

You can use this drivers' version to reverse the USB Protocol crypting:

It isn't good packed and crypted. You need research the file Windows\system32\hasplms.exe.

You need to use Rjindael AES C++ source code as base for decrypt/encrypt USB Packets. You can find it in Google.

If you done the reverse of decrypt/encrypt packets between HASP SRM and HASP License Manager after dongle's plug, you will need to get the next AES key from the protected software to decrypt UsbTrace Log between HASP SRM - HASP License Manager - The Protected Software. Just open the protected software in IDA Pro or OllyDbg, find the place where api calls to the dongle are forming and crypting by AES, put the breakpoint on the AES setup key function and get the AES key. After it decode respective packets.

Other case if your software used new white-box AES. It's more difficult to recover the AES-key for decode packets between HASP SRM - HASP License Manager - The Protected Software.

Prenumele Numele 10-30-2013 06:39 AM

usbtrace hasp hl srm decoder
decoder for usbtrace log txt of hasp hl srm
parser / processor

I have an old decoder for hasp4/hl usbtrace
I also have srm emulator source code
I need help making log txt decoder / parser
that will use AES vendor code
also have decoder.exe to compare and guide to good results.

best regards,

skr706 06-19-2014 10:08 PM

Hi There,

I got a encrypted package named as hasp 4 hl srm*emulator*6.51*srmkit250.rar. from
or from

Can anyone try to get the password for the file.

Best Regards

BfoX 06-20-2014 11:32 AM

over 20 symbol for rar archive :D

All times are GMT -4. The time now is 02:48 AM.

Powered by vBulletin® Version 3.6.4
Copyright ©2000 - 2022, Jelsoft Enterprises Ltd.