Reverse Engineering Team Board

Reverse Engineering Team Board (http://www.reteam.org/board/index.php)
-   Reverse Code Engineering (http://www.reteam.org/board/forumdisplay.php?f=23)
-   -   Rockey4 Emulator (http://www.reteam.org/board/showthread.php?t=594)

BfoX 12-15-2007 06:06 AM

Quote:

Originally Posted by Softcrk (Post 4841)
Can you emulator new shell ?


yes, sure. my table emule is passed old and new shell.

Softcrk 12-15-2007 12:31 PM

Quote:

Originally Posted by BfoX (Post 4842)
yes, sure. my table emule is passed old and new shell.



p1:BB39 P2:B4B4 Rockey 1.0 emulator:D


http://rapidshare.de/files/38055963/...-emul.rar.html

BfoX 12-16-2007 06:00 AM

Yes, work. Only for ONE seed=0x00001000. Universal has work with 2^32.

cEnginEEr 12-16-2007 06:09 AM

Quote:

Originally Posted by Softcrk (Post 4849)
p1:BB39 P2:B4B4 Rockey 1.0 emulator:D

a custom solution like the previous one....

Quote:

Originally Posted by BfoX (Post 4853)
... Universal has work with 2^32.

..and I think you don't have it ;)

Softcrk 12-16-2007 11:25 AM

[quote=cEnginEEr;4854]a custom solution like the previous one....



PW1 BB39 BW2 B4B4

Seed Handle:0000 LP2:00000000 P1:77E8 P2:0857 P3:2BB3 P4:2273 Ret:0000
Seed Handle:0000 LP2:00000100 P1:FE1C P2:7B40 P3:03F1 P4:59AC Ret:0000
Seed Handle:0000 LP2:00000200 P1:D84E P2:E82D P3:AA04 P4:8B0A Ret:0000
Seed Handle:0000 LP2:00000300 P1:2576 P2:E380 P3:4D84 P4:9BD0 Ret:0000


Seed Handle:0000 LP2:00000011 P1:BA02 P2:FDFC P3:3C1A P4:74C1 Ret:0000
Seed Handle:0000 LP2:00000012 P1:12C5 P2:30FE P3:6E43 P4:E61E Ret:0000
Seed Handle:0000 LP2:00000013 P1:D910 P2:5B14 P3:A496 P4:7567 Ret:0000
Seed Handle:0000 LP2:00000014 P1:BC3A P2:5E8B P3:3757 P4:7607 Ret:0000


Seed Handle:0000 LP2:00001001 P1:EE0E P2:7546 P3:8D93 P4:8601 Ret:0000
Seed Handle:0000 LP2:00001002 P1:F2E4 P2:FB20 P3:849C P4:09D6 Ret:0000
Seed Handle:0000 LP2:00001003 P1:DD33 P2:D5D2 P3:1C06 P4:61A2 Ret:0000
Seed Handle:0000 LP2:00001004 P1:B4A1 P2:289F P3:A77A P4:1461 Ret:0000

cEnginEEr 12-17-2007 08:03 AM

Softcrk, do you think that adding some more entries to RY_SEED emulation table makes it universal? ;) see my log output:

PHP Code:

RY_Find  |  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP1:00000001 -> Ret:0000
RY_Open  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP1:00000001,LP2:00000001,Handle:0000 -> Ret:0000
RY_Seed  
|  P1:2EC6,P2:3546,P3:499B,P4:BB0E LP2:00001000 -> Ret:0000
RY_Close 
|  Handle:0000 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:00018269 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:000195F1 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:0001A979 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:0001BD01 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:0001D089 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:0001E411 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:0001F799 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:00020B21 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:00021EA9 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:00023231 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:000245B9 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:00025941 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:00026CC9 -> Ret:0000 

PHP Code:

RY_Find  |  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP1:00000001 -> Ret:0000
RY_Open  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP1:00000001,LP2:00000001,Handle:0000 -> Ret:0000
RY_Seed  
|  P1:2EC6,P2:3546,P3:499B,P4:BB0E LP2:00001000 -> Ret:0000
RY_Close 
|  Handle:0000 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:0002ED92 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:0003011A -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:000314A2 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:0003282A -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:00033BB2 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:00034F4A -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:000362D2 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:0003764A -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:000389D2 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:00039D5A -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:0003B0E2 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:0003C46A -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:0003D802 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:0003EB7A -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:0003FF12 -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:0004128A -> Ret:0000
RY_Seed  
|  P1:BB39,P2:B4B4,P3:0000,P4:0000 LP2:00042622 -> Ret:0000 

not a good trick, you R4Guru :D :D :D

TORO 12-17-2007 12:25 PM

hi all
user algo of a rockey4 dongle can be emulate via a well defined neural netwrok, just see input/output values and count ,and note that rockey4 chip is a famouse 8 bit cypress chip, so all operations must be done via 8 bit operators ,mostly add and xor, i did such exam long time ago successfully on my rockey4 dongle.
btw, trojan algo is a good idea and i know one of my friends successfully implimented on a rockey5.
and one more important info is rockey is a good dongle, its design logic is better than hasp and sentinel, but becuase of its bad interface which is hard to work, i do not like it. may of developers so not use in same reason. so we ca not see many sofwtares which protected with rockey,so as a reverser i prefer to work on more famouse dongles.:D

alisa 01-07-2008 10:14 AM

rockey4 expert Softcrk,please emulate one which,the data is available at http://reteam.ys168.com
thanks

tale 02-21-2008 12:09 PM

Rockey4 Emulator how to make?
 
Hi Softcrk,
I've read your post in RCE board about R4 emulator.
You can make R4 Shell emuator.I've a problem and want our advice from you how to make R4 emulator.
I 've dump Rockey4 dongle in file 12FB4.txt by R4Monitor.exe.But i don't know how to make and R4 shell emulator ( sys file)?
Can you help me or advice me what tools to make it?
I upload dumpfile in R4Monitor&dongledump.rar and Software Easy Pro for you to test.
I'waitting for your help.
Link of this ....
http://rapidshare.com/files/90833608/EasyPro.rar
http://rapidshare.com/files/93708904...edump.rar.html
TIA
tale

BfoX 02-21-2008 12:34 PM

@tale: all in you .txt file... :D


All times are GMT -4. The time now is 10:22 AM.

Powered by vBulletin® Version 3.6.4
Copyright ©2000 - 2023, Jelsoft Enterprises Ltd.