Reverse Engineering Team Board

Reverse Engineering Team Board (http://www.reteam.org/board/index.php)
-   Reverse Code Engineering (http://www.reteam.org/board/forumdisplay.php?f=23)
-   -   query table syntax translation (http://www.reteam.org/board/showthread.php?t=4601)

asch75 01-26-2012 09:28 AM

query table syntax translation
 
1 Attachment(s)
I have a q/a table captured with Toro Sentmon 2.01 (see attached file);
Please, how can I convert the q/a table with a multikey syntax?:
"8DC0970F"=hex:3A,B2,C9,18

thanks.

zementmischer 01-26-2012 09:51 AM

I guess the q/a entries inside your log file use the following syntax: cell,query,response,response32(not needed)

asch75 01-26-2012 10:09 AM

Hi, I know the syntax; but I don't want to edit 706 lines...

zementmischer 01-26-2012 11:07 AM

1 Attachment(s)
Then just write a small tool or use a decent text editor which supports search&replace using regular expressions :confused:
It only took 2 minutes to convert your log into something that's usable with MK...
Next time you should first use YOUR brain before posting something like "but I don't wanna edit those 706 lines by myself"

asch75 01-26-2012 11:29 AM

[Please DO NOT quote whole messages, it is unnecessary]

[Please DO NOT reply to yourself, use the Edit button to edit your post]

First: Thanks a lot zementmischer

Then... I'm not a programmer; maybe an advanced user. I was thinking about creating a DOS batch file for string search and replace... maybe some hours to remember these old dos commands... no way; I start doing it manually. I have now about 300 lines with notepad (search & replace) and manual editing.

I'm playing with the Wysisyw R22 multiey emulation... I'm advancing a lot, I'm going to post results.


zementmischer you are GOD!!
Thanks for the REG file. Wysiwyg R22 withouth CSP(I don't know) ready to use!!!

zementmischer 01-26-2012 11:47 AM

I've never considered notepad being a decent editor - look for something else which has a column edit mode as well as a powerful search&replace engine (personally I prefer UE, but your mileage may vary).
You'll probably run into problems using MK with Wysiwyg R22 - there was quite some discussion regarding this program but without any results... so, be prepared!

*EDIT*

:confused: GOD :confused:
yep, I know him. He's sitting right next to me :D

asch75 01-26-2012 11:54 AM

I'm running it. I will test and post results.
Thanks!

yogi_saw 01-27-2012 12:34 AM

@zementmischer problem with emulating Wysisyw R22 is sure to be over with ur method but i still didnt understand how sentemul2007 replies to the queries by app while there r no active algos present in dmp made by pva.

zementmischer 01-27-2012 06:01 AM

@yogi_saw, AFAIK sentemul2007 also uses q/a tables for Wysiwyg.
This makes sense because several members of this forum mentioned that Wysiwyg uses a UltraPro dongle (and the table-based approach is the only solution to successfully emulate a UltraPro).
That's probably also the reason why pva doesn't see any active algorithm descriptors...

yogi_saw 01-27-2012 01:56 PM

Hi zement sory to short ur nilk. so u say even sentemul2007 cant solve algos since it is ultrapro. I dont belive wat other members here say abt this particular happ but i can say when gits safedump n dmp2mkey say no aes algo involved in this app that means it cant be ultrapro or superproxm.
Now fact is sentemul2007 is answering queries but the pva solver shows inactive algos......can git n pivasik explain tis pls


All times are GMT -4. The time now is 02:42 PM.

Powered by vBulletin® Version 3.6.4
Copyright ©2000 - 2022, Jelsoft Enterprises Ltd.