Reverse Engineering RET Homepage RET Members Reverse Engineering Projects Reverse Engineering Papers Reversing Challenges Reverser Tools RET Re-Search Engine Reverse Engineering Forum Reverse Engineering Links

Go Back   Reverse Engineering Team Board > Reverse Engineering Board > Reverse Code Engineering
FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply
 
Thread Tools Display Modes
  #51  
Old 04-23-2010, 01:28 PM
Git Git is offline
Super Moderator
 
Join Date: Oct 2007
Location: Torino
Posts: 1,797
Default

bassem - We count from Zero NOT one !

(3 AND E) * 9 = 18

descriptorArray[18] = 0xE09B764A

swap nibbles -> 0x764AE09B

set MSbit -> 0xF64AE09B

Set reg file ...,9B,E0,4A,F6,....

"Time Bomb Active" is encoded in License Type at cell 0x08. Value 3 gives Active, value 1 gives inactive.


mantovano - no, if you change the "time bomb active state" then PID will change again. You must make all changes to your Reg file EXCEPT cell14. Then run lic.exe and read PID. Calculate cell 0x14 from PID and edit reg file again. To find WP, apply Sentinel SPRO sig file in IDA, search for functions that use WP. Maybe you then find WP in plain text or maybe you have to dig deeper.

Git
Reply With Quote
  #52  
Old 04-23-2010, 01:44 PM
mantovano mantovano is offline
Member
 
Join Date: Dec 2008
Posts: 5
Default

Only penultimate question
for 0x16 cell, his value doesn't matter?
I have a reg file that
0x16:= 35,08,A3,A4
if I want only to change dates it remains the same?
BR
Reply With Quote
  #53  
Old 04-23-2010, 02:19 PM
Git Git is offline
Super Moderator
 
Join Date: Oct 2007
Location: Torino
Posts: 1,797
Default

It muse matter or it would not be there. I can only comment that lic.exe seems happy without changing cell 0x16

Git
Reply With Quote
  #54  
Old 04-24-2010, 01:36 AM
yogi_saw yogi_saw is offline
Senior Member
 
Join Date: May 2009
Posts: 533
Smile

@git u deserve to be moderator by ur knowledge
Reply With Quote
  #55  
Old 04-25-2010, 09:52 AM
Dice Dice is offline
Member
 
Join Date: Apr 2010
Posts: 9
Default What is Needed

I've been following this thread a bit, but stuck on a Noob question.

How does one modify the cell data to test new combinations to enable more features on a dongle? I can follow Gits Math a bit, but not sure how to get started. Do you need Toro or Something else? I tried editing the red then doing an update but that doesn't seem to update the emulator without a reboot. Edit-Update-Reboot seems like it would take way to much time.

Thanks much in advance for help, trying to figure this out.
Reply With Quote
  #56  
Old 04-25-2010, 04:27 PM
bassem_16 bassem_16 is offline
Senior Member
 
Join Date: Feb 2010
Posts: 66
Default

work with mkey then you will not need a reboot
just restart.bat in the mkey folder and everything will be in place

Well if you want to test that what you did in reg is right, just do the modifications in reg then afterwards run lic.exe, if you see that your modifications were reflected then its ok

if not then maybe you did wrong modifications on reg or emu wasnt installed correctly

Last edited by bassem_16 : 04-25-2010 at 05:23 PM.
Reply With Quote
  #57  
Old 04-26-2010, 11:01 PM
Dice Dice is offline
Member
 
Join Date: Apr 2010
Posts: 9
Default Does lic

Does lic.exe work with vBus? I can't get mKey to emulate my dongle.

Noob Question, in mKey the instructions are gibberish, what do i use to properly read the instuctions?
Reply With Quote
  #58  
Old 04-27-2010, 12:22 AM
calvin calvin is offline
Senior Member
 
Join Date: Feb 2010
Posts: 50
Default

The instructions are in russian. Translate and use.
Reply With Quote
  #59  
Old 04-27-2010, 05:44 AM
Git Git is offline
Super Moderator
 
Join Date: Oct 2007
Location: Torino
Posts: 1,797
Default

If you go back to an earlier version of MK, the archive has an English manual also.

Git
Reply With Quote
  #60  
Old 07-18-2010, 09:28 AM
bassem_16 bassem_16 is offline
Senior Member
 
Join Date: Feb 2010
Posts: 66
Default

Hello guys,

a new version with a new lic has been released, basicaly everything is the same (algo ..etc) except it just doesnt work with the emu key

This is the original lic

Code:
http://www.4shared.com/file/GzUds8R_/lic.html
This is a patched version so you can open the lic
Code:
http://www.4shared.com/file/955Dc0H7/lic.html
Any clue?
Reply With Quote
Reply


Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump





Powered by vBulletin® Version 3.6.4
Copyright ©2000 - 2022, Jelsoft Enterprises Ltd.