penertasi website dengan kali linux
TRANSCRIPT
-
8/18/2019 penertasi website dengan kali linux
1/29
Cracking And Patching CHETAN SONI
===================================================
Cracking & Patching===================================================
By
CHETAN SONI
(Security Specialist)
-
8/18/2019 penertasi website dengan kali linux
2/29
Cracking And Patching CHETAN SONI
About The Book
“Cracking & Patching” covers the concepts that how a software be cracked by
using some debugger & dissembling tools & also how to create a patch of thatcracked software.
About Me
I am a 23 year old one of the Sr. Security Specialist at Secugenius Security
Solutions. The young and dynamic personality has not only assisted in solving
complex cases but has also played an instrumental role in creating awareness
about Information Security and Cyber crimes.
Chetan SoniSr. Security Specialist @ Secugenius Security Solutions
Email ID: - [email protected]
http://chetansoni.com
http://chetansoni.net
http://chetansoni.org
_____________________________________
Founder/Admin of Just Do Hackers (JDH)
http://justdohackers.in
Connect with Facebook:
http://facebook.com/er.chetansoni
http://facebook.com/officialchetan
http://facebook.com/connectchetan
Follow me on Twitter:
http://twitter.com/justdohackers
Email ID:
http://chetansoni.com/http://chetansoni.com/http://chetansoni.net/http://chetansoni.net/http://chetansoni.org/http://chetansoni.org/http://justdohackers.in/http://justdohackers.in/http://facebook.com/er.chetansonihttp://facebook.com/er.chetansonihttp://facebook.com/officialchetanhttp://facebook.com/officialchetanhttp://facebook.com/connectchetanhttp://facebook.com/connectchetanhttp://twitter.com/justdohackershttp://twitter.com/justdohackersmailto:[email protected]:[email protected]:[email protected]:[email protected]:[email protected]:[email protected]://twitter.com/justdohackershttp://facebook.com/connectchetanhttp://facebook.com/officialchetanhttp://facebook.com/er.chetansonihttp://justdohackers.in/http://chetansoni.org/http://chetansoni.net/http://chetansoni.com/
-
8/18/2019 penertasi website dengan kali linux
3/29
Cracking And Patching CHETAN SONI
[CraCking PatChing]
First of all what is cracking and what is patching ?
Cracking is the modification of software to remove or disable features
Of Limited Restrictions. Cracking is a fancy name for basically
guessing a password or Crack Email Accounts, etc.....
Patching is the technique which fixes the Program Bugs. A patch is a
piece of software designed to fix problems.
The Tools Required:
1. De-assembler (I Preferred [Hackers Disassembler] and [Hview])
2. Resource Hacker
3. A patch Creator (Use [Universal Patch Creator] or [Code fusion])
4. Winrar
-
8/18/2019 penertasi website dengan kali linux
4/29
Cracking And Patching CHETAN SONI
First of all Download these tools from Google and Install Winrar.
Now make two Folders on Desktop named as Cracked and Original.
Now Copy winrar.exe (From Program Files) and Paste in both Foldersi.e. Cracked and Original.
Now Open Hackers Disasembler Software.
-
8/18/2019 penertasi website dengan kali linux
5/29
Cracking And Patching CHETAN SONI
Open Winrar.exe from Cracked Folder in Hackers Disasembler
Software.
The Disassembler will disassemble the executable in assembly code.
-
8/18/2019 penertasi website dengan kali linux
6/29
Cracking And Patching CHETAN SONI
Now you need to search for strings that are used in Winrar program.
-
8/18/2019 penertasi website dengan kali linux
7/29
Cracking And Patching CHETAN SONI
Press Ctrl + F and type “evaluation” without quotes and search in the
assembly code.
-
8/18/2019 penertasi website dengan kali linux
8/29
Cracking And Patching CHETAN SONI
Reach this block of code using search function
After you have reached this block of code by searching, just look at
the block of code above it.
There you will find that some assembly values are being compared
and then code is jumped to some other function.
-
8/18/2019 penertasi website dengan kali linux
9/29
Cracking And Patching CHETAN SONI
Now see carefully, the “evaluation copy ” function must be invoked
after some specific condition is met.
Now Note the Memory Address (00444B71)
In the above code you can see this code -
===================================
00444B6A: 803DF4B84B0000 cmp byte ptr [004BB8F4], 00
00444B71: 0F859B000000 JNE 00444C12
===================================
-
8/18/2019 penertasi website dengan kali linux
10/29
Cracking And Patching CHETAN SONI
Note: For any Winrar version, this code and memory address might
be different, but the JNE will be same.
Now you need to search for the code that brings that ugly screen
“Please purc hase Winrar l icense ” after your trial period of 40 days isover.
For this, look over your toolbar and click on “D” which stands for
looking for Dialog references.
Hit the D in toolbar
Now in the dialog box that opens, search for “purchase” and you will
get the reference as -
-
8/18/2019 penertasi website dengan kali linux
11/29
Cracking And Patching CHETAN SONI
It Shows
============================================
ID-REMINDER, “Please purchase Winrar license”
============================================
Double click on it and you will reach the subsequent code.
Note down the location of REMINDER dialog code.
-
8/18/2019 penertasi website dengan kali linux
12/29
Cracking And Patching CHETAN SONI
The code will be something like
================================================
* String: “REMINDER”
0048731A: 68EB5E4B00 push 004B5EEB
================================================
Just note down this memory address (0048731A)
-
8/18/2019 penertasi website dengan kali linux
13/29
Cracking And Patching CHETAN SONI
Now we will be patching up values of memory addresses we noted
earlier (00444B71 & 0048731A).
It will be dome by using HVIEW.
Now Open Hview.
Open the EXE in it
After you have loaded it, you will see the code is unreadable.
-
8/18/2019 penertasi website dengan kali linux
14/29
Cracking And Patching CHETAN SONI
It’s just like opening an EXE file in notepad.
You need to decode it.
To do that, just press F4 and you will get an option to decode it.
Hit DECODE and you will be able to see code in the form of assembly
code and memory addresses.
-
8/18/2019 penertasi website dengan kali linux
15/29
-
8/18/2019 penertasi website dengan kali linux
16/29
Cracking And Patching CHETAN SONI
Now you need to search for memory addresses you noted down
earlier.
Just hit F5 and a search box will be there.
Now you need to enter the memory address.
To do that type .444B71 in place of 00444B71 and Press Enter.
(Leave 00)
It will reach to the Assembled Code
-
8/18/2019 penertasi website dengan kali linux
17/29
Cracking And Patching CHETAN SONI
After you have reached the respective code, you need to make
changes to it.
Press F3 and you will be able to edit the code. Now make the
following changes -
(Replace 85 to 84)
After you have done it, save it by pressing F9.
-
8/18/2019 penertasi website dengan kali linux
18/29
Cracking And Patching CHETAN SONI
Now search for next memory location by pressing F5 and entering it.
Reach there and make the following changes by pressing F3 -
-
8/18/2019 penertasi website dengan kali linux
19/29
Cracking And Patching CHETAN SONI
Make these 5 Changes
(Replace 68-90 EB-90 5E-90 4B-90 00-90)
Now save the changes by pressing F9 and exit HVIEW by pressing
F10.
You have cracked Winrar :
Replace the original
[Program Files/Winrar/WinRAR.exe]
with this
[Desktop/Cracked/winrar.exe]
-
8/18/2019 penertasi website dengan kali linux
20/29
Cracking And Patching CHETAN SONI
Now you have a 100% working version of EXE, you might want to
change your registration information in Winrar.
To do this, you can use Resource hacker.
Open Resource Hacker and load the winrar.exe (From Cracked Folder
or Original Folder (Better is Cracked Folder)) in it.
-
8/18/2019 penertasi website dengan kali linux
21/29
Cracking And Patching CHETAN SONI
Now go to DIALOG –> ABOUTRARDLG -> 1049 and click it.
Now Find Trial copy line and replace it with your favorite one.
-
8/18/2019 penertasi website dengan kali linux
22/29
Cracking And Patching CHETAN SONI
Make changes and compile them.
And click on Compile Script button.
Now save the file with any name on your desktop or any location what
so ever.
Now you have a fully patched WinRAR.exe file.
-
8/18/2019 penertasi website dengan kali linux
23/29
Cracking And Patching CHETAN SONI
Make a PATCH
For this I Preferred diablo2oo2's Universal Patcher (UPE) for Creatingthe Patch.
Launch Patch Creator and click on new project.
-
8/18/2019 penertasi website dengan kali linux
24/29
Cracking And Patching CHETAN SONI
Enter project Information and click on save.
-
8/18/2019 penertasi website dengan kali linux
25/29
Cracking And Patching CHETAN SONI
Now Create Offset patch
For this Add -> Offset Patch.
-
8/18/2019 penertasi website dengan kali linux
26/29
Cracking And Patching CHETAN SONI
After you have done that, double click on offset patch and then
1. Give path of ori ginal win rar .exe (From Ori ginal F older)
2. Give path of unmodifi ed Winrar .exe (again From Or iginal F older)
3. Give path for ful ly patched Winrar.exe (i.e. Cracked Winrar.exe from
Cracked Folder)
4. Click on compare and it wil l show dif ference between both f i les.
5. Click on save.
-
8/18/2019 penertasi website dengan kali linux
27/29
Cracking And Patching CHETAN SONI
Now in the next window, click on Create Patch and save it.
The Patch will be created. Now copy it in Winrar installation Directory.And Hit the Patch
-
8/18/2019 penertasi website dengan kali linux
28/29
-
8/18/2019 penertasi website dengan kali linux
29/29
Cracking And Patching CHETAN SONI
Contact Details
Chetan SoniSr. Security Specialist @ Secugenius Security Solutions
Email ID:- [email protected]
http://chetansoni.com
http://chetansoni.net
http://chetansoni.org
http://thechetansoni.com
_____________________________________
Founder/Admin of Just Do Hackers (JDH)
http://justdohackers.in
_____________________________________
Connect with Facebook:
http://facebook.com/er.chetansoni
http://facebook.com/officialchetan
http://facebook.com/connectchetan
Follow me on Twitter:
http://twitter.com/justdohackers
Email ID:
http://chetansoni.com/http://chetansoni.com/http://chetansoni.net/http://chetansoni.net/http://chetansoni.org/http://chetansoni.org/http://thechetansoni.com/http://thechetansoni.com/http://justdohackers.in/http://justdohackers.in/http://facebook.com/er.chetansonihttp://facebook.com/er.chetansonihttp://facebook.com/officialchetanhttp://facebook.com/officialchetanhttp://facebook.com/connectchetanhttp://facebook.com/connectchetanhttp://twitter.com/justdohackershttp://twitter.com/justdohackersmailto:[email protected]:[email protected]:[email protected]:[email protected]:[email protected]:[email protected]://twitter.com/justdohackershttp://facebook.com/connectchetanhttp://facebook.com/officialchetanhttp://facebook.com/er.chetansonihttp://justdohackers.in/http://thechetansoni.com/http://chetansoni.org/http://chetansoni.net/http://chetansoni.com/