Announcement
Collapse
No announcement yet.
lззв ini auth
Collapse
X
-
GuestTags: None
-
Re: lззв ini auth
Originally posted by anontyan1 View PostExactly.
Anyway, it's easy to get their one's, like a other 99,9% of hags.
UPD :
If you know, you can't get dll, if your account doesn't have sub, they maked that almost perfect.
You only can move all outputs from their host to local, and spoof. That shouldn't call BYPASS.
Comment
-
Re: lззв ini auth
Originally posted by anontyan1 View PostYou're right, so, how i had to call it?
So welcome, to pr1v473 h4g5 dumping business xd
Oh, thought that now is a bit harder, to do that sort of thing, because they are using ssl.
So for replace remote to local with hosts, you need to configure your webserver with their certificate, you can easily obtain it, but only client-side one, when server requires two files of certificate(server-side).
Comment
-
Guest
Re: lззв ini auth
Originally posted by GetJump View PostOh, thought that now is a bit harder, to do that sort of thing, because they are using ssl.
So for replace remote to local with hosts, you need to configure your webserver with their certificate, you can easily obtain it, but only client-side one, when server requires two files of certificate(server-side).
I wanted to dump & emulate server respones to client, making able to login and download hack without having an account.Last edited by Guest; 01-25-2013, 11:15 AM.
Comment
-
Re: lззв ini auth
Originally posted by anontyan1 View PostYea, I thought about it when they started to use ssl.
I wanted to dump & emulate server respones to client, making able to login and download hack without having an account.
They crypt bases on HWID. I don't known how it work now, but in leaked sources, all decrypts with hwid.
Comment
-
Guest
Re: lззв ini auth
Originally posted by GetJump View PostThey crypt bases on HWID. I don't known how it work now, but in leaked sources, all decrypts with hwid.
Anyway, I haven't any possibility & motivation to make my noob researches on ini's auth, cuz i'm not giving a cent fot that faggots no more.
Btw, I saw you at EC, would you research their protection? Or you're already doin' it?
Comment
-
Re: lззв ini auth
Originally posted by anontyan1 View PostThat's very interesting.
Anyway, I haven't any possibility & motivation to make my noob researches on ini's auth, cuz i'm not giving a cent fot that faggots no more.
Btw, I saw you at EC, would you research their protection? Or you're already doin' it?
EC, is simple, since their writing code to other process.
Auth, is php script :D
Comment
-
Re: lззв ini auth
Originally posted by GetJump View Postbase64 -> own crypt for dlls
one would think to use SHA 256 + AES 256 as basis...
i guess not
Comment
-
Re: lззв ini auth
Originally posted by Ember View PostIf you want the module, unpack, check for VM (I assume they are still using Themida), and devirtualize and see what they are doing to get an address to breakpoint to dump the module from, or rather just use my pretty much generic 1-breakpoint search&dump method.
Comment
-
Re: lззв ini auth
Originally posted by wav View Posthttp://en.wikipedia.org/wiki/Advance...ption_Standard
one would think to use SHA 256 + AES 256 as basis...
i guess not
People like him think, that their own shitty protect is perfect.
Comment
Comment