Hey guys,
I love this ASM section and forum all together. I recently did some work on an executable to make it not
ask for a serial (imagine that!).
My question is, how could one take that code that was changed (to jne, simplest form) and make it into a "patch" in some sort of executable format.
Any links/info would be greatly appreciated (also, if it is packed, will it have to be unpacked, patched, packed?)
-kruz
Sponsored by: █ Sparkhost - Hosting Without Compromises! █ Hybrid Performance Web Hosting █ Spark Host Stream Hosting █ Hybrid IRC & IRCd Server Shell Accounts
Patching An Executable
Started by
kruz
, Jan 22 2008 11:42 PM
3 replies to this topic
#2
White Scorpion
-
- Sergeant Major
-
- 674 posts
Sergeant First Class
Posted 23 January 2008 - 05:36 AM
Hey guys,
I love this ASM section and forum all together. I recently did some work on an executable to make it not
ask for a serial (imagine that!).
My question is, how could one take that code that was changed (to jne, simplest form) and make it into a "patch" in some sort of executable format.
Any links/info would be greatly appreciated (also, if it is packed, will it have to be unpacked, patched, packed?)
-kruz
I'm assuming you are attacking a crackme challenge and are not doing anything illegal.
Take a look at reversing.be, they have several tutorials on how to write a patcher, from basic one byte patches, to patching in memory, searching for patterns, etc.
If you still have specific questions after that, let us know
The path of access leads to the server of wisdom..
The Syringe - My Latest Project.
Errors, Vulnerabilities & Exploits explained.
----
www.white-scorpion.nl
www.info-sec.eu
www.info-sec.info
The Syringe - My Latest Project.
Errors, Vulnerabilities & Exploits explained.
----
www.white-scorpion.nl
www.info-sec.eu
www.info-sec.info
#3
ninar12
-
- Members
-
- 143 posts
Specialist
Posted 29 January 2008 - 06:55 PM
i also recommend
Win32_Assembler_Coding_for_Crackers_by_Goppit_v11.chm
from [arteam]Goppit
Win32_Assembler_Coding_for_Crackers_by_Goppit_v11.chm
from [arteam]Goppit
#4
da_cash
-
- Members
-
- 232 posts
Sergeant
Posted 03 February 2008 - 03:45 AM
for simple patching few bytes you may use SetFilePointer and WriteFile API's.
for example:
definitions:
this is simple method ripped from my old code. I prefer to patch files using matching patterns , it's more pro
..
hope it will help .. :]
Also if your file is packed you should unpack it first , but in certain packers such as asprotect you may use inline patching to patch the code while program unpacks in memory before going to oep (entry point ) and running
for example:
definitions:
p1 db 90h,90h i dd ?
invoke GetFileSize,[hFile],NULL; get filesize from createfile handle cmp eax,0027a600h ; compare file size je @good ; if match ours do the job jmp @exit @good: invoke SetFilePointer,[hFile],18D04Bh,FALSE,FILE_BEGIN ; set file pointer at offset 18D04Bh from beginning invoke WriteFile,[hFile],addr p1,2h,addr i,0 ; patch the code with 2 nops from "p1" , "i" used to store written bytes @exit: ; koniec i wyjście z programu :]
this is simple method ripped from my old code. I prefer to patch files using matching patterns , it's more pro
..hope it will help .. :]
Also if your file is packed you should unpack it first , but in certain packers such as asprotect you may use inline patching to patch the code while program unpacks in memory before going to oep (entry point ) and running
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
