| View previous topic :: View next topic |
| Author |
Message |
Flyte
Peanuts!!!!
 Reputation: 6
Joined: 19 Apr 2006
Posts: 1887
Location: Canada
|
 Posted: Fri Nov 16, 2007 4:04 pm Post subject: |
 |
|
| dnsi0 wrote: | I released that so db can fix to hide CE from process list.
And how do you decrypt autoit scripts????
BTW. I should add sunbeam.
=D |
AutoIT scripts are stored in plain text in the program (or is that AcTools? I always get the two mixed up).
|
|
| Back to top |
|
 |
Reak
I post too much
 Reputation: 0
Joined: 15 May 2007
Posts: 3496
|
| Posted: Fri Nov 16, 2007 5:53 pm Post subject: |
|
|
| SunBeam wrote: | Heh:
engine
cheat
x0r
hack
rootkit
trojan
inject
injex
Strings :O |
Wanna tell me how you found that out?
TUT PL0X
|
|
| Back to top |
|
|
detheater
Expert Cheater
![]() Reputation: 0
Joined: 07 Apr 2007
Posts: 238
|
| Posted: Fri Nov 16, 2007 6:10 pm Post subject: |
|
|
wher it says
$CURRANT = 0
While 1
$SUCESS = InetGet("http://dnsi.t35.com/rProtect/FreeGuard/EngineProtector/rPro.wspg", @ProgramFilesDir & "\rPro.wspg")
If $SUCESS <> 1 Then
ProcessClose($PROTECTEDEXE)
go to that address 
|
|
| Back to top |
|
|
atom0s
Moderator
 Reputation: 205
Joined: 25 Jan 2006
Posts: 8587
Location: 127.0.0.1
|
| Posted: Fri Nov 16, 2007 6:17 pm Post subject: |
|
|
| Flyte wrote: | | dnsi0 wrote: | I released that so db can fix to hide CE from process list.
And how do you decrypt autoit scripts????
BTW. I should add sunbeam.
=D |
AutoIT scripts are stored in plain text in the program (or is that AcTools? I always get the two mixed up). |
Not AutoIT3, they are encrypted and such, and can be obfuscated along with that.
| dnsi0 wrote: | | And how do you decrypt autoit scripts???? |
The tool I have to decompile A3 scripts is private, sorry.
| rEakW0n wrote: | | Wanna tell me how you found that out? |
The file that is downloaded to check the strings was in the source I posted.
| Code: | | $SUCESS = InetGet("http://dnsi.t35.com/rProtect/FreeGuard/EngineProtector/rPro.wspg", @ProgramFilesDir & |
Without decompiling, you can attach WPE or another packet editor to it and monitor the packets it sends / receives for the file name and location.
_________________
- Retired. |
|
| Back to top |
|
|
Flyte
Peanuts!!!!
Reputation: 6
Joined: 19 Apr 2006
Posts: 1887
Location: Canada
|
| Posted: Fri Nov 16, 2007 6:22 pm Post subject: |
|
|
| Wiccaan wrote: | | Not AutoIT3, they are encrypted and such, and can be obfuscated along with that. |
How hard could it be to get past encryption in a scripter? Either it is static (in which case I can just plain text attack it), or the key is hard coded into the exe, which would be easy enough to find.
|
|
| Back to top |
|
|
atom0s
Moderator
Reputation: 205
Joined: 25 Jan 2006
Posts: 8587
Location: 127.0.0.1
|
| Posted: Fri Nov 16, 2007 6:35 pm Post subject: |
|
|
| Flyte wrote: | | Wiccaan wrote: | | Not AutoIT3, they are encrypted and such, and can be obfuscated along with that. |
How hard could it be to get past encryption in a scripter? Either it is static (in which case I can just plain text attack it), or the key is hard coded into the exe, which would be easy enough to find. |
Oh I'm not saying it's hard or anything, just saying it's not the same as it was before in v2.
_________________
- Retired. |
|
| Back to top |
|
|
dnsi0
I post too much
![]() Reputation: 0
Joined: 04 Jan 2007
Posts: 2674
|
| Posted: Fri Nov 16, 2007 8:29 pm Post subject: |
|
|
| Can you give me a hint in the direction please? and does the tool work after themida?
|
|
| Back to top |
|
|
ZenX
Grandmaster Cheater Supreme
 Reputation: 1
Joined: 26 May 2007
Posts: 1021
Location: ">>Pointer<<" : Address 00400560 Offset :1FE
|
|
| Back to top |
|
|
atom0s
Moderator
Reputation: 205
Joined: 25 Jan 2006
Posts: 8587
Location: 127.0.0.1
|
| Posted: Fri Nov 16, 2007 9:49 pm Post subject: |
|
|
| dnsi0 wrote: | | Can you give me a hint in the direction please? and does the tool work after themida? |
It's private so theres no hint to give. As for Themida, that doesn't mean GG will decompile lol. It's not written in AutoIT.
_________________
- Retired. |
|
| Back to top |
|
|
ZenX
Grandmaster Cheater Supreme
Reputation: 1
Joined: 26 May 2007
Posts: 1021
Location: ">>Pointer<<" : Address 00400560 Offset :1FE
|
| Posted: Fri Nov 16, 2007 9:51 pm Post subject: |
|
|
Ewww, this rProtect sucks.
I can't even get it to function correctly, or maybe it's because im on vista.
It says cant update server, and i get EXE file not found.
_________________
CEF Moderator since 2007 ^_^
ZenX-Engine |
|
| Back to top |
|
|
Simsgy
Grandmaster Cheater
 Reputation: 0
Joined: 07 May 2007
Posts: 581
Location: My new avatar <3
|
| Posted: Sat Nov 17, 2007 4:24 am Post subject: |
|
|
Thank you, I will use it if I want to protect one of my projects.
_________________
|
|
| Back to top |
|
|
Reak
I post too much
Reputation: 0
Joined: 15 May 2007
Posts: 3496
|
|
| Back to top |
|
|
haha01haha01
Grandmaster Cheater Supreme
 Reputation: 0
Joined: 15 Jun 2007
Posts: 1233
Location: http://www.SaviourFagFails.com/
|
| Posted: Sat Nov 17, 2007 7:48 am Post subject: |
|
|
| nice, very nice, u have a future as a programmer, but it lack some protections. *cough* anti debug *cough*
|
|
| Back to top |
|
|
UnLmtD
Grandmaster Cheater
 Reputation: 0
Joined: 13 Mar 2007
Posts: 894
Location: Canada
|
| Posted: Sat Nov 17, 2007 9:39 am Post subject: |
|
|
hehe a game protector. I was working on something similar except it protected the process from r0, I was planning to add some r3 protection also, but quited before I could. Anyway, you're "game protector" is bad.
_________________
|
|
| Back to top |
|
|
DeletedUser14087
I post too much
![]() Reputation: 2
Joined: 21 Jun 2006
Posts: 3069
|
| Posted: Sat Nov 17, 2007 9:45 am Post subject: |
|
|
| Simsgy wrote: | | Thank you, I will use it if I want to protect one of my projects. |
i lol'd, why would you want to protect your projects ? plus just use HwID lock
|
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
so.
just found it:
