--Softice Tutorial--- 


Date written: 27.3.2001
Program Details:
Name: CRACKME!
Author: Bengaly

Tools Used:
Softice

________________________________________________________________________


                  -About this protection system-

easy Protection which based on a serial number Protection.
__________________________________________________________________________


                                 The Essay

As this is a tutorial for newbies, I'll go into details about how I go 
about cracking the program. I suggest that you read this tutorial first.
When you have completed the tutorial, leave this tutorial open and follow
the instructions. Re-do it once more after you have completed the step 
by step guide...

In this essay, when I write type "d EAX" or similar commands in Softice,
I mean it without the quotes.

__________________________________________________________________________

                            Lets Crack The Bitch ;)
				

HEHE look at the crackme.
enter your favorite seriale Mine is:
serial: 12345 <= very easy to remember ;)

open your fav black debugger SoftIce ;).,.hehe what else
set a nice breakpoint BPX GETDLGITEMTEXTA
press f5/ctrl+d
Press OK on the CHECK button...BOOOMMM Sice poped up ;)
we are in the GETDLGITEMTEXTA hehe ;)
press F12.(twice) ;) <= why twice, well i will teach u a little SECRET hehe :
open 32dasm...disassmble..STRN-ref button (near the print button) press on "Correct way to go" and u will be in the data call, scrool up to see this:
|:00401588 51 PUSH ECX <= write that on paper or keep it in memory ;)
... ... ... ... .
|:0040158C 52 PUSH EDX
... .. .. .. . <= SOME CODE
.. . . . . . . . 
             
             /|\
              |
....."CORECT WAY TO GO!!" 

; ISN'T IT A LITTLE SECRET..well no but still helpfull ;)

well as i said we are soft ice after u pressed 2 times f12.. and then press 1 time f10 so that u will see this:
xxxx:0040155f PUSH EAX <= store fake serial ;)
u wanna see..dont belive me >:/ here do this:
       d EAX 
u will see in the data the serial u typed..for me ..12345....
hehe, now remember 32dasm..i told u it will help though, so now trace a little bit with f10 till u will get to the:
xxxx:00401588 51 PUSH ECX <= as was in the 32dasm "correct way to fo!!" ;)
so u want the serial hehe type this:
   d ecx

u will see in the data this: ...<BrD-SoB>... <= real
                              ...12345.... <= fake

this was a simple crackme with simple protection..cmp fake serial to the real ;)

what have we done so far:
1.enter serial
2.bpx GETDLGITEMTEXTA
3.press f12 (twice)
4.d EAX <= fake
5.f10
6.d ECX

*sometimes the real serial wil just appear in the data so ..;)
__________________________________________________________________________

                                 

				
                             Final Notes

This tutorial is dedicated to all the newbies like me. I've tried to
explain everything in details.

This is my first tut so...;)
And because I'm a newbie myself, I may have explained certain things wrongly
So, if that is the case, please forgive me. Email me if there is anything 
you are not clear about.


                    My thanks and gratitude goes to:-

                     ---ANALYST(ACiD-BUrN)---
           All the writers of Cracks tutorials and CrackMes