Thanks Thanks:  212
Page 7 of 18 FirstFirst ... 5678917 ... LastLast
Showing results 61 to 70 of 175

Thread: FlexLM.ECC.Generic.Patcher-Flexlm targets (x86/x64 up to version 11.9.x)

  1. #61
    Member Reputation: 34
    Join Date
    2014-12-12
    Posts
    24


    1 out of 1 members found this post helpful.

    Default Re: FlexLM.ECC.Generic.Patcher-Flexlm targets (x86/x64 up to version 11.9.x)

    Quote Originally Posted by Aleksej View Post
    in that case, there is another method to get RSA public key:

    Code:
    $ ./lictest -k
    -----BEGIN PUBLIC KEY-----
     ...blah-blah-blah
    -----END PUBLIC KEY-----
    lictest has 3 hidden command line options: -c -k -i

    -c means "check", i.e. $ lictest -c -f license_file

    -k means "print pubkey"

    Finally I did it thanks man very much.
    Notes for anyone who loves RE
    1-lictest in utilities uses a wrapper (python one) to call lictest in mmshare (parameters can be obtained in olly by tracing)
    2-firing lictest in ida and look for function that calls pubkey and patch it to return eax=0
    3-patch pubkey verify
    4-find all files which have pubkey and flexlm sig and patch them using the same way

  2. #62
    Member Reputation: 159
    Join Date
    2010-05-04
    Location
    EU
    Posts
    79


    1 out of 1 members found this post helpful.

    Default Re: FlexLM.ECC.Generic.Patcher-Flexlm targets (x86/x64 up to version 11.9.x)

    Congratulation

    mmlic3_verify() function is another protection implemented to target.
    I think, this is "only" consistency check of license text.
    Anyway you must also patch real flexnet ( certicom ) function - l_pubkey_verify().
    This is not changed from older version.

    Have nice day!

  3. #63
    Member Reputation: 34
    Join Date
    2014-12-12
    Posts
    24


    1 out of 1 members found this post helpful.

    Default Re: FlexLM.ECC.Generic.Patcher-Flexlm targets (x86/x64 up to version 11.9.x)

    I patched only the signature function and the l_pubkey_verify(). .....mmlic_verify use the function that checks signature and it gives the correct result as the main RSA check function is giving the correct response (so no need to patch I think) .This is after trying a lot of tasks. Correct me if I am wrong please.
    Last edited by pharmacist; 2014-12-28 at 02:19 AM

  4. Thanks synkro thanked for this post
  5. #64
    Member Reputation: 159
    Join Date
    2010-05-04
    Location
    EU
    Posts
    79


    2 out of 2 members found this post helpful.

    Default Re: FlexLM.ECC.Generic.Patcher-Flexlm targets (x86/x64 up to version 11.9.x)

    Quote Originally Posted by pharmacist View Post
    I patched only the signature function and the [COLOR=#333333]l_pubkey_verify(). .....mmlic_verify use the function that checks signature and it gives the correct result as the main RSA check function is giving the correct response (so no need to patch I think) ......
    Yes it is correct.

    I'm sure if you replace real public key with known public key from your compiled daemon, with known lm_seeds 1-3, in all your target files and daemon,
    you can generate "real" license with your own compiled lmcrypt. This is another working method.

    But you need Generic ECC pubkey replacer by tanker v1.70. ;-)

  6. #65
    Member Reputation: 34
    Join Date
    2014-12-12
    Posts
    24


    Default Re: FlexLM.ECC.Generic.Patcher-Flexlm targets (x86/x64 up to version 11.9.x)

    Quote Originally Posted by darsy View Post
    Yes it is correct.

    I'm sure if you replace real public key with known public key from your compiled daemon, with known lm_seeds 1-3, in all your target files and daemon,
    you can generate "real" license with your own compiled lmcrypt. This is another working method.

    But you need Generic ECC pubkey replacer by tanker v1.70. ;-)

    I think this deamon is packed......will check as it will be interesting to extract seeds out of it

    I hope u can post a tut (translated one similar to peidy forum ) that explains the tanker method of ecc patching .....sometimes finding pubkey verify is not easy.

  7. #66
    Junior Member Reputation: 10
    Join Date
    2014-08-07
    Posts
    1


    Default Re: FlexLM.ECC.Generic.Patcher-Flexlm targets (x86/x64 up to version 11.9.x)

    x64 Linux version?

  8. #67
    Member Reputation: 17
    Join Date
    2014-12-27
    Posts
    15


    Default Re: FlexLM.ECC.Generic.Patcher-Flexlm targets (x86/x64 up to version 11.9.x)

    Quote Originally Posted by pharmacist View Post
    I think this deamon is packed......will check as it will be interesting to extract seeds out of it

    I hope u can post a tut (translated one similar to peidy forum ) that explains the tanker method of ecc patching .....sometimes finding pubkey verify is not easy.

    Yes I also would like to have a tutorial from somebody.Could you please (one of you) prepare one?

  9. #68
    Member Reputation: 17
    Join Date
    2014-12-27
    Posts
    15


    Default Re: FlexLM.ECC.Generic.Patcher-Flexlm targets (x86/x64 up to version 11.9.x)

    Quote Originally Posted by pharmacist View Post
    Finally I did it thanks man very much.
    Notes for anyone who loves RE
    1-lictest in utilities uses a wrapper (python one) to call lictest in mmshare (parameters can be obtained in olly by tracing)
    2-firing lictest in ida and look for function that calls pubkey and patch it to return eax=0
    3-patch pubkey verify
    4-find all files which have pubkey and flexlm sig and patch them using the same way


    would you consider sharing it with us pls?

  10. #69
    Member Reputation: 34
    Join Date
    2014-12-12
    Posts
    24


    1 out of 1 members found this post helpful.

    Default Re: FlexLM.ECC.Generic.Patcher-Flexlm targets (x86/x64 up to version 11.9.x)

    there are many tutorials for this everywhere....no one shares complete solutions (u have to try and prove that you have done something )
    woodman forum...reteam all of these forums have a lot of topics covering this....

  11. #70
    Member Reputation: 17
    Join Date
    2014-12-27
    Posts
    15


    1 out of 1 members found this post helpful.

    Default Re: FlexLM.ECC.Generic.Patcher-Flexlm targets (x86/x64 up to version 11.9.x)

    Quote Originally Posted by pharmacist View Post
    there are many tutorials for this everywhere....no one shares complete solutions (u have to try and prove that you have done something )
    woodman forum...reteam all of these forums have a lot of topics covering this....
    yes but the thing is we ,the newbies, cannot download the attachments that explain how to do it
    Actually there are some people out there who share their work.I would not be asking you help if I could do something.
    Thanks anyway

  12. Thanks nema thanked for this post

Tags for this Thread

Bookmarks

Bookmarks

Posting Rules

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •