Follow Null Byte The aspiring white-hat hacker/security awareness playground

The Hacks Behind Cracking, Part 1: How to Bypass Software Registration

Posted By
479

The Hacks Behind Cracking, Part 1: How to Bypass Software Registration

If you've ever wondered how software pirates can take software and crack it time and time again, even with security in place, this small series is for you. Even with today's most advanced methods of defeating piracy in place, it is still relatively easy to crack almost any program in the world. This is mainly due to computer processes' ability to be completely manipulated by an assembly debugger. Using this, you can completely bypass the registration process by making it skip the application's key code verification process without using a valid key. This works because assembly allows you to speak directly to the processor and force a skip over the registration process.

In this Null Byte, let's go over how cracking could work in practice by looking at an example program (a program that serves no purpose other than for me to hack). I will not be walking you through how to actually crack a legitimate program, because I can't just crack a program for demonstration, but the techniques applied to my examples should give you the foundation needed to create your own. At that point, it's a test of your morals if you want to use your knowledge for good or bad.

Requirements

  • Windows (for examples only, debuggers exist across platforms)
  • A debugger installed: IDA, ollydbg, etc. (ollydbg will be used in examples)

Step 1 Test the Program

First, run the program that you are attempting to reverse engineer and try to activate it with a random key to verify that you need a valid software key to proceed. This is to verify that we can come up with the keys.

Step 2 Run the Program in a Debugger

  1. Run ollydbg.
  2. Open up the program you wish to bypass with ollydbg.
  3. Click the play button to run the program with the debugger attached.
  4. Right click the CPU window, and click Search For > All intermodular calls.
  5. Search for high interest DLLs. GETDLGITEMTEXT, will be for dialog boxes, which get called when you try to enter a software key. By stepping into the function with the debugger, we can examine the registration specifically. SENDDLGITEM could be used as well.
  6. Test to see which one works to break out of the activation loop by right clicking the DLL call and setting a breakpoint for all instances of that call.The Hacks Behind Cracking, Part 1: How to Bypass Software Registration
  7. Resume the program and enter any software key you feel like. If the debugger breaks (pauses the program's execution) after entering your key, then you know you found DLL in step 5.
  8. Press F8 back in the CPU window to force the next step until you get to the TEST EAX. EAX is the return of a value, which means that a check is being performed here. Upon examination, we can see that the EAX is checking for a number that is not equal to a null value. This means that if it is replaced with anything other than null, it will run.The Hacks Behind Cracking, Part 1: How to Bypass Software Registration
  9. Right-click the EAX and change it in hex value to 1, instead of 0.
  10. Resume the program again, and you will have successfully activated the program.The Hacks Behind Cracking, Part 1: How to Bypass Software RegistrationAnd for proof it was registered to me:The Hacks Behind Cracking, Part 1: How to Bypass Software Registration

This works because you are making the process jump from one register and skip the one that verifies the key entered. To exploit the key registration algorithm, keep an eye out for part two of this tutorial on making the key generator. Hooray for assembly!

Image via msbyron27

See Also

Remember to Give Kudos, Tweet, Like, & Share
Subscribe

Join the Discussion

BILL PLAK4EVER
BILL PLAK4EVER
1

Well I seem to have found the point where the reference lies but canoot find the pass.....

It gives me a pop-up widow but the problem is that it is not a program itself but a packege on a program that runs inside a statistical package. Any help would be highly appreciated

1 year ago
Reply
princebhalani
princebhalani
1

how to crack this kind of registration process...?? if you have any process for this then send me urgent...i am waiting for your reply.:)

3 years ago
Reply
Shawn Alex
Shawn Alex
1

How would you crack something like this? (btw it's not installed software, just an exe. file with several .dll files in it's original folder).

3 years ago
Reply
Anh Nh? Em
Anh Nh? Em
1

Hi. I have a software what need to crack. But that software using online checking license. How can i bypass it ? Can anybody help me ?

2 years ago
Reply
Angus Trau
Angus Trau
1

Maybe try to turn off your Internet during the process.

2 years ago
Reply
Manos Nad
Manos Nad
1

hi how to crack this this kind of registartion? rng repacer detected lock with aplib compression

2 years ago - edited 2 years ago
Reply
Jit Dutta
Jit Dutta
1

how can I hack swf file of a adobe air based application like Longtailpro or Market samurai to bypass login credentials?

2 years ago
Reply
Patriche Mihai
Patriche Mihai
1

Did you get any responses wit this?
I myself am looking for a crack for the latest version of Long Tail Pro
Cheers!

8 months ago
Reply
Siby Mammen
Siby Mammen
1

Can Help me cracking this?

2 years ago
Reply
Jaryed Wood
Jaryed Wood
1

Hmm... What about using it to Crack another Debugger... i want to use WinDBG(Needs Cracking)+ Visual Studio 2008(Activated) Professional to debug Nintendo DS homebrew! But it has a trial period and i used that up last year... i can't afford a copy of this... maybe ill ask for it for my birthday but i doubt i can get it.

2 years ago
Reply
Sandy Vishwakarma
Sandy Vishwakarma
1

can any one do crack of my .exe file i want the key to use it.it verifies the key online as i enter fake serial can any one help me....

2 years ago - edited 2 years ago
Reply
Ash Harvey
Ash Harvey
1

Whenever I search for "Intermodule Calls" nothing comes up?

1 year ago
Reply
Sharon Fisher
Sharon Fisher
1

does anybody have any ideas on how to get past internet verification of activation code? And turning off the internet does not work.

1 year ago
Reply
Sun Fui
Sun Fui
1

How do you bypass software registration if GETDLGITEMTEXT or SENDDLGITEM does not show? also the software is using online registration, how do you make it offline registration?

1 year ago - edited 1 year ago
Reply
Marty GnarTard Galinskas
Marty GnarTard Galinskas
1

My EAX is set to 1, so if i set it to 0 then nothing happens, i go to put the code in and it pauses execution again and EAX is set back to 1. any ideas?

11 months ago
Reply
SHAH JEE
SHAH JEE
1

How to bypass this message and i unable to this Please help

8 months ago
Reply
Simo Onee
Simo Onee
-2

Good evening, I need your help please so that this application opens without blockage, this app works with only one pc when I try to launch another it shows an error message indicates that the data are changed then there is a relationship between the application and the pc serial numbers, here's the link to download the application must decompress and then made double-clicks the file Star.exe to see the launch of the application and the error message. here is the link for download:

http://www.mediafire.com/download/sutb9tb06qcetu7/Star+V701.rar

my email: brainyboy89@gmail.com
Thank's friends.

5 months ago
Reply
Lukas Bethlehem
Lukas Bethlehem
-2

Can anybody help to convert the Snapgene Trial Version into a full version?
I tried via Ollydbg, but I can't find the correct string.

mail: lukas-b.89@gmx.de

Thank you very much!

4 months ago
Reply
Don Don
Don Don
1

It is an amazing technique! I have reached until SENDDLGITEM
as the software I am using is somehow connected to online.
After that when I press F8 nothin happens can anybody help me with that? Many thanks!!! You May PM me!

2 months ago
Reply
Endou Hamza
Endou Hamza
1

And what if your software doesn't have an option to enter registration key? I'm trying to crack sparkol Videoscribe latest version 2.3.4 but I don't see any option to enter Registration key, there's only one option that's 'BUY NOW'. Please help me!

2 weeks ago
Reply

Share Your Thoughts

Popular How-To Topics in Computers & Programming

Trending Across WonderHowTo

This Tiny Gadget Could Help You Avoid Speeding Tickets

This Tiny Gadget Could Help You Avoid Speeding Tickets

This Easy Trick Frees Up Lots of Storage Space on Your iPhone

This Easy Trick Frees Up Lots of Storage Space on Your iPhone

4 Ways to Crack a Facebook Password and How to Protect Yourself from Them

4 Ways to Crack a Facebook Password and How to Protect Yourself from Them

Batch Basics: Understanding the Windows Command Line Part 0 (Introduction)

Batch Basics: Understanding the Windows Command Line Part 0 (Introduction)

Hack Like a Pro: Reconnaissance with Recon-Ng, Part 1 (Getting Started)

Hack Like a Pro: Reconnaissance with Recon-Ng, Part 1 (Getting Started)

How to Hide Your Secret Stash in a 9-Volt Battery

How to Hide Your Secret Stash in a 9-Volt Battery

Security-Oriented C Tutorial 0xF9 - I Spy with My Little... Program - Keylogging 101

Security-Oriented C Tutorial 0xF9 - I Spy with My Little... Program - Keylogging 101

Snapchat Adds a Ton of New Features, Including Chat 2.0, Video Calling, Stickers, & More

Snapchat Adds a Ton of New Features, Including Chat 2.0, Video Calling, Stickers, & More

How to Embed a Payload (Exe or Apk) Into Video File?

How to Embed a Payload (Exe or Apk) Into Video File?

How to Train Your Python: Part 21, Introduction to Modules

How to Train Your Python: Part 21, Introduction to Modules

How to Automatically Stop Notifications from Pausing Your Music in Android

How to Automatically Stop Notifications from Pausing Your Music in Android

10 Herbs You Can Buy Once & Regrow Forever

10 Herbs You Can Buy Once & Regrow Forever

You Can Now Send Texts in Facebook Messenger's Android App

You Can Now Send Texts in Facebook Messenger's Android App

Null-Byte Capture the Flag

Null-Byte Capture the Flag

Hack Like a Pro: How to Use PowerSploit, Part 1 (Evading Antivirus Software)

Hack Like a Pro: How to Use PowerSploit, Part 1 (Evading Antivirus Software)

12 Essential Android Apps Made Specifically for Tablets

12 Essential Android Apps Made Specifically for Tablets

How to Crack Wi-Fi Passwords—For Beginners!

How to Crack Wi-Fi Passwords—For Beginners!

What Are the Tools to Detect Steganography ?

What Are the Tools to Detect Steganography ?

7 Harmless (But Slightly Evil) Back-to-School Pranks for Your Gullible Dorm Mates

7 Harmless (But Slightly Evil) Back-to-School Pranks for Your Gullible Dorm Mates

Get Android N's Redesigned Settings Menu on Your Android Right Now

Get Android N's Redesigned Settings Menu on Your Android Right Now