2000-01-03 THE SAINT Man This is fourth tutor on cracking, my second on CD protections but this tutor explains 4 different ways on how to crack a CD. I have made a home page since last time you heard from me the address is http://zapping.to/TheSaintMan if that did not work try www.crash.to/bilal . For all the new crackers (newbes in the beginning) that has red my other tutor and asked for help I am so sorry for not answering your mails but as I said in the tutors I was going on a trip so when I came back and checked my e-mail I had almost 200 mails and 150 was from crackers, so as you can se I did not feel like to answer them all. This time I am not going any where fore a long time so feel free to send me mails fore help and tell me what you thought about my tutor. DO NOT send me programs or files. Tell me the name of the game -program that you want to crack and I will se what I can. Remember I only write these tutors because that I got a lot of e-mail giving me credit for them hope that I get a mail from YOU to!!! My e-mail is zaaz12@post.tele.dk if I do not answer on that one then try B_I_L_A_L@forum.dk. Notes: Bad English: I am Danish and I do not check my spelling errors don't have the time!! Tools: Softice nope not in this tutor but it is the best tools. You will need Windasm any version Hiew any version. Find the tools on my page http://zapping.to/TheSaintMan in the tools section. Level easy if you have red my other tutors find them on my page. FOUR TRICKS ON CD-PROTECTIONS Opportunity NR. 1 You know the error message you got when you tried to play the game with out the CD in it. So you disassemble the games exe file or com file. Click on the Strn.Ref next to print. Find the error message or one that says any thing like error on CD data any thing. Double click on it. You are now in the CD check routine. What we will have to do is to eliminate this routine so that it do not check if the CD is in the drive. (or so that it do not check the size of the CD then you can put in any CD) The best thing that you can do is to find a call over the error message(in windasm of course) double click on it and it should turn green if not do not use that find another above that call if you can not find one then a jmp might work. You have found the jmp or call. Type down the offset without the h. Get out of windasm and start hiew. IN HIEW!!! Open the exe file or com file. Press F4 and then decode. Press F5 and type in the offset and push enter. As I wrote in my last tutors every to numbers means one byte. So go ahead and nop. When you are finished press F9 for update and F10 for exit. Run the exe file It should work now!! If not then read on! Opportunity NR. 2 Do the same as before but this time do not nope it but type b8010000000 this way the game thinks that the CD is in the drive every time you want to run it. Note: this will only work if the numbers you before had to nope was 5 byte long. Did it work?? If not then shit on the fucking CD. Please do not but go to opportunity NR. 3 Opportunity NR. 3 Find a jne or a jn command over the message. Get it's offset NR. Open hiew. Open the exe file(com). F4 -decode. F5 -type in the offset NR. And change a… 75 (jne) to 74 (je), a 85 (jne) to 84 (je), a 74 (je) to 75 (jne) or a 84 (je) to 85 (jne). It worked!!! if not do as before read on!! Opportunity NR. 4 OK, goto WDASM and search for a line like "getdrivetypea" . Look around, do u see a call? and a cmp (compare) with a 0005 ?? (example) 00005 stands for CD-Drive 00003 stands for Hard-Drive hehe, got it?? Yes, we will change the 00005 to 00003! Just edit the line cmp00005 and change it to cmp00003. This is some of assambly codes. ASM WHAT DOES IT MEAN --------------------------- jne jump if not equal je jump if equal jmp jump directly to nop no operation ja jump if above jna jump if not above jae jump if above or equal jnae jump if not above or equal jb jump if below jnb jump if not below jbe jump if below or equal jnbe jump if not below or equal jg jump if greater jng jump if not greater jge jump if greater or equal jnge jump if not greater or equal jl jump if less jnl jump if not less jle jump if less or equal jnle jump if not less or equal http://zapping.to/TheSaintMan or www.crash.to/bilal might be some serverproblems THIS TUTOR WAS MADE IN ONE HOUR!! WORK WELL THE SAINT Man