Tutorial Number 1 Disclaimer This is for educational purposes only. Written by Ac|dFuSiO of CrEaM and Hellforge and soon to be TNT. Email: weezr44@hotmail.com Date written: 4/5/00 Newbies Cracking Aid Tools Used: W32Dasm 8.93 softice 4.0 hiew 6.16 Hi im Ac|dFuSiO this is my first tutorial hope you like it :) First I will tell you what every Newbie wants to know where to get the toolz. These are the best places to get them protools.cjb.net <--- Best tools site out playtools.cjb.net <--- Good tools site www.suddendischarge.com <--- Good selection of tools welcome.to/karpoff <--- One of the best Spanish sites ever www.altf4.at/neuromancerz/html/tools.htm <--- German site very good Ok once you get the tools stop at these site for great tutorials www.tntcrackers.com <--- My good friends these guys are my heros =) www.wktcrackers.com <--- Another great group www.acidburn2001.com <--- Great French cracker cdchecks.cjb.net <--- Cd check site nice :) cream2000.cjb.net <--- My group Hforge.cjb.net <--- Also my group www.phrozencrew.com <--- Legends www.crackstore.com <--- Good site for tuts yates.cjb.net <--- Has a great tutorial prog id2k.cjb.net <--- Immortal Descendants Great group hello.to/lazurus <--- Lazurus site founder of Hellforge reverserlinks.cjb.net <--- Links site many good links zor.org/krobar <--- Krobars site very good founder of CrEaM :) start.at/these.urls..first < Nitallicas site tons of links eminence.tsx.org < great site for tuts links tools tres2000.cjb.net < great tuts tca2k.da.ru <--- good site www.msjessca.freeservers.com <-- all of the legend tKc's tuts OK that should get you a good start. Now i will give you some basics of cracking i will cover serial fishing cd checks and nags in this tutorial. Serials: The best way for newbies to start cracking serials is to load up the program you want in wdasm and go to string references from there look for a string that say Thanks for registering wrong serial and stuff like that. If you found it double click on it to go to the location. Now look for a jump that is before the string you may have to trace up a little. A way to patch it say changing a jump if zero (JZ) to a jump if not zero (JNZ) or vise versa. (Use hedit for this) Now serials using the one and only Softice: I usally start by opening up the registration box and entering a code use anything for example Name Ac|dFuSiO Serial 12341234 now cntrl d into softice and set a breakpoint most of the time bpx hmemcpy works good once you type it f5 out of softice and press the register button you should pop back into softice now this is where it will become a little tricky. But dont worry you can do it :) Now press f11 to get into the code from there you want to trace through the code using f12 until in the caption it say the name of the program. Look for Test and cmp commands. Now use f9 till you see Test ecx, ebx then look at the register using d, ebx or d, ecx and write down the serial. Cd checks (Note the best guides/sites for this are cdchecks.cjb.net and Wolfs guild to cracking any cd protection. This is how i do it may not be the best way but it works most of the time for me. First you load up you program in wdasm and like in the past open up string references and look for cd not found, please insert cd they are the most comman error messages. Then once you in the code look for a call or a jmp above the error message. click on it and it should turn green if it did look a the bottom of wdasm and it will say @ followed by a number copy down this number without the h and go into hiew. Now that your in hiew open the file and press f4 and then decode. Press f5 then and type in the offset you wrote down and push enter. Now 2 numbers equals 1 bite so nop it. Press f9 when finished and f10 to update it run the exe and it should work :) Nags: ok this is a very good approach load up the program then cntrl d into softice and type task to see current active programs. Then type hwnd program_name to see all the handles look for the handle with the class name such as button. Now put a breakpoint oon it by typing bmsg window_handles wm_command. OK your probably thinking what the hell does this mean and most newbies shhould be thinking this. It basically means that when the user presses the button it breaks and you pop back into softice. Ok so once you type that in and press enter exit softice f5 and press the ok button. You should be kicked into softice. Most of the time this will work now press f12 a couple of times to get into the main program source now just nop the nag call and thats it :) Final Notes This tutorial is dedicated to KalitoxZ for all his help Thanx man. Good luck with the new group. Also to all of the TNT members that are the best. My thanks and gratitude goes to: KarlitoxZ, Xasx, Fiddler, FrezzeX, Brucelee, wkt_cyan, esiel2, rott, Tabmode, Skuater and the rest of TNT crack Team. All of wkt, wkt_white, wkt_black, wkt_bat. All of CrEaM sheep140, Blaze, and the rest of CrEaM. All of Hellforge Acidcool178, Lazurus, Darkwolf. And lastely Tkc, Acidburn, Sandman, Fravia, MisterE for his tuts that teached me many of these technics, Votality, RiSc, Phrozencrew, The Saintman, DAminder, Wolf, alpine, Krobar, Yates, suby, The ImmortalDescendants. And everyone else that i know in the cracking scene. If i forgot you im sorry :) Thanx for reading my first tutorial hope you liked it=)