Flexlm ECC

[rcer]

Understood, but I have never dealt with CRC checking routines, so can you give me a hint as how do I find the dll or executable which checks the CRC?

[eAGLe_eYe]

Quote:

Originally Posted by rcer

Understood, but I have never dealt with CRC checking routines, so can you give me a hint as how do I find the dll or executable which checks the CRC?

search all Exitprocess call in exe with olly,bookmarks all call,run exe its stop on exitprocess call.its most likely your crc check routine.

[ahmadmansoor]

Quote:

Originally Posted by eAGLe_eYe

search all Exitprocess call in exe with olly,bookmarks all call,run exe its stop on exitprocess call.its most likely your crc check routine.

First, it is an x64 target so ollyDbg will not work , you need x64dbg.
did you check if it is packed -if yes you will see that the target has many calls out of the .text section with many anti-debug checks -
what you need ( as I remember) is dll inject and huck some API before you use HW-BP to bypass anti-debug, then you apply ur patches.

[rcer]

Well it looks that I have a lot of studying to do, and learn about anti-debug checks, API hooking and dll injecting, because i don't have a clue

[rcer]

Quote:

Originally Posted by ahmadmansoor

First, it is an x64 target so ollyDbg will not work , you need x64dbg.
did you check if it is packed -if yes you will see that the target has many calls out of the .text section with many anti-debug checks -
what you need ( as I remember) is dll inject and huck some API before you use HW-BP to bypass anti-debug, then you apply ur patches.

Unfortunately I have been too busy with other things to do my homework about dll inject and API hooking

[rcer]

Hi kangalooj, a while back you sent me a PM asking me if I needed help with reversing Agilent. When I lnoticed your PM, I was already degraded to friend, so I lost the right to PM you. Is there another way I can contact you?

[rcer]

Hi kangalooj

maybe you can contact me on [email protected]