Hello
unpackme: Safe engine Shielden v2.3.0.0
full protection activated
packed notepad.exe 
windows7 32/64bit
good luck
Attached Files
-
![Attached File]()
notepad_se.rar 1.12MB
10 downloads
↧
[unpackme] UnPackMe
↧
themida unpacking problem! [ vidoo ]
Hi, I've unpacked a "unpacke me" last time but when i try to unpack this
https://forum.tuts4you.com/topic/33562-unpackme-themida-2260/
i got a themida error there is the video show how i unpack that
and i success on this before : https://forum.tuts4you.com/topic/36101-unpackme-themida-2310/
but this time i can't
video[avi] : https://www.mediafire.com/?xorh95efievzb8q
thanks for helping!!!
↧
↧
reduce exe size in visual studio
i cant seem to reduce my exe size that was built with VS 2010, ive followed many guides and everytime my file is 51kb and all it does is MessageBoxA
I have followed this guide from start to finish
http://linkyzer0.com/papers/Decrease_WinCppProject_FileSize.pdf
what am i doing wrong ?
↧
[unpackme] Hard CrackMe By Ben Mhenni
Hello, here's a challenge for you 
You have to unpack the file who is obfuscated with ben mhenni protector
Virus scan :
Good Luck !
File is attached to the topic
↧
GameMaker Collection (games made in GameMaker)
GameMaker Collection:
a collection of small games made in GameMaker
These games are free, source code included.
I've compiled them and I get rid of Asprotect
(read GameMaker_unpacking.txt)
so they will run on Windows 7.
Games included:
Woei - shoter
1945FinalFronts - shoter
bubble - shoter
dodecagames - varios games: Breakout, Roller,
Bom Snake, Pacman, Shot, Vegeta, Pong, Volley,
15, Space Invaders, Tris, Tetris
master6 - puzzle
VolcanoEscape - action
zball - pong
Link:
http://www10.zippyshare.com/v/vXaSQar9/file.html
↧
↧
help downloading from 4pda.ru
Hey,
help me download this file someone who has a account in 4pda. I am unable to register I don't know why.
http://4pda.ru/forum/index.php?s=&showtopic=608929&view=findpost&p=37666990
arhiv.ZIP ( 10,61 МБ )
http://4pda.ru/forum/dl/post/5747423/arhiv.ZIP
Thanks in advance !
↧
[Crackme] ESET Crackme Challenge 2015
Original Post:
Uncover a hidden puzzle
Analyze the crackme.exe program and look for 3 passwords hidden in its programming code.
The program can contain hidden files, texts, conditional tasks, protection against debuggers and other pitfalls, which could complicate your arriving at the solution.
Don’t worry too much if you can’t make it past all the hurdles and uncover the hidden passwords. Even if you did not find the solution, we still want to see your analysis, most importantly the progression of steps you took. We are interested in your way of thinking, which can often reveal more about you and your skills than the correct result itself ever could.
Send your analysis to: crackme2015@eset.com
The program was designed to test your skillset in reverse engineering, which might come in handy when you work at ESET in one of the positions described below....
Attached Files
-
![Attached File]()
crackme2015.zip 621.43KB
34 downloads
↧
Remove space
Remove space from a string in php without using any php function.
↧
Using RtlAdjustPrivilege to detect debugger.
A basic way using RtlAdjustPrivilege to detect the debugger (OllyDbg and IDA demo 6.6)
As usually but not (enabled by default) for all debugger, the Debugger must acquiring debug privilege to work with its complete capacity.
The snippet is simple and probably already used but I write it as simple as possible to get a clear ASM code inside the debugger.
RtlAdjustPrivilege: Enables or disables a privilege from the calling thread or process.
NTSTATUS RtlAdjustPrivilege ( ULONG Privilege, //[In] Privilege index to change. BOOLEAN Enable, //[In] If TRUE, then enable the privilege otherwise disable. BOOLEAN CurrentThread, //[In] If TRUE, then enable in calling thread, otherwise process. PBOOLEAN Enabled //[Out] Whether privilege was previously enabled or disabled. )
RtlAdjustPrivilege store the previous status into boolean variable.
Our work is to read the contents of this variable after calling RtlAdjustPrivilege with SE_DEBUG_PRIVILEGE as parameter, and of course if a status is already enabled then we have a likely debugging situation.
/*
* -------------------------------------------------
* Using RtlAdjustPrivilege to detect debugger.
* Tested on (OllyDbg and IDA demo 6.6)
* Released 03/2015.
* [by Insid3Code from I3CT]
* -------------------------------------------------
*/
#include <windows.h>
#include <ntdll.h>
#ifdef _WIN64
#define captionMsg L"Application 64-bit"
#else
#define captionMsg L"Application 32-bit"
#endif
int WINAPI iWinMain() {
//Boolean to check after calling RtlAdjustPrivilege.
BOOLEAN bPreviousPrivilegeStatus;
RtlAdjustPrivilege(
SE_DEBUG_PRIVILEGE,
FALSE, // avoid to adjust privilege (DISABLE IT).
FALSE,
&bPreviousPrivilegeStatus);
// check if SE_DEBUG_PRIVILEGE was already acquired then voluntary crash the application,
// by calling memset with invalid pointer as parameter.
if (bPreviousPrivilegeStatus)
memset(NULL, 0, 1); //<-- BOOM! PADA BOOM!!!
MessageBoxW(
NULL,
L"Nothing!",
captionMsg,
MB_ICONINFORMATION);
return 0;
}
Attached: Source, screenshots and binary (32bit/64bit)
Attached Files
-
![Attached File]()
RtlAdjustPrivilege.rar 48.6KB
9 downloads
↧
↧
how can i get ECC RSA DES DSA MD5 BASE64 C OR C++ SOUCE?
how can i get ECC RSA DES DSA MD5 BASE64 C OR C++ SOUCE?
↧
What is the biggest file on the internet?
Hi,
I was wondering whats the biggest file anyone has ever found available for downloading on the internet and did they manage to download it 
Thank you.
Greetz,
FB
↧
Dyamar Protector 1.3X unpacker
Hi all.
Recently i get over a nice easy keygenme protected with this protector and i feel the need to automate the unpacking process.
Was a fun journey because the protector insert a unique stub almost every time for OEP jump interlaced sometimes with jumps so a universal way is almost impossible BUT i was using the stack OEP pointer witch is the same every time (well it changes one byte from time to time but is no problem).
I have tested as many unpackmes i can and i have.
The script support version 1.3X, and mabye others.
Support:
- exe
- dll
- framework
(OEP find, cancel IAT redirection).
I have put in package the script, unpackmes i have, 3 videos.
Sometimes i run quick the operations but if you have questions feel free to ask here.
I have recorded with a 22" monitor so for viewing is recommended on a close diagonal one.
Is a pitty that this protector was discontinued but some files are still protected with it.
↧
Security Alert when access tuts4you main page
Hi,
I have this security alert from firefox when visit tuts4you main page:
Regards
↧
↧
A Good Ebooks & Documents
Hi,
I found a very useful library belongs to Malicious Software Research.
I apologize in advance if this post is illegal for the forum rulls
↧
[unpackme] uknown packer
http://www.filedropper.com/unpackme
Cant find the pack method, maybe someone has more luck.
Virus Scan
https://www.metascan-online.com/en/scanresult/file/c444176c81d84eae961b69138b05ace6
↧
GameMaker Collection (games made in GameMaker)
GameMaker Collection:
a collection of small games made in GameMaker
These games are free, source code included.
I've compiled them and I get rid of Asprotect
(read GameMaker_unpacking.txt)
so they will run on Windows 7.
Games included:
Woei - shoter
1945FinalFronts - shoter
bubble - shoter
dodecagames - varios games: Breakout, Roller,
Bom Snake, Pacman, Shot, Vegeta, Pong, Volley,
15, Space Invaders, Tris, Tetris
master6 - puzzle
VolcanoEscape - action
zball - pong
Link:
http://www10.zippyshare.com/v/vXaSQar9/file.html
↧
Wireless networking tutorial
A Wireless networking tutorial,
in the end is shown how to create
a Peer-to-Peer Network using an UTP cable.
This is NOT a reverse engineering tutorial.
Link:
http://board.b-at-s.info/index.php?showtopic=9691
or
http://www.girlshare.ro/34543697.1
↧
↧
My program will not run on win8
Hello. I created simple tray application wih options of showing a messagebox and launching one .exe in same folder as the tray app. But for some reason it shows some blue bar on windows8 saying it will not allow to open or smth like that... What may be the reason?
↧
[UnPackMe] .NET UnPackMe(SE+DNG)
Hi guys.
Nice to meet u.
this app was protected by Shielden+DNGuard.
Have a try,If u got it,Describe how to do it,thx...
sorry my poor english,sorry my chinglish !
((o(^_ ^)o)) ((o(^_ ^)o)) ((o(^_ ^)o)) ((o(^_ ^)o))
Attached Files
-
![Attached File]()
UnPackMe.rar 1MB
9 downloads
↧
DSEFix x64 (kernelmode.info)
Windows x64 Driver Signature Enforcement Overrider from kernelmode.info.
For more info see Defeating x64 Driver Signature Enforcement http://www.kernelmode.info/forum/viewtopic.php?f=11&t=3322
System Requirements
x64 Windows Vista/7/8/8.1/10.
DSEFix designed only for x64 Windows.
Administrative privilege is required.
Build
DSEFix comes with full source code. In order to build from source you need Microsoft Visual Studio 2013 U4 and later versions.
Authors
© 2014 - 2015 DSEFix Project
Updated Source and binary:
https://github.com/hfiref0x/DSEFix
↧