Jump to content
hades.5

codecaves help!!!

Recommended Posts

hades.5

Guys need help in understanding codecaves.

Basically i dont have much idea about it im new to this topic.
 I managed to get some pdf on it about it theory but need i
some additional help. Here are my questions:

1)how to find correct places for injecting codes?
2)what are points i should keep in my mind while coding them?
3)what are the problems faced by coders while coding and how to overcome them?

*  tips about it also needed.


if you have any other things to teach or say relating this topic you are always
welcome.

NEED HELP!!!!!!!

Edited by hades.5

Share this post


Link to post
Share on other sites
Sipher

@Hades....


 


Check this thread as well as Loopz tut. http://www.team-uret.com/topic/591-code-cave-issue/


 


My suggestion: Use a real program to diss and get the serial to build a codecave. Then maybe we can jump in with a bit more info.


 


Your questions... roughly :


 


1. Correct place to inject code. I take it you mean where to build your code cave. Look at the end of the program. If you have space there then good. Otherwise use CFF Explorer to build your own area.


 


2. Practice. Nothing else. :)


 


3. If you cannot fish the serial then I doubt you can build a successful code cave.


 


Select a program... for eg: The Fresh Ram 5.0 or even the same program I used (CircuitLogix). Start with it. I liked the CircuitLogix one cuz it builds the serial as per system specs.

Share this post


Link to post
Share on other sites
hades.5

@ Nieo thnx bro for the outputs :good: , i have already went thur them.


i think need some practice and some more careful reading.


@sipher can u explain how to create space for code cave.


Share this post


Link to post
Share on other sites
Sipher

@Hades... select a program first. Then we can work thru it.


 


If you just want to know on how to create space directly then the 2nd link that nieo has given shows that.

Edited by Sipher

Share this post


Link to post
Share on other sites
hades.5

@ blue indian  i have some basics about , i know it works and theory.


    already  i saw your tut that very nice. :read::haha:


@ sipher im choosing small crakme instead of apps .


 


Crackme3.rar

Edited by hades.5

Share this post


Link to post
Share on other sites
Sipher

Cool....


 


1st step : Let's get the valid serial and the location it is stored.


 


I will give you the serial... you give me the location. :)


 


SSECS..There's never enough.


 


;)


 


2nd step: Plenty of space at the end of the file. I selected <00407640> onwards for the Code Cave.


 


3rd Step: You need to decide where you want the JMP to originate at to <00407640>. I spotted one place so far as this is a small program.


 


4th Step: Build your code to dump the serial AFTER the program all does the work. ;) Display on the screen.


 


Extra: Code Cave should handle a correct serial too. i.e. go back and proceed normally without it showing the serial.


 


Give your input/work and we can go from there. Am sure if we stuck anywhere then Loopz will step in too.

  • Upvote 1

Share this post


Link to post
Share on other sites
hades.5

this is really hard topic for me. i spent whole night going through several  tutorial.


thnx for helping me. im not sure how much do but i will definately  try it.


Share this post


Link to post
Share on other sites
Sipher

Take it step by step. Its okay... take your time.


 


As long as you have done some cracking in the past then you will not have a problem.


 


I have given you the serial.... go from there. :)

Share this post


Link to post
Share on other sites
hades.5

where  is serial ?


there are no good boy strings or bad boy strings.


how to proceed in this case?


Share this post


Link to post
Share on other sites
Sipher

 

1st step : Let's get the valid serial and the location it is stored.

 

I will give you the serial... you give me the location. :)

 

SSECS..There's never enough.     <---------------------------------------------- SERIAL.

 

There is bad boy there..... Check. And when there is no bad boy put a BP on the textbox return. In this case... the GetDLGItemTextA.

 

Now... give me the location where it is stored.

Share this post


Link to post
Share on other sites
hades.5

gotcha !!


i will be bit slow about this...so be patient. 


Share this post


Link to post
Share on other sites
hades.5

can i pm u ? :sclerosis:


Share this post


Link to post
Share on other sites
Jowy

Guys need help in understanding codecaves.

Basically i dont have much idea about it im new to this topic.

 I managed to get some pdf on it about it theory but need i

some additional help. Here are my questions:

1)how to find correct places for injecting codes?

2)what are points i should keep in my mind while coding them?

3)what are the problems faced by coders while coding and how to overcome them?

*  tips about it also needed.

if you have any other things to teach or say relating this topic you are always

welcome.

NEED HELP!!!!!!!

 

1.) find multiple 00 byte usually in the end of app. if you find enough space create new section with CFF explorer or other PE tools

2.) codecave usually used to patch packed app this known as inline patch or ot he fly patch cmiiw

3.) the general proble usually not enough space for your code but you can add new section to app 

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×

Important Information

Guidelines