

Joined: Sun Aug 10, 2014 12:49 pm

Posts: 290

warrantyvoider wrote: michalss wrote: Rick wrote: Hook BCryptVerifySignature and make it return true. It's a proper RSA public+private key pair, can't forge signatures. So either replace RSA keys or break signature validation.

Hmm thx Rick is there any chance to find key for us pls ? It is above my knowledge to be honest.. Hmm thx Rick is there any chance to find key for us pls ? It is above my knowledge to be honest..



thats mathematically impossible and replacing needs a way to inject code, its waaaay easier to hook the function he mentioned...



Rick wrote: Hook BCryptVerifySignature and make it return true. It's a proper RSA public+private key pair, can't forge signatures. So either replace RSA keys or break signature validation.



I attached an empty project that contains a proxy dll, for anyone needing a start to inject code, just use the main function, for now it just shows a hello world message box. compile it and put the resulting AnselSDK64.dll together with AnselSDK64_org.dll into the rootfolder of mea. code gets executed after denuvo and before engine start



greetz WV



PS: in case someone wonders how I make those dlls, I made myself a tool for that: thats mathematically impossible and replacing needs a way to inject code, its waaaay easier to hook the function he mentioned...I attached an empty project that contains a proxy dll, for anyone needing a start to inject code, just use the main function, for now it just shows a hello world message box. compile it and put the resulting AnselSDK64.dll together with AnselSDK64_org.dll into the rootfolder of mea. code gets executed after denuvo and before engine startgreetz WVPS: in case someone wonders how I make those dlls, I made myself a tool for that: https://www.youtube.com/watch?v=lAY_ww8SNmM



Very interesting method. Find the key must be possible from exe if there is no denuvo i believe however i dont know how exactly use this dlls yet never done it before, so i guess need to learn smt about it.. As far as i understand only what we need is to hook this function where every call for header validation it needs return true right ? Very interesting method. Find the key must be possible from exe if there is no denuvo i believe however i dont know how exactly use this dlls yetnever done it before, so i guess need to learn smt about it.. As far as i understand only what we need is to hook this function where every call for header validation it needs return true right ?



