Hacker, Researcher and Author.

Home Reverse Engineering Reverse Engineering Tutorial For Newbies

Reverse Engineering Tutorial For Newbies

In simple words reverse engineering is the act to modify the code of of the application to make it work our way, Reverse engineering a very complicated topic and is very difficult to understand for newbie's as it requires a prior knowledge of assembly language, However in this article I will show you step by step how you can crack an application with reverse engineering.

Requirements

You will require the following things:

1.OllyDBG
2.Crack Me App

Method

1.Once you have downloaded both OllyDBG and Crack Me App start the crack me app

2.Enter any password click ok

3.You will the following error

You are not authorized to use the application


4.Now open OllyDBG and open the Crack me app in it.


5.Now once you have opened the crack me app in OllyDBG, Right click there and goto search and then click on "All Reference Text Strings"

6.Now Right click there and click on "Search For text"

7.Search For the error which you got when you tried to log into the application ("You are not authorized to use the application")

8.Once you have found the error click on it and you will be bought to the following screen:

9.Now as you scroll upwards you will find the following line:

JE SHORT Password.00457728

This is a conditional jump which means that if the condition is right then it will jump to 00457728 Which leaves us to the message "You are not authorized to use the application" and if the condition is not satisfied it just continues reading the code, So we don't want this jump to work as we don't want to get the error message

Now there are two ways to remove this message:
  • We can either fill it with NOP's and make this conditional jump not work
  • 2.Or we can change JE SHORT Password.00457728 to JNE SHORT Password.00457728, JNE(Jump If Not Equal) means that if the password is correct it will give you the bad message and if the password is incorrect it will give you the correct message
You can use any methods it's your choice, Now in this tutorial I will use the second method to use the method follow the steps given below:

1.Double click the line JE SHORT Password.00457728 and simple change it to JNE SHORT Password.00457728 and click assemble



2.Next Press the blue play button at the top which will start the application

3.Now just enter the password and it will give you the correct message.


I hope this tutorial will be helpful to clear the basics of reverse engineering and application cracking, However in the upcoming tutorials I will go in a bit advanced.

32 comments:

  1. NrupenJanuary 6, 2011 at 9:48 PM

    That was nice article thanks.

    ReplyDelete
  2. AnonymousJanuary 7, 2011 at 11:10 AM

    Nice article. But a learner is still need to learn more about the topic above. Rafay ! Always concentrate to make the reader logically satisfied. Concept clear mean. Thanks.

    Nasruminallah zeeshan
    twitter.com/nzhacker

    ReplyDelete
  3. RafayJanuary 7, 2011 at 11:21 AM

    @Nasruminallah
    Zeeshan I believe that this article is effective enough to clear the concept.

    ReplyDelete
  4. egyhacksJanuary 7, 2011 at 8:38 PM

    Rafay, you're always informative.

    ReplyDelete
  5. SamratJanuary 7, 2011 at 10:21 PM

    Rafay You are always writing right and perfect information, any one can understand it easily.

    I am Sidhdharth Vora and I am an IT Engineer.

    I want to learn hacking. One of the job offer me. I have to not hacking but help to Government and Some companies too prevent their websites and Provide Security.

    I want to learn hacking.

    Thanks.

    My mail Id is: siddhvora4u@gmail.com

    Please, add me and I need more knowledge about hacking,ALso too impress my group and Girl friends.

    ReplyDelete
  6. DanielJanuary 8, 2011 at 8:53 AM

    A very interesting article.

    ReplyDelete
  7. AnonymousJanuary 9, 2011 at 9:40 AM

    Thanks Rafay !

    ReplyDelete
  8. abhi_12ka4January 10, 2011 at 10:21 PM

    Hats off dear this is the simplest Reverse Engineering Tutorial i have read,just gr8 work

    ReplyDelete
  9. UnknownJanuary 11, 2011 at 1:05 AM

    hi guys there

    i want to ask , about theese course , like reversed engenerinf, hacking , and face book hacking are they avaialbul on cd/ dvd or gonloadable ?
    my problem is that our line in our contrry are bad , and i gont like to download, so i wonder is it posible to get all these couses with programs + explanation on software like cs pr dvd? please help me , iam intrsted in hacking and programing and all computer stufs.
    my email is eiadzuabi@gmail.com
    thanks

    ReplyDelete
  10. RafayJanuary 11, 2011 at 1:43 AM

    @Eiad
    Refer
    http://rafayhackingarticles.blogspot.com/2011/01/facebook-hacking-course-released.html

    @ALL
    Thanks for your love and support.

    ReplyDelete
  11. ☠• »ï¾’ ♛ ♛קђгєคк « •☠January 11, 2011 at 5:30 PM

    Great Post...!!

    ReplyDelete
  12. M AsifJanuary 23, 2011 at 1:15 AM

    Rafay Sahib! I want to ask you that when search for "You are not authorized to use the application" then nothing is appeared and for a less than a second the status bar goes yellow and a text "nothing found" is shown.

    ReplyDelete
  13. Srikanth RaoJanuary 23, 2011 at 8:25 AM

    A very nice and clean tutorial.. Thanks..!

    ReplyDelete
  14. UnknownFebruary 13, 2011 at 12:03 PM

    i cannot find "You are not authorized to use the application" in the Crackme appl on OllyDbg

    ReplyDelete
  15. RafayFebruary 15, 2011 at 10:58 AM

    @Naveen
    Scroll all the way to the top click the top most string and then search for the text

    ReplyDelete
  16. AnonymousJuly 2, 2011 at 10:09 PM

    I want to learn how to reverse engineer Linux elf binaries. Can you provide a link to a website which could help me(or maybe a book)?

    ReplyDelete
  17. nandaJuly 25, 2011 at 2:50 AM

    nice blog hacking tutor gan... can you repost link crackme for us... because link dowload not found...
    thanks...
    one day u will tobe hero


    nanda from indonesia country

    ReplyDelete
  18. AnonymousSeptember 4, 2011 at 5:35 AM

    Is the change permanent if no do u have a way to do so?
    Thanx for the tut Just amazing!

    ReplyDelete
  19. AnonymousJanuary 2, 2012 at 10:08 AM

    Well, the link for the crackMe app asks for a username and password... no way to fetch the app?
    Rec

    ReplyDelete
  20. yogi.techsavvyJanuary 6, 2012 at 11:07 AM

    @Rafay Baloch ...
    hey bro can you crack System Surveillance Pro 6.8(its a great keylogger) using reverse engineering....plzzzz

    ReplyDelete
  21. BrandonJanuary 10, 2012 at 6:25 PM

    just out of curiosity what is the code written in. im still learning the languages so i cant really recognize it.

    ReplyDelete
  22. BrandonJanuary 10, 2012 at 6:26 PM

    just out of curiosity what is the code written in. im still learning programming languages and i cant recognize this

    ReplyDelete
  23. BrandonJanuary 10, 2012 at 6:26 PM

    just out of curiosity what is the code written in. im still learning the languages so i cant really recognize it.

    ReplyDelete
  24. AnonymousJanuary 19, 2012 at 4:02 AM

    hi ,Based on the Reverse Engg Tutorial , I tried to check out the "Crack me app" but I get the window taht says "Crack me Server de80 needs username and password .the server says password protected directory . and demands a username and password, I have tried a few random un and pw but none work , the other one "Oly DBG link works fine , I reached the download page

    ReplyDelete
  25. AdrikusMarch 9, 2012 at 8:27 AM

    that didn't work for me, LOL...

    ReplyDelete
  26. BillaholicMay 18, 2012 at 5:24 AM

    @Brandon, the code that appears in the ollydbg window is assembly language.

    @Rafay could you show us how to find the correct password for the crackme instead of simply patching the jump command? Or is there no actual password as this is aimed at showing only how to do a jump patch?

    Also the link to the crackme app works fine you just have to register an account with the crackme website that hosts the file. They have quite a bit of good info there as well.

    Thank you for the easy to understand olly tutorial keep them coming please

    ReplyDelete
  27. UnknownOctober 2, 2012 at 9:38 AM

    I cant understand the point 7. I dont know what to write in search for text.. any password or what? can someone explain in details this 7.Search For the error which you got when you tried to log into the application ("You are not authorized to use the application")

    ReplyDelete
  28. UnknownOctober 2, 2012 at 9:39 AM

    7.Search For the error which you got when you tried to log into the application ("You are not authorized to use the application")

    Can someone explain in details what to write in "search for text" ?

    ReplyDelete
  29. AnonymousJanuary 30, 2014 at 10:16 AM

    you need comprehensive knowledge of ISA - although good article though

    ReplyDelete
  30. AnonymousOctober 10, 2014 at 12:30 AM

    rafael heard you were doing #ares can you hop on to any irc freenode #albert

    ReplyDelete
  31. AnonymousOctober 10, 2014 at 12:33 AM

    ur sample is way better compare to the dude in ares lolol #albert on freenode man when u get a chance

    ReplyDelete
  32. ammar0466May 2, 2015 at 8:07 PM

    okay so how to make it executable patch or save the change you made??

    ReplyDelete

Subscribe to: Post Comments (Atom)
© 2016 All Rights Reserved by RHA Info Sec. Top

Contact Form

Name

Email *

Message *

Powered by Blogger.