flat assembler
Message board for the users of flat assembler.

Index > Heap > Vista activation cracked by brute force

Author
Thread Post new topic Reply to topic
LocoDelAssembly
Your code has a bug


Joined: 06 May 2005
Posts: 4633
Location: Argentina
LocoDelAssembly
Post 02 Mar 2007, 17:01
View user's profile Send private message Reply with quote
Vasilev Vjacheslav



Joined: 11 Aug 2004
Posts: 392
Vasilev Vjacheslav
no words... just wow
Post 02 Mar 2007, 17:17
View user's profile Send private message Reply with quote
Vasilev Vjacheslav



Joined: 11 Aug 2004
Posts: 392
Vasilev Vjacheslav
found this keygen, very impressive
Post 02 Mar 2007, 18:30
View user's profile Send private message Reply with quote
dead_body



Joined: 21 Sep 2005
Posts: 187
Location: Ukraine,Kharkov
dead_body
ooh...

i don't know what to say.
Post 02 Mar 2007, 20:42
View user's profile Send private message Reply with quote
DustWolf



Joined: 26 Jan 2006
Posts: 373
Location: Ljubljana, Slovenia
DustWolf
Vasilev Vjacheslav wrote:
found this keygen, very impressive


And how exactly is a brute force Visual Basic Script "impressive"? Razz
Post 03 Mar 2007, 16:56
View user's profile Send private message AIM Address Yahoo Messenger MSN Messenger Reply with quote
LocoDelAssembly
Your code has a bug


Joined: 06 May 2005
Posts: 4633
Location: Argentina
LocoDelAssembly
The VBS isn't impresive, what is impresive here is that the computer are powerful enough to provide you a valid serial in about 5 hours even if it's coded in VBS Very Happy

But again, lets see what happens in the following weeks, maybe this is not so great as they claim and Microsoft has not to worry about it.
Post 03 Mar 2007, 17:53
View user's profile Send private message Reply with quote
Vasilev Vjacheslav



Joined: 11 Aug 2004
Posts: 392
Vasilev Vjacheslav
DustWolf, actually it's not only VBS, if you look deeply inside this keygen (keyfinder.exe) you can found somekind of crypto-tools (written in LCC and delphi)

ps. and another oem bios emulator was released from PARADOX team, this holidays is armageddon for vista and m$
Post 04 Mar 2007, 10:22
View user's profile Send private message Reply with quote
f0dder



Joined: 19 Feb 2004
Posts: 3170
Location: Denmark
f0dder
I wonder how useful the keyfind is - depends on how it's implemented and what kind of keys it finds. Remember the VLK bruteforcers for XP - the first one was superslow and easily blacklisted, the "4in1" was fast because of weak properties of the ECC parameters chosen by MS and seemed unstoppable... until Microsoft revealed that they did, in fact, have a database of all issued VLKs.

The OEM BIOS tool by PARADOX is pretty darn interesting - Microsoft shot their own foot (or blew off the leg?) by allowing the oem-bios-branded activation method. Now a game of cat-and-mouse detect-patches and rootkit techniques for hiding royal.sys will begin.

EDIT: and it should be relatively hard to blacklist the OEM BIOS keys, would affect way too many people negatively.
Post 04 Mar 2007, 12:20
View user's profile Send private message Visit poster's website Reply with quote
arafel



Joined: 29 Aug 2006
Posts: 131
Location: Jerusalem, Israel
arafel
[conspiracy mode=on]

They use online activation method (pretty secure) and agree to implement an alternative using BIOS invalidation (pretty easy to crack).
Doesn't make any sense. If, as stated, the reason behind this workaround is OEM customers finding the activation annoying, why not just activate it in shop before sending to the customer?

[conspiracy mode=off]
Post 04 Mar 2007, 15:25
View user's profile Send private message Reply with quote
Dex4u



Joined: 08 Feb 2005
Posts: 1601
Location: web
Dex4u
Post 04 Mar 2007, 15:38
View user's profile Send private message Reply with quote
f0dder



Joined: 19 Feb 2004
Posts: 3170
Location: Denmark
f0dder
dex4u: that's just about the bruteforce keygen, not the bios method Smile

And hey, the bruteforce method probably does work, albeit possibly taking ages to find a key... and can most certainly be refined.
Post 04 Mar 2007, 15:56
View user's profile Send private message Visit poster's website Reply with quote
Vasilev Vjacheslav



Joined: 11 Aug 2004
Posts: 392
Vasilev Vjacheslav
Quote:

the "4in1" was fast because of weak properties of the ECC parameters chosen by MS


actually the weakness was in short private key which was solved in 10 hours, and then this private key used for simple key generation
Post 04 Mar 2007, 16:21
View user's profile Send private message Reply with quote
f0dder



Joined: 19 Feb 2004
Posts: 3170
Location: Denmark
f0dder
Vasilev Vjacheslav wrote:
Quote:

the "4in1" was fast because of weak properties of the ECC parameters chosen by MS


actually the weakness was in short private key which was solved in 10 hours, and then this private key used for simple key generation


And pretty beautiful work it was - too bad MS did keep that VLK database Wink

_________________
Image - carpe noctem
Post 04 Mar 2007, 16:26
View user's profile Send private message Visit poster's website Reply with quote
Display posts from previous:
Post new topic Reply to topic

Jump to:  


< Last Thread | Next Thread >
Forum Rules:
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Copyright © 1999-2020, Tomasz Grysztar.

Powered by rwasa.