Brief analysis of the VLOK protection

I just finished my brief analysis on this protection and I have a very macro view about it and how to break it. If my gut is correct (if you have read Blink! you will trust your gut most of the times, if not go read it since it’s a great book) I can decrypt and run any game so I will not publish any detailed information about it. The protection is based on a keyfile that is sent to you after you register online....

January 6, 2010 · 4 min · 736 words · fG!

A new util to process Mach-O binaries information (or a replacement to otool -l)

For a long time I have been annoyed by the information displayed by otool -l because it mixes hexadecimal with decimal information. For example, offsets are displayed in decimal and relative to the CPU architecture in the fat binary. So I had to convert and calculate things by hand everytime I wanted to peek or modify something at the hex editor. HTE allows to see this information and even edit it, but it doesn’t support fat binaries (and I have to start it under iTerm to support the keyboard shortcuts – I didn’t want to waste time researching to get it to work with Terminal....

January 5, 2010 · 3 min · 584 words · fG!

Happy new year and a small christmas gift!

November was a pretty busy month with exams and assignments to be delivered. I have been having a lot of fun with the MBA since analysing financial statements is some kind of reverse engineering and I missed Economics stuff (I have a undergraduate degree in Economics). I really like to go outside the box for some time to gain new perspectives. Since the 1st term is finished, I decided to finally upgrade to Snow Leopard....

December 26, 2009 · 2 min · 231 words · fG!

Snow Leopard impact into reverse engineering world...

Some folks were complaining about problems with otx and Snow Leopard so I decided to boot my Snow Leopard install and give it a try… Well they were right since Snow Leopard compiles 64 bit binaries by default. otx v0.16b seems to have problems so you will need to download from the SVN and compile yourself the most recent version. If you try to follow the tutorial you will have problems because you will have 64 bit registers (rax instead eax, for example) so you need to adapt the tutorial....

October 29, 2009 · 2 min · 225 words · fG!

Small gdbinit update...

Things have been very quiet since the beginning of September… Well my MBA has started and my free time until now has been ZERO! It has been a fun but very busy ride and comeback to the world of economics. The first weeks are recruit like, pretty intensive with many assignments to be delivered. The recruit is now over and I should have more free time for playing again with reversing 😄....

October 11, 2009 · 2 min · 226 words · fG!