WEBVTT 1 00:01.670 --> 00:03.230 Hello and welcome back. 2 00:03.230 --> 00:07.760 In this section, we are going to learn how to crack GUI-based 3 00:07.760 --> 00:08.300 crackme. 4 00:08.450 --> 00:09.800 That means crackme 5 00:09.800 --> 00:12.410 that has got a graphical user interface. 6 00:12.770 --> 00:17.000 So this is the project we are going to try next day. 7 00:17.000 --> 00:20.450 This copy from the resource section that I provided for you. 8 00:20.450 --> 00:21.920 Do not download from here. 9 00:22.520 --> 00:25.820 The other program you need is this one, Resource Hacker. 10 00:26.390 --> 00:30.770 Get this also from the resource section that I provided for you. 11 00:31.070 --> 00:38.900 Do not download from here in case in the future this website doesn't exist. So we need to use this to perform 12 00:38.900 --> 00:41.330 one of the challenges in the GUI-based crackme. 13 00:41.870 --> 00:44.900 So go and install this, and then we will continue. 14 00:45.440 --> 00:54.650 So after downloading your project for this section, which is 03 Crackme, this is what it looks 15 00:54.650 --> 00:55.190 like. 16 00:55.730 --> 01:00.950 So you find two files there: the actual crackme itself and the readme. 17 01:00.980 --> 01:03.380 So let's run it first and see what it does. 18 01:03.650 --> 01:11.660 So all it does is show you a window, ask you to enter login and serial, and then the button is 19 01:11.660 --> 01:12.860 grayed out, as you can see. 20 01:12.860 --> 01:20.660 So even if you enter any fake login and any wrong serial number, you still cannot click on this button 21 01:20.660 --> 01:20.840 here. 22 01:20.840 --> 01:25.400 So this is one of the first challenges. You need to read the readme file. 23 01:25.400 --> 01:28.040 It will tell you what are the challenges you need to solve. 24 01:28.430 --> 01:34.460 So the first challenge is to enable the register button, which we'll be doing in this video. 25 01:34.670 --> 01:39.620 And then the next video will be on the rest of the challenges. 26 01:39.620 --> 01:40.670 So let's get started. 27 01:40.670 --> 01:45.020 First, before you do this, you must first check this program. 28 01:45.020 --> 01:48.170 Is it 32-bit or 64-bit? 29 01:48.410 --> 01:50.990 So we open our Detect It Easy. 30 01:54.510 --> 02:01.500 And we use this to open the crackme, which we have just downloaded to the desktop. 31 02:09.710 --> 02:13.970 And then check to see what type of -. 32 02:13.970 --> 02:16.370 So in this case, it is a 32-bit -. 33 02:16.520 --> 02:21.410 So we must use—we must use -32 dbg. 34 02:22.670 --> 02:25.940 So we go here and open our -32 dbg. 35 02:30.490 --> 02:31.330 Oh, sorry. 36 02:31.330 --> 02:34.600 In this case, we don't start with dbg. 37 02:34.750 --> 02:37.480 We have to enable the register button. 38 02:38.710 --> 02:42.760 So to enable the register button, we need to use Resource Hacker. 39 02:43.030 --> 02:45.130 Remember this register button is grayed out. 40 02:45.370 --> 02:46.810 We have to enable this. 41 02:47.560 --> 02:51.910 So let's open Resource Hacker wherever you have downloaded it for your case. 42 02:51.910 --> 02:55.870 For my case, my Resource Hacker is in the Utilities folder. 43 02:57.450 --> 02:59.790 So this is what it looks like when you run it. 44 03:00.420 --> 03:05.700 So we use the Resource Hacker to open this form—this program. 45 03:06.540 --> 03:08.730 So go to—sorry. 46 03:08.730 --> 03:11.370 Click on this one, File > Open. 47 03:11.700 --> 03:13.290 Go to your desktop. 48 03:13.290 --> 03:18.420 Look for crackme and open the .exe file. 49 03:19.980 --> 03:22.200 Now we want to look for this register button. 50 03:22.200 --> 03:24.990 So the good place to start is String Table. 51 03:25.080 --> 03:30.990 So you click on String Table and then look for the Search menu—find with the Find menu. 52 03:30.990 --> 03:34.950 So click on Find, and you want to look for this string "Register." 53 03:36.720 --> 03:38.790 Register. 54 03:39.660 --> 03:43.170 Leave the Find type as Text and then click on Find. 55 03:44.690 --> 03:47.810 And immediately you find there is a result here. 56 03:48.110 --> 03:51.320 So this is the resource for the button. 57 03:51.530 --> 03:53.780 If you scroll up, you will see this is a button. 58 03:55.420 --> 03:56.140 The button. 59 03:56.140 --> 03:58.330 In this case, the class is button. 60 03:58.330 --> 04:03.820 The object is button1, and then here the caption is "Register." 61 04:03.910 --> 04:09.190 The enable is set to false, so that's why it is grayed out. 62 04:09.280 --> 04:13.690 So now we can force it to become true so that it will become visible. 63 04:13.690 --> 04:16.840 So to do that, we just need to change this from false 64 04:19.050 --> 04:20.010 to true. 65 04:21.320 --> 04:23.360 And then click on this button here. 66 04:23.390 --> 04:28.430 Now before you do anything, I would advise you to make a copy of this. 67 04:29.120 --> 04:34.640 That means take this, make a copy as a backup in case something goes wrong and you still have a copy. 68 04:35.090 --> 04:40.940 All right. So now you can click on this to compile the new script for this resource. 69 04:41.240 --> 04:43.580 Click on this. So it's compile succeeded. 70 04:43.670 --> 04:46.430 Now you can save it. 71 04:46.910 --> 04:54.320 So when you save it, it will make a copy of this original file and then alter it directly. 72 04:54.710 --> 04:58.460 So it will alter this .exe file to enable the button. 73 04:59.060 --> 05:00.980 So watch what happens when I save. 74 05:01.700 --> 05:05.090 So it makes a copy of the original file and calls it original.exe. 75 05:05.300 --> 05:08.540 And now it has modified this .exe by itself directly. 76 05:08.660 --> 05:14.150 So now if we close this and reopen it, we can see the button "Register" is enabled. 77 05:14.210 --> 05:17.810 So this concludes this first challenge. 78 05:18.110 --> 05:21.050 This is how you can enable grayed-out buttons. 79 05:21.050 --> 05:27.950 This is one of the ways using a Resource Hacker. Resource Hacker is a program that can look at the 80 05:27.950 --> 05:31.370 resources used for the program. 81 05:31.370 --> 05:39.200 Resources are those like design configurations for the window size, the text box size, the caption 82 05:39.200 --> 05:41.810 size, and other components. 83 05:41.900 --> 05:47.660 So button is one of the components that has got configuration set up inside the resource. 84 05:47.930 --> 05:55.100 So Resource Hacker allows you to view that resource and hack it and change it to whatever settings you 85 05:55.100 --> 05:55.700 require. 86 05:56.330 --> 05:57.800 That's all for this video. 87 05:57.800 --> 05:59.030 Thank you for watching.