Keygens are Diamonds made of Knowledge, Craftsmanship and Passion. Often enough they were only a few bytes in size while also being aesthetically sophisticated designed with original chiptune music in the background. Keygens are a high form of art.

As a noob (I still am!) I used to simply edit the instruction from `je` to `jne` to invert the if statement, so that always in license check for wrong keys it will start working. Honestly, patching is much much easier than reverse engineering the algorithm.

It is never this easy on real keygens. Vendors go to extraordinary lengths to obfuscate their key checkers.

Good video. The precedence of multiplication over XOR was directly visible in Ghidra's disassembly window. The code multiplied the value by 2, added it again and then XOR'd sum. ;-) I have written so many keygens in the 90's for BBS Door programs and stuff... Debugging in the Borland debugger was fun!

The idea that there are gamers alive that don’t know what a keygen is is terrifying. I was always fascinated by how keygens were made (though I never knew how it was done til I got curious many years later).

Keygens are such a nostalgic hit from the demoscene days. You still get chiptunes in contemporary crack installers, sometimes, but it's nothing like back when RELOADED would put out a release and you'd get a whole animated credit sequence.

the dark mode in ghidra actually harm the eyes more then white mode ! because its pure black instead of being dark grey, pure black will force your eyes to change the focus quickly when you look outside your screen which will cause your eyes sometime to become blurry , and this blurriness may continue for a while and can cause vision problems for the long term

Thank you. Just want to let you know that this one never get old. I'm on the path of learning Assembly and videos like this is extremely helpful. There're countless of beginners like me now and the future will be benefit of this helpful guide.

I've been a security professional for a while and just now started to play with low level stuff. Your content is amazing dude, for real, keep it up

I miss the times where you had neat crack setup wizards that would play a cool hacky-style music super loudly while it was installing all the files

I preferred creating keygens (when I was young) with the help of the original program. Sometimes they generate a key and compare it with your input. If the program shows an error message, you can change the text. The only thing you have to do is to change the pointer of the text to the generated key. The reverse engineering part is to find the generated key in the memory and change the executable.

I used to use a little dumber (or is it) approach: find a branch point between "Wrong key" and "Good job" and replace JZ/JNZ with JMP. Yep, I did it in pure asm and AFDPro. That olde times.

Back in the days - we didn't have such cool tools like you used. It reminds me the modern lockpicking. With the tools you can buy now picking any lock is quite easy even for a beginner. Without modern tools it would be much, much harder and more tedious.

This is actually a really insightful introduction to ghidra

If cracking denuvo were that simple.

cool but here's the thing: it misses the tracker music. add that and everything golden

in linux, compositors mostly can reverse the colors of a window.... currently i am using kde rather than a twm so ctrl-meta-u flip colors.... so i can basiclly use light mode only apps like ghidra in dark mode :) and for geogebra, it's really cool

Many games from smaller studios released as "demos" but they actually contained all the necessary files, all you had to do was register to get a key to unlock the full game. Some of these have not yet been preserved as full versions sadly.

You just encouraged me to keygen a lot of stuff..... (for educational purposes ofc :)

My favorite story about a key generator was a very well-known Mac program I can't remember what it was but I think it was office related or something like that had a well-known key that circulated around the internet and everybody is that key. There was an update to the program and the key no longer worked but the funniest thing was that that key was hard coded in plaintext in the application itself so all you had to do was open up the application in a hex editor and change the key to something else and then the key worked again.

You are such a young blossom. Buying games on CD, wow! I’m so old that we bought games on cassette tapes 😂 I got my start in cracking video games and software in the 80s and 90s as I demonstrate a lot of this channel too. I mostly just jumped over the check or made it evaluate properly.

When I first started gaming they came on floppy disks, and used weak bits on the disk to prevent copying. You could however reverse engineer the binary to find where it made the DOS system interrupt call to check for this weak bit and bypass the check. Things like IDA didn’t exist then, so you had to disassemble it by hand and modify the binary in a ‘debug’.

i'm not 100% sure but 4:45 looks like a for loop. With the increment at the end and the if statement after an assignment etc. so i think it would be something like for (int i = 0; i < strlen(name); i++) { /* body */ }

if you pass "./blabla" as the program name, doesn't it also count the "./" part in the len(program) and why does this work, did the makers of keygenme use use that too? what if you'd pass an absolute path?

You took me on a journey through time. More videos like this please!

CIA - FBI, if you are reading this, I never ever used a key generator. To all others: I definitely remember. I liked the sick chip tunes

Ahh the good old days of Softice debugger and Fravia's tutorials!

And you didn’t have to touch a single line of assembly… that decompiler works pretty well!

You could have seen the order of operations in the assembly code.

Why reverse engineering appealed to me so much?

I feel that this way using decompilation is way easier that using windbg like most other “tutorials”

Good video, though it's missing the most important part about those old key gens. The awesome tracker music that would (loudly) play when you opened them.

Keep working on these kinds of videos. Super interesting to me!

Reverse engineering is awesome

I remember the days ... Using WinDASM to disassemble programs/games and cracking them or writing keygens ... Fun times. Tools were "a bit" more primitive back in the day

This is straight up nostalgia, as a kid my dad once got me one of these types of games for my first laptop that once had Windows Vista

i grew up doing this stuff. now as an adult i still do it for fun, i always love me some RE

the best things about the keygens, was the music. there are sites dedicated to it too.

Dude I haven't thought about EBGames in a decade or more. Thanks for the memories.

Bruh, I remember downloading the shareware from a dial up BBS.

I learned something. Thank you! This is super cool!

"there were key generators that generated keys for you" In a lot of cases, keygens gave your computer a lot more than just the keys!

I remember a friend had a legit Diablo 2 key from a store, and the KeyGen had his key too.

0:16 truly ancient would be games on cassete tape mate, ah the days of a double tape deck being the answer to expanded the collection, not that I indulged in such things of course, just gonna close the curtains & turn off the lights "no ones home"

I need to go back in time and show me this video, it would make things a lot easier.

I have no idea what you are doing, but I find it very interesting.

It's been a million years it seems like, but I remember using SoftICE back in the DOS days to patch a CAD program's license routine for a friend who lost their key (wink wink). These tools look way more in depth than hunting thru unlabeled assembly language.

we need more of those ;)

dude , I went first in 1998 and a few years later I was doing this shijt with key gens. those scene release groups were very rare. But some of them are still out there in 2023. the time that internet was still for nerds. and pay by the minute for your internet with your monthly phone bill (land line ) . greets from The Netherlands.

If I was old like you, I might remember game cracks from the early 2000s? Oh, that's adorable. If you were old like me, you were cracking games yourself in the early 80s

@LowLevelLearning, love your channel first and foremost. Newer to C, been doing Python for a while. Downloaded this one and followed your instructions and noticed that len(prog_name)&0x1f and len(prog_name) returns the same value... Not sure if it has an effect in C; but it looks like replacing your line before returning the key to: key = key

Pretty awesome video, I always wondered how these were done!

Cool video, would recommend

I just looked at the controlling expression for a while and noticed that if I just call the program with an argv[0] of 31 characters (remember zsh allows you to specify argv[0] on the command line), then only the least significant bit of that first expression matters, and I can set the second arg to 0 or -0x80000000 as needed.

there was a time, Softice was only used and only x86 assembly listing. this is somewhat easy at the C level listing.

Amazing content!

Most offline keys / serial gens are just encoding a product code and a checksum / secret and then scrambling it. Online keys are probably completely random and use a lookup service to validate them.

nice video dude thank you for this

Enderman almost got bloody terminated for doing this. Just a fair warning.

amazing video, thanks as always man!!!

Good Times, easily the most exciting part of my growing up, whilst trying to dodge viruses and mallard, so many dodgy websites to get keys or key gens or cd cracks from. Miss all that.

Good boy, nice run.

you forgot to make it play some songs

2:50 Actually I think that in posix systems the main function also can take a third argument named envp and defined as const char* envp[ ]

What distro are you on that your Python and GCC are less up to date than mine? I haven't updated for 2 years and I'm still more up to date. Also, why did you write it in Python instead of just using C, especially when you could've just copied the code straight from Ghidra?

I had a friend that would go to the store, and write down all the CD keys he could find from the back covers of the manuals they used to leave in the cases, and then later download those games and use the key.

Yeah I definitely remember these. Cracking got me into embedded!

The dirty little secret of keygens, cracked and pre-activated programs is many use your computer to process crypto. It's a small amount that's hard to detect because they rely on volume to help avoid detection. Some programs are worth it if that's all their doing but some do more malicious things.

Don't give the XP era script kiddies too much credit, a lot of those old key generators just randomly pick a key from a static list. I'm sure some of them were actual generators but that seemed much less common

I used to start keygens just to listen to the music

Actually, the left shift assignement (`> a = 5 >>> 5> a > a 10 ```

Hello, can you pass the crack of the PADSVX.2.4_ESDM

None of the new folks can see the quality of life slippage since Ancient Times

Keygens are still widely used on cracked Windows software. I use one at least once a week. Much better than overwriting a .dll file.

if you got the keygens fromm the right source, there would never be malware in them and only be a few kb big. the release teams reputation depended on it

I remember those days when the crack came with the game. Those were good times.

What's the name of the program you're using to do the C code extraction?

Ancient times? Jeez thanks for aging me. We made ISOs so the PC thought yhe disc was always in the optical drive.

Most of these key-generators back in the day actually were just malware and viruses :D

I downloaded a keygen from napster once.

Old Guy here. Help me understand. Imagine a play ground inside a fence and locked gate. In order to play on the play ground you have to have a key for the locked gate. If you don't have the key for the locked gate, why not just jump over the fence and locked gate? Which came first? The full version of the game, or the fence/locked gate to play the game? When the creators of Hyperspace.Invader.v2.01 created the game, did they play/create the game then put it inside the fence and locked gate, or did the fence and locked gate come first? How to jump over the fence and just go to playing the full version of the downloaded trial version without fussing with all this keygen business. I know the full version is there to play, just help an old man jump over the fence to play on the play ground. Or.........just tear the fence down and walk on in like the creators of the game did. What am I saying, the creators of the game didn't even have a fence/locked gate around the play ground until the playground was finished. A? 2005 is when the game came out. You won't be able to find a trial version to download anymore, unless you know someone who still has the trial version to share. The company that made and sold the game quit selling it years ago. Other wise I'd just buy the game. $19.95 easy peazy

'old, like me' That's hilarious! You don't know old yet.

Hello, Sir, I am very new in reverse engineering, right now i am practising at home, but one exe file which is packed by expressor, I cant unpaced it for reverse enginerring, Please can you help to do this process. Please help me.

what is the command re at 1:27

Actually checking argv zero is not that uncommon. It lets you check to see if someone renames a file. If you really want to have fun with. a little hacker trick. check argv -1. yes negative it returns the path of the file. so you can check the location of the file on the hard drive. Used to use it as primitive copy protection. Id the file was moved it would come back with put me back where you found me. Depending on your compiler i wouldn't suggest checking out other strange values of argv you start getting access to different parts of memory. if it doesn;'t blow up.

I remember installing Doom from 1.44 MB floppy disc. Actually not installing, just copying.

great video

OLD LIKE ME....? Two seconds in and I was like WHAT? OLD? hahahaha

pHrozen Crew/Hell in the house!

As an outsider i ask this, has anyone cracked intel management engine?

I remember buying physical games.PC Games were $15-$20 and the console version was $30-40

These days with elliptic curve crypto being liberated, especially Ed25519, vendors could actually make short Cd-keys that were backed by real strong security to render keygens moot. But eh, modding the software to remove the entire key verification defeats that :-)

my doubt is.. keygens infect pc with trojans? i mean real keygens from CORE, Deviance, PARADOX, razor 1911 are those keygens has some malware inside?

This is fascinating even though I can only write a small .bat file.

I haven't looked at ghidra. Who makes it? I hope its not another Softice.

Great video! RE is fun and enjoy~😀

Ahh, the music on Keygens was always fun

Description is wrong.... Software keys go back to the 80s, maybe even earlier. Hell, every game I owned from the 90s had a cd key, the floppy disk version of windows 95 still used a license key.

5:37 c noob here, why is it the first letter of the name?

Hello, I have an old software that runs on Windows 7 32 bit. I can no longer activate this software because the manufacturer no longer exists. Can someone help me with that? It's about the software Fminer Pro 9.81