No i can't with my skillset try more thing i need an account to gather data we just need to find someone that want to take the risk or wait until i find a way to pledge the dev even if i don't want to
I can confirm that the installation directory did not change in size after logging in!
Oh, it will. And its not like were deep in some form of unknown, dark-web forum. If the devs arent aware of f95's existence, someone under their belt would be.
Yeah but they can see what we Do and how we patch the game using exactly the same method we use in like 12 minutes they can compare the patched gameassembly see the byte that we modified decompile the thing see how we Do IT and change the code thats the game and talking about our process and what wee see Will change nothing
Would the last option also mean that if at any point this team ceases to exist for whatever reason then the whole "game" would die like all these online only games without servers?
As someone said earlier, indeed their first game when it was in beta had similar protection only without the obfuscator. I don't think it's difficult for them to maintain these servers since their first game is still with working servers after 8 years. Most likely they will actually make this "game" free too when it comes out of beta.
Same,this looks far superior to what can be done on trash like Honey Select or Koikatsu studio
Yes and no. You can force any unity scene to load either by making a custom hack or via UnityExplorer but all of the actual content of the program (namely meshes and such) isn't loaded, thus, all you get is a map, useless menus and background music. The current consensus of how this protection works is that the authorization function that npomme analyzed, somehow loads the needed content after authenticating patreon user.
Il2CppDumper gave me the function names that you mentioned so I think we can assume that the results of header dumping are consistent.
That is a valid concern but I don't think it matters, especially at this point because:
Free is ass. Either use a paid version with a HexRays Decompiler license or use Ghidra
Both Ghidra and IDA are designed as static disassembly tools first and foremost. I thoroughly recommend getting a dedicated debugger (x64dbg), the experience is significantly better. You do not have to look up disassembled/named functions by hand: you can either make or use a pre-existing script to export IDA databases to x64dbg databases
THANK YOU.
I'm using ida pro and debuger work but you need to consider that :Yes and no. You can force any unity scene to load either by making a custom hack or via UnityExplorer but all of the actual content of the program (namely meshes and such) isn't loaded, thus, all you get is a map, useless menus and background music. The current consensus of how this protection works is that the authorization function that npomme analyzed, somehow loads the needed content after authenticating patreon user.
Il2CppDumper gave me the function names that you mentioned so I think we can assume that the results of header dumping are consistent.
Also, may I ask you whether you use IDA pro or the free version of IDA?
For the past 3 days I've been trying to learn reverse engineering with Ghidra but this program has been EXTREMELY uncooperative when it comes to debugging features. It cannot attach the debugger to a process that is already running without vomiting java exceptions and starting FurryVNE with a debugger attached at launch makes it crash with the "Failed to load original DLL" just like it sometimes does when you open it normally.
If I have to use an external debugger alongside Ghidra and look up decompiled functions by hand, then I'd rather give up Ghidra and try out IDA since I really want to be able to do proper decompilation debugging like you seem to be doing.
I'm trying to get my setup in working order by testing it on notepad.exe first, but at this point my patience has worn really thin. I already encountered multitude of problems I later found on Ghidra's github forums, many of which seem still unresolved...
That is a valid concern but I don't think it matters, especially at this point because:
1. Fiddling with their protection will always cost time, and at this point it'll probably be a lot of work for very diminished returns.
2. The guys here (or 1 guy mostly, thank you again for your effort npomme) haven't done nowhere near that much progress to justify making all this talk more private, imo.
However if someone here cracked it, then maybe it would be smart to not disclose the most technical details publicly.
the program fallback to login screen if decryption fail and throw lorem ipsum errors and array out of bound error too and i find really weird the fact that they use so much array inside this decryption code
I actually am working on AMD64 cpu but doing the actual patch is still far away from my grasp currently anyway, I need to level up my skill first.I'm using ida pro and debuger work but you need to consider that :
Yeah, I expected this. With my skill and knowledge, I am already facing an impossible task. I don't think it can get any harder for me lmao.
yea,I didn't read the text closely, thanks... the newest build still unavailable
