Microsoft Genuine Advantage Hacked Again

In addition to adding Mozilla plugin support, it seems Microsoft
removed the chunk of code that accepted a cookie value that bypassed
Windows Genuine Advantage requirements, breaking my Trixie/Greasemonkey
scripts. As I don't have the luxury of continuously activating my MSDN
licensed boxes for WGA purposes, I created new scripts and a new
hash-generation automated job on my main desktop.

Every two hours, my main desktop executes a custom program that a)
launches GenuineCheck.exe, b) uses Win32 API to jot down the current
hash, and c) uses PuTTY to echo the hash into a file
on my host. I retreive this hash on-demand using simple XmlHttp objects
in the scripts and append them to the current URL. Simple! (source
on-demand)

Download the new Greasemonkey script (verified to work in Trixie unmodified)

Advertisements

Author: Xavier Ashe

Entrepreneur, Infosec Executive, CISSP, CISM, Ironman triathlete, traveler, UU, paleo, father of 8, goyishe, gamer, & geek. http://linkedin.com/in/xavierashe

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

w

Connecting to %s