zz 破解WGA的几种方法

Bypass Windows Genuine Advantage check in IE7 (beta)

This Windows Genuine Advantage stuff is already starting to aggrivate me, especially since I don't have a live connection available on some of my testing boxes. Here's how to unofficially bypass this check...

1. Extract IE7-WindowsXP-x86-enu.exe with WinRAR (or anything that works) to a temporary directory.
2. Open update/iecustom.dll in a hex editor.
3. Navigate to hexadecimal offset 0x1034h(4148 decimal) and change 0F 95 to 0F 94.
4. Save and execute update.exe.
5. Enjoy.

Don't ask me where to get Internet Explorer 7 and don't blame if all your hard drive data disappears.

Windows Genuine Advantage + Javascript = Workaround

(July 28, 07:03AM EST) Thanks for all the emails, I updated the IE script with user-submitted scripts to resolve the freezing and also bypass WGA on Microsoft/Windows Update. Do not email me about "simpler" methods (eg. Manage Add-ons, javascript :)! I know about this already...

Continue. Continue. Click. Click. Click. Sigh, my fingers could do without the extra clicking, hence why I came up with greasemonkey and trixie scripts for bypassing WGA on Microsoft's download pages.

For Internet Explorer users:

• You'll need to download trixie and the relevant user script [Thanks Mark S., MacMonkey]. Simply download the .js file and drop it into trixie's scripts/ folder.
  
• Fire up Internet Explorer (32-bit) and click Tools > Trixie Options. You should see WGA Workaround. If it's not already checked, check it. Uncheck the others if you don't want to use them (recommended).
  
• Visit Microsoft Downloads or Microsoft Update to test it out!

For Mozilla Suite/Firefox users:

• You'll need to download greasemonkey and the relevant user script. Simply download the .js file to a temporary location (like the Desktop), drag it onto a Mozilla Suite/Firefox window and click Tools > Install User Script. Keep the defaults.
  
• Visit Microsoft Downloads to test it out! NOTE: Microsoft Update does not support Firefox.

For Opera users:

• The script for Firefox above works as-is in Opera. Instructions later.

For Konqueror/lynx users:

• You're kidding, right?

Microsoft "Genuine Advantage" cracked in 24h: window.g_sDisableWGACheck='all'
AV sez, "This week, Microsoft started requiring users to verifiy their serial number before using Windows Update. This effort to force users to either buy XP or tell them where you got the illegal copy is called 'Genuine Advantage.' It was cracked within 24 hours."

Before pressing 'Custom' or 'Express' buttons paste this text to the address bar and press enter:

javascript:void(window.g_sDisableWGACheck='all')

It turns off the trigger for the key check.

我用的是 javascript:void(window.g_sDisableWGACheck='all')

还有一种没有验证的方法是 先安装WGA 然后关闭并禁用它在后台的服务

Before pressing 'Custom' or 'Express' buttons paste this text to the address bar and press enter:

javascript:void(window.g_sDisableWGACheck='all')

It turns off the trigger for the key check.

我用的是 javascript:void(window.g_sDisableWGACheck='all')

还有一种没有验证的方法是 先安装WGA 然后关闭并禁用它在后台的服务

Before pressing 'Custom' or 'Express' buttons paste this text to the address bar and press enter:

javascript:void(window.g_sDisableWGACheck='all')

It turns off the trigger for the key check.

我用的是 javascript:void(window.g_sDisableWGACheck='all')

还有一种没有验证的方法是 先安装WGA 然后关闭并禁用它在后台的服务

另外一种方法 IE上的“工具”——管理加载项--找到wga，然后禁用它

[Full-disclosure] Defeating Microsoft WGA Validation Check
Debasis Mohanty mail at hackingspirits.com
Mon May 23 10:46:22 BST 2005

Previous message: [Full-disclosure] [USN-131-1] Linux kernel vulnerabilities
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

--------------------------------------------------------------------------------

There is lot of hype about WGA (Windows Genuine Advantage) when Microsoft
builds functionality in its few of the public beta products to conduct a
genuine product check before the product gets installed. MS products or
tools with WGA check enabled can only be installed on a valid / genuine copy
of MS Windows XP. Incase it is a pirated copy then the product denies to
install.



If you are aware of Microsoft WGA validation then you can directly jump in
to the PoC section otherwise it is advisable to read on WGA and what it does
before reading the PoC.



To know more about WGA, refer to the following Microsoft link:

http://www.microsoft.com/genuine/downloads/FAQ.aspx?displaylang=en



Defeating Microsoft WGA Validation Check - Proof of Concept (PoC)

This PoC explains how Microsoft WGA validation check can be defeated and any
Microsoft product with the WGA validation feature can be run and installed
on machines running pirated copy of Windows XP. To bypass WGA validation
check, one can run "GenuineCheck.exe" file on a machine running a copy of an
authentic Windows XP for generating a key code. This key code generated on
the machine running genuine copy of Win XP can be used to circumvent the WGA
check on the machine running a pirated copy of Win XP.



A detailed approach can be downloaded from the following link -

http://www.hackingspirits.com/vuln-rnd/defeating-wga-check.zip



Microsoft in its reply to my mail specified that "The generated code is
partly made up of a timestamp, which would prevent use after a short
period". However, I checked this on a pirated copy of Windows XP Pro and
installed couple of public beta products and tools for testing purpose. They
are still up and running since past 1.5 months.



Incase, anyone is going to try this out on their pirated versions of Win XP
then do let me know if the installed product make noise after certain time
period.





*     Debasis Mohanty

*     www.hackingspirits.com http://www.hackingspirits.com/