1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Whats is a nulled script?

Discussion in 'Black Hat SEO' started by luckyjJ, Nov 19, 2007.

Thread Status:
Not open for further replies.
  1. luckyjJ

    luckyjJ Junior Member

    Joined:
    Oct 23, 2007
    Messages:
    127
    Likes Received:
    7
    I see tons and tons of amazingly great scripts are warez forums.. I dont have much experience using scripts or installing scripts, but its something i want to learn about.

    My question is, what is the difference between a nulled script, and script that hasnt been nulled? I hope I can find the answer here.. Im confident i will.. thanks so much!!
     
  2. milligan

    milligan BANNED BANNED

    Joined:
    Mar 19, 2007
    Messages:
    170
    Likes Received:
    63
    you will get a more authoratative answer here soon but in the meanitime:
    a nulled script is one that has the ability to check that it has been purchased legitimately removed. 1 example might be to remove the ability for a script to call home and verify its license.
     
  3. luckyjJ

    luckyjJ Junior Member

    Joined:
    Oct 23, 2007
    Messages:
    127
    Likes Received:
    7
    Thanks milligan.. Sorry for being so stupid on this topic, but can someone else give me some more details about nulled and unulled scripts? are nulled scripts safe to use? I would really appreciate any help you can give me.. thank!!
     
  4. TeddyC

    TeddyC Newbie

    Joined:
    Oct 31, 2007
    Messages:
    10
    Likes Received:
    0
    if a script has something where it 'calls home' ie

    checkLicense($yourLicenseKeyHere)

    and that function is
    PHP:
    function checkLicense($lic)
    {
        
    $handle fopen("someurl/checkLicense/?lic=".$lic", "r");
        
    $contents = stream_get_contents($handle);
        fclose(
    $handle);
        // and then the software does some magic to make sure your key
        //   matches an allowed on the server.
        if(license_is_valid) {
        return "
    valid";
    }
    else
    {
        return "
    invalid";
    }
    That could be nulled with a simple change to checkLicense().

    PHP:
    function checkLicense($yourLicense) {
        return 
    "valid";
    }

    Thats an overly simple example but it gets the point across.
     
  5. ContentFarmer

    ContentFarmer Junior Member

    Joined:
    Sep 21, 2007
    Messages:
    122
    Likes Received:
    12
    Occupation:
    Owner
    Location:
    Reno, NV
    Home Page:
    I would suggest that this depends on the particular software. For awhile I had written my software so that the license was only valid for 10 days and every 8 days I would have an automated script re-authorize it. To have been nulled, it would have had to been reverse engineered to figure out how to disable the validation altogether.

    Here's how you can safely check out what's happening: Install the nulled version on a computer not connected to the net, but which runs its own server (e.g. XAMPP) for server-based programs. Then setup a firewall on that non-internet-connected box which prompts you each time a request is made to an outside URL. Then, run the thing for a bit on that server and see how it works. If no popups occur and everything continues to work, you're probably fine. When you do put it on a box connected to the net, make sure that the program cannot be accessed by anyone from the net (for server programs, htaccess protect it; for desktop apps, configure your firewall to disallow such connections). Then, you're very likely safe from being caught.

    That said, I humbly request you don't do that with my software. :) Everything can be hacked except the one-time encryption methodology (properly employed); it's just a matter of time. Anyone telling you otherwise doesn't have a clue and should be wholly ignored.
     
  6. ContentFarmer

    ContentFarmer Junior Member

    Joined:
    Sep 21, 2007
    Messages:
    122
    Likes Received:
    12
    Occupation:
    Owner
    Location:
    Reno, NV
    Home Page:
    This code was, obviously, for demo purposes only, but it had an error. Also, it was for PHP 5 only (due to stream_get_contents). Here's the corrected code:
    PHP:
    function checkLicense($lic)
    {
        
    $handle fopen("someurl/checkLicense/?lic=".$lic"r");
        
    $contents stream_get_contents($handle);
        
    fclose($handle);
        
    $license_is_valid false;
        
    // and then the software does some magic to make sure your key is valid
        // and sets $license_is_valid = true;
        
    if($license_is_valid) {
            return 
    "valid";
        }
    }
    else
    {
        return 
    "invalid";
    }
     
  7. luckyjJ

    luckyjJ Junior Member

    Joined:
    Oct 23, 2007
    Messages:
    127
    Likes Received:
    7
    Thanks for the help!!
     
  8. milligan

    milligan BANNED BANNED

    Joined:
    Mar 19, 2007
    Messages:
    170
    Likes Received:
    63
    as you can see that what I meant about a better answer than mine :)
     
  9. andygabon

    andygabon BANNED BANNED

    Joined:
    Nov 20, 2007
    Messages:
    67
    Likes Received:
    70
    for the lay terms,

    nulled script will make you safe to use it even illegally. no callback, active link or registration required and the creator of the script will no have any clue to find you out, unless you are too popular.
     
  10. Sigruna

    Sigruna Newbie

    Joined:
    Sep 28, 2007
    Messages:
    9
    Likes Received:
    0
    Looks like it's a lot easier than I thought to null a script. Thank you for the explanation.
     
  11. andygabon

    andygabon BANNED BANNED

    Joined:
    Nov 20, 2007
    Messages:
    67
    Likes Received:
    70
    not so easy if the script is encrypted, zended etc...
     
  12. onel

    onel Newbie

    Joined:
    Nov 22, 2007
    Messages:
    49
    Likes Received:
    29
    there are dezenders available for download somewhere but i don't know if it works or not.

    Not sure if there are (free) decrypters for ioncube though
     
  13. sam.hunt0710

    sam.hunt0710 Jr. VIP Jr. VIP

    Joined:
    Feb 22, 2011
    Messages:
    4,909
    Likes Received:
    1,803
    Gender:
    Male
    Occupation:
    Owner Of a IT Comapny
    Location:
    India
    After 10 years you are saying thanks to this thread.

    @Zwielicht please close this thread.
     
  14. sturose

    sturose Jr. VIP Jr. VIP

    Joined:
    Nov 6, 2013
    Messages:
    1,749
    Likes Received:
    2,134
    Gender:
    Male
    Occupation:
    Clicking my own adverts
    Location:
    Stuck in a rut
    Shit!!!

    This has to be the god of all necro bumps ever!!

    2007. :D:D:D:D:D
     
  15. Tozzy

    Tozzy Jr. VIP Jr. VIP

    Joined:
    Nov 26, 2015
    Messages:
    414
    Likes Received:
    115
    Gender:
    Male
    Location:
    World
    Home Page:
    It is a paid script that was cracked and thus made free.
    Note that mostly no one would work for free or share something out of kindness in our world. Most nulled scripts contain backdoors which allow one who included them to access your admin panel and steal your traffic, place unwanted backlinks or do other alike things.

    And yes, I know I am replying to a 10 yo thread, but heck why not?
     
  16. crossbg

    crossbg Jr. VIP Jr. VIP

    Joined:
    Feb 25, 2017
    Messages:
    340
    Likes Received:
    73
    Gender:
    Male
    Location:
    Sofia, Bulgaria
    Home Page:
    :D
    Wait 10 years and they're gonna thank you
     
  17. Zwielicht

    Zwielicht Moderator Staff Member Moderator Jr. VIP

    Joined:
    Aug 31, 2013
    Messages:
    6,975
    Likes Received:
    12,320
    Gender:
    Male
    Occupation:
    Grim Reaper
    Location:
    Riverside County, California
    Home Page:
    Thread Closed
     
    • Thanks Thanks x 1
Thread Status:
Not open for further replies.