Hi, I'm implementing the test-the-serial code in my app. I know some of the basics, like only inline call, embedded checks in various places and in code needed by the game engine, etc. But I have a problem. When I fetch the serial number, I store it in a variable. So the common thing each time I work on serial validation, is that I have to use this variable... and so I suppose an hacker has just to check where the variable is called, to know where I test the serial.

I am not much of expert in hacking, but as I know hackers mostly , just change your compare function a bit:

if you have:

Quote:
if ( a == b )
{
goto ok;
}
else
goto error;

They may change it to

Quote:
if ( a == b )
{
goto ok;
}
else
goto ok;

or even

Quote:
goto ok;
if ( a == b )
{
goto ok;
}
else
goto error;

Someone correct me if I am wrong :)

interesting, thanks. I will then add several controls for the same serial subpart.

anything else?