Software Security
Securing your software against reverse engineering...
126 topics in this forum
-
Research in (Virtualization-) Code Obfuscators?
by miraculix- 5 replies
- 13.2k views
Hi, I want to write my Bachelor's thesis on Code obfuscators in DRM. The plan was for me to describe different protection features and then implement some of them by writing my own little code obfuscator. However, now the uber-boss of the department intervened because he thinks the topic lacks an adequate "research question". That is, the thesis has to answer/solve a concrete problem or question, not just reimplement existing techniques. He might be right, I guess. But I cant think of a good and appropriate "research question" in this way. Can anyone imagine a good research question in that regard I might cover? [If this post is in the wron…
-
- 9 replies
- 17.2k views
Hello, I'm trying to change the protection flag of an address in memory, it is set to EXECUTE_READ (probably) and I'm trying to change it to EXECUTE_READWRITE to run my hooked function , I've injected a dll inside the process and created a new thread then I'm trying to use VirtualProtect to change it, but VirtualProtect keeps failing and the protection doesn't change .... it's like it has been disabled (but only on certaing pages, since If I try to VirtualAlloc a new page, I'm able to change to modify the protections of it) :/, I've tried to check if the VirtualProtect has been hooked but it's not, how is it possible that they made the VirtualProtect to not work wit…
-
NtGlobalFlag
by Aldhard Oswine- 1 reply
- 9k views
I'm learning Anti-RE techniques and I have simple problem with NtGlobalFlag void PEBglobalflags() { BOOL f = FALSE; __asm { xor eax, eax mov eax, fs:[0x30] movzx eax, [eax+0x68] mov f, eax } if (f) { MessageBox(nullptr, L"Dbg", L"", 0); exit(1); } } Using this method can not detect dbgr. eax is always 0, instead of 0x70. Image: https://ibb.co/b89vYv Windows 10 - 86_64, application x86, MSVC 2017,
-
Build Modded Confuser Ex
by Jessica- 7 replies
- 17.9k views
I need best modded confuser ex to protect My application which is build in C#. i am ready to pay for this only. if you have any other suggestions then also tell me. Thanks
-
- 4 replies
- 9.6k views
Hi, i'm searching for someone good in protectors. I have a MMORPG game and i want to protect codes, to block hacks etc.. All hacks it's injected via dll injection etc.. I will exlain more in private. I can pay for this, no problem. Please move this topic intro a good section;
-
best obfuscator / packer
by ls-1- 2 replies
- 13.1k views
whats is best packer / obfuscator for .net exe assembly
-
Spoon Protector
by Gitta98- 4 replies
- 8.4k views
Hello guys , Sorry for newbie question ! Is there any way to prevent turbo virtual application studio( spoon) files from being extracted or making it harder to extract ? like protectors or .... Thanks .
-
- 9 replies
- 12k views
Hello Friends i want your feedback which is the best obfuscator to prevent .net application again reverse engineering. Thanks
-
Scramble EXE Code?
by omar911- 3 replies
- 7.8k views
i have made a few apps in delphi and visual C++ and have used Crypter software but they flag up as virus's and im looking for a tool that can scramble the exe code before i pack it. Any help or advice would be good and i will be grateful if anyone on here can help me in any way. THANK YOU
-
[Help] DotNetPatcher 4.4.2
by Modify- 8 replies
- 11.3k views
Please Help me DotNetPatcher 4.4.2 not work for me after protect my application, run application force close. My.7z
-
- 0 replies
- 6.2k views
I'm trying to implement a Native Runtime protection scheme just like how some protectors does, (keep in mind [Native Runtime != Native Wrapper]) I found it interesting so I wanted to do something similar to that just because, and because of learning purposes, I think this little project can open me doors for learning what I want to learn which is be more fluent in C# or at least I hope so. Basically what I would like to apply is the same principles, I know they take some measures that are kinda obvious and prone to reverse for example Jitted methods, MITM Jit Attacks, etc, etc. However, like I said, I just want to do it. I was looking i…
-
AntiDebugging in Delphi
by GautamGreat- 7 replies
- 10.2k views
Hey. I need some help. I wanna program a application which is fully protected from RCE. Means if it will detect any PE tool or debugger it will self destroy.
-
Android App Protection
by ismart- 3 replies
- 8.2k views
Hello Friends I have one android application and I want to protect it against reverse engineering, So please suggest me the right protection which protect my android application. Thanks
-
Create a simple packer
by 0ne- 5 replies
- 11.2k views
I want to write a simple Packer, but before I start writing, I was planning the design of the Packer. The design is as following picture: http://imgur.com/qsKI7ty Step one, encrypt the code segment and data segment. Step two, add a new segment, which will be the Stub. Step Three, Change the OEP.to stub EP. The first step and third step are easy, but the second step is not simple. The Stub contains function calls (eg VirtualProtect). 1)From what I realized every external function should be in IAT, I have to add the function to the IAT? Is there any other method to call external function, without get in trouble? I saw several articles on this subject,…
-
-
by NightBaron- 2 replies
- 8.4k views
i want to protect resource (anti dump) but i don't know how to protect it ok i use confuserex full option confuserex can protect dump in exe files but my resource don't protected can you help me ? # sorry i'm bad english thanks..
-
Obfuscator
by cawk- 11 replies
- 11.8k views
Hello i have a program that i am going to need to obfuscate when i have completed it, i was wondering what is the best free obfuscator that has no public tools to deobfuscate and yes i know that nothing is 100% protected but it will keep majority of people out who will just drop it into automatic tools thanks in advance
-
Antidump methods
by Pancake- 9 replies
- 11.7k views
Hi. i was lookin for answer on google and here but i didnt find it. So, could someone explain why are CPUID and RDTSC so important when unpacking? And how does stack/heap antidump work? Thanks in advance
-
- 2 replies
- 8k views
http://bgr.com/2015/10/15/adobe-flash-player-security-vulnerability-warning/
-
Mitigating false positives.
by mudlord- 11 replies
- 18.3k views
This is starting to turn into a serious problem for me. I have been packing my demo prods with beroexepacker. This works out well since it was optimized for demoscene productions and thus gives a very good compression ratio. However, I do get false positives, coming to the point that now Google blocks my demo downloads in their browser. I tried explaining to Google that the files are all false positives but no action is taken. I noticed a lot of false positives with BEP and so this is turning into quite a problem, especially with AV vendors are blocking download URLs to my demos, as part of thier site screening services. I feel this is a losing battle, possibly du…
-
What is the best confuser & packer for c#
by zeinyman- 9 replies
- 15.5k views
hello everybody, i am .net developer, and i see most of .net products can cracked. i have some questions: - What is the best confuser for .net? - What is the best software to pack .net program? - i usually use smart assembly then pack it by boxedApp, is that good way? thank you
-
How to: Protect Delphi File (.exe)
by brutser- 7 replies
- 13.5k views
Hi all! First of all let me say what a nice forum you have! And now after saying something nice, here comes the question : I have several application created with Delphi 2010 and XE2, but I need to protect the code from reverse engineering and also I need to protect the application itself. Can you experts suggest me the best software for this situation? And we finish with something nice again: Thank you very much for all your kind suggestions!
-
What software good protect C# ?
by xsoftz- 8 replies
- 8.7k views
hello all i need know what software good protect c# win form or dll thankyou
-
how to protect my application in vb.net
by sifenks- 2 replies
- 6.9k views
hi all how to protect my application in vb.net
-
Protecting a dll against being dumped
by tuxified- 6 replies
- 8.5k views
I own a few cheat sites and normally we inject a dll into a process, the way we get detected is they get the dll we injected and make signatures of it. Does anyone have the ability to prevent the dumping of the injected dll? I'm looking for someone who can help me protect the dll and exes ( we also do external memory edits for cheats that are detected eventually also ) from being detected and signatures made of the files. Let me know, feel free to pm me or Skype me, my skype is tuxifiedonline Thanks guys
-
How to improve the security and privacy of APP?
by squarethree- 2 replies
- 6.6k views
Hi, everybody. Do you notice that APPs are facing more and more risk of privacy leaks and security threats? As an APP developer, how do you improve the security and privacy of APP?
