Reverse engineering protection / hardening

Question

Reverse engineering protection / hardening

I want to protect my applications from reverse engineering.

What I would like to do is to protect the executable file from any fakes, for example, using hex editors, resource editors and unauthorized access.

My idea is for the application to check the hash value of itself for the imported value in the version file from the service server (possibly an xml or flatfile file), then turn off the application or somehow completely disable it if the values do not match.

I am here in strange waters, so if anyone has any comments, suggestions, ideas or code examples, I would appreciate it.

The development language is C ++, but I would gladly accept examples from any language.

Thanks in advance for any help.

+3

security visual-c ++ reverse-engineering code-access-security

Cno0b Jun 30 '10 at 11:24

source share

5 answers

Joe gauterin · Answer 1 · 2010-06-30T11:36:55+0000

I am afraid it is not so simple.

If someone has the ability to modify the executable, then they have the option to remove any check that the application does with a known hash.

You can do more complex things, such as encrypting application data using a hash of a known executable file as a key, but this only makes it a bit difficult to bypass.

The creators of all kinds of very expensive software have been trying to find a solution to this for decades - and their efforts have always been handled by people with much less resources.

Peter · Answer 2 · 2010-06-30T11:49:38+0000

: . , , , " ".

, , , , , .

, , , !

adam · Answer 3 · 2017-04-09T14:53:01+0000

- . , . - , upx, .

. ( ) . , AV / .

/ /, Phrack . , .

/ (non-speedbump) - , AES, , . / , )

:

ur. · Answer 4 · 2010-06-30T11:59:27+0000

, , - , , " ", . USB-.

, , . .

.

Frank R. · Answer 5 · 2010-07-02T00:40:50+0000

, , , , - !

Reverse engineering protection / hardening

More articles: