I´m planning to write a windows application using the .net framework. is
there any way to secure the application so the user can´t easily disassemble
and manipulate the application?
9  3068 
Hi,
Use an obfuscator like dotfuscator comuntity edition which comes
with visual studio 2003.
Ken
--------------
"Achim Kühn" <a.*****@e-llusions.de> wrote in message
news:eK******** ******@TK2MSFTN GP09.phx.gbl... I´m planning to write a windows application using the .net framework. is
there any way to secure the application so the user can´t easily
disassemble and manipulate the application?
You need to use obfuscation. In VS.NET 2003 the Obfuscator Community edition
is available (seen link at then end of this message too).
Obfuscation is the technology of shrouding the facts. It's not encryption,
but in the context of .NET (or java) code, it might be better. Early in Java
's life, several companies produced encrypting class loaders to fully
encrypt java classes. Decryption was done Just-in-time prior to execution.
Although this made classes completely unreadable, this methodology suffered
from a classic encryption flaw, it needed to keep the decryption-key with
the encrypted data. Therefore, an automated utility could be created to
decrypt the code and put it out to disk. Once that happens the fully
unencrypted, unobfuscated code is in plain view.
As another comparison, we could compare encryption to locking a six item
meal into a lockbox. Only the intended diner (i.e. the CLR) has the key and
we don't want anyone else to know what he or she is going to eat.
Unfortunately, if someone can pick the lock (or find the key hidden on the
bottom of the box), the food is in plain view. Obfuscation works more like
putting the six item meal into a blender and sending it to the diner in a
baggie. Sure everyone can see the food in transit, but besides a lucky pea
or some beef-colored goop, they don't know what the original meal is. The
diner still gets the intended delivery and the meal still provides the same
nutritional value as it did before (luckily, CLRs aren't picky about taste).
The trick of an obfuscator is to confuse observers, while still giving CLRs
the same delivery.
SOURCE: http://www.preemptive.com/dotfuscato...scator_ce.html
--
Greetz
Jan Tielens
_______________ _______________ __
Read my weblog: http://weblogs.asp.net/jan
"Achim Kühn" <a.*****@e-llusions.de> wrote in message
news:eK******** ******@TK2MSFTN GP09.phx.gbl... I´m planning to write a windows application using the .net framework. is
there any way to secure the application so the user can´t easily
disassemble and manipulate the application?
You need to use obfuscation. In VS.NET 2003 the Obfuscator Community edition
is available (seen link at then end of this message too).
Obfuscation is the technology of shrouding the facts. It's not encryption,
but in the context of .NET (or java) code, it might be better. Early in Java
's life, several companies produced encrypting class loaders to fully
encrypt java classes. Decryption was done Just-in-time prior to execution.
Although this made classes completely unreadable, this methodology suffered
from a classic encryption flaw, it needed to keep the decryption-key with
the encrypted data. Therefore, an automated utility could be created to
decrypt the code and put it out to disk. Once that happens the fully
unencrypted, unobfuscated code is in plain view.
As another comparison, we could compare encryption to locking a six item
meal into a lockbox. Only the intended diner (i.e. the CLR) has the key and
we don't want anyone else to know what he or she is going to eat.
Unfortunately, if someone can pick the lock (or find the key hidden on the
bottom of the box), the food is in plain view. Obfuscation works more like
putting the six item meal into a blender and sending it to the diner in a
baggie. Sure everyone can see the food in transit, but besides a lucky pea
or some beef-colored goop, they don't know what the original meal is. The
diner still gets the intended delivery and the meal still provides the same
nutritional value as it did before (luckily, CLRs aren't picky about taste).
The trick of an obfuscator is to confuse observers, while still giving CLRs
the same delivery.
SOURCE: http://www.preemptive.com/dotfuscato...scator_ce.html
--
Greetz
Jan Tielens
_______________ _______________ __
Read my weblog: http://weblogs.asp.net/jan
"Achim Kühn" <a.*****@e-llusions.de> wrote in message
news:eK******** ******@TK2MSFTN GP09.phx.gbl... I´m planning to write a windows application using the .net framework. is
there any way to secure the application so the user can´t easily
disassemble and manipulate the application?
Please eat breakfast prior to posting ;)
"Jan Tielens" <ja*@no.spam.pl ease.leadit.be> wrote in message
news:%2******** ********@TK2MSF TNGP10.phx.gbl. .. You need to use obfuscation. In VS.NET 2003 the Obfuscator Community
edition is available (seen link at then end of this message too).
Obfuscation is the technology of shrouding the facts. It's not encryption,
but in the context of .NET (or java) code, it might be better. Early in
Java 's life, several companies produced encrypting class loaders to fully
encrypt java classes. Decryption was done Just-in-time prior to execution.
Although this made classes completely unreadable, this methodology
suffered from a classic encryption flaw, it needed to keep the decryption-key with
the encrypted data. Therefore, an automated utility could be created to
decrypt the code and put it out to disk. Once that happens the fully
unencrypted, unobfuscated code is in plain view.
As another comparison, we could compare encryption to locking a six item
meal into a lockbox. Only the intended diner (i.e. the CLR) has the key
and we don't want anyone else to know what he or she is going to eat.
Unfortunately, if someone can pick the lock (or find the key hidden on the
bottom of the box), the food is in plain view. Obfuscation works more like
putting the six item meal into a blender and sending it to the diner in a
baggie. Sure everyone can see the food in transit, but besides a lucky pea
or some beef-colored goop, they don't know what the original meal is. The
diner still gets the intended delivery and the meal still provides the
same nutritional value as it did before (luckily, CLRs aren't picky about
taste). The trick of an obfuscator is to confuse observers, while still giving
CLRs the same delivery.
SOURCE:
http://www.preemptive.com/dotfuscato...scator_ce.html
--
Greetz
Jan Tielens
_______________ _______________ __
Read my weblog: http://weblogs.asp.net/jan
"Achim Kühn" <a.*****@e-llusions.de> wrote in message
news:eK******** ******@TK2MSFTN GP09.phx.gbl... I´m planning to write a windows application using the .net framework. is
there any way to secure the application so the user can´t easily
disassemble and manipulate the application?
Please eat breakfast prior to posting ;)
"Jan Tielens" <ja*@no.spam.pl ease.leadit.be> wrote in message
news:%2******** ********@TK2MSF TNGP10.phx.gbl. .. You need to use obfuscation. In VS.NET 2003 the Obfuscator Community
edition is available (seen link at then end of this message too).
Obfuscation is the technology of shrouding the facts. It's not encryption,
but in the context of .NET (or java) code, it might be better. Early in
Java 's life, several companies produced encrypting class loaders to fully
encrypt java classes. Decryption was done Just-in-time prior to execution.
Although this made classes completely unreadable, this methodology
suffered from a classic encryption flaw, it needed to keep the decryption-key with
the encrypted data. Therefore, an automated utility could be created to
decrypt the code and put it out to disk. Once that happens the fully
unencrypted, unobfuscated code is in plain view.
As another comparison, we could compare encryption to locking a six item
meal into a lockbox. Only the intended diner (i.e. the CLR) has the key
and we don't want anyone else to know what he or she is going to eat.
Unfortunately, if someone can pick the lock (or find the key hidden on the
bottom of the box), the food is in plain view. Obfuscation works more like
putting the six item meal into a blender and sending it to the diner in a
baggie. Sure everyone can see the food in transit, but besides a lucky pea
or some beef-colored goop, they don't know what the original meal is. The
diner still gets the intended delivery and the meal still provides the
same nutritional value as it did before (luckily, CLRs aren't picky about
taste). The trick of an obfuscator is to confuse observers, while still giving
CLRs the same delivery.
SOURCE:
http://www.preemptive.com/dotfuscato...scator_ce.html
--
Greetz
Jan Tielens
_______________ _______________ __
Read my weblog: http://weblogs.asp.net/jan
"Achim Kühn" <a.*****@e-llusions.de> wrote in message
news:eK******** ******@TK2MSFTN GP09.phx.gbl... I´m planning to write a windows application using the .net framework. is
there any way to secure the application so the user can´t easily
disassemble and manipulate the application?
?
--
Greetz,
Jan
_______________ _______________ ____
Read my weblog: http://weblogs.asp.net/jan
"Bryan Martin" <sp**@ahwayside .com> schreef in bericht
news:eN******** ******@TK2MSFTN GP11.phx.gbl... Please eat breakfast prior to posting ;)
"Jan Tielens" <ja*@no.spam.pl ease.leadit.be> wrote in message
news:%2******** ********@TK2MSF TNGP10.phx.gbl. .. You need to use obfuscation. In VS.NET 2003 the Obfuscator Community
edition is available (seen link at then end of this message too).
Obfuscation is the technology of shrouding the facts. It's not
encryption, but in the context of .NET (or java) code, it might be better. Early in
Java 's life, several companies produced encrypting class loaders to fully
encrypt java classes. Decryption was done Just-in-time prior to
execution. Although this made classes completely unreadable, this methodology
suffered from a classic encryption flaw, it needed to keep the decryption-key
with the encrypted data. Therefore, an automated utility could be created to
decrypt the code and put it out to disk. Once that happens the fully
unencrypted, unobfuscated code is in plain view.
As another comparison, we could compare encryption to locking a six item
meal into a lockbox. Only the intended diner (i.e. the CLR) has the key
and we don't want anyone else to know what he or she is going to eat.
Unfortunately, if someone can pick the lock (or find the key hidden on
the bottom of the box), the food is in plain view. Obfuscation works more
like putting the six item meal into a blender and sending it to the diner in
a baggie. Sure everyone can see the food in transit, but besides a lucky
pea or some beef-colored goop, they don't know what the original meal is.
The diner still gets the intended delivery and the meal still provides the
same nutritional value as it did before (luckily, CLRs aren't picky about
taste). The trick of an obfuscator is to confuse observers, while still giving
CLRs the same delivery.
SOURCE:
http://www.preemptive.com/dotfuscato...scator_ce.html
--
Greetz
Jan Tielens
_______________ _______________ __
Read my weblog: http://weblogs.asp.net/jan
"Achim Kühn" <a.*****@e-llusions.de> wrote in message
news:eK******** ******@TK2MSFTN GP09.phx.gbl... I´m planning to write a windows application using the .net framework.
is there any way to secure the application so the user can´t easily
disassemble and manipulate the application?
?
--
Greetz,
Jan
_______________ _______________ ____
Read my weblog: http://weblogs.asp.net/jan
"Bryan Martin" <sp**@ahwayside .com> schreef in bericht
news:eN******** ******@TK2MSFTN GP11.phx.gbl... Please eat breakfast prior to posting ;)
"Jan Tielens" <ja*@no.spam.pl ease.leadit.be> wrote in message
news:%2******** ********@TK2MSF TNGP10.phx.gbl. .. You need to use obfuscation. In VS.NET 2003 the Obfuscator Community
edition is available (seen link at then end of this message too).
Obfuscation is the technology of shrouding the facts. It's not
encryption, but in the context of .NET (or java) code, it might be better. Early in
Java 's life, several companies produced encrypting class loaders to fully
encrypt java classes. Decryption was done Just-in-time prior to
execution. Although this made classes completely unreadable, this methodology
suffered from a classic encryption flaw, it needed to keep the decryption-key
with the encrypted data. Therefore, an automated utility could be created to
decrypt the code and put it out to disk. Once that happens the fully
unencrypted, unobfuscated code is in plain view.
As another comparison, we could compare encryption to locking a six item
meal into a lockbox. Only the intended diner (i.e. the CLR) has the key
and we don't want anyone else to know what he or she is going to eat.
Unfortunately, if someone can pick the lock (or find the key hidden on
the bottom of the box), the food is in plain view. Obfuscation works more
like putting the six item meal into a blender and sending it to the diner in
a baggie. Sure everyone can see the food in transit, but besides a lucky
pea or some beef-colored goop, they don't know what the original meal is.
The diner still gets the intended delivery and the meal still provides the
same nutritional value as it did before (luckily, CLRs aren't picky about
taste). The trick of an obfuscator is to confuse observers, while still giving
CLRs the same delivery.
SOURCE:
http://www.preemptive.com/dotfuscato...scator_ce.html
--
Greetz
Jan Tielens
_______________ _______________ __
Read my weblog: http://weblogs.asp.net/jan
"Achim Kühn" <a.*****@e-llusions.de> wrote in message
news:eK******** ******@TK2MSFTN GP09.phx.gbl... I´m planning to write a windows application using the .net framework.
is there any way to secure the application so the user can´t easily
disassemble and manipulate the application?
Another option is salamander .net protector, seems to
modify MSIL code instead of simple obfuscation. http://www.remotesoft.com/salamander/protector.html -----Original Message-----
I´m planning to write a windows application using
the .net framework. isthere any way to secure the application so the user can´t
easily disassembleand manipulate the application?
.
Another option is salamander .net protector, seems to
modify MSIL code instead of simple obfuscation. http://www.remotesoft.com/salamander/protector.html -----Original Message-----
I´m planning to write a windows application using
the .net framework. isthere any way to secure the application so the user can´t
easily disassembleand manipulate the application?
. This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics | |
by: Achim Kühn |
last post by:
I´m planning to write a windows application using the .net framework. is
there any way to secure the application so the user can´t easily disassemble
and manipulate the application?
|
by: Don Wash |
last post by:
Hi Everyone!
I'm new to .NET but I'm a experienced VB programmer (since VB 4) and wanting
to move to VB.NET from VB 6.
But as I read about .NET, I came across that compiled VB.NET code is stored
in MSIL (instead of binary) which is easily decryptable by the "hackers" to
reverse engineer your VB.NET application.
Is this true?
|
by: kjon |
last post by:
When I try to run any project, sometimes I will encounter this tab window in
the IDE which has the following message: "Disassembly cannot be displayed in
run mode".
I mean it'll show sometimes, and sometimes don't. Just wonder what is the
meaning of this? Do I need to concern of any wrong doing in my program or
codes?
Thanks in advance.
|
by: Matthew |
last post by:
I had an error in a program I was working on. A dialog box came up saying
"do you want to view Disassembly?" I clicked OK just for the fun of it, and
now every time I run the program it opens a new tab in VB.NET titled
Disassembly.
My guess is I checked an option to view the disassembly every time.
However, I really don't want this to...
|
by: Joe |
last post by:
I have an application which runs in a non-secure environment. I also have an
application that runs in a secure environment (both on the same machine). Is
there any way to share the session data for this?
Most of the site allows the user to add things to a cart (non-secure), once
they choose to check-out, I need this information which was...
| | |
by: cj |
last post by:
Recently for no apparent reason VB 2003 has been opening a Disassembly
tab along with Form1.Vb, Start Page, etc. The Disassembly tab has in it
Address and a text box followed by (Enter an address to view
disassembly.) Where is this coming from? What is making it appear?
I'm working on just a standard windows application. No web stuff.
|
by: Usman |
last post by:
Hi
I'm working on an application that contains classes for licensing,
authentication etc, including all the algorithms of encryption/decryption
etc. I wanted to secure this code, but after compiling all the code, I just
thought of trying a decompiler on the output file. The decompiler generated
almost 99% of the exact code out of it,...
|
by: Nathan Mates |
last post by:
I'm using VS.NET 2005SP1 (C++ Express, though I've also seen this on
2005 Standard SP1). One bit of behavior that's been bugging me a lot,
and seems to have gotten worse with SP1, is that if it ever once goes
to disassembly view, it will ALWAYS change to disassembly view when I
step thru code until I quit VS.NET and restart. (2005 original...
|
by: Herhor |
last post by:
Hello!
I have already started C++ programming with VC++ 2005 Express Edition.
Unfortunately during debugging one of my first programs I had to
unintentionally enable some debugger configuration feature which turns
on Disassembly Window at the end of every my program (basic example below).
int main()
{
//some instructions;
|
by: =?Utf-8?B?TWljaGVsQFZvb3JidXJn?= |
last post by:
Hi all,
i've built a C# dll / component with some wonderful services to the clients
Payroll service.
As you might guess, i only want MY pogram to use this DLL.
If some developer get's hold of a reference to my dll, he or she could
easily use all methods to raise his or hers salary....
I tried code access security, bu i can only use that...
|
by: Hystou |
last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can effortlessly switch the default language on Windows 10 without reinstalling. I'll walk you through it.
First, let's disable language...
| | |
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers, it seems that the internal comparison operator "<=>" tries to promote arguments from unsigned to signed.
This is as boiled down as I can make it. ...
|
by: Hystou |
last post by:
Overview:
Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows Update option using the Control Panel or Settings app; it automatically checks for updates and installs any it finds, whether you like it or not. For...
|
by: tracyyun |
last post by:
Dear forum friends,
With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each protocol has its own unique characteristics and advantages, but as a user who is planning to build a smart home system, I am a bit confused by the...
|
by: agi2029 |
last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing, and deployment—without human intervention. Imagine an AI that can take a project description, break it down, write the code, debug it, and then...
|
by: isladogs |
last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM).
In this session, we are pleased to welcome a new presenter, Adolph Dupré who will be discussing some powerful techniques for using class modules.
He will explain when you may want to use classes...
|
by: TSSRALBI |
last post by:
Hello
I'm a network technician in training and I need your help.
I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs.
The last exercise I practiced was to create a LAN-to-LAN VPN between two Pfsense firewalls, by using IPSEC protocols.
I succeeded, with both firewalls in...
| | |
by: 6302768590 |
last post by:
Hai team
i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated we have to send another system
|
by: bsmnconsultancy |
last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating...
| |
