473,836 Members | 1,956 Online
Bytes | Software Development & Data Engineering Community
+ Post

Home Posts Topics Members FAQ

Decompiling, is this a problem?

I've seen a couple of articles on the internet that VB.NET applications
can be decompiled very easy. For those who have had experience with
this, is it true? What steps can be taken to avoid this? I am using
VB.NET Express but am willing to buy something (within reason) to
prevent easy decompiling. Any suggestions are much appreciated.
Sep 7 '08 #1
14 1825
AGP

"Grant" <gr**********@g mail.comwrote in message
news:3G******** ***********@new sreading01.news .tds.net...
I've seen a couple of articles on the internet that VB.NET applications
can be decompiled very easy. For those who have had experience with this,
is it true? What steps can be taken to avoid this? I am using VB.NET
Express but am willing to buy something (within reason) to prevent easy
decompiling. Any suggestions are much appreciated.
download the free Reflector from http://www.red-gate.com/products/reflector/
and see how easy it is to see your source. VS2005 comes with a version of
Dotfuscator (reach it from the Tools menu) that will do some obfuscation.
ive had moderate success with it. you should probably look for a commercial
aplication that will obfuscate your source.

AGP
Sep 7 '08 #2
Second attempt
Grant,
>I've seen a couple of articles on the internet that VB.NET applications
can be decompiled very easy. For those who have had experience with
this, is it true? What steps can be taken to avoid this? I am using
VB.NET Express but am willing to buy something (within reason) to prevent
easy decompiling. Any suggestions are much appreciated.

And then? It is easier to create a program with VB.Net then to decompile
it and to try to make another program from it.
Those who are not able to do the first, are for sure not able to do the
second.

As it is about security, then think that is it possible to decompile every
program, it is just how smart you are.
Use for security the security options or find more ways to do that outside
the code.

Just my opinion.

Cor
"Grant" <gr**********@g mail.comschreef in bericht
news:3G******** ***********@new sreading01.news .tds.net...
I've seen a couple of articles on the internet that VB.NET applications
can be decompiled very easy. For those who have had experience with this,
is it true? What steps can be taken to avoid this? I am using VB.NET
Express but am willing to buy something (within reason) to prevent easy
decompiling. Any suggestions are much appreciated.
Sep 8 '08 #3
>I've seen a couple of articles on the internet that VB.NET applications
can be decompiled very easy
Please note that the same is true for all .Net languages ( VB.Net , C# ,
J# , Delphi.Net etc etc etc )
and also for Java
>>For those who have had experience with this, is it true?
Yes ....
>>I am using VB.NET Express but am willing to buy something (within reason)
to prevent easy decompiling. Any suggestions are much appreciated.
There are lots of obfuscating tools out there , however none of them can
give 100% guarantee
that it is really impossible to reverse engineer your app .

hth
Michel


"AGP" <si**********@s ofthome.netschr eef in bericht
news:oM******** ***********@nlp i064.nbdc.sbc.c om...
>
"Grant" <gr**********@g mail.comwrote in message
news:3G******** ***********@new sreading01.news .tds.net...
>I've seen a couple of articles on the internet that VB.NET applications
can be decompiled very easy. For those who have had experience with
this, is it true? What steps can be taken to avoid this? I am using
VB.NET Express but am willing to buy something (within reason) to prevent
easy decompiling. Any suggestions are much appreciated.

download the free Reflector from
http://www.red-gate.com/products/reflector/ and see how easy it is to see
your source. VS2005 comes with a version of Dotfuscator (reach it from the
Tools menu) that will do some obfuscation. ive had moderate success with
it. you should probably look for a commercial aplication that will
obfuscate your source.

AGP

Sep 8 '08 #4
"Grant" <gr**********@g mail.comschrieb :
I've seen a couple of articles on the internet that VB.NET applications
can be decompiled very easy. For those who have had experience with
this, is it true? What steps can be taken to avoid this? I am using
VB.NET Express but am willing to buy something (within reason) to
prevent easy decompiling.
There are three solutions:

* Obfuscation
* Encryption
* Services
Microsoft's solution:
SLP Services Home
<URL:http://www.microsoft.c om/slps/Default.aspx>
You can use obfuscation (VS comes with a cut down version of a commecial
obfuscator) to make reverse engineering harder.
However, this is not a perfect solution. The only 100 % solution is to
place the code on a server you own and expose the functionality via a
service (Web service).

--
M S Herfried K. Wagner
M V P <URL:http://dotnet.mvps.org/>
V B <URL:http://dotnet.mvps.org/dotnet/faqs/>

Sep 8 '08 #5
On Sep 7, 12:53*pm, Grant <grantroel...@g mail.comwrote:
I've seen a couple of articles on the internet that VB.NET applications
can be decompiled very easy. *For those who have had experience with
this, is it true? *What steps can be taken to avoid this? *I am using
VB.NET Express but am willing to buy something (within reason) to
prevent easy decompiling. *Any suggestions are much appreciated.
You have to ask yourself if you're actually writing anything that has
a risk of being disassembled and "stolen". If you're not, then you
have reason to muddy your development waters with obfuscation. Also
evaluate the business value, are you going to get a good ROI for the
additional work? Is your user base really interested in disassembling
your code?

Personally, I'd be willing to give my code to anyone that uses the
application, the more eyes on my code the more bugs will be found.

Thanks,

Seth Rowe [MVP]
http://sethrowe.blogspot.com/
Sep 8 '08 #6
AGP

"Herfried K. Wagner [MVP]" <hi************ ***@gmx.atwrote in message
news:%2******** ********@TK2MSF TNGP04.phx.gbl. ..
"Grant" <gr**********@g mail.comschrieb :
>I've seen a couple of articles on the internet that VB.NET applications
can be decompiled very easy. For those who have had experience with
this, is it true? What steps can be taken to avoid this? I am using
VB.NET Express but am willing to buy something (within reason) to prevent
easy decompiling.

There are three solutions:
* Obfuscation * Encryption * Services

Microsoft's solution:

SLP Services Home <URL:http://www.microsoft.c om/slps/Default.aspx>

You can use obfuscation (VS comes with a cut down version of a commecial
obfuscator) to make reverse engineering harder.

However, this is not a perfect solution. The only 100 % solution is to
place the code on a server you own and expose the functionality via a
service (Web service).
im glad that MS has a solution but IMHO that should have been built into VS.
It seems thats just another way to suck money out of the developer. I just
transitioned to .NET after some years of reluctance and am now finding out
that the source is easily decompiled from my app. i've read some articles on
why this is so easy and i understand but MS should have included something
more than the dotfustactor. Ive tried it and it doesnt seem to work. their
website is poorly arranged and they have yet to answer my inquiries. as a
small devloper my options are limited as I cant go out and spend thousnds of
dollars for better protection, yet i have to release updates in a timely
manner. anyway, im looking for a good solution that is reasonable for a
small developer. anyone have any suggestions?

AGP
Sep 10 '08 #7
On Sep 9, 8:32*pm, "AGP" <sindizzy....@s ofthome.netwrot e:
"Herfried K. Wagner [MVP]" <hirf-spam-me-h...@gmx.atwrot e in messagenews:%2* *************** @TK2MSFTNGP04.p hx.gbl...
"Grant" <grantroel...@g mail.comschrieb :
I've seen a couple of articles on the internet that VB.NET applications
can be decompiled very easy. *For those who have had experience with
this, is it true? *What steps can be taken to avoid this? *I am using
VB.NET Express but am willing to buy something (within reason) to prevent
easy decompiling.
There are three solutions:
* Obfuscation * Encryption * Services
Microsoft's solution:
SLP Services Home <URL:http://www.microsoft.c om/slps/Default.aspx>
You can use obfuscation (VS comes with a cut down version of a commecial
obfuscator) to make reverse engineering harder.
However, this is not a perfect solution. *The only 100 % solution is to
place the code on a server you own and expose the functionality via a
service (Web service).

im glad that MS has a solution but IMHO that should have been built into VS.
It seems thats just another way to suck money out of the developer. I just
transitioned to .NET after some years of reluctance and am now finding out
that the source is easily decompiled from my app. i've read some articleson
why this is so easy and i understand but MS should have included something
more than the dotfustactor. Ive tried it and it doesnt seem to work. their
website is poorly arranged and they have yet to answer my inquiries. as a
small devloper my options are limited as I cant go out and spend thousndsof
dollars for better protection, yet i have to release updates in a timely
manner. anyway, im looking for a good solution that is reasonable for a
small developer. anyone have any suggestions?

AGP
I still stick to my above statements.

What are you writing that's so important that no unauthorized people
can see the code?

Thanks,

Seth Rowe [MVP]
http://sethrowe.blogspot.com/
Sep 10 '08 #8
AGP,

Then make it yourself, nobody forbids you to do that. (As long as you are
not using illegal others inteligence).

Cor

"AGP" <si**********@s ofthome.netschr eef in bericht
news:wA******** ***********@nlp i065.nbdc.sbc.c om...
>
"Herfried K. Wagner [MVP]" <hi************ ***@gmx.atwrote in message
news:%2******** ********@TK2MSF TNGP04.phx.gbl. ..
>"Grant" <gr**********@g mail.comschrieb :
>>I've seen a couple of articles on the internet that VB.NET applications
can be decompiled very easy. For those who have had experience with
this, is it true? What steps can be taken to avoid this? I am using
VB.NET Express but am willing to buy something (within reason) to
prevent easy decompiling.

There are three solutions:
* Obfuscation * Encryption * Services

Microsoft's solution:

SLP Services Home <URL:http://www.microsoft.c om/slps/Default.aspx>

You can use obfuscation (VS comes with a cut down version of a commecial
obfuscator) to make reverse engineering harder.

However, this is not a perfect solution. The only 100 % solution is to
place the code on a server you own and expose the functionality via a
service (Web service).

im glad that MS has a solution but IMHO that should have been built into
VS. It seems thats just another way to suck money out of the developer. I
just transitioned to .NET after some years of reluctance and am now
finding out that the source is easily decompiled from my app. i've read
some articles on why this is so easy and i understand but MS should have
included something more than the dotfustactor. Ive tried it and it doesnt
seem to work. their website is poorly arranged and they have yet to answer
my inquiries. as a small devloper my options are limited as I cant go out
and spend thousnds of dollars for better protection, yet i have to release
updates in a timely manner. anyway, im looking for a good solution that is
reasonable for a small developer. anyone have any suggestions?

AGP
Sep 10 '08 #9
AGP
>
im glad that MS has a solution but IMHO that should have been built into
VS.
It seems thats just another way to suck money out of the developer. I just
transitioned to .NET after some years of reluctance and am now finding out
that the source is easily decompiled from my app. i've read some articles
on
why this is so easy and i understand but MS should have included something
more than the dotfustactor. Ive tried it and it doesnt seem to work. their
website is poorly arranged and they have yet to answer my inquiries. as a
small devloper my options are limited as I cant go out and spend thousnds
of
dollars for better protection, yet i have to release updates in a timely
manner. anyway, im looking for a good solution that is reasonable for a
small developer. anyone have any suggestions?

AGP
I still stick to my above statements.

What are you writing that's so important that no unauthorized people
can see the code?

Thanks,

Seth Rowe [MVP]
http://sethrowe.blogspot.com/
>>>
I guess what is in my code is not really releveant. some of it is
proprietary algorithms and other stuff is common. just like any other
developer that makes commercial apps i dont want competing devlopers from
just decompiling and using code that i have worked long and hard to perfect.
if you are willing to open source your code then that is great and i have no
problems with that. but i dont want my code to be out in the open for
everyone to see. its just that simple. if the case was that every piece of
code should be seen then there wouldnt be a need for obfustcators and
encryption services like the one that MS is offering.

AGP
Sep 13 '08 #10

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

11
1919
by: Deano | last post by:
Just wondering if there is a tool or method that will allow me to compare the state of my database before and after I decompile it. The last time I decompiled a few fields lost default values and some event code wasn't firing anymore. I know that sounds unusual but this was definitely the case. I would like to decompile again but am reluctant to do so if it causes any more problems. I would like to test what the decompile does to my...
0
1085
by: Mike MacSween | last post by:
So after a fair bit of work, with me always opening holding down the shift key to bypass the startup form -> switchboard, I try to test as a use. No error message, just a blank Access window, with File, Window and Help (I think) menu items. A decompile sorts it out. But why's this happening? The app uses Access security and the desktop shortcut that I'm using has the mdw info in it.
2
3277
by: Gaz | last post by:
....and recompiling it again Hi all, I've got an Assembly DLL and associated .NetModules and want to amend a function in one of the .NetModules I've used ILDASM to decompile the .NetModules into IL so I can modify the code but am having trouble trying to compile up the .NetModule and effectively renew the Assembly.
18
1810
by: Diogo Alves - Software Developer | last post by:
I found a few days ago that was possible to decompile any program developed in C# That is a huge failure.... It's not aceptable that a company that pays a lot for visual studio and pays to the employees to develop new product, and then all the code is exposed.... I found that the decompilers are pretty good, and have options like deObfuscate....
6
3325
by: MLH | last post by:
Can decompiling an A97 mdb result in fixing minor nasties that may be responsible for some premature terminations of A97 (We are sorry. MS Access 97 needs to close.... messages). I've found the following recommendation and was wondering if any of you have used the technique and why you did? To decompile start Access with the /decompile switch. To do this from windows do a Start, Run and then where it asks for the name of the program to...
2
1321
by: cmd | last post by:
Hi all, I have a 97 frontend which opens to a menu screen. I can compile the frontend and close it, but when I reopen it and then open any module in design view, it appears that the FE is in a decompiled state again. I can open and close older, backup versions of the FE without this happening -- i.e., the FE remains in the compiled state. I have not added any new code to the main menu, nor any new public
8
4351
by: Torben Laursen | last post by:
Hi I need to be sure that my C# code is as hard as possible to decompile. Can anyone tell what is the best tool for that job? Also will this be a part of Visual Studio 2008? It seems natural to me that the .net framework came with a solution so other people could not see your source code
0
9818
marktang
by: marktang | last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However, people are often confused as to whether an ONU can Work As a Router. In this blog post, we’ll explore What is ONU, What Is Router, ONU & Router’s main usage, and What is the difference between ONU and Router. Let’s take a closer look ! Part I. Meaning of...
0
9668
by: Hystou | last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can effortlessly switch the default language on Windows 10 without reinstalling. I'll walk you through it. First, let's disable language synchronization. With a Microsoft account, language settings sync across devices. To prevent any complications,...
0
10844
Oralloy
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers, it seems that the internal comparison operator "<=>" tries to promote arguments from unsigned to signed. This is as boiled down as I can make it. Here is my compilation command: g++-12 -std=c++20 -Wnarrowing bit_field.cpp Here is the code in...
0
10546
jinu1996
by: jinu1996 | last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven tapestry of website design and digital marketing. It's not merely about having a website; it's about crafting an immersive digital experience that captivates audiences and drives business growth. The Art of Business Website Design Your website is...
1
7791
isladogs
by: isladogs | last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM). In this session, we are pleased to welcome a new presenter, Adolph Dupré who will be discussing some powerful techniques for using class modules. He will explain when you may want to use classes instead of User Defined Types (UDT). For example, to manage the data in unbound forms. Adolph will...
0
6979
by: conductexam | last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and then checking html paragraph one by one. At the time of converting from word file to html my equations which are in the word document file was convert into image. Globals.ThisAddIn.Application.ActiveDocument.Select();...
0
5649
by: TSSRALBI | last post by:
Hello I'm a network technician in training and I need your help. I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs. The last exercise I practiced was to create a LAN-to-LAN VPN between two Pfsense firewalls, by using IPSEC protocols. I succeeded, with both firewalls in the same network. But I'm wondering if it's possible to do the same thing, with 2 Pfsense firewalls...
2
4016
muto222
by: muto222 | last post by:
How can i add a mobile payment intergratation into php mysql website.
3
3113
bsmnconsultancy
by: bsmnconsultancy | last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating effective websites that not only look great but also perform exceptionally well. In this comprehensive...

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.