Is there any better way than obfuscation?

Re: Is there any better way than obfuscation?

Hi Peter,

there is no 100% way to protect your code against
disassebling or reversing. If you are a skilled asm(x86/x64, etc)
coder and have experience in debugging/disassembling then
there is NO way for someone to protect his/her code. Even
..NET is easy to debug and obfuscation is not a real way to
protect your code, it just makes the process of reversing just
a little difficult nothing more

If you want to make a reversers life a bit harder, then i recommend
you to write your code in native languages like C++, C and other
"real" compiled to native code languages and/or roll the functionalities
of your application to external native libraries. And even this is no
guarantee for code protection. The most secure way is to implement
your functionality in a WebService and make it callable from a server.
Thats the best way to protect your code!

Sure, there are other ways like, eg. Digital Signing, Certifictaes, Hashing,
etc, but even this is not 100% secure,...

Regards

Kerem

--
-----------------------
Beste Grüsse / Best regards / Votre bien devoue
Kerem Gümrükcü
Latest Project: http://www.codeplex.com/restarts
Latest Open-Source Projects: http://entwicklung.junetz.de
-----------------------
"This reply is provided as is, without warranty express or implied."
"Builder" <peter.gejgus@g mail.comschrieb im Newsbeitrag
news:0b1dcf36-bce1-4922-b3b9-7569af3b7fea@59 g2000hsb.google groups.com...

Re: Is there any better way than obfuscation?

Does code need to be obfuscated? Are you sure you've done something that other programmers can't figure out without disassembling your code? Such situations are rare.

Re: Is there any better way than obfuscation?

Dear MC,

why you wrote that to me? Read my post!
I think you wanted to send this to the OP,...

Regards

Kerem

--
-----------------------
Beste Grüsse / Best regards / Votre bien devoue
Kerem Gümrükcü
Latest Project: http://www.codeplex.com/restarts
Latest Open-Source Projects: http://entwicklung.junetz.de
-----------------------
"This reply is provided as is, without warranty express or implied."
"MC" <for.address.lo ok@www.ai.uga.e du.slash.mcschr ieb im Newsbeitrag
news:%23XyFKiKI JHA.2408@TK2MSF TNGP04.phx.gbl. ..

Re: Is there any better way than obfuscation?

I am afraid to release my application after obfuscation. Does anybodyThe real problem is "do you really need to obfuscate your code ?".
Cause there are two situations : either you're writing a very
sophisticated and hyper-clever code, or you're writing code like any of
us.
In the second case who will care about you code that everybody can
recreate ? In the first case, who will care about a code too clever to
be understood by a normal developer even not obfuscated ?

Obfuscator is just a market based on fear, not on reality.



--


OD___

Re: Is there any better way than obfuscation?

On Sep 27, 4:23 am, Builder <peter.gej...@g mail.comwrote:To all the Programmers in the thread:

there are only 2 cases arise when you are program in any language.

1. you are writing some code that is highly inteletual property. and
you do not want to revel to the other programmers
2. you are writing a normal logic which can be sahre with the other
programmers.

Case 2 is not required for discussion
Case 1
Again there are 2 sub cases
case A: you are developing some IP which can not be reveled to the
world.
case B: you are developing some IP which can be reveled to the world
(but you want to gain most out of it)

Case A:
this senario management/company genarally go with the native languages
or high security mesures in site .net code and external factors like
obfuscation will be considered.

Case B:
Before releasing the product, IP is patented and protected by the
company / individual.

-Cnu

Re: Is there any better way than obfuscation?


Ive seen some posts that argue you can translate your code to native code.
From here you can start to "ofuscate" it, and it is
almost impossible to break it. Well, I didnt try this, but
I remember also, you need some third party tools, but sorry,
I dont remember program names :(

hope this helps, Carlos.

"Builder" <peter.gejgus@g mail.comwrote in message
news:0b1dcf36-bce1-4922-b3b9-7569af3b7fea@59 g2000hsb.google groups.com...http://www.codeproject.com/KB/securi...11#xx2742011xx

Re: Is there any better way than obfuscation?

"Kerem Gümrükcü" <kareem114@hotm ail.comwrote in message
news:%23WEoPxKI JHA.1304@TK2MSF TNGP02.phx.gbl. ..I didn't write it to you. I posted it in the newsgroup. In the thread, it
follows your message, but that doesn't mean it's addressed just to you.

Re: Is there any better way than obfuscation?

Take a look at this old thread....

Re: Is there any better way than obfuscation?

Take a look at this old thread....

"Builder" <peter.gejgus@g mail.comwrote in message
news:0b1dcf36-bce1-4922-b3b9-7569af3b7fea@59 g2000hsb.google groups.com...

Re: Is there any better way than obfuscation?

On Sep 28, 12:03 am, "MC" <for.address.l. ..@www.ai.uga.e du.slash.mc>
wrote:But you did! In a newsreader that properly formats the thread, your
message was a direct reply to Kerem. Here is the header for your
message:

From: "MC" <for.address.l. ..@www.ai.uga.e du.slash.mc>
References: <0b1dcf36-bce1-4922-
b3b9-7569af3b7fea@59 g2000hsb.google groups.com<uCrr#tJIJHA.
1968@TK2MSFTNGP 06.phx.gbl>
In-Reply-To: <uCrr#tJIJHA.19 68@TK2MSFTNGP06 .phx.gbl>
Subject: Re: Is there any better way than obfuscation?
Date: Sat, 27 Sep 2008 09:54:18 -0400

Notice the In-Reply-To header. That is the message ID of Kerem's
post. Your message is a direct reply to his. If you put your
newsreader into threaded view, you should see that. That's why he
asked why you replied to him instead of the OP.

The OP's message id is Message-ID: <0b1dcf36-bce1-4922-
b3b9-7569af3b7fea@59 g2000hsb.google groups.com>

Just thought you'd be interested.

Chris

Re: Is there any better way than obfuscation?

What do you thing about CodeVeil? Is it acceptable solution?

Re: Is there any better way than obfuscation?

On Sep 30, 9:04 am, Builder <peter.gej...@g mail.comwrote:I have never used CodeVeil, so I cannot comment on it.

You might also look at Microsoft's Code Protector which is designed
for use with .Net.

See this link:



Chris