发表新帖
发表新帖

How to hide strings in a exe or a dll?

前端 未结
关注
9 2124
猫巷女王i
猫巷女王i 2020-11-29 02:07

I discovered that it is possible to extract the hard-coded strings from a binary.
For example the properties view of Process Explorer displays all the string with more t

相关标签:
9条回答
  • 故里飘歌
    2020-11-29 02:49

    In addition to those methods Chris mentions you could also use a hashing algorithm. If all you want to do is check if the correct ID was specified you don't actually need to store the whole ID in your program.

    • Create a hash (MD5, SHA, etc) of the string/password/id you want to compare against, maybe add a 'salt' value to it. Store this in your program
    • When the program is run, do the same algorithm on the input string/password/id and compare the two hashes to see if they match.

    This way the actual text is never stored in your program and they cannot reverse engineer your program to find out what the original text was because hash algorithms are one-way only.

    0 讨论(0)
  • 名媛妹妹
    2020-11-29 03:01

    The simplest way is to encrypt them with something trivial like xor or rot-13, and then decrypt them on the fly when they're used. That will eliminate casual viewing of them, but it won't stop anyone with much experience at reversing.

    0 讨论(0)
  • 深忆病人
    2020-11-29 03:02

    Welcome to the wider world of defensive programming.

    There are a couple of options, but I believe all of them depend on some form of obfuscation; which, although not perfect, is at least something.

    1. Instead of a straight string value you can store the text in some other binary form (hex?).

    2. You can encrypt the strings that are stored in your app, then decrypt them at run time.

    3. You can split them across various points in your code, and reconstitute later.

    Or some combination thereof.

    Bear in mind, that some attacks go further than looking at the actual binary. Sometimes they will investigate the memory address space of the program while it's running. MS came up with something called a SecureString in .Net 2.0. The purpose being to keep the strings encrypted while the app is running.

    A fourth idea is to not store the string in the app itself, but rather rely on a validation code to be submitted to a server you control. On the server you can verify if it's a legit "cheat code" or not.

    0 讨论(0)
  • 一生所求
    2020-11-29 03:04

    There are URLs for http requests that I would like to hide too.

    If your app is making the request, there is no point hiding this. Running an app like fiddler, http analyzer, or one of dozens of other free and readily available methods will show all the traffic your app is creating.

    0 讨论(0)
  • 悲&欢浪女
    2020-11-29 03:07

    The best you can do is to code your password or other string that you want to hide as char array. For example:

    std::string s1 = "Hello";   // This will show up in exe in hex editor
char* s2 = "World";   // this will show up in exe in hex editor
char s3[] = {'G', 'O', 'D'}; // this will not show up in exe in hex editor.
    0 讨论(0)
  • 灰色年华
    2020-11-29 03:09

    If there's a specific string you don't want people to be able to see, then encrypt it and decrypt at runtime.

    If you don't want people to see your GUID, then construct it from bytes, rather than constructed from a string:

    const GUID SecretGuid = 
      { 0x4537774B, 0xCC80, 0x4eda, { 0x7A, 0x9E, 0xE7, 0x79, 0x91, 0xF5 } };
    0 讨论(0)
 看不清?
提交回复
热议问题