Solved

How can I protect my software?

Posted on 2010-11-30
10
440 Views
Last Modified: 2012-05-10
Hi there;

I implemented a software in visual basic and completed it successfully, but when I reverse engineer it, I cracked my software.

So, my question is that "How can I protect my software?" against bit manipulation of known tools?

Kind regards.
0
Comment
Question by:jazzIIIlove
  • 5
  • 5
10 Comments
 
LVL 40

Assisted Solution

by:Kyle Abrahams
Kyle Abrahams earned 500 total points
ID: 34241738
define cracked?  What exactly are you trying to protect from or hide?
0
 
LVL 12

Author Comment

by:jazzIIIlove
ID: 34244252
In a diassemly of my software, I jumped from addresses to another addresses and cracked my own software.

I implemented it in visual basic. How can i provide a security mechanism for my software?

Regards.
0
 
LVL 40

Assisted Solution

by:Kyle Abrahams
Kyle Abrahams earned 500 total points
ID: 34250466
0
Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

 
LVL 12

Author Comment

by:jazzIIIlove
ID: 34250718
I alreaady obsfucated my code, but the problem is I still can crack back my software.
0
 
LVL 40

Assisted Solution

by:Kyle Abrahams
Kyle Abrahams earned 500 total points
ID: 34257315
Again, what do you mean by crack?  

Are you talking bypassing some sort of protection or making unintended behavior or what?  Without getting into specfics there's nothing that can be done.

Also, as they pointed out, there's no *true* way to totally block your code.  Everything gets compiled into machine language and people can build up from there.
0
 
LVL 12

Author Comment

by:jazzIIIlove
ID: 34264567
I know there is no perfect secrecy. My issue I disabled some modules of the program for trial use but I easily find out the instruction to crack it and that drove me crazy. I need some strategies at least to give the impression for the cracker that cracking is unfeasible in a timely fashion...

Regards.
0
 
LVL 40

Assisted Solution

by:Kyle Abrahams
Kyle Abrahams earned 500 total points
ID: 34283209
I would honestly provide 2 binaries, it's the best way to ensure that the modules don't get cracked.  Just comment them out for the trial.

I'm not sure if using the compiler declaritives would work, in that case you can have a release mode for trial where you could do something like

#if trial
   exit sub
#end if

0
 
LVL 12

Author Comment

by:jazzIIIlove
ID: 34411456
You mean one binary for trial, one for full licensed? and if the user enters/inputs the right "thing" for enabling the software, which binary should be in charge for this?

I may be confused with your last comment, please explain further...

P.S. I am a little late. sorry for this.
0
 
LVL 40

Accepted Solution

by:
Kyle Abrahams earned 500 total points
ID: 34464734
Correct, 2 binaries.  say: trial.exe,  full.exe

I would recommend they BOTH be in charge of checking for registration.    

1)  Make a copy of the hardware being used (MAC - CPU Chip, Motherboard version) and hash it to get a unique code

2)  Write that value so that full.exe has access to it (registry usually).  

On startup, ensure that the registry value matches the hash of the current code, and that you have the same machine hardware specs.  If someone changes there NIC card or CPU, this will become invalid and you'll have to let them re-register.


The purpose of having 2 binaries is so that the other can't be hacked / unassembled.  In that case, you would want the trial version to also go get the full version form somewhere.  (Either using a binary reader to write the file http://www.experts-exchange.com/Programming/Languages/C_Sharp/Q_26301264.html or dynamically download the file from  a secured location).

0
 
LVL 12

Author Comment

by:jazzIIIlove
ID: 34604690
I don't know why hesistate to reply back but yes you are right.
0

Featured Post

U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

On Beyond Tools A conversation I recently had with the DevOps manager of a major online retailer really made me think about DevOps monitoring tools (https://www.onpage.com/devops-incident-management-tool/). The manager and I discussed how sever…
One of the biggest threats facing all high-value targets are APT's.  These threats include sophisticated tactics that "often starts with mapping human organization and collecting intelligence on employees, who are nowadays a weaker link than network…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

831 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question