Understand advanced principals around Powershell Core with a focus on the Linux Administrator. This course covers how to administer numerous environments across multiple platforms including Linux, Azure, AWS, and Google Cloud from a single shell instance.
COURSE of the MONTH
10 days, 13 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
SHA-1 checksum vs .exe obfuscation
Posted on 2012-12-22
I have a Windows app that has been compromised (hacked). I am looking at obfuscation but was wondering if generating a SHA-1 checksum and then checking it from within the program would suffice as far as letting me know the app has been compromised.
Comments?
Comments?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
3-
3
7 Comments
File hashing will let you know whether or not it is different to known hashes for that file. However, it won't tell you what has changed or how it was done.
What do you mean when you say it "has been compromised"? How do you know?
What do you mean when you say it "has been compromised"? How do you know?
The guy has access to functions that are only available with a license, which he has not purchased. I send a response to his email saying something was not working as it should, and I responded that he shouldn't even have access to that function... haven't heard from him since. :D
So, will it tell me if the program has been reverse-engineered? (i.e. using .NET Reflector). Is obfuscation better? (like Crypto Obfuscator)
So, will it tell me if the program has been reverse-engineered? (i.e. using .NET Reflector). Is obfuscation better? (like Crypto Obfuscator)
I think it's almost certain that it has been reverse engineered and/or the application has been patched in order to grant access to locked functionality. File hashing will definitely tell you if the file has been patched.
So, I guess I better byte the bullet for $150 USD and buy the obfuscator... thanks for your insight.
There is a good article here on how to go about securing .NET code:
http://msdn.microsoft.com/en-us/magazine/cc164058.aspx
http://msdn.microsoft.com/en-us/magazine/cc164058.aspx
I saw that, plus a few others... settled on Crypto Obfuscation for .NET... seems to be the most comprehensive, plus they answered my emails right away... I like good support! :D
Thanks again...
Thanks again...
Featured Post
An interactive way of learning that will help you visualize core concepts so that you can be more effective when taking your AWS certification exam. Built for students by a student to help them understand the concepts that they are being taught.
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Provide an easy one stop to quickly get the relevant information on common asked question on Ransomware in Expert Exchange.
- Vulnerabilities
- Home Security
- Ransomware
- Cybersecurity
- OS Security
- Network Security, Security
In 2017, ransomware will become so virulent and widespread that if you aren’t a victim yourself, you will know someone who is.
- Acronis
- Encryption
- Ransomware
- Disaster Recovery
- Security
- *Backup Software
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Suggested Courses
Course of the Month10 days, 13 hours left to enroll
765 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.