We value your feedback.
Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!
Course Of The Month
2 days, 11 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
SHA-1 checksum vs .exe obfuscation
Posted on 2012-12-22
I have a Windows app that has been compromised (hacked). I am looking at obfuscation but was wondering if generating a SHA-1 checksum and then checking it from within the program would suffice as far as letting me know the app has been compromised.
Comments?
Comments?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
3-
3
7 Comments
File hashing will let you know whether or not it is different to known hashes for that file. However, it won't tell you what has changed or how it was done.
What do you mean when you say it "has been compromised"? How do you know?
What do you mean when you say it "has been compromised"? How do you know?
The guy has access to functions that are only available with a license, which he has not purchased. I send a response to his email saying something was not working as it should, and I responded that he shouldn't even have access to that function... haven't heard from him since. :D
So, will it tell me if the program has been reverse-engineered? (i.e. using .NET Reflector). Is obfuscation better? (like Crypto Obfuscator)
So, will it tell me if the program has been reverse-engineered? (i.e. using .NET Reflector). Is obfuscation better? (like Crypto Obfuscator)
I think it's almost certain that it has been reverse engineered and/or the application has been patched in order to grant access to locked functionality. File hashing will definitely tell you if the file has been patched.
So, I guess I better byte the bullet for $150 USD and buy the obfuscator... thanks for your insight.
There is a good article here on how to go about securing .NET code:
http://msdn.microsoft.com/en-us/magazine/cc164058.aspx
http://msdn.microsoft.com/en-us/magazine/cc164058.aspx
I saw that, plus a few others... settled on Crypto Obfuscation for .NET... seems to be the most comprehensive, plus they answered my emails right away... I like good support! :D
Thanks again...
Thanks again...
Featured Post
MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Real-time is more about the business, not the technology. In day-to-day life, to make real-time decisions like buying or investing, business needs the latest information(e.g. Gold Rate/Stock Rate). Unlike traditional days, you need not wait for a fe…
Since pre-biblical times, humans have sought ways to keep secrets, and share the secrets selectively. This article explores the ways PHP can be used to hide and encrypt information.
The Email Laundry PDF encryption service allows companies to send confidential encrypted emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Suggested Courses
Course of the Month2 days, 11 hours left to enroll
696 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.