Reversing .NET application

[karlranseier]

iam also interested in .net protection techniques. what do you think is the best tool/best way to protect your .net software at the moment? every protector developer says their software offers the best protection...

whats you expirience? is there any protector which is unbroken or extremly hard to break?

[Kurapica]

Quote:

Originally Posted by karlranseier

iam also interested in .net protection techniques. what do you think is the best tool/best way to protect your .net software at the moment? every protector developer says their software offers the best protection...

whats you expirience? is there any protector which is unbroken or extremly hard to break?

IMHO I think that {SmartAssembly} is the best .NET protector, It provides many techniques to enhance the assembly and protect it, besides it's very easy to use and I use it personally.

There is no such protector that can't be broken !! even for native code applications there is no such thing.

[Kurapica]

I'm not that good to say which is better for you !!! I think each one has pros and cons, and every application might need a different protection method, but I prefer SmartAssembly over Reactor.

[rendari]

Smartassembly or Reactor, both can be cracked within a matter of minutes mate... so choose the one with more features rather than the one with more security, since cracking both of them is almost equally trivial.

[bigmouse]

Quote:

Originally Posted by Kurapica

IMHO I think that {SmartAssembly} is the best .NET protector, It provides many techniques to enhance the assembly and protect it, besides it's very easy to use and I use it personally.

There is no such protector that can't be broken !! even for native code applications there is no such thing.

obfuscation, whole assembly encryption is not safe.

per method entrytion maybe better, but there lack is compatible.

[LibX]

Hallo all,

Still don't have much time to hang around here to bad

But iam working on a nice crack/keygenme for all of u
iam developing a protection system for .net thats capable or decrypting and executing code dynamicly without Jit hooking.
Also included (since nobody else seems todo it :/) is some anti-dumping methods.
Also implemented is some pretty complex anti-debug code targeting both native and managed debuggers.
On top of this its hardly possible to modify the runtime engine since the specific values from the strong name signature and a lot of other details that u have to find urself in time :P are used to decrypt the code....if something is changed everything is fucked
Even for native code standards the anti-debug code is pretty good using a few methods that are totualy new and never used before.

Il let u guy know more asap.

Regards and all the best
LibX

[karlranseier]

sounds great. will you release it for free or do you want to sell it?

[Andu]

What do you think about the obfuscation strength of spieces obfuscator? They also offer a strong name removal protection and it's more in my price range than the professional sa version.

Ok, so the former question wasn't the last one but hey, you cannot talk to an expert every day, can you?

Will your protector be freely available?

Regards,

Andu

[LibX]

Quote:

Originally Posted by Andu

What do you think about the obfuscation strength of spieces obfuscator? They also offer a strong name removal protection and it's more in my price range than the professional sa version.

Ok, so the former question wasn't the last one but hey, you cannot talk to an expert every day, can you?

Will your protector be freely available?

Regards,

Andu

Well basicly smartassemly has this protection also its using the public key token while decrypting the user string, Spices is nice and also a good obfuscator but its a package thats far to masive if u ask me, if u buy a obfuscator u don't want to pay for the decompiler/profiler/dvdripper whatever included.

thats why i like smartassembly

[rendari]

Unpackme runs on Vista, LibX. Will check it out I'm also finishing up on my .NET protector (only JIT hooks ), and am thinking about releasing if for free. Will see...