Software Reverse Engineering (SRE)

Web Supplement to Master’s Thesis at San José State University

  • You are here: 
  • Home
  • Wintel Machine Code Anti-Reversing Exercise

Wintel Machine Code Anti-Reversing Exercise

Description of the Exercise:

Apply the anti-reversing techniques Eliminating Symbolic Information and Obfuscating the Program, both introduced in sections 6 and 7 of the report, to the C/C++ source code of the Password Vault application with the goal of making it more difficult to disable the trial limitation. Rebuild the executable binary for the Password Vault application from the modified sources using the GNU compiler collection for Windows.   Show that the Wintel Machine Code Reversing and Patching Exercise can no longer be carried out as demonstrated.

Software for the Exercise:

Solution to the Exercise:

Modifications to PasswordVaultConsoleUtil.cpp
Figure 1. Encrypted strings are decrypted each time they are displayed
Modifications to PasswordVault.cpp
Figure 2. Record limit comperands are represented as exponents with a base of 2

 

Modifications to PasswordVault.cpp
Figure 3. Obfuscated control flow logic for testing the password record limit

 


Posted on May 7th, 2009 | By: teodoro

Comments are closed.