encrypted executables
M. Warner Losh
imp at bsdimp.com
Tue Feb 19 04:46:04 UTC 2008
In message: <20080219040912.GA14809 at kobe.laptop>
Giorgos Keramidas <keramida at ceid.upatras.gr> writes:
: On 2008-02-18 19:54, Jerry Toung <jrytoung at gmail.com> wrote:
: >On Feb 18, 2008 5:39 PM, Dimitry Andric <dimitry at andric.com> wrote:
: >>On 2008-02-19 02:18, Jerry Toung wrote:
: >>> anybody knows of a tool to encrypt executables under FreeBSD? may be
: >>> from the ports? I am not talking about simple file encryption.
: >>
: >> Can you elaborate on what you *are* talking about then? Some
: >> security-by-obscurity scheme, perhaps? :)
: >
: > I need to encrypt elf binaries. I'd like to make it harder for the bad
: > guy to reverse engineer my app.
:
: You know about truss/ktrace/strace already, right?
:
: It may be moot to encrypt the ELF binary, if the `bad guy' can access
: the running image of the process *after* it has been decrypted to
: execute.
kill -ABRT
will generate a core file.
Often times, the core file can be quite useful in recovering the
original executable.
emacs has used this technique for years to 'preload' stuff, take a
core dump, then re-run the core file after some post-processing.
Warner
More information about the freebsd-hackers
mailing list