General Safety Measures

Parent Previous Next

General Safety Measures.

A lot of protection schemes have been developed over the years to protect binaries, but many protection measures can unfortunately be quite vulnerable to attacks.


These are some of the most widespread protection measures:







Assessment.

Most of the protection measures mentioned here primarily suffers from the fact, that at some point the machine code will exist in memory in an unprotected pristine form, which makes analysis possible, thus providing only a light protection level.


Even the most advanced scheme will not provide longterm protection against memory analysis - keeping in mind the possibilities of using memory monitors, hosted emulators and other forms of synthetic environments. This makes analysis possible and only the complications involved in making modifications to the binary may vary.


For some scenarios these technologies may be enough, but you should always consider combining them with stronger protection schemes.