Software cracking and patching
270 views
19 slides
Aug 01, 2021
Slide 1 of 19
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
About This Presentation
Softwares Reverse Engineering and Countermeasures
Slide Content
Software
Reverse Engineering
and
Countermeasures
Reverse Engineering
and
Countermeasures
Introduction to Software Technology Introduction to Software Technology Introduction to Software Technology Introduction to Software Technology
•Software is a set of instructions that determines what a gene ral-
purpose computer will do. Thus, in some sense, a software
programisaninstantiationof aparticularmachine(madeupof
thecomputeranditsinstructions).
•Machineslikethisobviouslyhaveexplicitrulesandwell-defined
behavior. Although we can watch thisbehavior unfold aswe ru n
a program on a machine, looking at the code and coming to an
understanding of the inner workings of a program sometimes
takesmoreeffort.
•Software is a set of instructions that determines what a gene ral-
purpose computer will do. Thus, in some sense, a software
programisaninstantiationof aparticularmachine(madeupof
thecomputeranditsinstructions).
•Machineslikethisobviouslyhaveexplicitrulesandwell-defined
behavior. Although we can watch thisbehavior unfold aswe ru n
a program on a machine, looking at the code and coming to an
understanding of the inner workings of a program sometimes
takesmoreeffort.
Reverse Engineering Reverse Engineering Reverse Engineering Reverse Engineering
•Reverse engineering is the process of creating a blueprint o f a
machine to discern its rules by looking only at the machine an d
its behavior. At a high level, this process involves taking
something that you may not completely understand technical ly
when you start, and coming to understand completely its
function,
its
internals,
and
its
construction
.
function,
its
internals,
and
its
construction
.
•A good reverse engineer attempts to understand the details o f
software, which by necessity involves understanding how the
overall computing machinery that the software runs on
functions. A reverse engineer requires a deep understandin g of
both the hardware and the software, and how it all works
together.
•Reverse engineering is the process of creating a blueprint o f a
machine to discern its rules by looking only at the machine an d
its behavior. At a high level, this process involves taking
something that you may not completely understand technical ly
when you start, and coming to understand completely its
function,
its
internals,
and
its
construction
.
function,
its
internals,
and
its
construction
.
•A good reverse engineer attempts to understand the details o f
software, which by necessity involves understanding how the
overall computing machinery that the software runs on
functions. A reverse engineer requires a deep understandin g of
both the hardware and the software, and how it all works
together.
Reverse Engineering (Cont.) Reverse Engineering (Cont.) Reverse Engineering (Cont.) Reverse Engineering (Cont.)
•Think about how external input is handled by a software
program. External "user" input can contain commands and
data. Each code path in the target involves a number of contro l
decisions that are made based on input. Sometimes a code path
will be wide and will allow any number of messages to pass
through
successfully
.
through
successfully
.
•Other times a code path will be narrow, closing things down or
even halting if the input isn't formatted exactly the right w ay.
This series of twists and turns can be mapped if you have the
righttools.
•Think about how external input is handled by a software
program. External "user" input can contain commands and
data. Each code path in the target involves a number of contro l
decisions that are made based on input. Sometimes a code path
will be wide and will allow any number of messages to pass
through
successfully
.
through
successfully
.
•Other times a code path will be narrow, closing things down or
even halting if the input isn't formatted exactly the right w ay.
This series of twists and turns can be mapped if you have the
righttools.
Reverse Engineering (cont.) Reverse Engineering (cont.) Reverse Engineering (cont.) Reverse Engineering (cont.)
•Generally speaking, the deeper you go as you wander into a
program, the longer the code path between the input where you
"start" and the place where you end up. Getting to a particula r
locationinthishouseof logicrequiresfollowingpathstovarious
rooms(hopefullywherethevaluablesare).
•Each internaldoor youpassthrough imposesruleson the kinds
of messages that may pass. Wandering from room to room thus
involves negotiating multiple sets of rules regarding the i nput
that will be accepted. This makes crafting an input stream th at
canpassthroughlotsof doors(bothexternalandinternal)areal
challenge. In general, attack input becomes progressively more
refinedandspecificasitdigsdeeperintoatargetprogram.
•Generally speaking, the deeper you go as you wander into a
program, the longer the code path between the input where you
"start" and the place where you end up. Getting to a particula r
locationinthishouseof logicrequiresfollowingpathstovarious
rooms(hopefullywherethevaluablesare).
•Each internaldoor youpassthrough imposesruleson the kinds
of messages that may pass. Wandering from room to room thus
involves negotiating multiple sets of rules regarding the i nput
that will be accepted. This makes crafting an input stream th at
canpassthroughlotsof doors(bothexternalandinternal)areal
challenge. In general, attack input becomes progressively more
refinedandspecificasitdigsdeeperintoatargetprogram.
Why Reverse Engineering? Why Reverse Engineering? Why Reverse Engineering? Why Reverse Engineering?
•Reverse Engineering allows you to learn about a program's
structureanditslogic.ReverseEngineeringthusleadstocritical
insights regarding how a program functions. This kind of
insight is extremely useful when you exploit software. There are
obviousadvantagestobehadfromreverseengineering.
•Forexample,youcanlearnthekindof systemfunctionsatarget
program is using. You can learn the files the target program
accesses. You can learn the protocols the target software us es
andhowitcommunicateswithotherpartsof thetargetnetwork.
•Reverse Engineering allows you to learn about a program's
structureanditslogic.ReverseEngineeringthusleadstocritical
insights regarding how a program functions. This kind of
insight is extremely useful when you exploit software. There are
obviousadvantagestobehadfromreverseengineering.
•Forexample,youcanlearnthekindof systemfunctionsatarget
program is using. You can learn the files the target program
accesses. You can learn the protocols the target software us es
andhowitcommunicateswithotherpartsof thetargetnetwork.
Why Reverse Engineering (cont.) Why Reverse Engineering (cont.) Why Reverse Engineering (cont.) Why Reverse Engineering (cont.)
•Themostpowerfuladvantagetoreversingisthatyoucanchange
a program's structure and thus directly affect its logical f low.
Technically this activity is called patching, because it in volves
placing new code patches (in a seamless manner) over the
originalcode,muchlikeapatchstitchedonablanket.
Like any skill, reverse engineering can be used for good and for bad ends.
•Patching allows you to add commands or change the way
particular function calls work. This enables you to add secr et
features, remove or disable functions, and fix security bug s
without source code. A common use of patching in the
computer underground involves removing copy protection
mechanisms.
Note: Like any skill, Reverse Engineering can be used for Good and for Bad Ends
•Themostpowerfuladvantagetoreversingisthatyoucanchange
a program's structure and thus directly affect its logical f low.
Technically this activity is called patching, because it in volves
placing new code patches (in a seamless manner) over the
originalcode,muchlikeapatchstitchedonablanket.
Like any skill, reverse engineering can be used for good and for bad ends.
•Patching allows you to add commands or change the way
particular function calls work. This enables you to add secr et
features, remove or disable functions, and fix security bug s
without source code. A common use of patching in the
computer underground involves removing copy protection
mechanisms.
Note: Like any skill, Reverse Engineering can be used for Good and for Bad Ends
Debugger Debugger Debugger Debugger
•A Debugger is a software program that attaches to and control s
other software programs. A debugger allows single stepping of
code, debug tracing, setting breakpoints, and viewing vari ables
and memory state in the target program as it executes in a
stepwisefashion.
•Debuggersareinvaluableindetermininglogicalprogramflow.
•Olly Debugger, Soft Ice, IDA Pro are some of the very famous
SoftwareDebuggers
•A Debugger is a software program that attaches to and control s
other software programs. A debugger allows single stepping of
code, debug tracing, setting breakpoints, and viewing vari ables
and memory state in the target program as it executes in a
stepwisefashion.
•Debuggersareinvaluableindetermininglogicalprogramflow.
•Olly Debugger, Soft Ice, IDA Pro are some of the very famous
SoftwareDebuggers
Disassembler Disassembler Disassembler Disassembler
•A Disassembler is a tool that converts machine-readable cod e
intoassemblylanguage.Assemblylanguageisahuman-readable
formof machinecode(well,more humanreadablethanastring
of bits anyway). Disassemblers reveal which machine
instructionsarebeingusedinthecode.
•Machinecodeisusuallyspecifictoagivenhardwarearchitecture
(such as the PowerPC chip or Intel Pentium chip). Thus,
Disassemblers are written expressly for the target hardware
architecture.
•A Disassembler is a tool that converts machine-readable cod e
intoassemblylanguage.Assemblylanguageisahuman-readable
formof machinecode(well,more humanreadablethanastring
of bits anyway). Disassemblers reveal which machine
instructionsarebeingusedinthecode.
•Machinecodeisusuallyspecifictoagivenhardwarearchitecture
(such as the PowerPC chip or Intel Pentium chip). Thus,
Disassemblers are written expressly for the target hardware
architecture.
Methods of Reverse Engineering Methods of Reverse Engineering Methods of Reverse Engineering Methods of Reverse Engineering
•There are several methods that can be used while reverse
engineering software. Each has benefits and each has resour ce
and time requirements. A typical approach uses a mixture of
methods when decompiling and examining software. The best
method mix depends entirely on your goals. For example, you
may
first
want
to
run
a
quick
scan
of
the
code
for
obvious
may
first
want
to
run
a
quick
scan
of
the
code
for
obvious
vulnerabilities.
•Next, you may want to perform a detailed input trace on the
user-supplied data. You may not have time to trace each and
every path,soyou mayuse complexbreakpointsand othertools
to speed up the process. What follows is a brief description o f
severalbasicmethods.
•There are several methods that can be used while reverse
engineering software. Each has benefits and each has resour ce
and time requirements. A typical approach uses a mixture of
methods when decompiling and examining software. The best
method mix depends entirely on your goals. For example, you
may
first
want
to
run
a
quick
scan
of
the
code
for
obvious
may
first
want
to
run
a
quick
scan
of
the
code
for
obvious
vulnerabilities.
•Next, you may want to perform a detailed input trace on the
user-supplied data. You may not have time to trace each and
every path,soyou mayuse complexbreakpointsand othertools
to speed up the process. What follows is a brief description o f
severalbasicmethods.
Error Tracing Error Tracing Error Tracing Error Tracing
•Error tracing is the most thorough of all Software Cracking
methods.
•First you identify the Text Strings in the software code and th en
look
for
the
error
message
displayed
to
the
user
when
a
wrong
look
for
the
error
message
displayed
to
the
user
when
a
wrong
serialnumberisprovidedtothesoftwareproduct.
•Identifytheworkingandflowof ProgramorFunction
•Error tracing is the most thorough of all Software Cracking
methods.
•First you identify the Text Strings in the software code and th en
look
for
the
error
message
displayed
to
the
user
when
a
wrong
look
for
the
error
message
displayed
to
the
user
when
a
wrong
serialnumberisprovidedtothesoftwareproduct.
•Identifytheworkingandflowof ProgramorFunction
Categories
TechnologyDownload
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 270
- Slides 19
- Age 1583 days
Related Slideshows
11
8-top-ai-courses-for-customer-support-representatives-in-2025.pptx
JeroenErne2
44 views
10
7-essential-ai-courses-for-call-center-supervisors-in-2025.pptx
JeroenErne2
45 views
13
25-essential-ai-courses-for-user-support-specialists-in-2025.pptx
JeroenErne2
36 views
11
8-essential-ai-courses-for-insurance-customer-service-representatives-in-2025.pptx
JeroenErne2
33 views
21
Know for Certain
DaveSinNM
19 views
17
PPT OPD LES 3ertt4t4tqqqe23e3e3rq2qq232.pptx
novasedanayoga46
23 views