1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

[help] How to Really obsfucate a VB .NET 2010 Program?

Discussion in 'Visual Basic .NET' started by skypigeon, Jun 30, 2012.

  1. skypigeon

    skypigeon Junior Member

    Joined:
    Jul 25, 2011
    Messages:
    113
    Likes Received:
    4
    I have searched google and youtube for tutorials, and I found one. But it is not working, my code can still be seen by programmers.. van you give me a link or tip on how to obsfucate my program? thanks guys!
     
  2. Fathom

    Fathom Power Member

    Joined:
    Jul 1, 2011
    Messages:
    518
    Likes Received:
    282
    Location:
    Hertfordshire
    If you mean that programmers can see your code through a program like firebug, then you can't hide that.
     
    • Thanks Thanks x 1
  3. bzy39

    bzy39 Regular Member

    Joined:
    Jan 15, 2009
    Messages:
    434
    Likes Received:
    239
    try SmartAssembly
     
    • Thanks Thanks x 1
  4. gooldude13

    gooldude13 Newbie

    Joined:
    Jun 11, 2011
    Messages:
    24
    Likes Received:
    25
    it's not that simple.

    .net applications are compiled down to an easy to understand (and decompile) bytecode format. decompilers take the bytecode and translate it to a higher level language that is easier to understand.

    there are two ways you can go about protecting your applications.

    1.) Obfuscate the bytecode i.e. run it through a program that will make the logic of the program too complex for a passing attacker to understand.
    2.) Prevent decompilation of the program into bytecode.

    For the first option, there are a variety of programs available such as Dotfuscator that take your program and apply (seemingly) complex transforms to the bytecode to make it hard for an attacker to understand. as a further example, in java, the bytecode format has a goto opcode but the language specification does not which enables good obfuscators to do a lot of obfuscation tricks.

    For the second option, I am unable to advise you of any programs as i'm a Java developer and my knowledge of it comes from that. this option is basically implemented by abusing the JVMs bytecode verifier by modifying .class files after compilation. Meaning - the program is interpreted by the JVM correctly when it's run, but when you try to decompile the decompiler will fuck up because it is unable to understand certain things like junk code, etc. there are other examples of this phenomena available for flash actionscript e.g. SWFEncrypt. just search for one for VB .NET

    hope this was helpful.
     
    • Thanks Thanks x 2
  5. skypigeon

    skypigeon Junior Member

    Joined:
    Jul 25, 2011
    Messages:
    113
    Likes Received:
    4
    wiw Im just a noob programmer gooldude13... I can not undertsand some of the words you said.. Anyway thanks! Do you know any free crpter?
     
  6. noermanto

    noermanto Regular Member

    Joined:
    Nov 18, 2009
    Messages:
    305
    Likes Received:
    288
    Occupation:
    None
    Location:
    # JKT #
    Home Page:
    Nothing really can obfuscate a VB .NET 2010 Program, since the better you do it, there ARE always other tools to decompile it. And we even can get it for free, if you know where to search.

    But if you insist, try the most expensive obfuscate tool since it usually provides better protection. On my last experiences most softwares can be decompile. But some are hard and need some time that I don't have.
     
  7. theMagicNumber

    theMagicNumber Regular Member

    Joined:
    May 13, 2010
    Messages:
    345
    Likes Received:
    195
    Completly useless post. Your post is BLA BLA BLA bytecode BLA BLA BLA Dotfuscator, whichi is a shit. You are trying to be a smart ass...
    You won't be be able to find a good obfuscator for free.
     
  8. jazzc

    jazzc Moderator Staff Member Moderator Jr. VIP

    Joined:
    Jan 27, 2009
    Messages:
    2,468
    Likes Received:
    10,155
    Actually, your post is useless, not his.

    He took the time to explain to the OP how things work. What did you do? Spent 30 seconds bitching without providing any knowledge?

    That minus rep was from me, in case you were not sure. This is a community that helps each other and all this content is because of the contributions of members who take their time to help others. We do not approve of libel. There 's a lot of other places to splash your shit on, keep it decent on BHW.
     
    • Thanks Thanks x 3
    Last edited: Jun 30, 2012
  9. theMagicNumber

    theMagicNumber Regular Member

    Joined:
    May 13, 2010
    Messages:
    345
    Likes Received:
    195
    The fact that OP knows what obfuscate means, makes gooldude13 post's useless.
    My post contained more useful information - the OP should stop looking for free tutorials and obfuscators and look for paid solution.
    I am trying to help in almost all of my posts.
     
  10. jazzc

    jazzc Moderator Staff Member Moderator Jr. VIP

    Joined:
    Jan 27, 2009
    Messages:
    2,468
    Likes Received:
    10,155
    On the contrary, it 's clear the OP knows next to nothing about obfuscation since he was "looking for tutorials". Nobody who understand the obfuscation need would be looking for a tutorial because it 's irrelevant.

    More over, this is not a private help site. Apart from the OP, many others who find their way to this thread may find something useful and new to learn. gooldude13 's post laid the very basics in a casual way for a reader to start grasping the problem.

    Your post was mostly bitching and in the end your advice was "buy one". Really? That 's your solution to the obfuscation problem in the .net framework? Buying one? Which one? There 's more than 30 commercial solutions out there and the great majority of them is a joke. Some are even blatantly lying on their sites about what their software actually does. See, I have done my homework.

    Not knowing is not a problem. We all know very little. What I find appalling and strongly oppose is trying to suppress other people from positively contributing their knowledge.
     
    • Thanks Thanks x 1
    Last edited: Jun 30, 2012
  11. gimme4free

    gimme4free Executive VIP Jr. VIP Premium Member

    Joined:
    Oct 22, 2008
    Messages:
    1,884
    Likes Received:
    1,932
    I use Eazfuscator - This is a free app, simply click & drag the project file into the window & then everytime you click Build on a Release it will automatically obfuscate the file & then I encrypt with WinLicense. WinLicense can be reversed by a good cracker but it helps to prevent your software from being leaked so quickly, especially if you update your program regularly. Unfortunately it would seem that there is no fail-safe method of keeping your code to yourself but you can make the cracker's job a royal pain in the ass by using these apps & also adding in lots of fake license related messages / backup checks without any text that the cracker could easily search for in your program.
     
    • Thanks Thanks x 2
  12. Chris22

    Chris22 Regular Member

    Joined:
    Sep 29, 2010
    Messages:
    400
    Likes Received:
    1,059
    .NET reactor is pretty good.

    Although obfuscation adds very little protection for your app.
     
  13. w84it

    w84it Regular Member

    Joined:
    Jun 18, 2009
    Messages:
    442
    Likes Received:
    752
    If you have something really special that you would like to keep safe look into server side functions.
    So your precious code is running on a server and your client(shared application) makes calls and gets the response for whatever. XML works good for that
     
    • Thanks Thanks x 1