CN104680043A - 一种可执行文件的保护方法及装置 - Google Patents
一种可执行文件的保护方法及装置 Download PDFInfo
- Publication number
- CN104680043A CN104680043A CN201510113009.8A CN201510113009A CN104680043A CN 104680043 A CN104680043 A CN 104680043A CN 201510113009 A CN201510113009 A CN 201510113009A CN 104680043 A CN104680043 A CN 104680043A
- Authority
- CN
- China
- Prior art keywords
- executable file
- shell
- information
- add
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 50
- 230000008569 process Effects 0.000 claims description 27
- 238000013507 mapping Methods 0.000 claims description 14
- 230000001681 protective effect Effects 0.000 claims description 8
- 230000008901 benefit Effects 0.000 abstract description 3
- 238000010586 diagram Methods 0.000 description 3
- 238000011161 development Methods 0.000 description 2
- 230000006870 function Effects 0.000 description 2
- 230000008439 repair process Effects 0.000 description 2
- 230000006835 compression Effects 0.000 description 1
- 238000007906 compression Methods 0.000 description 1
- 238000005336 cracking Methods 0.000 description 1
- 239000007943 implant Substances 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 238000012795 verification Methods 0.000 description 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/12—Protecting executable software
- G06F21/14—Protecting executable software against software analysis or reverse engineering, e.g. by obfuscation
Landscapes
- Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Multimedia (AREA)
- Technology Law (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
Abstract
Description
Claims (9)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510113009.8A CN104680043B (zh) | 2015-03-16 | 2015-03-16 | 一种可执行文件的保护方法及装置 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510113009.8A CN104680043B (zh) | 2015-03-16 | 2015-03-16 | 一种可执行文件的保护方法及装置 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN104680043A true CN104680043A (zh) | 2015-06-03 |
CN104680043B CN104680043B (zh) | 2018-03-02 |
Family
ID=53315075
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201510113009.8A Active CN104680043B (zh) | 2015-03-16 | 2015-03-16 | 一种可执行文件的保护方法及装置 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN104680043B (zh) |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105487981A (zh) * | 2015-12-09 | 2016-04-13 | 珠海金山网络游戏科技有限公司 | 一种加壳软件转存文件的转换方法、装置和系统 |
CN106778226A (zh) * | 2016-11-24 | 2017-05-31 | 四川无声信息技术有限公司 | 文件壳脱壳方法及装置 |
CN107908964A (zh) * | 2017-10-17 | 2018-04-13 | 珠海金山网络游戏科技有限公司 | 一种针对Android平台Unity3D游戏中加壳文件的安全检测方法及装置 |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20100153421A1 (en) * | 2008-12-15 | 2010-06-17 | Electronics And Telecommunications Research Institute | Device and method for detecting packed pe file |
CN102024112A (zh) * | 2010-12-17 | 2011-04-20 | 四川大学 | 基于静态特征的pe文件加壳检测方法 |
CN102609666A (zh) * | 2012-01-20 | 2012-07-25 | 飞天诚信科技股份有限公司 | 一种可执行程序加壳保护方法 |
CN103530535A (zh) * | 2013-10-25 | 2014-01-22 | 苏州通付盾信息技术有限公司 | 一种Android平台应用程序保护的加脱壳方法 |
-
2015
- 2015-03-16 CN CN201510113009.8A patent/CN104680043B/zh active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20100153421A1 (en) * | 2008-12-15 | 2010-06-17 | Electronics And Telecommunications Research Institute | Device and method for detecting packed pe file |
CN102024112A (zh) * | 2010-12-17 | 2011-04-20 | 四川大学 | 基于静态特征的pe文件加壳检测方法 |
CN102609666A (zh) * | 2012-01-20 | 2012-07-25 | 飞天诚信科技股份有限公司 | 一种可执行程序加壳保护方法 |
CN103530535A (zh) * | 2013-10-25 | 2014-01-22 | 苏州通付盾信息技术有限公司 | 一种Android平台应用程序保护的加脱壳方法 |
Non-Patent Citations (1)
Title |
---|
李文: ""基于壳技术的软件保护的研究"", 《中国优秀硕士学位论文全文数据库信息科技辑》 * |
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105487981A (zh) * | 2015-12-09 | 2016-04-13 | 珠海金山网络游戏科技有限公司 | 一种加壳软件转存文件的转换方法、装置和系统 |
CN105487981B (zh) * | 2015-12-09 | 2018-02-13 | 珠海金山网络游戏科技有限公司 | 一种加壳软件转存文件的转换方法、装置和系统 |
CN106778226A (zh) * | 2016-11-24 | 2017-05-31 | 四川无声信息技术有限公司 | 文件壳脱壳方法及装置 |
CN107908964A (zh) * | 2017-10-17 | 2018-04-13 | 珠海金山网络游戏科技有限公司 | 一种针对Android平台Unity3D游戏中加壳文件的安全检测方法及装置 |
CN107908964B (zh) * | 2017-10-17 | 2021-06-08 | 珠海金山网络游戏科技有限公司 | 一种针对Android平台Unity3D游戏中加壳文件的安全检测方法及装置 |
Also Published As
Publication number | Publication date |
---|---|
CN104680043B (zh) | 2018-03-02 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN106778103B (zh) | 一种安卓应用程序防逆向破解的加固方法、系统及解密方法 | |
CN108345773B (zh) | 基于虚拟机的代码保护方法及装置、电子设备、存储介质 | |
KR101691719B1 (ko) | 프로시저로부터의 리턴-타겟 제한적 리턴 명령어들, 프로세서들, 방법들 및 시스템들 | |
US10007784B2 (en) | Technologies for control flow exploit mitigation using processor trace | |
US7587612B2 (en) | Generating and communicating information on locations of program sections in memory | |
US10019240B2 (en) | Method and apparatus for detecting code change | |
Kim et al. | RevARM: A platform-agnostic ARM binary rewriter for security applications | |
US20090271867A1 (en) | Virtual machine to detect malicious code | |
US20170372068A1 (en) | Method to identify known compilers functions, libraries and objects inside files and data items containing an executable code | |
US20160275019A1 (en) | Method and apparatus for protecting dynamic libraries | |
TWI791418B (zh) | 用以檢測運作時期所產生碼中之惡意碼的系統及方法、與相關電腦程式產品 | |
US20170214704A1 (en) | Method and device for feature extraction | |
KR20140061443A (ko) | 확장된 데이터를 갖는 메모리 덤프 및 사용자 프라이버시 보호 기법 | |
CN107408176A (zh) | 恶意对象的执行剖析检测 | |
CN109271789B (zh) | 恶意进程检测方法、装置、电子设备及存储介质 | |
US9177149B2 (en) | Method of detecting malware in an operating system kernel | |
CN105512521A (zh) | 一种软件安装包的加固保护方法和系统 | |
US8775826B2 (en) | Counteracting memory tracing on computing systems by code obfuscation | |
CN113761482A (zh) | 一种程序代码保护方法和装置 | |
US20160292417A1 (en) | Generic Unpacking of Program Binaries | |
CN104680043A (zh) | 一种可执行文件的保护方法及装置 | |
US20160232346A1 (en) | Mechanism for tracking tainted data | |
CN103514405A (zh) | 一种缓冲区溢出的检测方法及系统 | |
Kochberger et al. | SoK: automatic deobfuscation of virtualization-protected applications | |
Dejaeghere et al. | Comparing security in ebpf and webassembly |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
CB02 | Change of applicant information |
Address after: 100872 room 1706, building 59, Zhongguancun street, Haidian District, Beijing Applicant after: BEIJING SENSESHIELD TECHNOLOGY Co.,Ltd. Address before: 100872 room 1706, building 59, Zhongguancun street, Haidian District, Beijing Applicant before: BEIJING SHENSI SHUDUN TECHNOLOGY Co.,Ltd. |
|
COR | Change of bibliographic data | ||
CB02 | Change of applicant information |
Address after: 100193 Beijing, Haidian District, East West Road, No. 10, East Hospital, building No. 5, floor 5, layer 510 Applicant after: BEIJING SENSESHIELD TECHNOLOGY Co.,Ltd. Address before: 100872 room 1706, building 59, Zhongguancun street, Haidian District, Beijing Applicant before: BEIJING SENSESHIELD TECHNOLOGY Co.,Ltd. |
|
COR | Change of bibliographic data | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
CP01 | Change in the name or title of a patent holder | ||
CP01 | Change in the name or title of a patent holder |
Address after: 100193 5th floor 510, No. 5 Building, East Yard, No. 10 Wangdong Road, Northwest Haidian District, Beijing Patentee after: Beijing Shendun Technology Co.,Ltd. Address before: 100193 5th floor 510, No. 5 Building, East Yard, No. 10 Wangdong Road, Northwest Haidian District, Beijing Patentee before: BEIJING SENSESHIELD TECHNOLOGY Co.,Ltd. |