How to save you app from hacking? We will discuss a protection mechanisms and ways to hack them.
Основные тезисы:
- Основы LLDB;
- Способы защиты от нежелательного дебага вашего приложения;
- Оценка эффективности этих способов;
- Способы обхода приведенных методик;
- Обфускация кода и другие полезные практики защиты;
- Небольшое демо по взлому:)
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
"You shall not pass : anti-debug methodics"
1. {
Author: Maksym Sysenko
Company: Techery
}
You shall not pass : anti-debug
methodics
“Exhaustive prevention is an illusion. We
can't secure misconfiguration, shadow IT,
third parties, human error, former
employee... Focus on what matters more and
be ready to react.”
― Stephane Nappo
7. Max:Release newowner$ lldb ./Heimdall
(lldb) target create "./Heimdall"
Current executable set to './Heimdall' (x86_64).
(lldb) process launch
Process 5139 launched: './Heimdall' (x86_64)
YOU SHALL NOT PASS!
Process 5139 exited with status = 45 (0x0000002d)
16. int main(int argc, const char * argv[]) {
printf("YOU SHALL NOT PASS!n");
if (AmIBeingDebugged()) {
return 13;
}
printf("Passed!n");
return 0;
}
17. Max:Release newowner$ lldb ./Heimdall
(lldb) target create "./Heimdall"
Current executable set to './Heimdall' (x86_64).
(lldb) process launch
Process 24625 launched: './Heimdall' (x86_64)
YOU SHALL NOT PASS!
Process 24625 exited with status = 13 (0x0000004c)