Goals and Limits Anti-debug techniques, or anti-debug tricks, are methods that make debugging more difficult. The general process is to detect a debugger or debugging technique and respond accordingly. The response should be clever and not too close to the time of detection. Reliability is also an issue to consider:
Code Virtualization Code virtualization is a very powerful obfuscation technique. The main idea is to transform a function or application into an interpreter (virtual machine) and a corresponding bytecode that is interpreted at runtime. The goal is to make the reverse engineer understand how the interpreter works before understanding how
Code Obfuscation The basic idea of code obfuscation is to transform a piece of code into a version that is functionally equivalent, but more difficult to reverse engineer. The goal is to remove all the abstractions that the developer has added in order to create a well-modularized and easy-to-maintain code.
Threat Models A traditional threat model used for software security is the following: software runs remotely, in the form of a dynamic web page, a remote API, or a network daemon, as shown in the figure below: To protect that software from external threat vectors (the red arrows), you can
Basics In the context of computer programming, instrumentation refers to the measure of a product's performance, to diagnose errors, and to write trace information. Instrumentation can be of two types: source instrumentation and binary instrumentation. Source: Wikipedia Instrumentation is the ability of an application to incorporate the following: