ePrints.FRI - University of Ljubljana, Faculty of Computer and Information Science
slovenščina

Thwarting reverse engineering of machine code

Sašo Pajntar (2011) Thwarting reverse engineering of machine code. EngD thesis.

[img]
Preview
 PDF
Download (3013Kb)

    Abstract

    Reverse engineering is a process in which we try to discover the details of software, while we do not have access to its source code. In the diploma thesis we present reverse engineering process on Microsoft Windows operating system. First, we describe PE format and structure of x86 assembler. Then we describe tools, which are used in process of reverse engineering. The focus is on debuggers, dissasemblers and system monitors. We describe functionality of such tools to detect and thwart reverse engineering process. We focus on the use of junk and self-modifying code, since the goal of the thesis was to develope a tool, which will use these methods to code and decode machine instructions. Finaly, we describe the use of the tool, its weaknesses and possible improvements for better protection of machine code.

    Item Type: Thesis (EngD thesis)
    Keywords: PE format, x86 assembler, debugger, dissasembler, system monitor, junk code, self-modifying code
    Number of Pages: 117
    Language of Content: Slovenian
    Mentor / Comentors:
    Name and SurnameIDFunction
    doc. dr. Peter Peer294Mentor
    Link to COBISS: http://www.cobiss.si/scripts/cobiss?command=search&base=50070&select=(ID=00008855636)
    Institution: University of Ljubljana
    Department: Faculty of Computer and Information Science
    Item ID: 1596
    Date Deposited: 16 Dec 2011 18:40
    Last Modified: 23 Dec 2011 21:51
    URI: http://eprints.fri.uni-lj.si/id/eprint/1596

    Actions (login required)

    		 View Item
    EPrints Logo
    ePrints.FRI is powered by EPrints 3 which is developed by the School of Electronics and Computer Science at the University of Southampton. More information and software credits.