Comments on: Multiple Updates https://ntcore.com/multiple-update/ Fri, 27 Mar 2009 10:52:17 +0000 hourly 1 https://wordpress.org/?v=6.9 By: Daniel Pistelli https://ntcore.com/multiple-update/#comment-155 Fri, 27 Mar 2009 10:52:17 +0000 http://rcecafe.net/?p=77#comment-155 Sorry, but I don’t see the point in protecting something which stores it source code on the local machine.
Or is the source code outside, gets compiled and then downloaded on the local machine?
In that case, the only thing, again, which can cause problems is name obfuscation and you can’t use a packer on dlls.
Just use an obfuscator without name obfuscation and you won’t have problems.

]]> By: Jens https://ntcore.com/multiple-update/#comment-154 Fri, 27 Mar 2009 08:06:18 +0000 http://rcecafe.net/?p=77#comment-154 Thx Daniel.

Actually we spoke about it and the situation is that

a) Exe gets compiled at startup and runs
b) Parts of the exe are compiled when accessed through the already started exe

We just saw that we also use reflections, so the problem is the “extra” code that gets compiled when the exe is already compiled/started.

Thx,
Jens

]]> By: Daniel Pistelli https://ntcore.com/multiple-update/#comment-153 Thu, 26 Mar 2009 22:34:06 +0000 http://rcecafe.net/?p=77#comment-153 Well, runtime code generation in .net is achieved through reflection. Thus, the method I tould you should be a valid one to detect if an assembly uses reflection.

Speaking of packers, runtime code generation doesn’t conflict with them, since .net packers only extract the original assembly in memory.

Obfuscators on the other hand could create problems, because of name obfuscation. Just disable name obfuscation and you won’t have problems with reflection.

]]> By: Jens https://ntcore.com/multiple-update/#comment-152 Thu, 26 Mar 2009 15:19:35 +0000 http://rcecafe.net/?p=77#comment-152 Hi Daniel!
No. I just want to check if the exe uses some runtime compilation (for example webservices sometimes do). If so, the executables usually cannot be packed/protected with the common applications you usually can use.

]]> By: Daniel Pistelli https://ntcore.com/multiple-update/#comment-151 Tue, 24 Mar 2009 00:22:12 +0000 http://rcecafe.net/?p=77#comment-151 high6: Yes, the new version will have file comparing capabilities.

Jens: Hello. What do you mean by reflections? If you mean that it uses the reflection namespace, the easiest way is to check the TypeRef tables.

]]> By: Jens https://ntcore.com/multiple-update/#comment-150 Mon, 23 Mar 2009 12:04:59 +0000 http://rcecafe.net/?p=77#comment-150 Hi..
Daniel do you maybe know a way to detect if a .NET exe has reflections?
Thx in advance

]]> By: high6 https://ntcore.com/multiple-update/#comment-149 Sun, 22 Mar 2009 21:19:27 +0000 http://rcecafe.net/?p=77#comment-149 Will the new version have an exe comparing feature?

]]> By: Daniel Pistelli https://ntcore.com/multiple-update/#comment-148 Mon, 09 Mar 2009 17:34:19 +0000 http://rcecafe.net/?p=77#comment-148 I understand, unfortunately you can’t access .NET tables from script. If you need to solve all dependencies as well you may try out admiral’s tool:
http://www.ring3circus.com/downloads/admiraldebilitate/
I’ve never tried it, but maybe it’s just what you need.

]]> By: Rene https://ntcore.com/multiple-update/#comment-147 Mon, 09 Mar 2009 17:23:35 +0000 http://rcecafe.net/?p=77#comment-147 hi thanks for the answer but what about in the references i used that removestrongnamesignature, but when try to load the app could not find the dll with that signature, so i had to go to the app references and put 0 in the ref public key

]]> By: Daniel Pistelli https://ntcore.com/multiple-update/#comment-146 Mon, 09 Mar 2009 00:31:17 +0000 http://rcecafe.net/?p=77#comment-146 Well, you can use the RemoveStrongNameSignature function to achieve that. You can’t access the .NET metadata tables directly from script. For that you have to wait for the new CFF Explorer (when python will be embedded). But using RemoveStrongNameSignature produces the same result.

]]>