Advantage And Disadvantage - PowerPoint PPT Presentation

About This Presentation
Title:

Advantage And Disadvantage

Description:

Title: SoftICE Author: Last modified by: Created Date: 12/20/2002 11:02:43 AM Document presentation format: – PowerPoint PPT presentation

Number of Views:522
Avg rating:3.0/5.0
Slides: 21
Provided by: 6649913
Category:

less

Transcript and Presenter's Notes

Title: Advantage And Disadvantage


1
Advantage And Disadvantage
  • Advantage
  • Reduced Risk
  • Reduced Cost
  • Disadvantage
  • There are practical limits to the extent that a
    system can be improved by re-engineering
  • ?? ?????

2
Software Re-Engineering
  • Process
  • Source Code Translation (C C)
  • Reverse Engineering
  • Program Structure Improvement
  • Program Modularization
  • Data Re-Engineering

3
Re-Engineering Issues
  • The quality of the software to be re-engineered
  • The tool support available for re-engineering
  • The extent of data conversion required
  • The availability of expert staff
  • ?? Microsoft Window??

4
Reverse Engineering
  • Definition
  • The Process of analyzing software with the
    objective of recovering its design and
    specification
  • Help Engineers to understand a program before
    reorganizing its structure

5
Realism of Reverse Engineering
BCB6.0(???)
BCB 6.0(???)

Key Generator
6
??????????
  1. ?????????????
  2. ??????????????????,??hex editor????,????????????
  3. ????????????????????????(???)

7
???????????
  • CALL -- ?? function
  • JNZ -- jump if not zero
  • JZ -- jump if zero
  • CMP -- ??

8
Demo
9
??????????,????????????
10
Reference
  • Heko????http//thunder.prohosting.com/heco/

11
Merry Christmas and Happy New Year
12
?SoftICE????Reverse-Engineering
  • ??? ???

13
???SoftICE?
  • SoftICE Driver Suite ?????????Windows????????????
    ?? ???
  • SoftICE Driver Suite?? DriverAgent-?????????????
    ??VtoolsD-??Windows?VxDs????? DriverWorks-???????
    ??????????????SoftICE-??????????????????

14
NuMega SoftICE
  • ??
  • 1.??Internet??????,?????????????????????
  • 2.?? Windows Millennium Edition,Windows
    NT,Windows 95,Windows98 ? Windows
    2000,????Windows ????????????????????? ?????????
  • 3.??Pentium, Pentium Pro, Pentium
    III???????????????,?? ????SMP(SoftICE Windows
    NT)???Intel???????(APIC)?????8 ?CPU?
  • 4.??Microsoft Kernel Debug extensions?

15
SoftICE???
16
SoftICE
Registers ? Flags  ? R ??? ?????? register ??
Data Window ? E ???, D ?? ?????????
Code Window ? A ???, U ?? ???????, ? mov eax, ebx ???
Command Window ? DOS?? ???? ????
17
??HOTKEY
  • F1 - Help F5 - RUN F8 - Trace (into call) F10
    - Trace (not into call) F12 - RET

18
Example 1
  • 137C0151       CMP BYTE PTR 14AC,00 
    137C0156       JNZ  015C  137C0159       CALL
    1A43  137C015C       MOV  AL,9
  • ?????????????14AC??00,???????????????
  • ??1??????????????????00 ,??????,??????2????,??????
    ???4?(015C) ?????,??????2?,???3?

19
Example 1
  • ??2??????,?? JZ 015C????????????????
  • ?????? JMP 015C,???1??????????????3?
  • ????????? JMP 015C
  • ??1??? MOV BYTE PTR 14AC, 01 ,??2??? JMP 015C

20
Example 2(Winzip32 v6.3)
  • 00409D89    call 004096EA  00409D8E    test eax,
    eax  00409D90    jne 00409DD3  00409D92    call
    00409F9C
  • ? 1 ?. ?? call ????????,????? eax ?  1 ? 0
  • ? 2 ?. test eax, eax ??? eax ?? 0
  • ? 3 ??? eax ? 0 ??,???? 4 ??? call?? eax ?? 0
    ??,??? 00409DD3
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Advantage And Disadvantage" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!