Results 1 to 9 of 9

Thread: guardit 4 linux

  1. #1
    Super Moderator Shub-nigurrath's Avatar
    Join Date
    May 2004
    Location
    Obscure Kadath
    Posts
    430

    guardit 4 linux

    Hi,
    anyone has ever approached this protector?

    http://www.arxan.com/software-protection-products/embedded-linux-GuardIt/index.php

    sounds interesting and more recent than shiva..

    According to the whitepaper here http://www.arxan.com/ds-pdf/GuardIT-for-Linux-datasheet.pdf

    it seems to use the code-guards technique I also described few years ago: http://www.woodmann.com/forum/showthread.php?7120-Protecting-software-code-by-Guards

    Interesting, also because I completely forgot about it..

    Another interesting thing is that arxan was believed to be almost dead and instead they released an interesting protection suite for mobile terminals..
    Last edited by Shub-nigurrath; March 16th, 2012 at 06:27.
    (`._.[*~-.,.-~* ŜħůβŇĝŕřāŧħ ₪*~-.,.-~*]._.)
    There are only 10 types of people in the world: Those who understand binary, and those who don't
    http://www.accessroot.com

  2. #2
    I've searched alot about it - they work for a very limited (yet where much money stays) customership and you usually do not have access to software protected by it. Hence, their very unverified claims, mainly based off the fact they avoid real tests...
    After digging alot, I've finally discovered more about it. In essence, it's all matter of finding an hidden key in it. It can work fine on closed boxes (i.e. TV). On PC, I doubt.
    The 'software guards' is not very different from self-CRC with Solomon ECC's alike fixes...
    I want to know God's thoughts ...the rest are details.
    (A. Einstein)
    --------
    ..."a shellcode is a command you do at the linux shell"...

  3. #3

    arxan is crcs mainly

    see some research and proof of concept code done by the university (slides + pdf).
    http://www.cs.purdue.edu/people/faculty/mja/

    He wrote a few papers which are published that describe it. At its core its crc macros on predetermined ranges within the compiler using sdk, trivially solved.

  4. #4
    I used to work for an Arxan competitor, and I know that we were stealing account after account from them. They appear to be mostly living on short term government R&D contracts currently. I assume this mobile suite was either an offshoot from one of those, or something one of the grad students did, and they wanted to try to make some money off of it.

  5. #5
    Super Moderator Shub-nigurrath's Avatar
    Join Date
    May 2004
    Location
    Obscure Kadath
    Posts
    430
    I read several papers about this. Placing guards and repairing agents (for self healing) in the code is a stuff which is very well known (even skype is protected like so), the main result they did was to find a method to place these agents automatically into a petri network over compiled code. Which is a remarkable result afterall.

    The interesting stuff is that they also extended this product to other platforms like android and java (that's almost the same), but it's real that indeed I still never saw a protected product. Moreover reading better their available documents and crossing that info w the web it seems like the protector for java cannot use the guard/checker method..
    (`._.[*~-.,.-~* ŜħůβŇĝŕřāŧħ ₪*~-.,.-~*]._.)
    There are only 10 types of people in the world: Those who understand binary, and those who don't
    http://www.accessroot.com

  6. #6
    They're great at writing papers. What we heard from the customers that we took from them was that it required too much developer interaction, and things would break, and be difficult to pinpoint the causes. All the things that you DON'T want in a protection!

  7. #7
    Quote Originally Posted by enjoylife2012 View Post
    All the things that you DON'T want in a protection!
    Yes! Especially one that you paid a million dollars for, and that's going on a billion plus dollar "defense department device".

  8. #8
    Quote Originally Posted by FrankRizzo View Post
    a million dollars for
    WHAT???????????????????????????????

    You mean that a shitty cloakware license/arxan license cost that much and it is breakable by any half-assed reverser with a basic knowledge of RCE+encryption?????

    I thought it wouls cost say 50k$ to a company... a million?????????????????????????????????????????????

    omg if this's true I wont be able to... o my god

    ok, i need self-control

    omg i cant please tell me youre kidding me

    HAHAHA no I cant believe it...
    OMG how will i be serious....
    I want to know God's thoughts ...the rest are details.
    (A. Einstein)
    --------
    ..."a shellcode is a command you do at the linux shell"...

  9. #9
    Quote Originally Posted by Maximus View Post
    WHAT???????????????????????????????

    You mean that a shitty cloakware license/arxan license cost that much and it is breakable by any half-assed reverser with a basic knowledge of RCE+encryption?????

    I thought it wouls cost say 50k$ to a company... a million?????????????????????????????????????????????

    omg if this's true I wont be able to... o my god

    ok, i need self-control

    omg i cant please tell me youre kidding me

    HAHAHA no I cant believe it...
    OMG how will i be serious....
    Well, honestly, I've never seen their "industrial strength" version. BUT! I've heard the same complaints about it that you hear here about the watered down commercial version. The company that I worked for was stealing their lunch CONSTANTLY because our shit worked, unlike theirs.

Similar Threads

  1. Analyzing and debugging not linux binaries on linux
    By Xgrzyb90 in forum The Newbie Forum
    Replies: 2
    Last Post: June 13th, 2010, 12:50
  2. Need help with flexnet on linux
    By warp_mh in forum Linux RCE
    Replies: 1
    Last Post: August 13th, 2009, 06:15
  3. what about linux
    By 0xf001 in forum Off Topic
    Replies: 4
    Last Post: December 6th, 2004, 12:11
  4. flexlm + linux
    By pchouk in forum Advanced Reversing and Programming
    Replies: 0
    Last Post: July 29th, 2001, 08:01

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •