Page 1 of 1
Protected Strings Delphi Implementation
Posted: Mon Mar 30, 2015 3:22 am
by User
Hi All,
I'd like to know to implement the Protected Strings feature [Enigma API function] to hide all URLs strings.
Thanks for your time..!
Cheers,
User
Re: Protected Strings Delphi Implementation
Posted: Mon Mar 30, 2015 11:59 am
by Enigma
Hi, did you take a look at the example of how to use Protected Strings at the folder "Examples\ProtectedStrings\Delphi\"?
I think it is pretty much clear.
Let me know if you will have other questions.
Re: Protected Strings Delphi Implementation
Posted: Tue Mar 31, 2015 12:23 am
by User
Enigma wrote:Hi, did you take a look at the example of how to use Protected Strings at the folder "Examples\ProtectedStrings\Delphi\"?
I think it is pretty much clear.
Let me know if you will have other questions.
Hi,
I added a string: "
This serial number is invalid!" through "
Protection Features - Protected Strings" page. This string is inside a software i'm using, you can download it
from here. Then i protected the software using Enigma 4.30.
But, a software called
Cheat Engine 6.4 still to be able to unhide that string.
So sir, how to fully hide the string from software reverse engineering ?. Thanks for your time..!
Cheers,
User
Re: Protected Strings Delphi Implementation
Posted: Fri Apr 03, 2015 9:06 am
by User
Howdy,
It's worked, i use EP_ProtectedStringAsAnsiStringByKey in my code.
Cheers,
User
Re: Protected Strings Delphi Implementation
Posted: Wed Apr 29, 2015 4:24 pm
by icarusdc
Hi, User.
First case: Cheat Engine.
As far as I know, Cheat Engine is a memory editing tool. Your "protected string" never read by Cheat Engine because It will never be in memory as long as you don't call it.
For example, the protected string will show after click button. But you never click it and the protected string will be never located in memory so Cheat Engine won't be able to read it (and even can't modify it). The protected string never exist.
But... Once you click the button, the EP_ProtectedStringAsAnsiStringByKey function will be called by Enigma and execute the funtion. So the protected string will stored at memory and here Cheat Engine do the job, reading the memory. Your protected string wil be able to search by using Cheat Engine.
Is my explanation true? Please do a test.
Second case: SmartSniff and AES
Have you done decrypting process after encrypt it? I think you only encrypt your string but never decrypt it. So what SmartSniff did was only reading your encrypted string. SmartSniff is not a encryption decryptor. So it is not able to read the decrypted string from what string you send is.