当前位置: 动力学知识库 > 问答 > 编程问答 >

encryption - How to open and edit encrypted perl script?

问题描述:

I have a perl script that is encrypted. This script can be compiled only if Filter::decrypt is installed. I have that Filter and I installed it and the script is compiled with no problem, but now I want to open that script with some text editor and edit it.

Can someone help me and tell me how can I do this?

网友答案:

Best option: Just edit your unencrypted copy and reinstall it.

Alternative: Use decr (comes with Filter::decrypt) to decrypt an encrypted file.

网友答案:

Pretty fundamentally - it's extremely difficult to make a script unreadable, simply because perl is an interpreted language. Exactly how to disentangle something is more a question of how it got tangled in the first place.

So I would suggest as a first port of call - have a look through Mastering Perl which has a whole chapter on the subject of disassembling perl code.

However if you just look at the Filter::decrypt module page, it indicates several places which the module simply cannot cover - you can only truly 'protect' code if you've control of the perl interpreter in the first place. However the things it suggests are:

Strip the Perl binary to remove all symbols.

Build the decrypt extension using static linking. If the extension is provided as a dynamic module, there is nothing to stop someone from linking it at run time with a modified Perl binary.

Do not build Perl with -DDEBUGGING. If you do then your source can be retrieved with the -Dp command line option.

The sample filter contains logic to detect the DEBUGGING option.

Do not build Perl with C debugging support enabled.

Do not implement the decryption filter as a sub-process (like the cpp source filter). It is possible to peek into the pipe that connects to the sub-process.

Check that the Perl Compiler isn't being used.

There is code in the BOOT: section of decrypt.xs that shows how to detect the presence of the Compiler. Make sure you include it in your module.

Assuming you haven't taken any steps to spot when the compiler is in use and you have an encrypted Perl script called "myscript.pl", you can get access the source code inside it using the perl Compiler backend, like this

perl -MO=Deparse myscript.pl

Note that even if you have included the BOOT: test, it is still possible to use the Deparse module to get the source code for individual subroutines.

So:

perl -MO=Deparse yourscript
perl -Dp yourscript

If these don't work - look at your local copy of Filter::decrypt and alter it so it prints the decrypted result.

分享给朋友:
您可能感兴趣的文章:
随机阅读: