检测数据包嗅探器
我正在编写一个与网络相关的应用程序,如果检测到数据包嗅探器,我想通过将其关闭来保护它免受逆向工程的影响。如何检测数据包嗅探器是否正在运行?我可以检查正在运行的应用程序,并根据预定义的字符串(wireshark、httpanalyzer 等)检查它们的名称,但这似乎不是最好的方法。有没有办法确定应用程序是否正在嗅探数据包?谢谢
I'm writing an network related application and I want to protect it from reverse engineering by shutting it down, if packet sniffer is detected. How can I detect if packet sniffer is running? I could check the running apps and check their names against pre-defined strings (wireshark, httpanalyzer, etc..), but that doesn't seem to be the best way to do it. Is there a way to determinate if application is sniffing packets? Thanks
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(2)
一般来说,基本上没有办法做到这一点。当今使用的大多数网络旨在以允许(甚至要求)电缆上的所有设备查看数据包的方式通过网络发送数据包。
您必须克服这样的观念:您的作品非常有价值,因此您需要以这种方式(或通过使用复制保护、混淆等)来保护它。通过制作一个每个人都愿意实际付费的优秀应用程序来保护您的应用程序。
There is fundamentally no way to do this in general. Most networks in use today are intended to send the packets across the network in a manner that permits (or even requires) all devices on the cable to see the packets.
You have to get over the concept that your work is so valuable that you need to protect it in this way (or by using copy protection, obfuscation, etc). Protect your application by producing a great application that everyone will want to actually pay for.
你知道你可以使用 openwrt 在路由器上运行嗅探器,但你无法检测到这一点。只需加密流即可。
You know you can run the sniffer on the router using openwrt and there is no way you could detect that.Just encrypt the stream.