How to protect an application from code injection?

D

Dmitry Donskoy2015-02-28 13:52:01

Programming

Dmitry Donskoy, 2015-02-28 13:52:01

Hello, how can I protect an application written in C ++.
I would like to know:

how you can detect and prevent the injection of someone else's code;
protect application data from reading / writing from outside;

Now to protect the application is used:

Checking hash sums of files received from the server;
Storage of important data with salt (magic number);

I would also be grateful for useful literature on writing "anti-cheat" and other auxiliary security utilities.
I don’t want to make a hybrid application (using C ++ and a virtual machine: lua, pawn, squerli, and others) - an additional waste of time and effort, in addition to debugging code twice as much.

Reply

Answer the question

In order to leave comments, you need to log in

3 answer(s)

A

Adamos, 2015-02-28
@Adamos

You can try to imagine what exactly a cheat can do with the data, and build in a check to see if the data has been changed in an illogical way.
A kind of test built into the application itself. By the way, if you really periodically call a certain function with test data and compare the results with known ones, you can catch the moment when the function was changed and began to do something wrong or wrong. No hash checks etc.

V

Vyacheslav Barsukov, 2015-02-28
@slavabars

There are many ways, from simple - hash verification, to verification of the number of lines or characters in the application.
More and more depends on the imagination.

V

Vladimir Martyanov, 2015-02-28
@vilgeforce

In general, a difficult task ... Commercial protectors - I think it's an easy option.