how secure are compiled to executables

[hell0we]

Hi everyone,

Sorry if this sounds basic, but we all start off as n00bs sometime .

I want to use a script to use the runas feature of autoit to run some commands as the local admin of a group of computers.

My question is, how secure is the password saved in the script when the script is compiled to exe, can the script be reverse engineered to gain access to the password?

runas ("admin","testpc","admintest",0,"c:\windows\system32\notepad.exe")

[Melba23]

hell0we,

Welcome to the Autoit forum.

Searching the forums will provide you with a lot more information in greater detail, but in brief:

- Your plain language script is within the compiled .exe, but in compressed form. It is not immediately viewable with a hex editor, but is by no means secure as it is expanded in memory when the .exe is run.

- Obfuscator (part of the full SciTE4AutoIt3 package) will obscure your script by changing variable and constant names (and a lot more!), which makes it harder to decompile but again does not render the .exe secure.

So, compiling an AutoIt script will prevent quick snooping, but a determined, experienced hacker can relatively easily get your source - including passwords, specific filenames, etc - or the encryption routines you have used in your script to encrypt/decrypt them if they are stored in another file.

Probably not what you wanted to hear, sorry!

M23

[Mat]

Adding to what Melba said, it's all about getting it in proportion. No matter what security systems you use, a determined and knowledgeable hacker given enough time will get to what they want. What you need to think about is how secure it needs to be, and that depends on what the prospective hacker would stand to gain from getting such a password. Usually the answer is "Very little". In which case, _StringEncrypt + obfuscator + compiling is more than adequate. If lots of money is involved then I would definitely look at other solutions.

One good idea would be to have a semi-admin, who can do some normal unimportant tasks, but it not allowed to do some of the more dangerous tasks. Then it's not so much of a problem any more.

[hell0we]

Cheers chaps,

I will obfuscate the file, setup another local admin account for running what i need to run and if by some freak chance i get a computing geek in there that does have the time then i will re-image the computers if they play up

realisticaly it's a controlled environment so it's an acceptable risk.

Thanks for your help chaps.

Aus.

[BrewManNH]

In the AD that I maintain I created a user that I use to join computers to our domain, the user name and password is stored in plaintext in the SysPrep file. It's in plaintext so it's not very secure, but I have also made it so that this user can't log in to any computer, can't do much of anything except to join computers to the domain. It's like Mat said, you can make it so that the user that you want to have in your script only has credentials to do only so much on your systems, so if someone gets the username and password they can't do all that much with it.

[Cars0n66]

If you Google around you might find it. there are things to look at your source sadly.

It seriously will always be a problem to deal with in any type of programing C, Java, python. your source is obtainable through some guy with no life just spending days/weeks/months of countless work, just to undo your work. and sad as it is there are more and more everyday

so to answer your question your password is somewhat not secure. one suggestion you could rar the .exe and put a password lock on it.but it sounds like you want your password in your .exe to be protected. And you want to have your .exe just open ready for use.

so my rar suggestion might not be good solution for you.

Edited February 22, 2011 by Cars0n66

[Melba23]

Cars0n66,

I would remove all reference to a "decompiler" from your last post NOW!

It is not acceptable to even mention such things here.

M23

[Valik]

If you Google around you might find it. I once lost the source to my .exe and i found

Some dude who made a AutoIT script to decompile a AutoIT.exe file. I have tested it and it works.

and his decompiler still works on the new Au3 .exe files.

so to answer your question your password is somewhat not secure. one suggestion you could rar the .exe and put a password lock on it.but it sounds like you want your password in your .exe to be protected. And you want to have your .exe just open ready for use.

so my rar suggestion might not be good solution for you.

Congratulations, you just admitted you violated the AutoIt license agreement. Why shouldn't I ban you from this forum?