Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Code protection suggestion #325

Open
swarda-master opened this issue Jan 5, 2024 · 7 comments
Open

Code protection suggestion #325

swarda-master opened this issue Jan 5, 2024 · 7 comments

Comments

@swarda-master
Copy link

swarda-master commented Jan 5, 2024

It can be useful to anyone (for Windows only): https://enigmaprotector.com/en/aboutvb.html

@longware
Copy link

no linux support ...

@cztomczak
Copy link
Owner

Does free version work with PHP Desktop?

We could add it on the KB page: https://github.com/cztomczak/phpdesktop/wiki/Knowledge-Base#how-do-i-protect-php-sources-in-the-www-directory

@swarda-master
Copy link
Author

swarda-master commented Jan 29, 2024

@longware

no linux support ...

Unfortunatelly no, only Windows as far as I know...

@cztomczak

Does free version work with PHP Desktop? We could add it on the KB page....

Yes it works. I am using it myself for my company projects and my presonal projects already and it works flawlessly. I would recommend free version, however it doesn't give us 100% protection. As the website says:

Enigma Virtual Box is used for file and registry systems virtualization and allows you to consolidate all files and registry used by your application into a single executable file without having to extract virtual files to the disk. ...... Enigma Virtual Box does not extract temporary files to the HDD; file emulation is performed in the process memory only. Enigma Virtual Box does not provide sufficient protection for virtualized files. To protect the application files, we recommend using the Enigma Protector that has a built-in Virtual Box functionality.

That means, some really smart hacker can still possibly get access to unencrypted source files. To prevent that, we can use paid version of Enigma Protector, or use free version Enigma Virtual Box and another layer for source encryption / obfuscation mentioned in here.

In our company we focus mainly to ship standalone, portable executable for customers. With EVB (free version) we can achieve that. We don't need to think about accidents, that some users will delete or modify source code (encrypted or unencrypted) and possibly break the program. No files are extracted to disk, they remains in the memory all the time which will stop most of the regular users of breaking someting.

I have to say again, it doesn't give us 100% protection out of the box without any additional steps. But it can give us another way how wrap our programs and prevent some damage. Don't forget, that hackers are always 2 steps in front of us ;-).

EDIT:
Some more interesting reading about Enigma, if someone wants to dig more: https://enigmaprotector.com/en/help.html
And official forum: https://forum.enigmaprotector.com/

@cztomczak
Copy link
Owner

cztomczak commented Jan 30, 2024

Thank you for explanation.

Added links to Enigma and AppImage on the KB wiki page:
https://github.com/cztomczak/phpdesktop/wiki/Knowledge-Base#how-do-i-protect-php-sources-in-the-www-directory

@longware
Copy link

@swarda-master
nice,3ks~
Wrapping the exe file, will it be reported virus by win10/11?
Have you ever met this in your project?

@swarda-master
Copy link
Author

@swarda-master Wrapping the exe file, will it be reported virus by win10/11? Have you ever met this in your project?

No. Not yet. Maybe I am lucky? 😎

Interesting, that some user reported false positive detection: EVB forum search, EP forum search

@drtanzil
Copy link

@longware : I got this several time. Mostly by ESET. It happen when you encrypt the php file and pack as exe.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

4 participants