Reverse Engineering thoughts

From: n30 (n30_lists@hotmail.com)
Date: Tue Jan 06 2004 - 13:36:37 EST

Next message: Frank Knobbe: "Re: running L0phtcrack under wine"
Previous message: Brian Hatch: "Re: SSL Proxy"
In reply to: Jeff Williams @ Aspect: "Re: SQL Injection question"
Next in thread: Riad S. Wahby: "Re: Reverse Engineering thoughts"
Reply: Riad S. Wahby: "Re: Reverse Engineering thoughts"
Reply: johnny cyberpunk: "Re: Reverse Engineering thoughts"
Maybe reply: ethanpreston@ziplip.com: "Re: Reverse Engineering thoughts"
Reply: Adam Tuliper: "Re: Reverse Engineering thoughts"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hello Folks,

Just wanted your opinion.

Say I am pen-testing an application...It requires authentication credentials
to run. Also, the software has a demo mode & full version mode.

Now using RE (Reverse engineering), I can change the ASM & create a small
patch file to bypass the auth & convert the demo mode to full version mode.

Is this a security problem?? What should be my recommendation??

This is assuming that I work for a pen test firm & the company wants us to
test their product. So I should not be affected by DMCA?? Am i right??

Thanks in advance
-N

---------------------------------------------------------------------------
----------------------------------------------------------------------------

Next message: Frank Knobbe: "Re: running L0phtcrack under wine"
Previous message: Brian Hatch: "Re: SSL Proxy"
In reply to: Jeff Williams @ Aspect: "Re: SQL Injection question"
Next in thread: Riad S. Wahby: "Re: Reverse Engineering thoughts"
Reply: Riad S. Wahby: "Re: Reverse Engineering thoughts"
Reply: johnny cyberpunk: "Re: Reverse Engineering thoughts"
Maybe reply: ethanpreston@ziplip.com: "Re: Reverse Engineering thoughts"
Reply: Adam Tuliper: "Re: Reverse Engineering thoughts"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:44 EDT