Many have said that to "devirtualize" the VM architecture is trivial once all the opcodes are found and are translated for that specific build.
They claim once you gain knowledge of each opcode then every virtualized function is at risk.
I have question if it's possible to create a brand new VM for every N functions or something, and if doing that would increase difficulty?
The idea is that once an attacker figures out N functions then the next X functions would take as much time to "devirtualize" because they are within a new VM.
Binary sizes and execution speed would suffer but obfuscurity would prevail. I want to hear your opinion, admin.
Issues related to VMProtect
1 post • Page 1 of 1