Covert Java: Techniques for Decompiling, Patching, and Reverse Engineering

Name: Covert Java: Techniques for Decompiling, Patching, and Reverse Engineering
Price: 1273 TWD
Availability: Discontinued
Author: Alex Kalinovsky
ISBN: 0672326388

Alex Kalinovsky

出版商: SAMS
出版日期: 2004-05-13
售價: $1,340
貴賓價: 9.5 折 $1,273
語言: 英文
頁數: 288
裝訂: Paperback
ISBN: 0672326388
ISBN-13: 9780672326387
相關分類: Java 程式語言

已絕版

買這商品的人也買了...

$600

The Java Tutorial: A Short Course on the Basics, 3/e (Paperback)
~~$980~~ $774

C++ Primer, 3/e 中文版
$1,029

Operating System Concepts, 6/e (Windows XP Update)
~~$2,340~~ $2,223

Programming the Microsoft Windows Driver Model, 2/e (Paperback)
~~$760~~ $600

資料庫系統原理第三版 (Fundamentals of Database Systems, 3/e)
~~$590~~ $466

ASP.NET 程式設計徹底研究
~~$600~~ $474

Windows Server 2003 Active Directory 建置指南
~~$820~~ $804

數位影像處理 (Digital Image Processing, 2/e)
~~$750~~ $675

鳥哥的 Linux 私房菜－伺服器架設篇
~~$560~~ $504

鳥哥的 Linux 私房菜─基礎學習篇增訂版
~~$850~~ $723

SCJP‧SCJD 專業認證指南 (Sun Certified Programmer & Developer for Java 2 #310-305 與310-027)
~~$480~~ $379

人月神話：軟體專案管理之道 (20 週年紀念版)(The Mythical Man-Month: Essays on Software Engineering, Anniversary Edition, 2/e)
~~$750~~ $593

JSP 2.0 技術手冊
~~$780~~ $663

CCNA 認證教戰手冊 Exam 640-801 (CCNA Cisco Certified Network Associate Study Guide, 4/e)
~~$490~~ $382

最新 JavaScript 完整語法參考辭典第三版
~~$2,360~~ $2,242

Decompiling Java
~~$2,340~~ $2,223

Microsoft Windows Internals: Microsoft Windows Server 2003, Windows XP, and Windows 2000, 4/e
~~$1,881~~ $1,782

Linux Device Drivers, 3/e (Paperback)
~~$590~~ $460

Struts 333個應用範例技巧大全集
~~$580~~ $452

Sniffer Pro 網路最佳化與故障排除手冊
~~$620~~ $527

Linux iptables 技術實務─防火牆、頻寬管理、連線管制
~~$1,300~~ $1,235

Reversing: Secrets of Reverse Engineering (Paperback)
~~$2,375~~ $2,250

Understanding the Linux Kernel, 3/e (Paperback)
~~$650~~ $507

ASP.NET 2.0 深度剖析範例集
~~$450~~ $356

Ajax 技術手冊 (Foundations of Ajax)

商品描述

Have you ever been in a crunch where all conventional approaches have failed? Do you know of a product thatsolves exactly the same problem you are facing but there is no documentation on how to implement it? Are you using a third-party library for which you need to change some of the logic but you don't have the source code?

This book shows how to overcome unsurpassable problems with practical methods such as:

Decompiling and obfuscating classes

Hacking non-public variables and methods

Replacing and patching application classes

Using Profilers for application runtime analysis

Eavesdropping to facilitate troubleshooting and performance tuning

Intercepting control flow and controlling class loading

Understanding and tweaking bytecode

Altering third party application logic

Hacking JVM behavior

Protecting commercial applications from hackers

Author Alex Kalinovsky acknowledges that the techniques in Covert Java are controversial, but as he says in the Introduction "...Any information or discovery can be used for good or ill. This book is for the good guys, and if you are a bad guy please stop reading right now and get a new job with the testing team."

Tricks and in-depth information presented in Covert Java can save you hours of effort. Each chapter focuses on a technique that solves a specific problem -- outlining the problem, demonstrating the solution, and then suggesting additional ideas for testing the approach

Introduction.
1. Getting Started.

Techniques Overview—When and Why to Use Each Method. Improving Productivity with File Managers. Sample Application Functionality and Structure. Quick Quiz. In Brief.

2. Decompiling Classes.
Determining When to Decompile. Knowing the Best Decompilers. Decompiling a Class. What Makes Decompiling Possible? Potential Problems with Decompiled Code. Quick Quiz. In Brief.

3. Obfuscating Classes.
Protecting the Ideas Behind Your Code. Obfuscation As a Protection of Intellectual Property. Transformations Performed by Obfuscators. Knowing the Best Obfuscators. Potential Problems and Common Solutions. Using Zelix KlassMaster to Obfuscate a Chat Application. Cracking Obfuscated Code. Quick Quiz. In Brief.

4. Hacking Non-Public Methods and Variables of a Class.
Accessing Packages and Protected Class Members. Accessing Private Class Members. Quick Quiz. In Brief.

5. Replacing and Patching Application Classes.
What Do We Do When We Have Tried Every Road but Failed? Finding the Class That Has to Be Patched. A Sample Scenario That Requires Patching. Patching a Class to Provide New Logic. Reconfiguring the Application to Load and Use the Patched Class. Patching Sealed Packages. Quick Quiz. In Brief.

6. Using Effective Tracing.
Introduction to Tracing. Tracing As an Effective Method of Learning the Software. Tracing and Logging Tools and APIs. Tracing Dos and Donts. Quick Quiz. In Brief.

7. Manipulating Java Security.
Java Security Overview. Bypassing Security Checks. Quick Quiz. In Brief.

8. Snooping the Runtime Environment.
The Value of Understanding the Runtime Environment. System Properties. System Information. Memory Information. Network Information. Accessing Environment Variables. Quick Quiz. In Brief.

9. Cracking Code with Unorthodox Debuggers.

Understanding the Internals of Unknown Applications. Conventional Debuggers and Their Limitations. Hacking with an Omniscient Debugger. Quick Quiz. In Brief.

10. Using Profilers for Application Runtime Analysis.
Why and When You Should Use Profiling. The Best Profilers for Java. Investigating Heap Usage and Garbage Collection Frequency to Improve the Performance. Browsing Object Allocation and References to Find and Fix Memory Leaks. Investigating Thread Allocation and Synchronization. Identifying Expensive Methods to Improve Performance. Investigating an Application at Runtime Using a Thread Dump. Quick Quiz. In Brief.

11. Load-Testing to Find and Fix Scalability Problems.
The Importance of Load-Testing. Load-Testing RMI-Based Servers with JUnit. Load-Testing with JMeter. Quick Quiz. In Brief.

12. Reverse Engineering Applications.

User Interface Elements and Resources. Hacking Text. Hacking Images. Hacking Configuration Files. Quick Quiz. In Brief.

13. Eavesdropping Techniques.

Eavesdropping Defined. Eavesdropping on HTTP. Eavesdropping on the RMI Protocol. Eavesdropping on JDBC Driver and SQL Statements. Quick Quiz. In Brief.

14. Controlling Class Loading.
JVM Internals from a Class Loading Perspective. Writing a Custom Class Loader. Quick Quiz. In Brief.

15. Replacing and Patching Core Java Classes.

Why Bother? Patching Core Java Classes Using the Boot Class Path. Example of Patching java.lang.Integer. Quick Quiz. In Brief.

16. Intercepting Control Flow.

Control Flow Defined. Intercepting System Errors. Intercepting System Streams. Intercepting a Call to System.exit. Reacting to a JVM Shutdown Using Hooks. Intercepting Methods with a Dynamic Proxy. The Java Virtual Machine Profiler Interface. Quick Quiz. In Brief.

17. Understanding and Tweaking Bytecode.

Bytecode Fundamentals. Viewing Class Files Using the jClassLib Bytecode Viewer. The JVM Instruction Set. Class File Format. Instrumenting and Generating Bytecode. Bytecode Tweaking Compared with AOP and Dynamic Proxies. Quick Quiz. In Brief.

18. Total Control with Native Code Patching.

Why and When to Patch Native Code. Native Code Usage in the Java Virtual Machine. Generic Approaches to Patching Native Methods. Patching Native Code on the Windows Platform. Patching Native Code on Unix Platforms. Quick Quiz. In Brief.

19. Protecting Commercial Applications from Hacking.

Setting Goals for Application Protection. Securing Data with Java Cryptography Architecture. Protecting Application Distribution from Hacking. Implementing Licensing to Unlock Application Features. Quick Quiz. In Brief.

Appendix A. Commercial Software License.

Appendix B. Resources.

Utilities and Tools. Decompiling. Obfuscating. Tracing and Logging. Debugging. Profiling. Load-Testing. Eavesdropping. Bytecode Tweaking. Native Code Patching. Protection from Hacking.

Appendix C. Quiz Answers.

Index