Encrypt ASP with MS Script ENCODE

zhaozj2021-02-08  235

Active Server Page technology provides the application developers with scripting-based intuitive, fast

Speed, efficient application development means, greatly enhanced the development of the development. But due to ASP foot

This is written in a plain text method, so the application developer has worked hard

Once the ASP app is released, it is difficult to ensure that it is released to the operating environment.

"Source code" will not be circulated out. This creates how effective protection is developed.

The demand for the ASP script source code.

ASP operation mechanism

ASP scripts are a series of specific grammar (both currently support VBScript and JScript

Script language) Written, text composed of scripts mixed with the standard HTML page together

Document in this format. When the client's end users use a web browser via the Internet

To access an ASP script-based app, the web browser will send it to the web server.

HTTP request. Web server analysis, judging that the request is the application of the ASP script,

The interpretation of the ASP script is automatically called via the ISAPI interface.

ASP.DLL will get the specified ASP script file from the file system or internal buffer, pick up

The grammatical analysis is performed and explained. The final processing result will form HTML format

Content, return to the web browser through the Web server "original road", browse by web

The final result is presented in the client. This completes a complete ASP script.

transfer. Several organic ASP script calls constitute a complete ASP script

use.

Official encryption program: Download free download from Microsoft to SCE10chs.exe directly run

A installation process. After the installation is completed, the Screnc.exe file will be generated. This is a running

Command tool for DOS Propt.

Running Screnc - l vbscript source.asp destination.asp generates

The new file of the ASP script destination.asp is open to see ""

Inly, regardless of the annotations, it has become an unhappy ciphertext, but Chinese cannot be encrypted.

Several ASP Source Codes Protection Methods:

1. "Script Minimize", only write as little source code as possible, implementation

Business logic's script part is packaged into a COM / DCOM component and is on the ASP foot

This component is created in this, and then calls the corresponding method (Methed). Application developer

Click this idea before you have developed an ASP scripting application, or use ASP directly

After the script quickly develops the prototype system, it is for the important script to be protected and encrypted.

COM / DCOM components are re-developed, implemented and replaced.

2, "Script Encryption", the ASP script is still directly based on the source code, but

Encrypt the script before publishing the operating environment, as long as the encrypted ciphertext script

Published. That is, the process of reading the ciphertext reduction is added to the ASP.DLL read script.

There are two ways to achieve this idea: one is to develop a IIS of ISAPI itself.

Filter block, read (hook) to the ASP script file before ASP.DLL

Take it, so that the ciphertext read by the file system is reduced to Asp.dll to explain;

Method 2 is to provide support from ASP.DLL to ASP scripting encryption. Microsoft

This provides this MS Script Encode in the new version of Vbscript.dll Jscript.dll

Technical support. In this way, whether it is the client's VBScript JScript (including WSH feet)

This, etc.), or the server-side VBScript JScript (ie, ASP script) can support

Encryption processing.

转载请注明原文地址:https://www.9cbs.com/read-1341.html

New Post(0)