ioncube - cracked or not?

Status
Not open for further replies.
Webferret

Webferret

Banned
Jun 18, 2007
1,257
10
0
anyone got the def on whether or not the current version of ioncube has been done over yet? (in detail for the mentally challenged tards round here like xentech and his tame buttplug scherer - "can php files encoded with ioncube be decoded back to their php source files and if so, how? Note, not looking for a response like 'yeah - the ioncube loader can do it', I'm looking for an url).
 
  • Like
Reactions: Metcalfe


Awesome, I have 2 products I am developing that I need to protect. Wouldn't have thought to look at a commercial obfuscation solution.

Thanks +rep
 
May want to be careful about who you try and fuck. Lots of companies out there that have no problem sending you a message!
 
A discussion on the crackability of IonCube and Zend's offerings

Google Search for DeZender

A minutes work with Google...

The thing is nothing is ever proof against reverse engineering, what you want to do is make it too hard to bother cracking for 99% of people, and that is what IonCube/Zend will do.

I will probably be going with one of these on a project or two I have coming up like I said, but I realise that someone will be able to crack it if they really want to.
 
Metcalfe said:
A minutes work with Google...
Click to expand...

yeah, that's where I started too. However, I don't feel like sending $15 to whats probably a scammer just to find out that I STILL don't know whether or not ioncube is cracked or not. I was hoping someone on here might have some actual real hard info.

Metcalfe said:
The thing is nothing is ever proof against reverse engineering,
Click to expand...

true, but HAVE they?



to ayzo - ha ha. v funny. not. And btw, it cant. Ioncube stuff is rendered down to bytecode instructions. The loader doesn't convert it back to php before executing it. As far as I know.
 
Webferret said:
to ayzo - ha ha. v funny. not. And btw, it cant. Ioncube stuff is rendered down to bytecode instructions. The loader doesn't convert it back to php before executing it. As far as I know.
Click to expand...

Yea just fucking with you ;) At the moment I only know of 1 "point and click" ioncube decoder but it isn't cheap at $5,000 per license. A cheaper solution is to go with these guys:

Qinvent-deZender (PHP decode, PHP decompile, decode Zend/ionCube/SourceGuardian/phpcipher/codelock/SourceCop)

I've used them for a few files and before anybody gives me hell, it was a script outsourced on DP and the douchebag tried to force me to pay him monthly to use the script when that was never part of the agreement.

Contact them on their forum, Qinvent - deZender, php decoding, dezend, zend, ioncube, sourceguardian, sourcecop, codelock, phpcipher decoding service - Powered by Discuz! and send the admin one of your files and he'll show you part of the source code so your sure they can decode it.
 
thanks ayzo. So it's official then - the ioncube 'encryption' aint worth diddly. Anyone got any alternatives cant be cracked for a dollar or two?
 
Webferret said:
thanks ayzo. So it's official then - the ioncube 'encryption' aint worth diddly. Anyone got any alternatives cant be cracked for a dollar or two?
Click to expand...

Well if you want to protect your scripts then Ioncube is definatley the strongest encoder, everything else (including Zend) is a complete joke and can be decoded within seconds by anyone with half a brain.

If you can, setup your script to use a centralized server for management features that will require a username/pass to login. For example my friend is making a automated social bookmarking script, but to make sure it's not passed around like candy you'll have to login to his site and import your title, link, description, tags, and the social bookmarking accounts. Then the script connects and fetches the info so only licensed users would be able to use it.

That isn't a 100% bullet proof solution but the amount of effort required to get around that type of protection probably wouldn't be worth the price of a legit license.
 
That's the way to go. The best defense against people scamming you is to make it worth more of their time and effort to crack it instead of just paying for the thing :-)
 
update - sent an encrypted ioncube (latest version) file to ayzo's guy, he sent it back decryted within a few minutes, perfect in every way. Amazing. So much for the $200 wonder-encoder.
 
Status
Not open for further replies.
Top Bottom