Revision as of 19:24, 4 July 2022 edit Elosiomek (talk \| contribs) 14 edits mNo edit summary ← Previous edit		Revision as of 21:06, 4 July 2022 edit undo Guy Harris (talk \| contribs) Extended confirmed users 79,994 edits →Use as camouflage: "Code" is a mass noun here, so it's just "standard code", not "a standard code". Next edit →
Line 142: ===Use as camouflage=== Self-modifying code is more complex to analyze than a standard code and can therefore be used as a protection against [[reverse engineering]] and [[software cracking]]. Self-modifying code was used to hide copy protection instructions in 1980s disk-based programs for platforms such as [[IBM PC]] and [[Apple II]]. For example, on an IBM PC (or [[IBM PC compatible\|compatible]]), the [[floppy disk]] drive access instruction <code>[[int 0x13]]</code> would not appear in the executable program's image but it would be written into the executable's memory image after the program started executing. Self-modifying code is also sometimes used by programs that do not want to reveal their presence, such as [[computer virus]]es and some [[shellcode]]s. Viruses and shellcodes that use self-modifying code mostly do this in combination with [[polymorphic code]]. Modifying a piece of running code is also used in certain attacks, such as [[buffer overflow]]s.

Self-modifying code: Difference between revisions