This time, in rctf2019, I put forward a question: sourceguardian decryption. And hook
zend_ compile_ string It can be solved
php_ screw 、
php-beast Like other extensions, there are no extensions that make significant changes to the overall execution process of PHP, and there are still general (or more general) cracking solutions. Sourceguardian is an example. This article will talk about this kind of encryption cracking scheme from the perspective of Zend virtual machine.
For the title and writeup of this question, see:
First of all, we need to be familiar with the process of PHP code execution -- that is, PHP is like this