PasGuard: protecting your Delphi-built Windows software against reverse engineering
Shipping compiled Delphi software also means handing your code, keys and logic to anyone who wants to misuse them. With PasGuard, Apptimate introduces an in-house tool built specifically for Delphi-compiled Windows executables that hardens your application in a single step: symbol obfuscation, string encryption, public-key cloaking and code signing.
A compiled Delphi application feels like a closed box, but it isn't. With freely available tools, attackers effortlessly extract readable text, function names, embedded keys and business logic from an .exe. For software that checks licences, processes sensitive data or contains valuable intellectual property, that is a real risk. That is why Apptimate developed PasGuard: a tool built specifically for Delphi-compiled Windows executables that makes your application considerably harder to dissect in a single step.
What PasGuard does
PasGuard takes your existing, Delphi-compiled executable and produces a hardened version, without requiring any changes to your source code. A single command applies several layers of protection:
- Symbol obfuscation — recognisable function and variable names are replaced with meaningless identifiers, so the structure of your code can no longer be read.
- String encryption — readable texts, messages and internal markers are encrypted and only decrypted at runtime, so they cannot simply be read from the file.
- Public-key cloaking — embedded RSA keys and cryptographic blobs are hidden, so attackers cannot easily locate and abuse them.
- Code signing — the hardened build is digitally signed, so users and systems can verify its origin and integrity.
Simple to use
PasGuard runs from the command line and fits into any build pipeline. A single call is enough to produce a hardened build:
PasGuard.exe -o MyApp.exe --encrypt-strings
Afterwards, the tool reports exactly what was applied — such as the number of obfuscated identifiers and encrypted text strings — and writes the hardened build to the specified file.
Who is PasGuard for?
PasGuard is valuable for anyone distributing standalone, Delphi-built Windows software: software vendors who want to protect their licensing model, organisations with sensitive logic or keys inside their Delphi applications, and developers who want to make reverse engineering and counterfeiting harder. No protection is absolute, but PasGuard raises the bar for an attacker significantly.
Would you like to know how to use PasGuard for your own Delphi software? Get in touch — we are happy to advise you on protecting your applications.