只是补充一个警告:如果你打算使用混淆，检查一切仍然工作!混淆可能会改变类名和方法名。因此，如果你使用反射来调用某些方法和/或类(就像在插件架构中)，你的应用程序在混淆后可能会失败。另外，堆栈跟踪对于跟踪错误可能是无用的。

Here's one idea: you could have a server hosted by your company that all instances of your software need to connect to. Simply having them connect and verify a registration key is not sufficient -- they'll just remove the check. In addition to the key check, you need to also have the server perform some vital task that the client can't perform itself, so it's impossible to remove. This of course would probably mean a lot of heavy processing on the part of your server, but it would make your software difficult to steal, and assuming you have a good key scheme (check ownership, etc), the keys will also be difficult to steal. This is probably more invasive than you want, since it will require your users to be connected to the internet to use your software.

还有Salamander，这是一个来自Remotesoft的原生。net编译器和链接器，可以在没有。net框架的情况下部署应用程序。我不知道它是否符合它所宣称的。

抱歉，完全保护应用程序是不可能的。

Use online update to block those unlicensed copies. Verify serial number from different modules of your application and do not use a single function call to do the verification (so that crackers cannot bypass the verification easily). Not only check serial number at startup, do the verification while saving data, do it every Friday evening, do it when user is idle ... Verify application file check sum, store your security check sum in different places. Don't go too far on these kind of tricks, make sure your application never crash/get into malfunction while verifying registration code. Build a useful app for users is much more important than make a unbreakable binary for crackers.

是的。如果代码没有混淆，. net代码非常容易进行逆向工程。

混淆将给试图逆向工程您的软件的人增加一层烦恼。根据你得到的版本不同，你会得到不同程度的保护。

Visual Studio包括Dotfuscator的一个版本。因为它是一个捆绑版本，你肯定不会得到最强烈的混淆。如果您查看它们的特性列表，就会清楚地看到您遗漏了什么(以及应用程序将如何使您的代码更安全)。

还有其他一些免费或开源的。net混淆器(但我不能评论它们的质量或使用的各种方法):

Obfuscar 巴别塔。网上

最后，没有什么是完美的。如果有人真的想看看你的软件是如何工作的，他们会的。