Android application reinforcement

Introduction
Function
Advantage
Scene

Introduction

For mobile applications, code encryption technologies such as source code obfuscation technology, application shelling, bytecode extraction, bytecode virtualization, bytecode transfer, assembly instruction virtualization, etc. are used to effectively solve the security risks of mobile application code and data according to the requirements of network security level protection, China Financial Mobile Payment Client Technical Specifications, Mobile Internet Application Software Security Assessment Outline and other assessment methods.

Function

Dex casing

Encrypt and hide Dex as a whole. When the crackers decompile the application, they can only see the custom shell code
Dex function extraction

The function in Dex code is protected by encryption after extraction, and the function content is decrypted and restored to the corresponding function body at runtime
Dex type extraction

Encrypt and protect the classes in Dex code after extraction, and decrypt and restore the class content to the corresponding class at runtime
Dex virtualization

Perform virtualization protection on Dex, convert the original executable bytecode into a user-defined bytecode, and call a user-defined interpreter to interpret and execute the original logic when the application executes this bytecode
DexToCpp

Nativize Dex, convert the original Java byte code into C++code, and dynamically compile the local library file, which can effectively improve the application installation and running speed, prevent Dex from being statically decompiled to obtain source code, and prevent crackers from obtaining Java code in Dex through dynamic debugging;
Code encryption compression

Use custom algorithms to compress code data to a high degree
Signature verification

Verify the application signature information to prevent applications from being re signed;
Integrity check

Check the integrity of all files in Android applications to prevent malicious tampering
Anti debugging

When Android applications run, monitor the application debugging status to prevent applications from being dynamically debugged to obtain memory data
Strict anti commissioning

Multi process daemon mode is used to monitor the running state of Android applications to prevent applications from being maliciously debugged
Anti memory Dump

Monitor the memory information of Android application running time to prevent application memory from being dumped
Inverse function repair

Monitor the function execution status to prevent the function from being repaired
Anti injection

Real time monitoring of memory information to prevent the injection of the framework into the application space, resulting in information and data leakage
Log mask

Block the Logcat log output when Android applications run, and only the Verbose, Debug, and Info level logs
Local data encryption

Encrypt and store the local data generated dynamically in the application when the Android application is running to prevent the attacker from obtaining cached data
Simulator test

Simulator detection, note: this function will cause the hardening package to fail to run on the simulator
Root detection

Root environment detection. Note: this function will cause the hardening package to fail to run on the rooted device
Java Hook detection (multi open detection)

Detect the mainstream multi open framework and Java hook detection. Note: this mode will result in the failure of the hardening package to run on the system with the Java hook environment
Native Hook detection

Detect the mainstream Native Hook framework. Once the HOOK framework is found, the application will stop running
Agent detection

Prevent application packet capturing through Vpn; VPN packet capture is detected, and the application will fail to run;
Anti screen capture

Anti screenshot processing of all pages in the application
Anti page hijacking

Prevent application sensitive pages from being hijacked and being replaced by malicious applications
Optimize APK

Decompress APK and recompress it with high compression ratio to reduce the application volume

Advantage

优势	详情
Multi firewall protection	Dex shelling, Dex bytecode extraction, Dex virtualization and DexToC technologies are adopted for the code in the App program, so that the native code in the App program is protected by four "firewalls" to prevent the code reversal of malicious analysts.
Native deep reinforcement	The native library in the app program is reinforced with a customized linker, and combined with the dynamic anti debugging technology, the difficulty of being dumped and debugged is enhanced.
Small encryption granularity	Fine granularity encryption, realizing instruction level dynamic encryption and decryption technology, only decrypting the executed instruction units, and the unexecuted instructions will not be decrypted
Instruction set randomization	Supports instruction set randomization, and the virtual code instruction set generated by each compilation is completely generated randomly
Self safety is guaranteed	The self defined virtual machine technology and source code obfuscation technology are used for the interpreter and code in the hardening of Manxi, and encryption shell protection is used to prevent hackers from cracking the application after hardening from the 'firewall'.
Full monitoring of operation process	Manxi Reinforcement will monitor the whole life cycle of the app, with runtime protection against malicious addition of files, malicious deletion of files, high-risk device operation, memory copy, etc

Scene

Financial industry

Reinforcement and protection of apps in banking, trust, insurance, securities, funds, futures, financial leasing, Internet finance, third-party payment and other industries
Internet industry

Reinforcement and protection of social, entertainment, online education, real estate, local life, search, tools, logistics, Internet life service applications and other industry apps
IoT industry

Smart home, smart shopping, wearable devices, medical care, community services, Internet of Vehicles, smart transportation, urban furniture, public safety, green buildings, environmental monitoring, urban pipe network, supply chain management, smart logistics, production automation and other App reinforcement and protection
Military industry/secret related

Military industry, government, secret related units and other App anti reverse engineering analysis core algorithm and mining potential vulnerabilities to avoid sensitive data leakage