IOS Application reinforcement

Introduction
Function
Advantage
Scene

Introduction

For mobile applications, code encryption technologies such as source code obfuscation technology and assembly instruction virtualization are used in combination with runtime environment detection to effectively address the security risks of code and data in mobile applications

Function

Flat control flow

The control flow corresponding to the function in C/C++/Objective-C code is "horizontally" flattened to make it more difficult for crackers to analyze in common decompilation tools and effectively protect the original logic of the core algorithm
Opaque Predicate

Insert some unreachable instructions and redundant jump instructions into the original code block corresponding to the function in C/C++/Objective-C code, making it more difficult for crackers to analyze in common decompilation tools, and effectively protecting the original logic of the core algorithm
Equivalent instruction

The original code block instructions corresponding to the functions in C/C++/Objective-C code are converted equivalently, making it more difficult for crackers to analyze in common decompilation tools, and effectively protecting the original logic of the core algorithm
Control flow indirection

Redirect the jump address in the function in C/C++/Objective-C code, making it impossible to reverse the real code in common decompilation tools, increasing the analysis difficulty of the crackers, and effectively protecting the original logic of the core algorithm
Basic block scheduling

All basic blocks of functions in C/C++/Objective-C code are handed over to the scheduling block for distribution, making it impossible to reverse the real code in the decompiler, effectively protecting the source code, and increasing the difficulty of code analysis by the crackers
String encryption

Perform syntax analysis and logic analysis on C/C++/Objective-C code, resolve the position of the string in the code, and then confuse and encrypt the string, so that the crackers cannot use it to quickly locate the location of the core code of the program
Split basic block

The basic blocks corresponding to functions in C/C++/Objective-C code are "split" and flattened, making it more difficult for crackers to analyze in common decompilation tools, and effectively protecting the original logic of the core algorithm
Anti duplication packaging/anti packaging

Verify application signature information to prevent application repackaging
File tamper proof

Check the integrity of all files in the application to prevent malicious tampering
Anti module injection/anti capture frame

Real time monitoring of memory information to prevent the injection of the framework into the application space, resulting in information and data leakage
Reverse acceleration and deceleration tools

Prevent the application from being clock accelerated by the accelerator when it is running, affecting the balance of application users
Anti commissioning

During application running, monitor the application debugging status to prevent applications from being dynamically debugged to obtain memory data
Prison break detection

Prison break environment detection. Note: this function will cause the security package to fail to run on the jailbroken device
Piracy detection

Piracy detection of applications
Modifier detection

Prevent static data in application and runtime data from being modified by external tools such as modifiers
Plug in detection

Check whether there is external software in the application running environment

Advantage

优势	详情
Small encryption granularity	Fine granularity encryption, realizing instruction level dynamic encryption and decryption technology, only decrypting the executed instruction units, and the unexecuted instructions will not be decrypted
Instruction set randomization	Supports instruction set randomization, and the virtual code instruction set generated by each compilation is completely generated randomly
Self safety is guaranteed	Self defined virtual machine technology and source code obfuscation technology are used for the interpreter and code in the hardening of Manxi, and encryption shell protection is used to prevent hackers from cracking the application after hardening from the "firewall"
Full monitoring of operation process	Manxi Reinforcement will monitor the whole life cycle of the app, with runtime protection against malicious addition of files, malicious deletion of files, high-risk device operation, memory copy, etc

Scene

Financial industry

Reinforcement and protection of apps in banking, trust, insurance, securities, funds, futures, financial leasing, Internet finance, third-party payment and other industries
Internet industry

Reinforcement and protection of social, entertainment, online education, real estate, local life, search, tools, logistics, Internet life service applications and other industry apps
IoT industry

Smart home, smart shopping, wearable devices, medical care, community services, Internet of Vehicles, smart transportation, urban furniture, public safety, green buildings, environmental monitoring, urban pipe network, supply chain management, smart logistics, production automation and other App reinforcement and protection
Military industry/secret related

Military industry, government, secret related units and other App anti reverse engineering analysis core algorithm and mining potential vulnerabilities to avoid sensitive data leakage