Welcome to the Appdome's
Knowledge Base

Mobile App Security >

Build better Mobile App Security in Android & iOS apps in DevOps CI/CD. Includes Certified Secure™ Android & iOS RASP, anti-tampering, anti-debugging, app shielding, mobile code obfuscation, mobile data encryption, jailbreak and root detection, man-in-the-middle attack prevention and more. No code, no SDK mobile app security for native and framework based Android & iOS apps. Guarantee mobile app compliance and pass mobile app penetration tests with ease.

Mobile Fraud Prevention >

Build better Mobile Fraud Prevention in Android & iOS apps in DevOps CI/CD. Includes Certified Secure™ Android & iOS defense to synthetic fraud, auto-clickers, mobile spyware, attacks from virtualized environments, virtual devices and more. No code, no SDK mobile fraud prevention for native and framework based Android & iOS apps.

Mobile Malware Prevention >

Build better Mobile Malware Prevention in Android & iOS apps in DevOps CI/CD. Includes Certified Secure™ Android & iOS detection and defense against Magisk, Magisk Manager, malicious Magisk Modules, Zygisk, Frida, jailbreak detection bypass, root detection bypass, malware instrumentation and controls, and more. No code, no SDK mobile malware prevention for native and framework based Android & iOS apps.

Anti-Spyware >

Learn Anti-Spyware, Appdome’s no-code, no-SDK mobile spyware detection, defense and threat intelligence solution for Android & iOS apps. Protect and gather threat intelligence in Android & iOS apps from a wide range of mobile spyware including overlay attacks, overlay malware, PII harvesting, input capture exploits, key logging, screen mirroring malware and more. Use Appdome’s Data-Driven DevSecOps platform in your mobile DevOps CI/CD to prevent Synthetic ID fraud at its source quickly and easily.

Mobile Cheat Prevention >

Build better Mobile Cheat Prevention in Android & iOS apps in DevOps CI/CD. Includes Certified Secure™ Android & iOS detection and defense against mobile modding, player-emulators, code injection, library injection, memory editing, Dynamic Binary Instrumentation (DBIs), commercial grade cheat engines and more. No code, no SDK mobile cheat prevention for native and framework based Android & iOS apps.

Mobile Threat Intelligence >

Learn how to use Appdome’s Mobile Threat Intelligence Suite to gather real-time, live, attack data and telemetry in a ThreatScope™, Appdome’s mobile intelligence center, or Threat-Events™, in app intelligence and control framework. Individual instructions in using Threat-Events and Threat-Scope can be found in the articles associated with the protection or threat of interest to you.

Mobile RASP Security >

Learn ONEShield™, Appdome’s no-code, no-SDK mobile application runtime application self-protection (RASP) solution for Android & iOS apps. Learn to build mobile RASP security and harden Android & iOS apps using Appdome’s Data-Driven DevSecOps platform in your mobile DevOps CI/CD pipeline. Explore anti-tampering, anti-debugging, anti-emulator, anti-simulator and other defenses in Android & iOS mobile apps. Prevent modifications, repackaging, re-signing of mobile apps and pass mobile app penetration tests with ease.

Man-in-The-Middle Attack >

Learn Secure Communications, Appdome’s no-code, no-SDK MiTM Attack Prevention solution for Android & iOS apps. Protect mobile apps and connections against MiTM Attacks, including Session Hijacking, SSL Stripping, and Evil Twin Attacks. Learn to enforce SSL certificate validation, CA authentication, malicious proxy detection, minimum TLS version, and more in Appdome’s Data-Driven DevSecOps platform in your mobile DevOps Ci/CD pipeline. Explore defenses to SSL Certificate Bypass Attacks and block MiTM tools such as Charles Proxy, BURP Suite, NMAP, MitM Proxy, Wireshark, Metasploit and more. Quickly pass Man-in-the-Middle penetration tests and vulnerability scans with ease.

Credential Stuffing & Anti-Bot >

Learn, Mobile Bot Defense, Appdome’s no-code, no-SDK Credential Stuffing and anti-bot defense solution for Android and iOS apps. Use Appdome’s Data-Driven DevSecOps platform in your mobile DevOps CI/CD pipeline to build mobile apps that can stop credential stuffing attacks, block fake apps, card cracking, account takeovers (ATOs), Distributed Denial of Service (DDoS) and invalid traffic (IVT) attacks fast.

Mobile Data Encryption >

Learn TOTALData™ Encryption, Appdome’s a no-code, no-SDK mobile data encryption solution for Android & iOS apps. Encrypt mobile app data-at-rest with AES-256 encryption or FIPS 140-2 cryptography using Appdome’s Data-Driven DevSecOps platform in your mobile DevOps CI/CD pipeline. See how easy it can be to encrypt Android & iOS mobile app data, in the application sandbox, SD card, Android & iOS files, strings, resources, preferences, strings, xml, Java, DEX, DLL, native libraries (.so), and more. Protect data created by users, downloaded by the app, and mobile app data stored by the app quickly and easily in your pipeline.

Mobile Code Obfuscation >

Learn TOTALCode Obfuscation™,  Appdome’s no-code, no-SDK mobile code obfuscation solution for Android & iOS Apps. Learn to protect Android & iOS apps against hacking, pen testing, static code analysis, method tracing, APK and iPA decompilation, binary analysis and more using Appdome’s Data-Driven DevSecOps platform in your mobile DevOps CI/CD. Find out how easy it can be to obfuscate mobile app binaries, app logic, file systems, function calls, method and class names, control flows, debug information, and more. No Code, No SDK, mobile code obfuscation for all native and framework based Android & iOS apps.

Jailbreak & Root Detection >

Learn Mobile OS integrity, Appdome’s no-code, no-SDK Jailbreak & Root detection solution for Android & iOS apps. Learn to protect iOS & Android mobile apps from running in jailbroken, rooted or compromised mobile OS environments using Appdome’s Data-Driven DevSecOps platform in your mobile DevOps CI/CD pipeline. See how easy it can be to detect, prevent and keep up with Jailbreaking and Rooting tools and methods used by Cydia, Checkra1n, Unc0ver, Chimera, Xposed, Super SU, PlankFilza, Towelroot and many more, as well as malware and exploits that rely on jailbreak and root.

AppSec Release Orchestration >

Appdome delivers full, enterprise-class, visibility, management and control over the Mobile AppSec Release Orchestration process in your DevSecOps processes. Inside Appdome’s Data-Driven DevSecOps platform, mobile developers and cyber teams build, certify and prove the protections in Android & iOS apps in the DevOps CI/CD pipeline. The knowledge base articles in this section cover the basics of how to use and configure Appdome to create, use and modify mobile app protection templates, create & use teams, perform code signing and integration with CI/CD systems. Individual configuration choices for specific protections are covered in the knowledge base article for that protection.

Testing Protected Mobile Apps >

Learn how to test Appdome protected Android & iOS apps in a DevOps CI/CD pipeline. Includes step-by-step instructions to test Android & iOS apps protected with RASP, jailbreak, root, Magisk and other protections in a standard DevOps pipeline. Includes guides and troubleshooting tips for testing manually, on local devices, or in automated testing suites and cloud mobile app testing services like BitBar, Saucelabs, Browserstack and other systems commonly used by mobile developers in DevOps.

Enterprise Mobile App Security >