How to Obfuscate Non-Native Android & iOS Code and Frameworks

 

Appdome’s Non-Native Code Obfuscation obfuscates your source code in the application itself. The files are encrypted inside the application file. This means that no one will be able to read your application contents if they extract its files.

This Knowledge Base article summarizes the steps needed to obfuscate Non-Native Mobile Apps using Appdome’s Non-Native Code Obfuscation. Non-Native Code Obfuscation can be added to any Xamarin, Cordova or React Native JS application on iOS or Android instantly, without code or coding.

Obfuscating non-native mobile apps is a complex and time-consuming process. Several methods and tools need to be employed and the development resources needed to complete the task are highly specialized. Appdome simplifies the challenge of obfuscating non-native mobile apps by eliminating the need for specialized tools or development resources.

We hope you find it useful and enjoy using Appdome!

About Non-Native Code Obfuscation

Using Appdome, there are no development or coding prerequisites. For example, there is no SDK, libraries, or plug-ins to implement. The Appdome technology adds Non-Native Code Obfuscation and relevant standards, frameworks and more to the app automatically, with no manual development work at all. Using Appdome, mobile apps will use Non-Native Code Obfuscation to encrypt Non-Native Code files as if this functionality was natively coded in the application.

Let’s take an application created using “Cordova JS” (this is applicable to the other Non-Native Code solutions as well) take the “.apk”, the “.aab” or “.ipa” file and change the file extension to “.zip”. Now that it’s a zip file, you can extract the source files from it. extract the files to a new folder, for iOS under “Payload/Yourapp/www” and for Android under “assets/www”, you will find the Cordova Javascript files, if you open them – you will see a clear-text representation of the Cordova and your source code.

source code before appdome non-native code obfuscation

Now try to build the application with Non-Native Code Obfuscation on, and do the same thing again. If you look at the javascript files in the “www” folder, you can see that they are encrypted. Try installing the application on your phone – and it works just the same as before.

source code after appdome non-native code obfuscation

Prerequisites for Using Appdome for Non-Native Code Obfuscation

This article is for organizations and mobile developers that are using Non-Native Development Environments to write code, this includes “Cordova JS”, “React Native JS”, and “Xamarin”. Native Code is an application that is written in the native language of the device and is compiled to run directly on the application. This means that the source code of the application turns into a binary file. Non-Native Code is when the application is written in a high-level programming language (usually JavaScript, C#). The source code files are not compiled into a binary, but instead, they are saved as-is inside the application itself. When the application starts, it reads the code (clear-text) from the saved source code files and runs the code from there. This means that all of your code is available to anyone with the application file in hand.

In order to use Non-Native Code Obfuscation, your application must be using one of the following frameworks: Xamarin, Cordova JS, React Native JS

How to Add Non-Native Code Obfuscation to Any Mobile App on Appdome

Follow these step-by-step instructions to add Non-Native Code Obfuscation to Any Mobile App:

Upload a Mobile App to Your Account

Please follow these steps to add a mobile app to your Appdome account.

If you don’t have an Appdome account, click here to create an account.

From the Build tab, Add Non-Native Code Obfuscation

Select the Build TabNote: a blue underline will appear showing the step is active.

Beneath the Build Tab, select SecurityNote: a blue highlight will appear showing the category is active. 

  1. Click and expand ONEShield by Appdome
  2. Click and expand TOTALCode™ Obfuscation
  3. Enable or Toggle “ON” Non-Native Code Obfuscation
  4. Click Build My App

appdome non-native code obfuscation

Congratulations! When Appdome has finished your implementation (usually in 30 seconds or less), you’ll see the notice below. You now have a mobile app fully integrated with Non-Native Code Obfuscation.

success message for appdome non-native code obfuscation

 

Appdome’s no-code mobile app security platform offers mobile developers, DevSec and security professionals a convenient and reliable way to protect Android and iOS apps with non-native code obfuscation. When an Appdome user clicks “Build My App,” Appdome leverages a microservice architecture filled with 1000s of security plugins, and an adaptive code generation engine that matches the correct required plugins to the development environment, frameworks, and methods in each app.

Prerequisites

Here’s what you need to build secured apps with non-native code obfuscation

No Coding Dependency

Using Appdome, there are no development or coding prerequisites to build secured apps with non-native code obfuscation. There is no SDK and no library to manually code or implement in the app. The Appdome technology adds the relevant standards, frameworks, and logic to the app automatically, with no manual development work at all.

How to Sign & Publish Secured Mobile Apps Built on Appdome  

After successfully securing your app using Appdome, there are several available options to complete your project, depending on your app lifecycle or workflow. These include 

Or, see this quick reference Releasing Secured Android & iOS Apps built on Appdome. 

 How to Learn More

Check out related KB articles on code obfuscation without coding:

Native Code Obfuscation

Obfuscate App Logic, Methods and Flows

Obfuscate and Encrypt Java Classes/ .DEX

Check out the full menu of features in the Appdome Mobile Security Suite

If you have any questions, please send them our way at support@appdome.com or via the chat window on the Appdome platform.

Or request a demo at any time.

Thank you!

Thanks for visiting Appdome! Our mission is to secure every app on the planet by making mobile app security easy. We hope we’re living up to the mission with your project. If you don’t already have an account, you can sign up for free.

Dany Zatuchna

Have a question?

Ask an expert

EvgenyMaking your security project a success!

Get Your Copy
2021 Global Mobile
Consumer Security
Survey