This Knowledge Base article explains how you can use Appdome’s no-code mobile app hardening to fully protect and harden any mobile app without code or coding.
We hope you find it useful and enjoy using Appdome!
About Mobile App Hardening
ONEShield™ by Appdome combines Appdome’s advanced mobile app hardening features, among them anti-tampering, anti-debugging and anti-reversing protections, and other features — making Appdome the single most comprehensive solution to protect mobile apps.
The Appdome platform adds ONEShield™ to every app our customers build on appdome, so every app gets equipped with advanced mobile app hardening automatically! Whether you’re building Appdome Mobile Security Suite, EMM SDKs, or an Identity SDK, your app will automatically be protected with ONEShield advanced app shielding.
The app you are building on Appome can be built with any native tool such as Xcode for iOS or Android Studio, or any other framework, including hybrid and cross-platform frameworks such as Xamarin, Cordova, React Native, and Flutter. ONEShield™ by Appdome supports only ARM 64-bit architectures.
Follow these step-by-step instructions to add ONEShield™ to Any Mobile App in seconds.
Upload a Mobile App to Your Account
Select the ONEShield™ section
When Fusing with Appdome Security, an EMM SDK, and/or an Identity SDK, you will see the “ONEShield™ by Appdome” section.
Click to expand ONEShield™ by Appdome:
View the ONEShield™ options that will be integrated into the app without you having to write a single line of code. With ONEShield™ your app is enabled with:
- Anti-Debugging – Appdome prevents anybody from debugging a built app.
- Detect Debugger Code Manipulations – During the app run-time, Appdome will actively detect and block any code manipulations performed by debuggers on the protected app.
- Anti-Tampering – Appdome protects a built app from being changed or modified by anyone.
- Prevent running on Simulators
A common method for attackers to compromise applications is to run them on a simulator (which is an environment completely under the control of the attacker). Appdome implements measures to recognize that it runs on a simulator and forces termination of the application instance.
- Checksum Validation
Appdome verifies that the application has not been modified since it was sealed.
- App Integrity/Structure Scan
Appdome looks for weakening elements in the application such as malicious URLs.
- Anti-Reversing – Appdome encrypts key logical elements and resources such as methods, strings, and assets to make reverse engineering of a built app impossible.
- Obfuscate built Services
Appdome’s core code and the additional services selected will be obfuscated. In addition, the data embedded in Appdome’s code will be encrypted so as to prevent common “recon” attacks such as searching for strings in the code.
It should be worth noting that 3rd party services will not get obfuscated, only Appdome’s core and adapters. So for example, the code responsible forTOTALDataTM Encryption will be obfuscated, while for VMWare Workspace ONE (AirWatch) only the adapter code that glues the SDK to the application will be obfuscated, the VMWare Workspace ONE (AirWatch) code will remain as it is.
As shown in the image above, all of the ONEShield™ options are always enabled for the protection of your app.
After you have made your selections, click Build My App and in about 20 – 40 seconds your app will be protected with ONEShield™. Pretty awesome!
After Adding ONEShield™ to a Mobile App on Appdome
After you have added ONEShield™ to any Mobile App on Appdome, there are a few additional steps needed to complete your mobile integration project.
Add Context™ to the Appdome-Built App
Appdome is a full-featured mobile integration platform. Within Context™, Appdome users can brand the app, including adding a favicon to denote the new service added to the app.
For more information on the range of options available in Context™, please read this knowledge base article.
Sign the Appdome-Built App (Required)
In order to deploy an Appdome-Built app, the app must be signed. Signing iOS apps and Signing Android apps on Appdome is easy. Alternatively, you can use Private Signing, download your unsigned app and sign locally using your own signing methods.
Deploy the Appdome-Built App to a Mobile Device
Once you have signed your Appdome-Built app, you can deploy it using your distribution method of choice. For more information on deploying your Appdome-Built apps, please read this knowledge base.
That is it – Enjoy Appdome’s ONEShield™ protection in your app!
How Do I Learn More?
If you have any questions, please send them our way at email@example.com or via the chat window on the Appdome platform.