Non-Native Code Obfuscation

By |2018-10-23T08:12:25+00:00August 20th, 2018|

Hello Appdome Community,

We just released an important innovation to Appdome’s TOTALCode™ Obfuscation solution for Android and iOS apps. TOTALCode Obfuscation was originally released to cover native applications and executable files built in Java, Kotlin, C, Objective-C, and Swift. 

Introducing Non-Native Code Obfuscation

Now, non-native code obfuscation is available for apps built in React Native, Cordova or Xamarin. This is huge, because these environments use different coding languages like C# and JavaScript. Consequently, developers building apps in non-native frameworks need to embed the business logic of their apps outside of where a native iOS or Android application code resides. This means outside the app’s main binary.

TOTALCode Obfuscation always protected the non-native framework itself, where the common runtime logic and methods for any app reside. Non-native code obfuscation, or obfuscating JavaScript and/or DLL files without touching source code, is absolutely *not* trivial. The operating system and the framework loads these files into memory and executes them automatically in order for the app to function. Therefore, developers cannot obfuscate these files manually. But, with the new release of TOTALCode Obfuscation, non-native code obfuscation is a reality. Appdome users can obfuscate and protect JavaScript and/or DLL files. They can even obfuscate dynamically loaded classes and add arbitrary instructions without impacting the app. All the methods combine to thwart any malicious agent that wants to extract or reverse-engineer these files. It is important to note that Appdome is the only solution that can achieve this outcome.

The Industry’s Most Comprehensive App Shielding Solution

Appdome customers get the industry’s most comprehensive app hardening solution for any Android and iOS app. This is achieved by combining  anti-tampering, anti-debugging and other features in Appdome’s ONEShield™ with TOTALCode Obfuscation. Equally important, this solution is available on any app, built is any development framework. By the way, all other obfuscation solutions don’t include anti-tampering and anti-debugging. And TOTALCode Obfuscation has no performance impact to any app. Again something other obfuscation methodologies cannot deliver.

Appdome customers can easily toggle on “Non-Native Code Obfuscation” in the TOTALCode section of the Mobile Security Suite.

Download the TOTALCode Obfuscation datasheet and see how easy it is enable non-native code obfuscation to your mobile apps.

Mobile application security is in our DNA. We believe every implementation, regardless of the service, deserves protections that make the mobile services safe and protected. Being security engineers, we know that malicious attacks and unwanted intrusions can come from everywhere. It’s no secret that mobile apps are increasingly becoming a vector for attack.

If you are not yet an Appdome user, just sign up for an Appdome account (it’s free!) to try out this new feature. Look out for my next blog where I talk about another innovation to our mobile security line up!

About the Author:

Gil heads engineering at Appdome. He's a security engineer, mobile app developer and has fused 1000s of Android and iOS apps.
Scroll Up