Skip to main content

What is Always on Security?

hj youn

AppSealing Android security solution provides security options to customize security levels.

But also there are various security by default to protect applications from malicious attacks.

 

Code Encryption

Shield SO Encryption

AppSealing encrypts Shared Object libraries (SO files) to protect Android Native codes.

Shield DLL Encryption for Unity & Xamarin app

Many applications built with Unity and Xamarin use DLL files as the main source code binary. AppSealing recognizes DLL files that need protection and encrypts them statically.

Shield JS Encryption for React Native app

React Native applications contain JavaScript bundles. AppSealing encrypts the JavaScript bundles to protect source code statically.

Note) Currently JS encryption is not provided for the IONIC & Cordova applications.

 

Anti Debugging & Runtime attack

Shield Monitoring Process status

AppSealing periodically checks the status of the app's processes and threads. AppSealing will terminate the app and report a hacking detection if any processes are found in an abnormal state.

Shield Block debugger attached to process

AppSealing detects when any debugger is attached to the app's process. AppSealing will terminate the app and report a hacking detection when it is detected.

Shield Frida framework

The Frida framework is a popular tool for debugging, hooking, and injecting scripts into apps. AppSealing is capable of detecting the Frida framework on multiple layers.

Shield Xposed framework

The Xposed framework offers powerful functions and tweaks for attacking and manipulating the Android system and apps.

Shield Trampoline Code hooking

Trampoline code hooking is a technique used to inject vulnerable code or bypass security scanning by hooking function calls. AppSealing is capable of detecting this type of malicious hacking behavior.

Shield Memory dump

AppSealing can detect when a hacker tries to access an app's memory during runtime and will terminate the app to prevent further compromise.

Shield SSL Pinning bypass

SSL Pinning is not foolproof, as attackers can attempt a Man-in-the-Middle (MITM) attack to bypass it. However, AppSealing can detect and prevent MITM attacks by blocking hooking attacks and various utilities. This ensures that SSL Pinning is enforced and the app remains secure.

 

Anti Tampering

Shield Code integrity check

AppSealing not only encrypts the code but also verifies the integrity of the encrypted code.

Shield Resource integrity check

AppSealing checks the integrity of the assets and resources included in the APK or app bundle file at hardening time to ensure data security.

Shield Package name manipulation

AppSealing detects the package name manipulation to prevent Mod app republishing by reverse engineering.

Shield AndroidManifest manipulation

AppSealing checks the integrity of the AndroidManefest file, so an attacker cannot inject or manipulate the app’s configuration.

Shield Memory manipulation tools

AppSealing blocks the memory manipulation and the tools that can modify the app’s memory in runtime.

 

Virtual environments

Shield Virtual OS

Virtual OS provides additional space to smartphones, making it easy to manipulate and hide vulnerable environments such as rooting. AppSealing verifies the app installed system and if the app is installed on Virtual OS, it closes the app to prevent further security compromise.

Shield Virtual Space tools

Virtual Space tools provide additional space to smartphones, making it easy to manipulate and defraud user and account information. However, AppSealing scans the app installed system and if the app is installed on Virtual Space, it closes the app to prevent further security compromise.

Shield Xiaomi Dual app & Second space

Xiaomi Dual App and Second Space are virtual environments that are similar to each other. These environments can be used to hide cheat tools from AppSealing, making it easy to defraud user and account information.

 

Cheating Tools

Shield Game Guardian

GameGuardian is a memory and speed cheat tool commonly used by non-professional hackers due to its popularity and ease of use. AppSealing can detect the GameGuardian and its obfuscated app identifiers.

Shield Lucky Patcher

Lucky Patcher is a popular tool used to bypass in-app purchase authentication. AppSealing can detect the Lucky Patcher and its obfuscated app identifiers.

Shield Speedhack

Speedhack can modify the system timestamp and speed of a smartphone, causing harm to game logic and leading to security vulnerabilities. After AppSealing detects speedhack tools, it closes the app to prevent further security compromise.

Shield APK editors

APK editors can copy the installed application, analyze its configurations and Manifest, and manipulate them as desired.

 

Hacking Detection & Analytics

Shield Realtime hacking data streaming

AppSealing provides a real-time hacking dashboard to track suspicious events and identify a device's ANDROID_ID.

Shield Hacking detection message localization

AppSealing localizes hacking detection messages in various languages, including English, Korean, Chinese, Japanese, Indonesian, Vietnamese, and Spanish. The AppSealing team continuously updates the messages to support more languages.

Was this article helpful?

0 out of 0 found this helpful
Return to top

Related articles