App Protector is a Runtime Application Self-Protection (RASP) solution developed by ASEE, designed to elevate mobile app security. Strengthen your defenses against emerging threats without compromising user experience.
We have created a freemium SDK so that you can try our solution.
- Overview
- RASP Features
- Full RASP Features (iOS)
- Getting Started
- Data Collection and Privacy
- Freemium vs. Premium Model
- Community Contributions
- About Us
- License
RASP is a technology that is embedded within application and kicks in when an application starts and runs. It's designed to detect attacks on an application runtime. When an application begins to run, RASP can protect it from malicious input or behaviour by analysing both, the app's behaviour, and the context of that behaviour. By using the application to continuously monitor its own behaviour, attacks can be identified and mitigated immediately without human intervention.
- Proactive Threat Detection: Detect and react to security events during application runtime with configurable incident response features.
- Collecting Security Events: Integrate RASP to collect security events on the server side, providing insights into detected security events.
- Security Events Visibility: App Protector Portal SDK offers real-time information about detected security events, aiding in monitoring and quick reactions.
- PSD2 Compliance: Meet regulatory requirements for mobile applications handling payment transactions with self-protecting data.
- Minimal Performance Impact: Smooth implementation with no downtime, source code changes, false positives, or performance overhead.
Android App Protector SDK is written in Java language but is fully compatible with other Java languages supported on Android, like Kotlin. This framework can be used for target devices from Android KitKat (API level 19) and higher.
For iOS, there are two builds, build for SWIFT and build for Objective-C. Both versions have all the capabilities in terms of runtime self-protection. This framework can be used for target devices from iOS 8.0 and higher.
The App Protector SDK collects and transmits security events from mobile applications to the App Protector Portal. This portal serves as a comprehensive solution, enabling clients to analyze security events/attacks on users' devices with the monitored production application installed. The received information allows for the modification of App Protector's behavior through its RASP configuration. Configuration changes or responses to attacks are executed by transmitting information from the App Protector Portal server to the App Protector SDK on the mobile device. Simultaneously, the App Protector SDK online continuously gathers data on detected attacks, sending it to the Portal for analysis. This streamlined approach empowers clients to create a RASP configuration for each user and mobile application. Utilizing the Portal, clients can specify the attacks that the App Protector SDK online should detect and determine the responses following attack detection. Clients can access platform-specific statistics, such as Android and iOS, based on the collected data from the SDK.
App Protector portal is only available with the full App Protector version.
For more information, please Contact Us.
- Identifies rooted or jailbroken devices.
- Verifies the integrity of your app's signature.
- Ensures the authenticity of the app package.
- Flags installations from untrusted sources or unofficial stores.
- Enhanced detection for advanced jailbreak and root exploits.
- Compatibility with Magisk and other sophisticated techniques.
- Supports various exploits, including unc0ver and checkra1n.
- Identifies when the app is running in debugging mode.
- Detects hooking frameworks like Frida, Xposed, and Shadow.
- Flags if the app is running in a simulator or emulator environment.
- Guards against unauthorized screen recording attempts on iOS Devices.
- Component that is responsible for obfuscation of application code and strings to improve the application resilience to static reverse engineering.
- Detects malicious modifications of iOS and Android mobile applications
Follow the guides below to seamlessly integrate Freemium App Protector into your Android and iOS applications.
[Not available yet.]
Link to iOS Installation Guide
Freemium App Protector doesn't collect anonymized security diagnostics data for app and device instances.
Explore our premium plan for additional features and unparalleled security.
| Free SDK | Full SDK | |
|---|---|---|
| Jailbreak/Root Detection | ✓ | ✓ |
| App Signature Integrity | ✓ | ❌ (on request) |
| App Store Validation | ✓ | ❌ (on request) |
| Debugging Mode Detection | ❌ | ✓ |
| Hooking Framework Identification | ❌ | ✓ |
| Simulator/Emulator Check | ❌ | ✓ |
| Screen Recording Defense (only iOS) | ❌ | ✓ |
| Obfuscation | ❌ | ✓ |
| App Integrity Check | ❌ | ✓ |
| Web Portal | ❌ | ✓ |
Join our community and contribute to the ongoing development of App Protector. Whether it's filing issues, addressing existing ones, or enhancing our documentation, your contributions are appreciated.
ASEE group is one of the biggest IT companies in the area of production and implementation of its own software solutions and services in the region of South Eastern Europe, Turkey, Spain, Portugal, Andorra, Colombia, Peru and the Dominican Republic.
ASEE provides products and services within the Payment business under Payten name. Since October 2009, the shares of Asseco South Eastern Europe (WSE: ASSECO SEE, ASE) have been listed on the Warsaw Stock Exchange.
Freemium App Protector SDK is provided under a freemium model. Review the LICENSE for detailed information.