Products
Products
Open-source Technology
Solutions
Resources
Company
DexGuard provides the most comprehensive mobile app and SDK protection with multiple layers of code hardening, built-in malware protection, and automated runtime application self-protection (RASP).
We designed DexGuard to streamline the secure software development lifecycle and make developers’ lives easier while still providing robust protection.
DexGuard's comprehensive static and dynamic analysis protections are achieved through layered obfuscation and encryption techniques complemented by automated RASP checks and built-in malware defenses. DexGuard obfuscates all checks; this multi-layered approach includes Android NDK - C/C++ native libraries.
DexGuard generates a Protection Report for each mobile app build that incorporates its protections. This report validates and assesses the applied protections, grading your app’s security configuration against key risk categories, providing further recommendations to improve security efficacy and surfacing potentially beneficial features to activate.
When upgrading from ProGuard (or R8) to DexGuard, you can re-use your existing optimization configuration file. All you need to do is account for DexGuard’s additional functionality, including its RASP and obfuscation capabilities.
The Secure Keyboard is designed to enhance the security of the keyboard used by your app, eliminating the risk associated with custom keyboards installed by users that may compromise data security. As a DexGuard add-on, it provides protection against malware attacks while delivering optimal UX as a fully functional keyboard.
If a threat actor decompiles your app, DexGuard ensures that your code will be as resistant to reverse engineering as possible. DexGuard provides obfuscation for classes, fields, arithmetic instructions and more; code virtualization; API call hiding; and many additional security features. Crucially, DexGuard’s protection is polymorphic — each app build has a different Android obfuscation configuration, preventing a threat actor from reusing their prior knowledge.
DexGuard automatically injects runtime application self-protection (RASP) checks, preventing threat actors from tampering with apps at runtime. What’s more, each build features different RASP checks in different locations, ensuring threat actors can’t reuse prior knowledge. DexGuard injects checks like root detection, certificate checks, hook detection and more.
Learn more about the Android app security techniques, practices and technology DexGuard uses to keep your mobile apps safe.
DexGuard’s defenses against static and dynamic analysis reinforce one another, providing more robust protection overall than any individual approach would offer. When a malicious user runs your app from a debugger or emulator to validate their static analysis, RASP checks kick in to end the user's session, crash the application and deploy other defensive actions. Furthermore, DexGuard obfuscates each of these checks, preventing an attacker from learning where and how the application is detecting integrity violations.
If each of your app’s builds apply the same defenses in the same locations, an attacker will easily decipher your app’s internal logic and will know where the most sensitive information lies. That’s why DexGuard hardens broad swathes of your app’s code and draws on a diverse library of integrity violation checks to prevent an attacker’s progress. Because these code hardening and RASP techniques are applied polymorphically and automatically, no two builds feature the same protections. Thus, every build resets the clock on attackers, rendering their previous knowledge useless.
DexGuard’s defenses against static and dynamic analysis reinforce one another, providing more robust protection overall than any individual approach would offer. When a malicious user runs your app from a debugger or emulator to validate their static analysis, RASP checks kick in to end the user's session, crash the application and deploy other defensive actions. Furthermore, DexGuard obfuscates each of these checks, preventing an attacker from learning where and how the application is detecting integrity violations.
If each of your app’s builds apply the same defenses in the same locations, an attacker will easily decipher your app’s internal logic and will know where the most sensitive information lies. That’s why DexGuard hardens broad swathes of your app’s code and draws on a diverse library of integrity violation checks to prevent an attacker’s progress. Because these code hardening and RASP techniques are applied polymorphically and automatically, no two builds feature the same protections. Thus, every build resets the clock on attackers, rendering their previous knowledge useless.
ANDROID & iOS
DexGuard licenses come with one free license of ThreatCast, Guardsquare’s real-time threat monitoring tool. Gain visibility into vulnerabilities and suspicious activity and adapt your security configuration to face the constantly evolving threat landscape with Guardsquare's real-time threat monitoring product, ThreatCast.
We’ll ensure your DexGuard implementation is comprehensive and tailored to your needs. Afterwards, we provide two levels of support based on your needs.
Rely on the Guardsquare team for bug fixes and setup support at no additional cost.
Gain expert-level access to the Guardsquare knowledge base as well as executive technical and business review.