Android system security has long been criticized, under the powerful Anti-compilation tool, the code logic in the APK is sweeping; heavy packaging technology makes a variety of pirated software, full of the Android market, especially for the financial, e-commerce, games and other products of piracy applications, serious threat to user security, and creates real benefits and brand losses for developers.
As an example of a game developed by a very popular Unity 3d engine on the market, we use the reflector + Reflexil plugin to analyze its C # logic to clearly see the class name and method name used in the code. In order to quickly locate the key logic, the Ontriggerenter function is triggered when a collision occurs, in which the player-controlled character enters the "bulletproof" state when the detection logic of the collision is modified to This.ishavezhenyuan equals True. This re-packaging DLL files, and then packaged into the APK file, you can easily achieve the character's invincible function.
650) this.width=650; "src=" Http://s2.51cto.com/wyfs02/M00/75/BC/wKiom1ZBkDuR9-qbAADV62ALUzk988.png "style=" float: none; "title=" 1.png "alt=" Wkiom1zbkdur9-qbaadv62aluzk988.png "/>
Another example of a very fire adventure game, using the Anti-compilation tool, after analysis can see its text message payment logic is as follows, when the text message completed payment, will enter the corresponding callback interface, respectively set the payment success or payment failure status, and execute the corresponding purchase logic. Then the malicious cracker can modify its text message payment logic, all the logic is changed to pay the logic of successful execution, to achieve can not spend money can buy any charge props for the purpose.
650) this.width=650; "src=" Http://s2.51cto.com/wyfs02/M02/75/BA/wKioL1ZBkIOyU-4YAALOmXWMYPI613.png "style=" float: none; "title=" 2.png "alt=" Wkiol1zbkioyu-4yaalomxwmypi613.png "/>
Thus, the current Android platform Application security problem is how shocking, developers hard labor results, may only take a few days or even a few hours of time, will be cracked easy to crack and profit, to developers caused by economic and security huge loss. For the APK has been tampered with the problem of re-packaging, you can choose to use the APK reinforcement products to secure the APK to enhance the security capabilities of the application, to improve the difficulty of the apk is malicious hack.
The cloud encryption is the NetEase security team combines many years of security experience, the introduction of application hardening solutions, can be used to do security hardening and vulnerability detection services, encryption method is simple and fast, effectively help developers to protect software copyright and revenue.
NetEase Cloud encryption through the Dex files, resource files, so library files and game app scripts and dynamic library files to protect the static crack and dynamic crack shut out, can prevent the application is reverse analysis, anti-compilation, two packaging, embedded virus, malicious deduction SDK, advertising SDK, etc. Effectively improve the security level of the app, thus maintaining the developer's copyright and business interests.
The security-hardened APK features anti-decompile, counter-static analysis, detection debugger, confusing manifest file Protection, signature verification, so file Protection, crash log collection and more, for easily pirated games and engine scripting for the Unity platform, as well as for Adobe The protection scheme of the Flash platform. Protection against piracy and malicious tampering.
Links: http://apk.aq.163.com/
Mobile security, how to protect your app