• After 15+ years, we've made a big change: Android Forums is now Early Bird Club. Learn more here.

Apps Is it worth Dexguard? Someone is using it?

josemwarrior

josemwarrior

Lurker
Hi everyone, here my question.
Everybody knows Proguard for obfuscate your app in Android, but recently I discovered Dexguard (www.dexguard.com), apparently is better than Proguard. But isn't free, then I wonder...
someone is using it? is it worth? Is it worth pay $ 552 for protect your app more than proguard?
These are the features, are they enough??
Ih4ewHl.png


This is only the particular version, only protect with static invasion (reverse engineering), there is another version, more expensive, Enterprise Deguard (+$2.000), that prevent from runtime attack, root and root hiding detect, debugging mode detect, encryp assets, etc

My app is using the in-app billing api of google for unblock premium features, I don't want that somebody craked my app and after he upload to several piracy markets...
Is this a good way to protect my app? or just with proguard is enough?
 
Even if you use Dexguard more work is needed to secure an app against fraud or piracy. Google recommends handling all receipt signature verification on an external server because it is possible to circumvent native java security by substituting the signature algorithm in the system libraries. So the first objective is to secure your app against automated tools that can generate fake purchases without having to modify the app in any way.

By manually obfuscating some strings and modifying the map generated by proguard you can make it very difficult for someone to crack your app.
 
Last edited:
autonomous1 said:
Even if you use Dexguard more work is needed to secure an app against fraud or piracy. Google recommends handling all receipt signature verification on an external server because it is possible to circumvent native java security by substituting the signature algorithm in the system libraries. So the first objective is to secure your app against automated tools that can generate fake purchases without having to modify the app in any way.

By manually obfuscating some strings and modifying the map generated by proguard you can make it very difficult for someone to crack your app.
Click to expand...

Really thanks for your comment.

It took me several days to reach this conclusion, first I have to encrypt and obfuscate the code where to be possible, to hide my public key, and avoid possible reverse engineering.

But on the other hand, I have to do the app invulnerable against the "app-simulate-shopping."
In any case, you're right, is not enough, it is just a little more layer of security.
 
josemwarrior said:
Hi everyone, here my question.
Everybody knows Proguard for obfuscate your app in Android, but recently I discovered Dexguard (www.dexguard.com), apparently is better than Proguard. But isn't free, then I wonder...
someone is using it? is it worth? Is it worth pay $ 552 for protect your app more than proguard?
These are the features, are they enough??

This is only the particular version, only protect with static invasion (reverse engineering), there is another version, more expensive, Enterprise Deguard (+$2.000), that prevent from runtime attack, root and root hiding detect, debugging mode detect, encryp assets, etc

My app is using the in-app billing api of google for unblock premium features, I don't want that somebody craked my app and after he upload to several piracy markets...
Is this a good way to protect my app? or just with proguard is enough?
Click to expand...

Try review this Eclipse project source:
https://drive.google.com/file/d/0B0o4UmjDlk7lTFg4Z3V1SFZMaE0/view

You can try: compile, run –> export –> decompile it.
You can see the easy, effective way to protect Your Business from Reverse Engineering.

JoZHg_FnJ9TaUidFoQWDtiGeKqTkAscBIcM2c0C3ZLQuzGHRbbk8_KoaHTqdURyQFpk=h900-rw
 
You must log in or register to reply here.
Back
Top Bottom